|
|
@@ -12,6 +12,9 @@
|
|
|
<li>
|
|
|
<a href="#generators.external-secrets.io%2fv1alpha1">generators.external-secrets.io/v1alpha1</a>
|
|
|
</li>
|
|
|
+<li>
|
|
|
+<a href="#provider.external-secrets.io%2fv2alpha1">provider.external-secrets.io/v2alpha1</a>
|
|
|
+</li>
|
|
|
</ul>
|
|
|
<h2 id="external-secrets.io/v1">external-secrets.io/v1</h2>
|
|
|
<p>
|
|
|
@@ -23,7 +26,8 @@ Resource Types:
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.AWSProvider">AWSProvider</a>)
|
|
|
+<a href="#external-secrets.io/v1.AWSProvider">AWSProvider</a>,
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.SecretsManagerSpec">SecretsManagerSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
<p>AWSAuth tells the controller how to do authentication with aws.
|
|
|
@@ -584,6 +588,32 @@ CAProvider
|
|
|
</tr>
|
|
|
</tbody>
|
|
|
</table>
|
|
|
+<h3 id="external-secrets.io/v1.AuthenticationScope">AuthenticationScope
|
|
|
+(<code>string</code> alias)</p></h3>
|
|
|
+<p>
|
|
|
+(<em>Appears on:</em>
|
|
|
+<a href="#external-secrets.io/v1.ClusterProviderSpec">ClusterProviderSpec</a>)
|
|
|
+</p>
|
|
|
+<p>
|
|
|
+<p>AuthenticationScope defines which namespace should be used for authentication.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Value</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody><tr><td><p>"ManifestNamespace"</p></td>
|
|
|
+<td><p>AuthenticationScopeManifestNamespace uses the namespace of the ExternalSecret/PushSecret
|
|
|
+for authentication.</p>
|
|
|
+</td>
|
|
|
+</tr><tr><td><p>"ProviderNamespace"</p></td>
|
|
|
+<td><p>AuthenticationScopeProviderNamespace uses the namespace from spec.config.providerRef.namespace
|
|
|
+for authentication. This is the default.</p>
|
|
|
+</td>
|
|
|
+</tr></tbody>
|
|
|
+</table>
|
|
|
<h3 id="external-secrets.io/v1.AuthorizationProtocol">AuthorizationProtocol
|
|
|
</h3>
|
|
|
<p>
|
|
|
@@ -842,7 +872,7 @@ string
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.AzureKVProvider">AzureKVProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.AzureKVProvider">AzureKVProvider</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.ACRAccessTokenSpec">ACRAccessTokenSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -1768,14 +1798,14 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.AkeylessProvider">AkeylessProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1.BitwardenSecretsManagerProvider">BitwardenSecretsManagerProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1.ConjurProvider">ConjurProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1.GitlabProvider">GitlabProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1.InfisicalProvider">InfisicalProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1.KubernetesServer">KubernetesServer</a>,
|
|
|
-<a href="#external-secrets.io/v1.OvhClientMTLS">OvhClientMTLS</a>,
|
|
|
-<a href="#external-secrets.io/v1.SecretServerProvider">SecretServerProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.AkeylessProvider">AkeylessProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.BitwardenSecretsManagerProvider">BitwardenSecretsManagerProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.ConjurProvider">ConjurProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.GitlabProvider">GitlabProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.InfisicalProvider">InfisicalProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.KubernetesServer">KubernetesServer</a>,
|
|
|
+<a href="#external-secrets.io/v1.OvhClientMTLS">OvhClientMTLS</a>,
|
|
|
+<a href="#external-secrets.io/v1.SecretServerProvider">SecretServerProvider</a>,
|
|
|
<a href="#external-secrets.io/v1.VaultProvider">VaultProvider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -2751,7 +2781,7 @@ ProviderStatus
|
|
|
<a href="#external-secrets.io/v1.ClusterProvider">ClusterProvider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
-<p>ClusterProviderSpec defines the desired state of ClusterProvider</p>
|
|
|
+<p>ClusterProviderSpec defines the desired state of ClusterProvider.</p>
|
|
|
</p>
|
|
|
<table>
|
|
|
<thead>
|
|
|
@@ -2934,7 +2964,7 @@ SecretStoreStatus
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ClusterProviderSpec">ClusterProviderSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1.ClusterProviderSpec">ClusterProviderSpec</a>,
|
|
|
<a href="#external-secrets.io/v1.SecretStoreSpec">SecretStoreSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -3959,7 +3989,7 @@ ExternalSecretStatus
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
<a href="#external-secrets.io/v1.ExternalSecretFind">ExternalSecretFind</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -4156,7 +4186,7 @@ The generator returns a static map of values</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretData">ExternalSecretData</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretData">ExternalSecretData</a>,
|
|
|
<a href="#external-secrets.io/v1.ExternalSecretDataFromRemoteRef">ExternalSecretDataFromRemoteRef</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -4267,7 +4297,7 @@ ExternalSecretNullBytePolicy
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
<a href="#external-secrets.io/v1.ExternalSecretFind">ExternalSecretFind</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -4497,7 +4527,7 @@ map[string]string
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
<a href="#external-secrets.io/v1.ExternalSecretFind">ExternalSecretFind</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -4770,7 +4800,7 @@ list during merge operations.</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretRewrite">ExternalSecretRewrite</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretRewrite">ExternalSecretRewrite</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretRewrite">PushSecretRewrite</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -4812,7 +4842,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretRewrite">ExternalSecretRewrite</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretRewrite">ExternalSecretRewrite</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretRewrite">PushSecretRewrite</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -4844,7 +4874,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ClusterExternalSecretSpec">ClusterExternalSecretSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1.ClusterExternalSecretSpec">ClusterExternalSecretSpec</a>,
|
|
|
<a href="#external-secrets.io/v1.ExternalSecret">ExternalSecret</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -5208,7 +5238,7 @@ bool
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretTarget">ExternalSecretTarget</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretTarget">ExternalSecretTarget</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretSpec">PushSecretSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -5363,7 +5393,8 @@ map[string]string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.SecretStoreProvider">SecretStoreProvider</a>)
|
|
|
+<a href="#external-secrets.io/v1.SecretStoreProvider">SecretStoreProvider</a>,
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.Fake">Fake</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
<p>FakeProvider configures a fake provider that returns static values.</p>
|
|
|
@@ -5455,7 +5486,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>,
|
|
|
<a href="#external-secrets.io/v1.YandexLockboxProvider">YandexLockboxProvider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -5663,7 +5694,7 @@ GCPWorkloadIdentityFederation
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.GCPSMAuth">GCPSMAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1.GCPSMAuth">GCPSMAuth</a>,
|
|
|
<a href="#external-secrets.io/v1.VaultGCPAuth">VaultGCPAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -5770,7 +5801,7 @@ Possible values are:
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.GCPSMAuth">GCPSMAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1.GCPSMAuth">GCPSMAuth</a>,
|
|
|
<a href="#external-secrets.io/v1.VaultGCPAuth">VaultGCPAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -5841,7 +5872,7 @@ If not specified, it fetches information from the metadata server</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.GCPSMAuth">GCPSMAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1.GCPSMAuth">GCPSMAuth</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GCPSMAuth">GCPSMAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -6004,8 +6035,8 @@ External Secrets meta/v1.SecretKeySelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
-<a href="#external-secrets.io/v1.StoreSourceRef">StoreSourceRef</a>,
|
|
|
+<a href="#external-secrets.io/v1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
+<a href="#external-secrets.io/v1.StoreSourceRef">StoreSourceRef</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretSelector">PushSecretSelector</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -7055,7 +7086,8 @@ External Secrets meta/v1.SecretKeySelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.SecretStoreProvider">SecretStoreProvider</a>)
|
|
|
+<a href="#external-secrets.io/v1.SecretStoreProvider">SecretStoreProvider</a>,
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.Kubernetes">Kubernetes</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
<p>KubernetesProvider configures a store to sync secrets with a Kubernetes instance.</p>
|
|
|
@@ -8947,7 +8979,7 @@ string
|
|
|
<h3 id="external-secrets.io/v1.Provider">Provider
|
|
|
</h3>
|
|
|
<p>
|
|
|
-<p>Provider is the Schema for the providers API</p>
|
|
|
+<p>Provider is the Schema for the providers API.</p>
|
|
|
</p>
|
|
|
<table>
|
|
|
<thead>
|
|
|
@@ -9031,11 +9063,14 @@ ProviderStatus
|
|
|
</tr>
|
|
|
</thead>
|
|
|
<tbody><tr><td><p>"ReadOnly"</p></td>
|
|
|
-<td></td>
|
|
|
+<td><p>ProviderReadOnly indicates the provider supports read-only operations.</p>
|
|
|
+</td>
|
|
|
</tr><tr><td><p>"ReadWrite"</p></td>
|
|
|
-<td></td>
|
|
|
+<td><p>ProviderReadWrite indicates the provider supports both read and write operations.</p>
|
|
|
+</td>
|
|
|
</tr><tr><td><p>"WriteOnly"</p></td>
|
|
|
-<td></td>
|
|
|
+<td><p>ProviderWriteOnly indicates the provider supports write-only operations.</p>
|
|
|
+</td>
|
|
|
</tr></tbody>
|
|
|
</table>
|
|
|
<h3 id="external-secrets.io/v1.ProviderCondition">ProviderCondition
|
|
|
@@ -9146,7 +9181,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ClusterProviderSpec">ClusterProviderSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1.ClusterProviderSpec">ClusterProviderSpec</a>,
|
|
|
<a href="#external-secrets.io/v1.ProviderSpec">ProviderSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -9266,7 +9301,7 @@ If empty, assumes the same namespace as the Provider.</p>
|
|
|
<a href="#external-secrets.io/v1.Provider">Provider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
-<p>ProviderSpec defines the desired state of Provider</p>
|
|
|
+<p>ProviderSpec defines the desired state of Provider.</p>
|
|
|
</p>
|
|
|
<table>
|
|
|
<thead>
|
|
|
@@ -9295,11 +9330,11 @@ ProviderConfig
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ClusterProvider">ClusterProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.ClusterProvider">ClusterProvider</a>,
|
|
|
<a href="#external-secrets.io/v1.Provider">Provider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
-<p>ProviderStatus defines the observed state of Provider</p>
|
|
|
+<p>ProviderStatus defines the observed state of Provider.</p>
|
|
|
</p>
|
|
|
<table>
|
|
|
<thead>
|
|
|
@@ -10525,8 +10560,8 @@ NebiusMysteryboxProvider
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ExternalSecretSpec">ExternalSecretSpec</a>,
|
|
|
-<a href="#external-secrets.io/v1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
+<a href="#external-secrets.io/v1.ExternalSecretSpec">ExternalSecretSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
<a href="#external-secrets.io/v1.StoreSourceRef">StoreSourceRef</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -10570,7 +10605,7 @@ Defaults to <code>SecretStore</code></p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.SecretStoreSpec">SecretStoreSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1.SecretStoreSpec">SecretStoreSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.VaultDynamicSecretSpec">VaultDynamicSecretSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -10610,7 +10645,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
+<a href="#external-secrets.io/v1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
<a href="#external-secrets.io/v1.SecretStore">SecretStore</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -10696,7 +10731,7 @@ int
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
+<a href="#external-secrets.io/v1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
<a href="#external-secrets.io/v1.SecretStore">SecretStore</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -10849,7 +10884,8 @@ Kubernetes meta/v1.Time
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.AWSProvider">AWSProvider</a>)
|
|
|
+<a href="#external-secrets.io/v1.AWSProvider">AWSProvider</a>,
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.SecretsManagerSpec">SecretsManagerSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
<p>SecretsManager defines how the provider behaves when interacting with AWS
|
|
|
@@ -11813,7 +11849,7 @@ VaultAwsJWTAuth
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
<a href="#external-secrets.io/v1.VaultIamAuth">VaultIamAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -11878,7 +11914,7 @@ see: <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_te
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
<a href="#external-secrets.io/v1.VaultIamAuth">VaultIamAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -12600,7 +12636,7 @@ method</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.SecretStoreProvider">SecretStoreProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.SecretStoreProvider">SecretStoreProvider</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.VaultDynamicSecretSpec">VaultDynamicSecretSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -13306,7 +13342,7 @@ External Secrets meta/v1.SecretKeySelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>,
|
|
|
<a href="#external-secrets.io/v1.YandexLockboxProvider">YandexLockboxProvider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -13340,7 +13376,7 @@ External Secrets meta/v1.SecretKeySelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>,
|
|
|
<a href="#external-secrets.io/v1.YandexLockboxProvider">YandexLockboxProvider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -14070,7 +14106,7 @@ PushSecretStatus
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1alpha1.PushSecretData">PushSecretData</a>,
|
|
|
+<a href="#external-secrets.io/v1alpha1.PushSecretData">PushSecretData</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretDataTo">PushSecretDataTo</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -14582,7 +14618,7 @@ GeneratorRef
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1alpha1.ClusterPushSecretSpec">ClusterPushSecretSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1alpha1.ClusterPushSecretSpec">ClusterPushSecretSpec</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecret">PushSecret</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -14782,7 +14818,7 @@ Matches secret stores to PushSecretData that was stored to that secret store.</p
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1alpha1.ClusterPushSecretStatus">ClusterPushSecretStatus</a>,
|
|
|
+<a href="#external-secrets.io/v1alpha1.ClusterPushSecretStatus">ClusterPushSecretStatus</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretStatus">PushSecretStatus</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -14861,7 +14897,7 @@ Kubernetes meta/v1.Time
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1alpha1.PushSecretDataTo">PushSecretDataTo</a>,
|
|
|
+<a href="#external-secrets.io/v1alpha1.PushSecretDataTo">PushSecretDataTo</a>,
|
|
|
<a href="#external-secrets.io/v1alpha1.PushSecretSpec">PushSecretSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -14910,7 +14946,19 @@ string
|
|
|
</td>
|
|
|
<td>
|
|
|
<em>(Optional)</em>
|
|
|
-<p>Kind of the SecretStore resource (SecretStore or ClusterSecretStore)</p>
|
|
|
+<p>Kind of the SecretStore resource (SecretStore, ClusterSecretStore, Provider, or ClusterProvider)</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>apiVersion</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>APIVersion of the SecretStore resource (external-secrets.io/v1 or secretstore.external-secrets.io/v2alpha1)</p>
|
|
|
</td>
|
|
|
</tr>
|
|
|
</tbody>
|
|
|
@@ -16444,11 +16492,11 @@ External Secrets meta/v1.SecretKeySelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.AkeylessProvider">AkeylessProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1beta1.BitwardenSecretsManagerProvider">BitwardenSecretsManagerProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1beta1.ConjurProvider">ConjurProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1beta1.GitlabProvider">GitlabProvider</a>,
|
|
|
-<a href="#external-secrets.io/v1beta1.KubernetesServer">KubernetesServer</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.AkeylessProvider">AkeylessProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.BitwardenSecretsManagerProvider">BitwardenSecretsManagerProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ConjurProvider">ConjurProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.GitlabProvider">GitlabProvider</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.KubernetesServer">KubernetesServer</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.VaultProvider">VaultProvider</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -18262,7 +18310,7 @@ ExternalSecretStatus
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.ExternalSecretFind">ExternalSecretFind</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -18458,7 +18506,7 @@ The generator returns a static map of values</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ExternalSecretData">ExternalSecretData</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ExternalSecretData">ExternalSecretData</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.ExternalSecretDataFromRemoteRef">ExternalSecretDataFromRemoteRef</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -18555,7 +18603,7 @@ ExternalSecretDecodingStrategy
|
|
|
(<code>string</code> alias)</p></h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ExternalSecretDataRemoteRef">ExternalSecretDataRemoteRef</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.ExternalSecretFind">ExternalSecretFind</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -18919,7 +18967,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ClusterExternalSecretSpec">ClusterExternalSecretSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ClusterExternalSecretSpec">ClusterExternalSecretSpec</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.ExternalSecret">ExternalSecret</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -19798,7 +19846,7 @@ If not specified, it fetches information from the metadata server</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.StoreSourceRef">StoreSourceRef</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -21585,10 +21633,10 @@ string
|
|
|
</tr>
|
|
|
</tbody>
|
|
|
</table>
|
|
|
-<h3 id="external-secrets.io/v1beta1.Provider">Provider
|
|
|
+<h3 id="external-secrets.io/v1beta1.ProviderInterface">ProviderInterface
|
|
|
</h3>
|
|
|
<p>
|
|
|
-<p>Provider is a common interface for interacting with secret backends.</p>
|
|
|
+<p>ProviderInterface is a common interface for interacting with secret backends.</p>
|
|
|
</p>
|
|
|
<h3 id="external-secrets.io/v1beta1.PulumiProvider">PulumiProvider
|
|
|
</h3>
|
|
|
@@ -22623,8 +22671,8 @@ CloudruSMProvider
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ExternalSecretSpec">ExternalSecretSpec</a>,
|
|
|
-<a href="#external-secrets.io/v1beta1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ExternalSecretSpec">ExternalSecretSpec</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.StoreGeneratorSourceRef">StoreGeneratorSourceRef</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.StoreSourceRef">StoreSourceRef</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -22658,7 +22706,7 @@ string
|
|
|
</td>
|
|
|
<td>
|
|
|
<em>(Optional)</em>
|
|
|
-<p>Kind of the SecretStore resource (SecretStore or ClusterSecretStore)
|
|
|
+<p>Kind of the SecretStore resource (SecretStore, ClusterSecretStore, Provider or ClusterProvider)
|
|
|
Defaults to <code>SecretStore</code></p>
|
|
|
</td>
|
|
|
</tr>
|
|
|
@@ -22709,7 +22757,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.SecretStore">SecretStore</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -22795,7 +22843,7 @@ int
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.ClusterSecretStore">ClusterSecretStore</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.SecretStore">SecretStore</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -23862,7 +23910,7 @@ VaultAwsJWTAuth
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.VaultIamAuth">VaultIamAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -23927,7 +23975,7 @@ see: <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_te
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#external-secrets.io/v1beta1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
+<a href="#external-secrets.io/v1beta1.VaultAwsAuth">VaultAwsAuth</a>,
|
|
|
<a href="#external-secrets.io/v1beta1.VaultIamAuth">VaultIamAuth</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -25400,7 +25448,7 @@ PublicCloud, USGovernmentCloud, ChinaCloud, GermanCloud</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.ACRAccessToken">ACRAccessToken</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.ACRAccessToken">ACRAccessToken</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -25552,7 +25600,7 @@ AzureACRWorkloadIdentityAuth
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.ECRAuthorizationTokenSpec">ECRAuthorizationTokenSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.ECRAuthorizationTokenSpec">ECRAuthorizationTokenSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.STSSessionTokenSpec">STSSessionTokenSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -25957,7 +26005,7 @@ External Secrets meta/v1.ServiceAccountSelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.CloudsmithAccessToken">CloudsmithAccessToken</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.CloudsmithAccessToken">CloudsmithAccessToken</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -26278,7 +26326,7 @@ Valid options are private and public.</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.ECRAuthorizationToken">ECRAuthorizationToken</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.ECRAuthorizationToken">ECRAuthorizationToken</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -26420,7 +26468,7 @@ by this generator.</p>
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.Fake">Fake</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.Fake">Fake</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -26687,7 +26735,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GCRAccessToken">GCRAccessToken</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GCRAccessToken">GCRAccessToken</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -27407,7 +27455,7 @@ GithubAuth
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.GithubAccessToken">GithubAccessToken</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -27808,7 +27856,7 @@ GrafanaStateServiceAccount
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.Grafana">Grafana</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -28020,7 +28068,7 @@ Kubernetes meta/v1.Time
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.MFA">MFA</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -28289,7 +28337,7 @@ Valid values are:
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.Password">Password</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -28489,7 +28537,7 @@ External Secrets meta/v1.ServiceAccountSelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.QuayAccessToken">QuayAccessToken</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -28682,7 +28730,7 @@ string
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.SSHKey">SSHKey</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -28838,7 +28886,7 @@ RequestParameters
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.STSSessionToken">STSSessionToken</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -28910,8 +28958,8 @@ RequestParameters
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GrafanaAuth">GrafanaAuth</a>,
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GrafanaBasicAuth">GrafanaBasicAuth</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GrafanaAuth">GrafanaAuth</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GrafanaBasicAuth">GrafanaBasicAuth</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.WebhookSecret">WebhookSecret</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -29003,7 +29051,7 @@ UUIDSpec
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.UUID">UUID</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -29188,7 +29236,7 @@ bool
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.VaultDynamicSecret">VaultDynamicSecret</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -29654,7 +29702,7 @@ SecretKeySelector
|
|
|
</h3>
|
|
|
<p>
|
|
|
(<em>Appears on:</em>
|
|
|
-<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
+<a href="#generators.external-secrets.io/v1alpha1.GeneratorSpec">GeneratorSpec</a>,
|
|
|
<a href="#generators.external-secrets.io/v1alpha1.Webhook">Webhook</a>)
|
|
|
</p>
|
|
|
<p>
|
|
|
@@ -29802,6 +29850,615 @@ WebhookCAProvider
|
|
|
</tbody>
|
|
|
</table>
|
|
|
<hr/>
|
|
|
+<h2 id="provider.external-secrets.io/v2alpha1">provider.external-secrets.io/v2alpha1</h2>
|
|
|
+<p>
|
|
|
+<p>Package v2alpha1 contains API Schema definitions for the AWS provider v2alpha1 API group.</p>
|
|
|
+</p>
|
|
|
+Resource Types:
|
|
|
+<ul></ul>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.SecretsManager">SecretsManager
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+<p>SecretsManager is the Schema for AWS Secrets Manager provider configuration.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>metadata</code></br>
|
|
|
+<em>
|
|
|
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.25/#objectmeta-v1-meta">
|
|
|
+Kubernetes meta/v1.ObjectMeta
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+Refer to the Kubernetes API documentation for the fields of the
|
|
|
+<code>metadata</code> field.
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>spec</code></br>
|
|
|
+<em>
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.SecretsManagerSpec">
|
|
|
+SecretsManagerSpec
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<br/>
|
|
|
+<br/>
|
|
|
+<table>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>auth</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.AWSAuth">
|
|
|
+AWSAuth
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Auth defines the information necessary to authenticate against AWS
|
|
|
+if not set aws sdk will infer credentials from your environment
|
|
|
+see: <a href="https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials">https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials</a></p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>role</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Role is a Role ARN which the provider will assume</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>region</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>AWS Region to be used for the provider</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>additionalRoles</code></br>
|
|
|
+<em>
|
|
|
+[]string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>AdditionalRoles is a chained list of Role ARNs which the provider will sequentially assume before assuming the Role</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>externalID</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>AWS External ID set on assumed IAM roles</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>sessionTags</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.*github.com/external-secrets/external-secrets/apis/externalsecrets/v1.Tag">
|
|
|
+[]*github.com/external-secrets/external-secrets/apis/externalsecrets/v1.Tag
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>AWS STS assume role session tags</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>secretsManager</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.SecretsManager">
|
|
|
+SecretsManager
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>SecretsManager defines how the provider behaves when interacting with AWS SecretsManager</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>transitiveTagKeys</code></br>
|
|
|
+<em>
|
|
|
+[]string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>AWS STS assume role transitive session tags. Required when multiple rules are used with the provider</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>prefix</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Prefix adds a prefix to all retrieved values.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</table>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>status</code></br>
|
|
|
+<em>
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.SecretsManagerStatus">
|
|
|
+SecretsManagerStatus
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.SecretsManagerSpec">SecretsManagerSpec
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+(<em>Appears on:</em>
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.SecretsManager">SecretsManager</a>)
|
|
|
+</p>
|
|
|
+<p>
|
|
|
+<p>SecretsManagerSpec defines the desired state of SecretsManager.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>auth</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.AWSAuth">
|
|
|
+AWSAuth
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Auth defines the information necessary to authenticate against AWS
|
|
|
+if not set aws sdk will infer credentials from your environment
|
|
|
+see: <a href="https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials">https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials</a></p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>role</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Role is a Role ARN which the provider will assume</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>region</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>AWS Region to be used for the provider</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>additionalRoles</code></br>
|
|
|
+<em>
|
|
|
+[]string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>AdditionalRoles is a chained list of Role ARNs which the provider will sequentially assume before assuming the Role</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>externalID</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>AWS External ID set on assumed IAM roles</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>sessionTags</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.*github.com/external-secrets/external-secrets/apis/externalsecrets/v1.Tag">
|
|
|
+[]*github.com/external-secrets/external-secrets/apis/externalsecrets/v1.Tag
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>AWS STS assume role session tags</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>secretsManager</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.SecretsManager">
|
|
|
+SecretsManager
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>SecretsManager defines how the provider behaves when interacting with AWS SecretsManager</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>transitiveTagKeys</code></br>
|
|
|
+<em>
|
|
|
+[]string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>AWS STS assume role transitive session tags. Required when multiple rules are used with the provider</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>prefix</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Prefix adds a prefix to all retrieved values.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.SecretsManagerStatus">SecretsManagerStatus
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+(<em>Appears on:</em>
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.SecretsManager">SecretsManager</a>)
|
|
|
+</p>
|
|
|
+<p>
|
|
|
+<p>SecretsManagerStatus defines the observed state of SecretsManager.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>conditions</code></br>
|
|
|
+<em>
|
|
|
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.25/#condition-v1-meta">
|
|
|
+[]Kubernetes meta/v1.Condition
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Conditions represent the latest available observations of the resource’s state.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.Fake">Fake
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+<p>Fake defines the configuration for the Fake provider.
|
|
|
+This provider returns static key-value pairs for testing purposes.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>metadata</code></br>
|
|
|
+<em>
|
|
|
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.25/#objectmeta-v1-meta">
|
|
|
+Kubernetes meta/v1.ObjectMeta
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+Refer to the Kubernetes API documentation for the fields of the
|
|
|
+<code>metadata</code> field.
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>spec</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.FakeProvider">
|
|
|
+FakeProvider
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<br/>
|
|
|
+<br/>
|
|
|
+<table>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>data</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.FakeProviderData">
|
|
|
+[]FakeProviderData
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>validationResult</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.ValidationResult">
|
|
|
+ValidationResult
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</table>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.FakeProviderData">FakeProviderData
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+(<em>Appears on:</em>
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.FakeProviderSpec">FakeProviderSpec</a>)
|
|
|
+</p>
|
|
|
+<p>
|
|
|
+<p>FakeProviderData defines a key-value pair with optional version.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>key</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>Key is the secret key.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>value</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>Value is the secret value.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>version</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Version is an optional version identifier.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.FakeProviderSpec">FakeProviderSpec
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+<p>FakeProviderSpec defines the desired state of Fake provider.
|
|
|
+It matches the structure of v1.FakeProvider for easy conversion.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>data</code></br>
|
|
|
+<em>
|
|
|
+<a href="#provider.external-secrets.io/v2alpha1.FakeProviderData">
|
|
|
+[]FakeProviderData
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<p>Data defines the static key-value pairs to return.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>validationResult</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>ValidationResult optionally specifies the validation result for testing.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<h3 id="provider.external-secrets.io/v2alpha1.Kubernetes">Kubernetes
|
|
|
+</h3>
|
|
|
+<p>
|
|
|
+<p>Kubernetes defines the configuration for the Kubernetes Secret provider.
|
|
|
+This provider fetches secrets from Kubernetes Secrets in the same cluster.
|
|
|
+It’s primarily useful for testing and migration scenarios.</p>
|
|
|
+</p>
|
|
|
+<table>
|
|
|
+<thead>
|
|
|
+<tr>
|
|
|
+<th>Field</th>
|
|
|
+<th>Description</th>
|
|
|
+</tr>
|
|
|
+</thead>
|
|
|
+<tbody>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>metadata</code></br>
|
|
|
+<em>
|
|
|
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.25/#objectmeta-v1-meta">
|
|
|
+Kubernetes meta/v1.ObjectMeta
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+Refer to the Kubernetes API documentation for the fields of the
|
|
|
+<code>metadata</code> field.
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>spec</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.KubernetesProvider">
|
|
|
+KubernetesProvider
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<br/>
|
|
|
+<br/>
|
|
|
+<table>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>server</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.KubernetesServer">
|
|
|
+KubernetesServer
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>configures the Kubernetes server Address.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>auth</code></br>
|
|
|
+<em>
|
|
|
+<a href="#external-secrets.io/v1.KubernetesAuth">
|
|
|
+KubernetesAuth
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Auth configures how secret-manager authenticates with a Kubernetes instance.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>authRef</code></br>
|
|
|
+<em>
|
|
|
+<a href="https://pkg.go.dev/github.com/external-secrets/external-secrets/apis/meta/v1#SecretKeySelector">
|
|
|
+External Secrets meta/v1.SecretKeySelector
|
|
|
+</a>
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>A reference to a secret that contains the auth information.</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+<tr>
|
|
|
+<td>
|
|
|
+<code>remoteNamespace</code></br>
|
|
|
+<em>
|
|
|
+string
|
|
|
+</em>
|
|
|
+</td>
|
|
|
+<td>
|
|
|
+<em>(Optional)</em>
|
|
|
+<p>Remote namespace to fetch the secrets from</p>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</table>
|
|
|
+</td>
|
|
|
+</tr>
|
|
|
+</tbody>
|
|
|
+</table>
|
|
|
+<hr/>
|
|
|
<p><em>
|
|
|
Generated with <code>gen-crd-api-reference-docs</code>.
|
|
|
</em></p>
|
Moritz Johner