apiVersion: v1 kind: Namespace metadata: name: eksa-system --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: awsdatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: AWSDatacenterConfig listKind: AWSDatacenterConfigList plural: awsdatacenterconfigs singular: awsdatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: AWSDatacenterConfig is the Schema for the AWSDatacenterConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: AWSDatacenterConfigSpec defines the desired state of AWSDatacenterConfig. properties: amiID: type: string region: type: string required: - amiID - region type: object status: description: AWSDatacenterConfigStatus defines the observed state of AWSDatacenterConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: awsiamconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: AWSIamConfig listKind: AWSIamConfigList plural: awsiamconfigs singular: awsiamconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: AWSIamConfig is the Schema for the awsiamconfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: AWSIamConfigSpec defines the desired state of AWSIamConfig. properties: awsRegion: description: AWSRegion defines a region in an AWS partition type: string backendMode: description: |- BackendMode defines multiple backends for aws-iam-authenticator server The server searches for mappings in order items: type: string type: array mapRoles: items: description: MapRoles defines IAM role to a username and set of groups mapping using EKSConfigMap BackendMode. properties: groups: items: type: string type: array roleARN: type: string username: type: string required: - roleARN - username type: object type: array mapUsers: items: description: MapUsers defines IAM role to a username and set of groups mapping using EKSConfigMap BackendMode. properties: groups: items: type: string type: array userARN: type: string username: type: string required: - userARN - username type: object type: array partition: default: aws description: Partition defines the AWS partition on which the IAM roles exist type: string required: - awsRegion - backendMode type: object status: description: AWSIamConfigStatus defines the observed state of AWSIamConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.8.0 creationTimestamp: null name: bundles.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: Bundles listKind: BundlesList plural: bundles singular: bundles scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: Bundles is the Schema for the bundles API. properties: apiVersion: description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: description: BundlesSpec defines the desired state of Bundles. properties: cliMaxVersion: type: string cliMinVersion: type: string number: description: Monotonically increasing release number type: integer versionsBundles: items: properties: aws: description: This field has been deprecated properties: clusterTemplate: properties: uri: description: URI points to the manifest yaml file type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - clusterTemplate - components - controller - kubeProxy - metadata - version type: object bootstrap: properties: components: properties: uri: description: URI points to the manifest yaml file type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - components - controller - kubeProxy - metadata - version type: object bottlerocketHostContainers: properties: admin: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object control: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeadmBootstrap: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - admin - control - kubeadmBootstrap type: object certManager: properties: acmesolver: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object cainjector: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object ctl: description: This field has been deprecated properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object manifest: properties: uri: description: URI points to the manifest yaml file type: string type: object startupapicheck: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object version: type: string webhook: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - acmesolver - cainjector - controller - manifest - startupapicheck - webhook type: object cilium: properties: cilium: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object helmChart: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object manifest: properties: uri: description: URI points to the manifest yaml file type: string type: object operator: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object version: type: string required: - cilium - manifest - operator type: object cloudStack: properties: clusterAPIController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object kubeRbacProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeVip: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - clusterAPIController - components - kubeRbacProxy - kubeVip - metadata - version type: object clusterAPI: properties: components: properties: uri: description: URI points to the manifest yaml file type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - components - controller - kubeProxy - metadata - version type: object controlPlane: properties: components: properties: uri: description: URI points to the manifest yaml file type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - components - controller - kubeProxy - metadata - version type: object docker: properties: clusterTemplate: properties: uri: description: URI points to the manifest yaml file type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object manager: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - clusterTemplate - components - kubeProxy - manager - metadata - version type: object eksD: properties: ami: description: Ami points to a collection of AMIs built with this eks-d version properties: bottlerocket: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object type: object channel: description: Release branch of the EKS-D release like 1-19, 1-20 type: string components: description: Components refers to the url that points to the EKS-D release CRD type: string containerd: description: Containerd points to the containerd binary baked into this eks-D based node image properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object crictl: description: Crictl points to the crictl binary/tarball built for this eks-d kube version properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object etcdadm: description: Etcdadm points to the etcdadm binary/tarball built for this eks-d kube version properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object gitCommit: description: Git commit the component is built from, before any patches type: string imagebuilder: description: ImageBuilder points to the image-builder binary used to build eks-D based node images properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object kindNode: description: KindNode points to a kind image built with this eks-d version properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeVersion: description: Release number of EKS-D release type: string manifestUrl: description: Url pointing to the EKS-D release manifest using which assets where created type: string name: type: string ova: description: Ova points to a collection of OVAs built with this eks-d version properties: bottlerocket: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object type: object raw: description: Raw points to a collection of Raw images built with this eks-d version properties: bottlerocket: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object type: object type: object eksa: properties: cliTools: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object clusterController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object diagnosticCollector: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object version: type: string required: - cliTools - clusterController - components - diagnosticCollector type: object endOfStandardSupport: type: string etcdadmBootstrap: properties: components: properties: uri: description: URI points to the manifest yaml file type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - components - controller - kubeProxy - metadata - version type: object etcdadmController: properties: components: properties: uri: description: URI points to the manifest yaml file type: string type: object controller: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - components - controller - kubeProxy - metadata - version type: object flux: properties: helmController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kustomizeController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object notificationController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object sourceController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object version: type: string required: - helmController - kustomizeController - notificationController - sourceController type: object haproxy: properties: image: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - image type: object kindnetd: properties: manifest: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - manifest type: object kubeVersion: type: string nutanix: properties: cloudProvider: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object clusterAPIController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object clusterTemplate: properties: uri: description: URI points to the manifest yaml file type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object kubeVip: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - clusterAPIController - clusterTemplate - components - kubeVip - metadata - version type: object packageController: properties: credentialProviderPackage: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object helmChart: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object packageController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tokenRefresher: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object version: type: string required: - packageController - tokenRefresher type: object snow: properties: bottlerocketBootstrapSnow: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object kubeVip: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object manager: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object version: type: string required: - bottlerocketBootstrapSnow - components - kubeVip - manager - metadata - version type: object tinkerbell: properties: clusterAPIController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object clusterTemplate: properties: uri: description: URI points to the manifest yaml file type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object envoy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeVip: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object tinkerbellStack: properties: actions: description: Tinkerbell Template Actions. properties: cexec: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object imageToDisk: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kexec: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object ociToDisk: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object reboot: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object writeFile: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - cexec - imageToDisk - kexec - ociToDisk - reboot - writeFile type: object boots: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object hegel: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object hook: description: Tinkerbell hook OS. properties: bootkit: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object docker: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object initramfs: properties: amd: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object arm: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object required: - amd - arm type: object iso: description: HookArch defines the Tinkerbell hook architecture-specific artifacts. properties: amd: description: Archive represents an archive asset (e.g. tarball) along with its OS/architecture metadata, and checksums for file integrity. properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object arm: description: Archive represents an archive asset (e.g. tarball) along with its OS/architecture metadata, and checksums for file integrity. properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object required: - amd - arm type: object kernel: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object vmlinuz: properties: amd: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object arm: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string sha256: description: The sha256 of the asset, only applies for 'file' store type: string sha512: description: The sha512 of the asset, only applies for 'file' store type: string uri: description: The URI where the asset is located type: string type: object required: - amd - arm type: object required: - bootkit - docker - initramfs - iso - kernel - vmlinuz type: object rufio: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object stack: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tink: properties: nginx: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tinkController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tinkRelay: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tinkRelayInit: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tinkServer: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tinkWorker: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - nginx - tinkController - tinkRelay - tinkRelayInit - tinkServer - tinkWorker type: object tinkerbellChart: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object tinkerbellCrds: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - actions - boots - hegel - hook - rufio - stack - tink - tinkerbellChart - tinkerbellCrds type: object version: type: string required: - clusterAPIController - clusterTemplate - components - envoy - kubeVip - metadata - version type: object upgrader: description: UpgraderBundle is a In-place Kubernetes version upgrader bundle. properties: upgrader: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object required: - upgrader type: object vSphere: properties: clusterAPIController: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object clusterTemplate: properties: uri: description: URI points to the manifest yaml file type: string type: object components: properties: uri: description: URI points to the manifest yaml file type: string type: object driver: description: This field has been deprecated properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeProxy: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object kubeVip: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object manager: properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object metadata: properties: uri: description: URI points to the manifest yaml file type: string type: object syncer: description: This field has been deprecated properties: arch: description: Architectures of the asset items: type: string type: array description: type: string imageDigest: description: The SHA256 digest of the image manifest type: string name: description: The asset name type: string os: description: Operating system of the asset enum: - linux - darwin - windows type: string osName: description: Name of the OS like ubuntu, bottlerocket type: string uri: description: The image repository, name, and tag type: string type: object version: type: string required: - clusterAPIController - clusterTemplate - components - kubeProxy - kubeVip - manager - metadata - version type: object required: - bootstrap - bottlerocketHostContainers - certManager - cilium - clusterAPI - controlPlane - docker - eksD - eksa - etcdadmBootstrap - etcdadmController - flux - kindnetd - kubeVersion - packageController - vSphere type: object type: array required: - cliMaxVersion - cliMinVersion - number - versionsBundles type: object status: description: BundlesStatus defines the observed state of Bundles. type: object type: object served: true storage: true subresources: status: {} status: acceptedNames: kind: "" plural: "" conditions: [] storedVersions: [] --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: cloudstackdatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: CloudStackDatacenterConfig listKind: CloudStackDatacenterConfigList plural: cloudstackdatacenterconfigs singular: cloudstackdatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: CloudStackDatacenterConfig is the Schema for the cloudstackdatacenterconfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: CloudStackDatacenterConfigSpec defines the desired state of CloudStackDatacenterConfig. properties: account: description: |- Account typically represents a customer of the service provider or a department in a large organization. Multiple users can exist in an account, and all CloudStack resources belong to an account. Accounts have users and users have credentials to operate on resources within that account. If an account name is provided, a domain must also be provided. Deprecated: Please use AvailabilityZones instead type: string availabilityZones: description: AvailabilityZones list of different partitions to distribute VMs across - corresponds to a list of CAPI failure domains items: description: CloudStackAvailabilityZone maps to a CAPI failure domain to distribute machines across Cloudstack infrastructure. properties: account: description: Account typically represents a customer of the service provider or a department in a large organization. Multiple users can exist in an account, and all CloudStack resources belong to an account. Accounts have users and users have credentials to operate on resources within that account. If an account name is provided, a domain must also be provided. type: string credentialsRef: description: CredentialRef is used to reference a secret in the eksa-system namespace type: string domain: description: |- Domain contains a grouping of accounts. Domains usually contain multiple accounts that have some logical relationship to each other and a set of delegated administrators with some authority over the domain and its subdomains This field is considered as a fully qualified domain name which is the same as the domain path without "ROOT/" prefix. For example, if "foo" is specified then a domain with "ROOT/foo" domain path is picked. The value "ROOT" is a special case that points to "the" ROOT domain of the CloudStack. That is, a domain with a path "ROOT/ROOT" is not allowed. type: string managementApiEndpoint: description: CloudStack Management API endpoint's IP. It is added to VM's noproxy list type: string name: description: Name is used as a unique identifier for each availability zone type: string zone: description: Zone represents the properties of the CloudStack zone in which clusters should be created, like the network. properties: id: description: Zone is the name or UUID of the CloudStack zone in which clusters should be created. Zones should be managed by a single CloudStack Management endpoint. type: string name: type: string network: description: |- Network is the name or UUID of the CloudStack network in which clusters should be created. It can either be an isolated or shared network. If it doesn’t already exist in CloudStack, it’ll automatically be created by CAPC as an isolated network. It can either be specified as a UUID or name In multiple-zones situation, only 'Shared' network is supported. properties: id: description: Id of a resource in the CloudStack environment. Mutually exclusive with Name type: string name: description: Name of a resource in the CloudStack environment. Mutually exclusive with Id type: string type: object required: - network type: object required: - credentialsRef - domain - managementApiEndpoint - name - zone type: object type: array domain: description: |- Domain contains a grouping of accounts. Domains usually contain multiple accounts that have some logical relationship to each other and a set of delegated administrators with some authority over the domain and its subdomains This field is considered as a fully qualified domain name which is the same as the domain path without "ROOT/" prefix. For example, if "foo" is specified then a domain with "ROOT/foo" domain path is picked. The value "ROOT" is a special case that points to "the" ROOT domain of the CloudStack. That is, a domain with a path "ROOT/ROOT" is not allowed. Deprecated: Please use AvailabilityZones instead type: string managementApiEndpoint: description: |- CloudStack Management API endpoint's IP. It is added to VM's noproxy list Deprecated: Please use AvailabilityZones instead type: string zones: description: |- Zones is a list of one or more zones that are managed by a single CloudStack management endpoint. Deprecated: Please use AvailabilityZones instead items: description: CloudStackZone is an organizational construct typically used to represent a single datacenter, and all its physical and virtual resources exist inside that zone. It can either be specified as a UUID or name. properties: id: description: Zone is the name or UUID of the CloudStack zone in which clusters should be created. Zones should be managed by a single CloudStack Management endpoint. type: string name: type: string network: description: |- Network is the name or UUID of the CloudStack network in which clusters should be created. It can either be an isolated or shared network. If it doesn’t already exist in CloudStack, it’ll automatically be created by CAPC as an isolated network. It can either be specified as a UUID or name In multiple-zones situation, only 'Shared' network is supported. properties: id: description: Id of a resource in the CloudStack environment. Mutually exclusive with Name type: string name: description: Name of a resource in the CloudStack environment. Mutually exclusive with Id type: string type: object required: - network type: object type: array type: object status: description: CloudStackDatacenterConfigStatus defines the observed state of CloudStackDatacenterConfig. properties: failureMessage: description: |- FailureMessage indicates that there is a fatal problem reconciling the state, and will be set to a descriptive error message. type: string observedGeneration: description: ObservedGeneration is the latest generation observed by the controller. format: int64 type: integer specValid: description: SpecValid is set to true if cloudstackdatacenterconfig is validated. type: boolean type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: cloudstackmachineconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: CloudStackMachineConfig listKind: CloudStackMachineConfigList plural: cloudstackmachineconfigs singular: cloudstackmachineconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: CloudStackMachineConfig is the Schema for the cloudstackmachineconfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: CloudStackMachineConfigSpec defines the desired state of CloudStackMachineConfig. properties: affinity: description: |- Defaults to `no`. Can be `pro` or `anti`. If set to `pro` or `anti`, will create an affinity group per machine set of the corresponding type type: string affinityGroupIds: description: |- AffinityGroupIds allows users to pass in a list of UUIDs for previously-created Affinity Groups. Any VM’s created with this spec will be added to the affinity group, which will dictate which physical host(s) they can be placed on. Affinity groups can be type “affinity” or “anti-affinity” in CloudStack. If they are type “anti-affinity”, all VM’s in the group must be on separate physical hosts for high availability. If they are type “affinity”, all VM’s in the group must be on the same physical host for improved performance items: type: string type: array computeOffering: description: |- ComputeOffering refers to a compute offering which has been previously registered in CloudStack. It represents a VM’s instance size including number of CPU’s, memory, and CPU speed. It can either be specified as a UUID or name properties: id: description: Id of a resource in the CloudStack environment. Mutually exclusive with Name type: string name: description: Name of a resource in the CloudStack environment. Mutually exclusive with Id type: string type: object diskOffering: description: |- DiskOffering refers to a disk offering which has been previously registered in CloudStack. It represents a disk offering with pre-defined size or custom specified disk size. It can either be specified as a UUID or name properties: customSizeInGB: description: disk size in GB, > 0 for customized disk offering; = 0 for non-customized disk offering format: int64 type: integer device: description: device name of the disk offering in VM, shows up in lsblk command type: string filesystem: description: filesystem used to mkfs in disk offering partition type: string id: description: Id of a resource in the CloudStack environment. Mutually exclusive with Name type: string label: description: disk label used to label disk partition type: string mountPath: description: path the filesystem will use to mount in VM type: string name: description: Name of a resource in the CloudStack environment. Mutually exclusive with Id type: string required: - device - filesystem - label - mountPath type: object symlinks: additionalProperties: type: string description: Symlinks create soft symbolic links folders. One use case is to use data disk to store logs type: object template: description: |- Template refers to a VM image template which has been previously registered in CloudStack. It can either be specified as a UUID or name. When using a template name it must include the Kubernetes version(s). For example, a template used for Kubernetes 1.27 could be ubuntu-2204-1.27. properties: id: description: Id of a resource in the CloudStack environment. Mutually exclusive with Name type: string name: description: Name of a resource in the CloudStack environment. Mutually exclusive with Id type: string type: object userCustomDetails: additionalProperties: type: string description: |- UserCustomDetails allows users to pass in non-standard key value inputs, outside those defined [here](https://github.com/shapeblue/cloudstack/blob/main/api/src/main/java/com/cloud/vm/VmDetailConstants.java) type: object users: description: |- Users consists of an array of objects containing the username, as well as a list of their public keys. These users will be authorized to ssh into the machines items: description: UserConfiguration defines the configuration of the user to be added to the VM. properties: name: type: string sshAuthorizedKeys: items: type: string type: array required: - name - sshAuthorizedKeys type: object type: array required: - computeOffering - template type: object status: description: CloudStackMachineConfigStatus defines the observed state of CloudStackMachineConfig. properties: failureMessage: description: |- FailureMessage indicates that there is a fatal problem reconciling the state, and will be set to a descriptive error message. type: string specValid: description: SpecValid is set to true if cloudstackmachineconfig is validated. type: boolean type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: cert-manager.io/inject-ca-from: eksa-system/eksa-serving-cert controller-gen.kubebuilder.io/version: v0.17.2 name: clusters.anywhere.eks.amazonaws.com spec: conversion: strategy: Webhook webhook: clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /convert conversionReviewVersions: - v1 - v1beta1 group: anywhere.eks.amazonaws.com names: kind: Cluster listKind: ClusterList plural: clusters singular: cluster scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: Cluster is the Schema for the clusters API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: ClusterSpec defines the desired state of Cluster. properties: bundlesRef: description: |- BundlesRef contains a reference to the Bundles containing the desired dependencies for the cluster. DEPRECATED: Use EksaVersion instead. properties: apiVersion: description: APIVersion refers to the Bundles APIVersion type: string name: description: Name refers to the name of the Bundles object in the cluster type: string namespace: description: Namespace refers to the Bundles's namespace type: string required: - apiVersion - name - namespace type: object clusterNetwork: properties: cni: description: Deprecated. Use CNIConfig type: string cniConfig: description: CNIConfig specifies the CNI plugin to be installed in the cluster properties: cilium: description: CiliumConfig contains configuration specific to the Cilium CNI. properties: egressMasqueradeInterfaces: description: EgressMasquaradeInterfaces determines which network interfaces are used for masquerading. Accepted values are a valid interface name or interface prefix. type: string ipv4NativeRoutingCIDR: description: |- IPv4NativeRoutingCIDR specifies the CIDR to use when RoutingMode is set to direct. When specified, Cilium assumes networking for this CIDR is preconfigured and hands traffic destined for that range to the Linux network stack without applying any SNAT. If this is not set autoDirectNodeRoutes will be set to true type: string ipv6NativeRoutingCIDR: description: |- IPv6NativeRoutingCIDR specifies the IPv6 CIDR to use when RoutingMode is set to direct. When specified, Cilium assumes networking for this CIDR is preconfigured and hands traffic destined for that range to the Linux network stack without applying any SNAT. If this is not set autoDirectNodeRoutes will be set to true type: string policyEnforcementMode: description: PolicyEnforcementMode determines communication allowed between pods. Accepted values are default, always, never. type: string routingMode: description: |- RoutingMode indicates the routing tunnel mode to use for Cilium. Accepted values are overlay (geneve tunnel with overlay) or direct (tunneling disabled with direct routing) Defaults to overlay. type: string skipUpgrade: description: |- SkipUpgrade indicicates that Cilium maintenance should be skipped during upgrades. This can be used when operators wish to self manage the Cilium installation. type: boolean type: object kindnetd: description: KindnetdConfig contains configuration specific to the Kindnetd CNI. type: object type: object dns: properties: resolvConf: description: ResolvConf refers to the DNS resolver configuration properties: path: description: Path defines the path to the file that contains the DNS resolver configuration type: string type: object type: object nodes: properties: cidrMaskSize: description: CIDRMaskSize defines the mask size for node cidr in the cluster, default for ipv4 is 24. This is an optional field type: integer type: object pods: description: |- Comma-separated list of CIDR blocks to use for pod and service subnets. Defaults to 192.168.0.0/16 for pod subnet. properties: cidrBlocks: items: type: string type: array type: object services: properties: cidrBlocks: items: type: string type: array type: object type: object controlPlaneConfiguration: properties: apiServerExtraArgs: additionalProperties: type: string description: APIServerExtraArgs defines the flags to configure for the API server. type: object certSans: description: |- CertSANs is a slice of domain names or IPs to be added as Subject Name Alternatives of the Kube API Servers Certificate. items: type: string type: array count: description: Count defines the number of desired control plane nodes. Defaults to 1. type: integer endpoint: description: Endpoint defines the host ip and port to use for the control plane. properties: host: description: Host defines the ip that you want to use to connect to the control plane type: string required: - host type: object kubeletConfiguration: description: KubeletConfiguration is a struct that exposes the Kubelet settings for the user to set on control plane nodes. type: object x-kubernetes-preserve-unknown-fields: true labels: additionalProperties: type: string description: Labels define the labels to assign to the node type: object machineGroupRef: description: MachineGroupRef defines the machine group configuration for the control plane. properties: kind: type: string name: type: string type: object machineHealthCheck: description: MachineHealthCheck is a control-plane level override for the timeouts and maxUnhealthy specified in the top-level MHC configuration. If not configured, the defaults in the top-level MHC configuration are used. properties: maxUnhealthy: anyOf: - type: integer - type: string description: MaxUnhealthy is used to configure the maximum number of unhealthy machines in machine health checks. This setting applies to both control plane and worker machines. If the number of unhealthy machines exceeds the limit set by maxUnhealthy, further remediation will not be performed. If not configured, the default value is set to "100%" for controlplane machines and "40%" for worker machines. x-kubernetes-int-or-string: true nodeStartupTimeout: description: NodeStartupTimeout is used to configure the node startup timeout in machine health checks. It determines how long a MachineHealthCheck should wait for a Node to join the cluster, before considering a Machine unhealthy. If not configured, the default value is set to "10m0s" (10 minutes) for all providers. For Tinkerbell provider the default is "20m0s". type: string unhealthyMachineTimeout: description: UnhealthyMachineTimeout is used to configure the unhealthy machine timeout in machine health checks. If any unhealthy conditions are met for the amount of time specified as the timeout, the machines are considered unhealthy. If not configured, the default value is set to "5m0s" (5 minutes). type: string type: object skipLoadBalancerDeployment: description: |- SkipLoadBalancerDeployment skip deploying control plane load balancer. Make sure your infrastructure can handle control plane load balancing when you set this field to true. type: boolean taints: description: Taints define the set of taints to be applied on control plane nodes items: description: |- The node this Taint is attached to has the "effect" on any pod that does not tolerate the Taint. properties: effect: description: |- Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute. type: string key: description: Required. The taint key to be applied to a node. type: string timeAdded: description: |- TimeAdded represents the time at which the taint was added. It is only written for NoExecute taints. format: date-time type: string value: description: The taint value corresponding to the taint key. type: string required: - effect - key type: object type: array upgradeRolloutStrategy: description: |- UpgradeRolloutStrategy determines the rollout strategy to use for rolling upgrades and related parameters/knobs properties: rollingUpdate: description: ControlPlaneRollingUpdateParams is API for rolling update strategy knobs. properties: maxSurge: type: integer required: - maxSurge type: object type: description: UpgradeRolloutStrategyType defines the types of upgrade rollout strategies. type: string type: object type: object datacenterRef: properties: kind: type: string name: type: string type: object eksaVersion: description: EksaVersion is the semver identifying the release of eks-a used to populate the cluster components. type: string etcdEncryption: items: description: EtcdEncryption defines the configuration for ETCD encryption. properties: providers: items: description: |- EtcdEncryptionProvider defines the configuration for ETCD encryption providers. Currently only KMS provider is supported. properties: kms: description: KMS defines the configuration for KMS Encryption provider. properties: cachesize: description: |- CacheSize defines the maximum number of encrypted objects to be cached in memory. The default value is 1000. You can set this to a negative value to disable caching. format: int32 type: integer name: description: Name defines the name of KMS plugin to be used. type: string socketListenAddress: description: SocketListenAddress defines a UNIX socket address that the KMS provider listens on. type: string timeout: description: Timeout for kube-apiserver to wait for KMS plugin. Default is 3s. type: string required: - name - socketListenAddress type: object required: - kms type: object type: array resources: description: Resources defines a list of objects and custom resources definitions that should be encrypted. items: type: string type: array required: - providers - resources type: object type: array externalEtcdConfiguration: description: ExternalEtcdConfiguration defines the configuration options for using unstacked etcd topology. properties: count: type: integer machineGroupRef: description: MachineGroupRef defines the machine group configuration for the etcd machines. properties: kind: type: string name: type: string type: object type: object gitOpsRef: properties: kind: type: string name: type: string type: object identityProviderRefs: items: properties: kind: type: string name: type: string type: object type: array kubernetesVersion: type: string licenseToken: type: string machineHealthCheck: description: |- MachineHealthCheck allows to configure timeouts for machine health checks. Machine Health Checks are responsible for remediating unhealthy Machines. Configuring these values will decide how long to wait to remediate unhealthy machine or determine health of nodes' machines. properties: maxUnhealthy: anyOf: - type: integer - type: string description: MaxUnhealthy is used to configure the maximum number of unhealthy machines in machine health checks. This setting applies to both control plane and worker machines. If the number of unhealthy machines exceeds the limit set by maxUnhealthy, further remediation will not be performed. If not configured, the default value is set to "100%" for controlplane machines and "40%" for worker machines. x-kubernetes-int-or-string: true nodeStartupTimeout: description: NodeStartupTimeout is used to configure the node startup timeout in machine health checks. It determines how long a MachineHealthCheck should wait for a Node to join the cluster, before considering a Machine unhealthy. If not configured, the default value is set to "10m0s" (10 minutes) for all providers. For Tinkerbell provider the default is "20m0s". type: string unhealthyMachineTimeout: description: UnhealthyMachineTimeout is used to configure the unhealthy machine timeout in machine health checks. If any unhealthy conditions are met for the amount of time specified as the timeout, the machines are considered unhealthy. If not configured, the default value is set to "5m0s" (5 minutes). type: string type: object managementCluster: properties: name: type: string type: object packages: description: PackageConfiguration for installing EKS Anywhere curated packages. properties: controller: description: Controller package controller configuration properties: digest: description: Digest package controller digest type: string disableWebhooks: description: DisableWebhooks on package controller type: boolean env: description: Env of package controller in the format `key=value` items: type: string type: array repository: description: Repository package controller repository type: string resources: description: Resources of package controller properties: limits: description: ImageResource resources for container image. properties: cpu: description: CPU image cpu type: string memory: description: Memory image memory type: string type: object requests: description: Requests for image resources properties: cpu: description: CPU image cpu type: string memory: description: Memory image memory type: string type: object type: object tag: description: Tag package controller tag type: string type: object cronjob: description: Cronjob for ecr token refresher properties: digest: description: Digest ecr token refresher digest type: string disable: description: Disable on cron job type: boolean repository: description: Repository ecr token refresher repository type: string tag: description: Tag ecr token refresher tag type: string type: object disable: description: Disable package controller on cluster type: boolean type: object podIamConfig: properties: serviceAccountIssuer: type: string required: - serviceAccountIssuer type: object proxyConfiguration: properties: httpProxy: type: string httpsProxy: type: string noProxy: items: type: string type: array type: object registryMirrorConfiguration: description: RegistryMirrorConfiguration defines the settings for image registry mirror. properties: authenticate: description: Authenticate defines if registry requires authentication type: boolean caCertContent: description: CACertContent defines the contents registry mirror CA certificate type: string endpoint: description: Endpoint defines the registry mirror endpoint to use for pulling images type: string insecureSkipVerify: description: |- InsecureSkipVerify skips the registry certificate verification. Only use this solution for isolated testing or in a tightly controlled, air-gapped environment. type: boolean ociNamespaces: description: |- OCINamespaces defines the mapping from an upstream registry to a local namespace where upstream artifacts are placed into items: description: OCINamespace represents an entity in a local reigstry to group related images. properties: namespace: description: Namespace refers to the name of a namespace in the local registry type: string registry: description: Registry refers to the name of the upstream registry type: string required: - namespace - registry type: object type: array port: description: Port defines the port exposed for registry mirror endpoint type: string type: object workerNodeGroupConfigurations: items: properties: autoscalingConfiguration: description: AutoScalingConfiguration defines the auto scaling configuration properties: maxCount: description: MaxCount defines the maximum number of nodes for the associated resource group. type: integer minCount: description: MinCount defines the minimum number of nodes for the associated resource group. type: integer type: object count: description: Count defines the number of desired worker nodes. Defaults to 1. type: integer failureDomains: description: FailureDomains is the optional list of failure domains to distribute worker nodes across the infrastructure. items: type: string type: array kubeletConfiguration: description: KubeletConfiguration is a struct that exposes the Kubelet settings for the user to set on worker nodes. type: object x-kubernetes-preserve-unknown-fields: true kubernetesVersion: description: KubernetesVersion defines the version for worker nodes. If not set, the top level spec kubernetesVersion will be used. type: string labels: additionalProperties: type: string description: Labels define the labels to assign to the node type: object machineGroupRef: description: MachineGroupRef defines the machine group configuration for the worker nodes. properties: kind: type: string name: type: string type: object machineHealthCheck: description: MachineHealthCheck is a worker node level override for the timeouts and maxUnhealthy specified in the top-level MHC configuration. If not configured, the defaults in the top-level MHC configuration are used. properties: maxUnhealthy: anyOf: - type: integer - type: string description: MaxUnhealthy is used to configure the maximum number of unhealthy machines in machine health checks. This setting applies to both control plane and worker machines. If the number of unhealthy machines exceeds the limit set by maxUnhealthy, further remediation will not be performed. If not configured, the default value is set to "100%" for controlplane machines and "40%" for worker machines. x-kubernetes-int-or-string: true nodeStartupTimeout: description: NodeStartupTimeout is used to configure the node startup timeout in machine health checks. It determines how long a MachineHealthCheck should wait for a Node to join the cluster, before considering a Machine unhealthy. If not configured, the default value is set to "10m0s" (10 minutes) for all providers. For Tinkerbell provider the default is "20m0s". type: string unhealthyMachineTimeout: description: UnhealthyMachineTimeout is used to configure the unhealthy machine timeout in machine health checks. If any unhealthy conditions are met for the amount of time specified as the timeout, the machines are considered unhealthy. If not configured, the default value is set to "5m0s" (5 minutes). type: string type: object name: description: Name refers to the name of the worker node group type: string taints: description: Taints define the set of taints to be applied on worker nodes items: description: |- The node this Taint is attached to has the "effect" on any pod that does not tolerate the Taint. properties: effect: description: |- Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute. type: string key: description: Required. The taint key to be applied to a node. type: string timeAdded: description: |- TimeAdded represents the time at which the taint was added. It is only written for NoExecute taints. format: date-time type: string value: description: The taint value corresponding to the taint key. type: string required: - effect - key type: object type: array upgradeRolloutStrategy: description: |- UpgradeRolloutStrategy determines the rollout strategy to use for rolling upgrades and related parameters/knobs properties: rollingUpdate: description: WorkerNodesRollingUpdateParams is API for rolling update strategy knobs. properties: maxSurge: type: integer maxUnavailable: type: integer required: - maxSurge - maxUnavailable type: object type: description: UpgradeRolloutStrategyType defines the types of upgrade rollout strategies. type: string type: object type: object type: array type: object status: description: ClusterStatus defines the observed state of Cluster. properties: childrenReconciledGeneration: description: |- ChildrenReconciledGeneration represents the sum of the .metadata.generation for all the linked objects for the cluster, observed the last time the cluster was successfully reconciled. NOTE: This field was added for internal use and we do not provide guarantees to its behavior if changed externally. Its meaning and implementation are subject to change in the future. format: int64 type: integer conditions: items: description: Condition defines an observation of a Cluster API resource operational state. properties: lastTransitionTime: description: |- Last time the condition transitioned from one status to another. This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. format: date-time type: string message: description: |- A human readable message indicating details about the transition. This field may be empty. type: string reason: description: |- The reason for the condition's last transition in CamelCase. The specific API may choose whether or not this field is considered a guaranteed API. This field may not be empty. type: string severity: description: |- Severity provides an explicit classification of Reason code, so the users or machines can immediately understand the current situation and act accordingly. The Severity field MUST be set only when Status=False. type: string status: description: Status of the condition, one of True, False, Unknown. type: string type: description: |- Type of condition in CamelCase or in foo.example.com/CamelCase. Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. type: string required: - lastTransitionTime - status - type type: object type: array eksdReleaseRef: description: EksdReleaseRef defines the properties of the EKS-D object on the cluster properties: apiVersion: description: ApiVersion refers to the EKS-D API version type: string kind: description: Kind refers to the Release kind for the EKS-D object type: string name: description: Name refers to the name of the EKS-D object on the cluster type: string namespace: description: Namespace refers to the namespace for the EKS-D release resources type: string required: - apiVersion - kind - name - namespace type: object failureMessage: description: Descriptive message about a fatal problem while reconciling a cluster type: string failureReason: description: |- Machine readable value about a terminal problem while reconciling the cluster set at the same time as failureMessage type: string observedGeneration: description: ObservedGeneration is the latest generation observed by the controller. format: int64 type: integer reconciledGeneration: description: |- ReconciledGeneration represents the .metadata.generation the last time the cluster was successfully reconciled. It is the latest generation observed by the controller. NOTE: This field was added for internal use and we do not provide guarantees to its behavior if changed externally. Its meaning and implementation are subject to change in the future. format: int64 type: integer type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: controlplaneupgrades.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: ControlPlaneUpgrade listKind: ControlPlaneUpgradeList plural: controlplaneupgrades shortNames: - cpu singular: controlplaneupgrade scope: Namespaced versions: - additionalPrinterColumns: - description: KubeadmControlPlane jsonPath: .spec.controlPlane.name name: KubeadmControlPlane type: string - description: Control Plane machines that are already upgraded jsonPath: .status.upgraded name: Upgraded type: string - description: Control Plane machines that still require upgrade jsonPath: .status.requireUpgrade name: PendingUpgrade type: string - description: Denotes whether the upgrade has finished or not jsonPath: .status.ready name: Ready type: string - description: Time duration since creation of Control Plane Upgrade jsonPath: .metadata.creationTimestamp name: Age type: date - description: Requested Kubernetes version jsonPath: .spec.kubernetesVersion name: KubernetesVersion type: string name: v1alpha1 schema: openAPIV3Schema: description: ControlPlaneUpgrade is the Schema for the controlplaneupgrade API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: ControlPlaneUpgradeSpec defines the desired state of ControlPlaneUpgrade. properties: controlPlane: description: ControlPlane is a reference to the KubeadmControlPlane object to upgrade. properties: apiVersion: description: API version of the referent. type: string fieldPath: description: |- If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. type: string kind: description: |- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string name: description: |- Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names type: string namespace: description: |- Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ type: string resourceVersion: description: |- Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency type: string uid: description: |- UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids type: string type: object x-kubernetes-map-type: atomic controlPlaneSpecData: description: |- ControlPlaneSpecData contains base64 encoded KCP spec that's used to update the statuses of CAPI objects once the control plane upgrade is done. This field is needed so that we have a static copy of the control plane spec in case it gets modified after the ControlPlaneUpgrade was created, as ControlPlane is a reference to the object in real time. type: string etcdVersion: description: EtcdVersion refers to the version of ETCD to upgrade to. type: string kubernetesVersion: description: KubernetesVersion refers to the Kubernetes version to upgrade the control planes to. type: string machinesRequireUpgrade: description: MachinesRequireUpgrade is a list of references to CAPI machines that need to be upgraded. items: description: ObjectReference contains enough information to let you inspect or modify the referred object. properties: apiVersion: description: API version of the referent. type: string fieldPath: description: |- If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. type: string kind: description: |- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string name: description: |- Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names type: string namespace: description: |- Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ type: string resourceVersion: description: |- Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency type: string uid: description: |- UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids type: string type: object x-kubernetes-map-type: atomic type: array required: - controlPlane - controlPlaneSpecData - etcdVersion - kubernetesVersion - machinesRequireUpgrade type: object status: description: ControlPlaneUpgradeStatus defines the observed state of ControlPlaneUpgrade. properties: ready: description: Ready denotes that the all control planes have finished upgrading and are ready. type: boolean requireUpgrade: description: RequireUpgrade is the number of machines that still need to be upgraded. format: int64 type: integer upgraded: description: Upgraded is the number of machines that have been upgraded. format: int64 type: integer type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: dockerdatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: DockerDatacenterConfig listKind: DockerDatacenterConfigList plural: dockerdatacenterconfigs singular: dockerdatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: DockerDatacenterConfig is the Schema for the DockerDatacenterConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: DockerDatacenterConfigSpec defines the desired state of DockerDatacenterConfig. type: object status: description: DockerDatacenterConfigStatus defines the observed state of DockerDatacenterConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.8.0 creationTimestamp: null name: eksareleases.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: EKSARelease listKind: EKSAReleaseList plural: eksareleases singular: eksarelease scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: EKSARelease is the mapping between release semver of EKS-A and a Bundles resource on the cluster. properties: apiVersion: description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: description: EKSAReleaseSpec defines the desired state of EKSARelease. properties: bundleManifestUrl: description: Manifest url to parse bundle information from for this EKS-A release type: string bundlesRef: description: Reference to a Bundles resource in the cluster properties: apiVersion: description: APIVersion refers to the Bundles APIVersion type: string name: description: Name refers to the name of the Bundles object in the cluster type: string namespace: description: Namespace refers to the Bundles's namespace type: string required: - apiVersion - name - namespace type: object gitCommit: description: Git commit the component is built from, before any patches type: string releaseDate: description: Date of EKS-A Release type: string version: description: EKS-A release semantic version type: string required: - bundleManifestUrl - bundlesRef - gitCommit - releaseDate - version type: object type: object served: true storage: true subresources: status: {} status: acceptedNames: kind: "" plural: "" conditions: [] storedVersions: [] --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: fluxconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: FluxConfig listKind: FluxConfigList plural: fluxconfigs singular: fluxconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: |- FluxConfig is the Schema for the fluxconfigs API and defines the configurations of the Flux GitOps Toolkit and Git repository it links to. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: FluxConfigSpec defines the desired state of FluxConfig. properties: branch: default: main description: Git branch. Defaults to main. type: string clusterConfigPath: description: ClusterConfigPath relative to the repository root, when specified the cluster sync will be scoped to this path. type: string git: description: Used to specify Git provider that will be used to host the git files properties: repositoryUrl: description: Repository URL for the repository to be used with flux. Can be either an SSH or HTTPS url. type: string sshKeyAlgorithm: description: SSH public key algorithm for the private key specified (rsa, ecdsa, ed25519) (default ecdsa) type: string required: - repositoryUrl type: object github: description: Used to specify Github provider to host the Git repo and host the git files properties: owner: description: Owner is the user or organization name of the Git provider. type: string personal: description: if true, the owner is assumed to be a Git user; otherwise an org. type: boolean repository: description: Repository name. type: string required: - owner - repository type: object systemNamespace: description: SystemNamespace scope for this operation. Defaults to flux-system type: string type: object status: description: FluxConfigStatus defines the observed state of FluxConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: gitopsconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: GitOpsConfig listKind: GitOpsConfigList plural: gitopsconfigs singular: gitopsconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: GitOps defines the configurations of GitOps Toolkit and Git repository it links to. properties: flux: description: Flux defines the Git repository options for Flux v2. properties: github: description: github is the name of the Git Provider to host the Git repo. properties: branch: default: main description: Git branch. Defaults to main. type: string clusterConfigPath: description: ClusterConfigPath relative to the repository root, when specified the cluster sync will be scoped to this path. type: string fluxSystemNamespace: description: FluxSystemNamespace scope for this operation. Defaults to flux-system. type: string owner: description: Owner is the user or organization name of the Git provider. type: string personal: description: if true, the owner is assumed to be a Git user; otherwise an org. type: boolean repository: description: Repository name. type: string required: - owner - repository type: object type: object type: object status: description: GitOpsConfigStatus defines the observed state of GitOpsConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: machinedeploymentupgrades.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: MachineDeploymentUpgrade listKind: MachineDeploymentUpgradeList plural: machinedeploymentupgrades shortNames: - mdu singular: machinedeploymentupgrade scope: Namespaced versions: - additionalPrinterColumns: - description: Machine Deployment jsonPath: .spec.machineDeployment.name name: Machine Deployment type: string - description: Worker machines that are already upgraded jsonPath: .status.upgraded name: Upgraded type: string - description: Worker machines that still require upgrade jsonPath: .status.requireUpgrade name: PendingUpgrade type: string - description: Denotes whether the upgrade has finished or not jsonPath: .status.ready name: Ready type: string - description: Time duration since creation of Control Plane Upgrade jsonPath: .metadata.creationTimestamp name: Age type: date - description: Requested Kubernetes version jsonPath: .spec.kubernetesVersion name: KubernetesVersion type: string name: v1alpha1 schema: openAPIV3Schema: description: MachineDeploymentUpgrade is the Schema for the machinedeploymentupgrades API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: MachineDeploymentUpgradeSpec defines the desired state of MachineDeploymentUpgrade. properties: kubernetesVersion: description: KubernetesVersion refers to the Kubernetes version to upgrade the control planes to. type: string machineDeployment: description: MachineDeployment is a reference to the KubeadmControlPlane object to upgrade. properties: apiVersion: description: API version of the referent. type: string fieldPath: description: |- If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. type: string kind: description: |- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string name: description: |- Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names type: string namespace: description: |- Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ type: string resourceVersion: description: |- Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency type: string uid: description: |- UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids type: string type: object x-kubernetes-map-type: atomic machineSpecData: description: MachineSpecData is a base64 encoded json string value of the machineDeplopyment.Spec.Template.Spec field that's specification of the desired behavior of the machine. type: string machinesRequireUpgrade: description: MachinesRequireUpgrade is a list of references to CAPI machines that need to be upgraded. items: description: ObjectReference contains enough information to let you inspect or modify the referred object. properties: apiVersion: description: API version of the referent. type: string fieldPath: description: |- If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. type: string kind: description: |- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string name: description: |- Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names type: string namespace: description: |- Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ type: string resourceVersion: description: |- Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency type: string uid: description: |- UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids type: string type: object x-kubernetes-map-type: atomic type: array required: - kubernetesVersion - machineDeployment - machineSpecData - machinesRequireUpgrade type: object status: description: MachineDeploymentUpgradeStatus defines the observed state of MachineDeploymentUpgrade. properties: ready: description: Ready denotes that the all machines in the MachineDeployment have finished upgrading and are ready. type: boolean requireUpgrade: description: RequireUpgrade is the number of machines in the MachineDeployment that still need to be upgraded. format: int64 type: integer upgraded: description: Upgraded is the number of machines in the MachineDeployment that have been upgraded. format: int64 type: integer type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: nodeupgrades.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: NodeUpgrade listKind: NodeUpgradeList plural: nodeupgrades shortNames: - nu singular: nodeupgrade scope: Namespaced versions: - additionalPrinterColumns: - description: Machine jsonPath: .spec.machine.name name: Machine type: string - description: Denotes whether the upgrade has finished or not jsonPath: .status.completed name: Ready type: string - description: Time duration since creation of Control Plane Upgrade jsonPath: .metadata.creationTimestamp name: Age type: date - description: Requested Kubernetes version jsonPath: .spec.kubernetesVersion name: KubernetesVersion type: string name: v1alpha1 schema: openAPIV3Schema: description: NodeUpgrade is the Schema for the nodeupgrades API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: NodeUpgradeSpec defines the desired state of NodeUpgrade. properties: etcdVersion: description: |- EtcdVersion refers to the version of ETCD to upgrade to. This field is optional and only gets used for control plane nodes. type: string firstNodeToBeUpgraded: description: |- FirstNodeToBeUpgraded signifies that the Node is the first node to be upgraded. This flag is only valid for control plane nodes and ignored for worker nodes. type: boolean kubernetesVersion: description: KubernetesVersion refers to the Kubernetes version to upgrade the node to. type: string machine: description: Machine is a reference to the CAPI Machine that needs to be upgraded. properties: apiVersion: description: API version of the referent. type: string fieldPath: description: |- If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. type: string kind: description: |- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string name: description: |- Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names type: string namespace: description: |- Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ type: string resourceVersion: description: |- Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency type: string uid: description: |- UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids type: string type: object x-kubernetes-map-type: atomic required: - kubernetesVersion - machine type: object status: description: NodeUpgradeStatus defines the observed state of NodeUpgrade. properties: completed: description: |- Completed denotes that the upgrader has completed running all the operations and the node is successfully upgraded. type: boolean conditions: description: |- Conditions defines current state of the NodeUpgrade, including the state of init containers, that facilitate the upgrade. items: description: Condition defines an observation of a Cluster API resource operational state. properties: lastTransitionTime: description: |- Last time the condition transitioned from one status to another. This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. format: date-time type: string message: description: |- A human readable message indicating details about the transition. This field may be empty. type: string reason: description: |- The reason for the condition's last transition in CamelCase. The specific API may choose whether or not this field is considered a guaranteed API. This field may not be empty. type: string severity: description: |- Severity provides an explicit classification of Reason code, so the users or machines can immediately understand the current situation and act accordingly. The Severity field MUST be set only when Status=False. type: string status: description: Status of the condition, one of True, False, Unknown. type: string type: description: |- Type of condition in CamelCase or in foo.example.com/CamelCase. Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. type: string required: - lastTransitionTime - status - type type: object type: array observedGeneration: description: ObservedGeneration is the latest generation observed by the controller. format: int64 type: integer type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: nutanixdatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: NutanixDatacenterConfig listKind: NutanixDatacenterConfigList plural: nutanixdatacenterconfigs singular: nutanixdatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: NutanixDatacenterConfig is the Schema for the NutanixDatacenterConfigs API properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: NutanixDatacenterConfigSpec defines the desired state of NutanixDatacenterConfig. properties: additionalTrustBundle: description: |- AdditionalTrustBundle is the optional PEM-encoded certificate bundle for users that configured their Prism Central with certificates from non-publicly trusted CAs type: string ccmExcludeNodeIPs: description: |- CcmExcludeIPs is the optional list of IP addresses that should be excluded from the CCM IP pool for nodes. List should be valid IP addresses and IP address ranges. items: type: string type: array credentialRef: description: |- CredentialRef is the reference to the secret name that contains the credentials for the Nutanix Prism Central. The namespace for the secret is assumed to be a constant i.e. eksa-system. properties: kind: type: string name: type: string type: object endpoint: description: Endpoint is the Endpoint of Nutanix Prism Central type: string failureDomains: description: FailureDomains is the optional list of failure domains for the Nutanix Datacenter. items: description: NutanixDatacenterFailureDomain defines the failure domain for the Nutanix Datacenter. properties: cluster: description: Cluster is the Prism Element cluster name or uuid that is connected to the Prism Central. properties: name: description: name is the resource name in the PC type: string type: description: Type is the identifier type to use for this resource. enum: - uuid - name type: string uuid: description: uuid is the UUID of the resource in the PC. type: string required: - type type: object name: description: |- Name is the unique name of the failure domain. Name must be between 1 and 64 characters long. It must consist of only lower case alphanumeric characters and hyphens (-). It must start and end with an alphanumeric character. maxLength: 64 minLength: 1 pattern: ^[a-z0-9]([-a-z0-9]*[a-z0-9])?$ type: string subnets: description: Subnets holds the list of subnets identifiers cluster's network subnets. items: description: NutanixResourceIdentifier holds the identity of a Nutanix Prism resource (cluster, image, subnet, etc.) properties: name: description: name is the resource name in the PC type: string type: description: Type is the identifier type to use for this resource. enum: - uuid - name type: string uuid: description: uuid is the UUID of the resource in the PC. type: string required: - type type: object type: array workerMachineGroups: description: Worker Machine Groups holds the list of worker machine group names that will use this failure domain. items: type: string type: array required: - cluster - name - subnets type: object type: array insecure: description: |- Insecure is the optional flag to skip TLS verification. Nutanix Prism Central installation by default ships with a self-signed certificate that will fail TLS verification because the certificate is not issued by a public CA and does not have the IP SANs with the Prism Central endpoint. To accommodate the scenario where the user has not changed the default Certificate that ships with Prism Central, we allow the user to skip TLS verification. This is not recommended for production use. type: boolean port: description: Port is the Port of Nutanix Prism Central type: integer required: - endpoint - port type: object status: description: NutanixDatacenterConfigStatus defines the observed state of NutanixDatacenterConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: nutanixmachineconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: NutanixMachineConfig listKind: NutanixMachineConfigList plural: nutanixmachineconfigs singular: nutanixmachineconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: NutanixMachineConfig is the Schema for the nutanix machine configs API properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: NutanixMachineConfigSpec defines the desired state of NutanixMachineConfig. properties: additionalCategories: description: |- additionalCategories is a list of optional categories to be added to the VM. Categories must be created in Prism Central before they can be used. items: description: NutanixCategoryIdentifier holds the identity of a Nutanix Prism Central category. properties: key: description: key is the Key of the category in the Prism Central. type: string value: description: value is the category value linked to the key in the Prism Central. type: string required: - key - value type: object type: array cluster: description: |- cluster is to identify the cluster (the Prism Element under management of the Prism Central), in which the Machine's VM will be created. The cluster identifier (uuid or name) can be obtained from the Prism Central console or using the prism_central API. properties: name: description: name is the resource name in the PC type: string type: description: Type is the identifier type to use for this resource. enum: - uuid - name type: string uuid: description: uuid is the UUID of the resource in the PC. type: string required: - type type: object gpus: description: List of GPU devices that should be added to the VMs. items: description: NutanixGPUIdentifier holds VM GPU device configuration. properties: deviceID: description: deviceID is the device ID of the GPU device. format: int64 type: integer name: description: vendorID is the vendor ID of the GPU device. type: string type: description: type is the type of the GPU device. enum: - deviceID - name type: string required: - type type: object type: array image: description: |- image is to identify the OS image uploaded to the Prism Central (PC) The image identifier (uuid or name) can be obtained from the Prism Central console or using the Prism Central API. It must include the Kubernetes version(s). For example, a template used for Kubernetes 1.27 could be ubuntu-2204-1.27. properties: name: description: name is the resource name in the PC type: string type: description: Type is the identifier type to use for this resource. enum: - uuid - name type: string uuid: description: uuid is the UUID of the resource in the PC. type: string required: - type type: object memorySize: anyOf: - type: integer - type: string description: |- memorySize is the memory size (in Quantity format) of the VM The minimum memorySize is 2Gi bytes pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ x-kubernetes-int-or-string: true osFamily: type: string project: description: |- Project is an optional property that specifies the Prism Central project so that machine resources can be linked to it. The project identifier (uuid or name) can be obtained from the Prism Central console or using the Prism Central API. properties: name: description: name is the resource name in the PC type: string type: description: Type is the identifier type to use for this resource. enum: - uuid - name type: string uuid: description: uuid is the UUID of the resource in the PC. type: string required: - type type: object subnet: description: |- subnet is to identify the cluster's network subnet to use for the Machine's VM The cluster identifier (uuid or name) can be obtained from the Prism Central console or using the Prism Central API. properties: name: description: name is the resource name in the PC type: string type: description: Type is the identifier type to use for this resource. enum: - uuid - name type: string uuid: description: uuid is the UUID of the resource in the PC. type: string required: - type type: object systemDiskSize: anyOf: - type: integer - type: string description: |- systemDiskSize is size (in Quantity format) of the system disk of the VM The minimum systemDiskSize is 20Gi bytes pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ x-kubernetes-int-or-string: true users: items: description: UserConfiguration defines the configuration of the user to be added to the VM. properties: name: type: string sshAuthorizedKeys: items: type: string type: array required: - name - sshAuthorizedKeys type: object type: array vcpuSockets: description: vcpuSockets is the number of vCPU sockets of the VM format: int32 minimum: 1 type: integer vcpusPerSocket: description: vcpusPerSocket is the number of vCPUs per socket of the VM format: int32 minimum: 1 type: integer required: - cluster - image - memorySize - osFamily - subnet - systemDiskSize - vcpuSockets - vcpusPerSocket type: object status: description: NutanixMachineConfigStatus defines the observed state of NutanixMachineConfig. properties: addresses: description: |- Addresses contains the Nutanix VM associated addresses. Address type is one of Hostname, ExternalIP, InternalIP, ExternalDNS, InternalDNS items: description: MachineAddress contains information for the node's address. properties: address: description: The machine address. type: string type: description: Machine address type, one of Hostname, ExternalIP, InternalIP, ExternalDNS or InternalDNS. type: string required: - address - type type: object type: array conditions: description: Conditions defines current service state of the NutanixMachine. items: description: Condition defines an observation of a Cluster API resource operational state. properties: lastTransitionTime: description: |- Last time the condition transitioned from one status to another. This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. format: date-time type: string message: description: |- A human readable message indicating details about the transition. This field may be empty. type: string reason: description: |- The reason for the condition's last transition in CamelCase. The specific API may choose whether or not this field is considered a guaranteed API. This field may not be empty. type: string severity: description: |- Severity provides an explicit classification of Reason code, so the users or machines can immediately understand the current situation and act accordingly. The Severity field MUST be set only when Status=False. type: string status: description: Status of the condition, one of True, False, Unknown. type: string type: description: |- Type of condition in CamelCase or in foo.example.com/CamelCase. Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. type: string required: - lastTransitionTime - status - type type: object type: array nodeRef: description: NodeRef is a reference to the corresponding workload cluster Node if it exists. properties: apiVersion: description: API version of the referent. type: string fieldPath: description: |- If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. type: string kind: description: |- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string name: description: |- Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names type: string namespace: description: |- Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ type: string resourceVersion: description: |- Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency type: string uid: description: |- UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids type: string type: object x-kubernetes-map-type: atomic ready: description: Ready is true when the provider resource is ready. type: boolean vmUUID: description: The Nutanix VM's UUID type: string type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: oidcconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: OIDCConfig listKind: OIDCConfigList plural: oidcconfigs singular: oidcconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: OIDCConfig is the Schema for the oidcconfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: OIDCConfigSpec defines the desired state of OIDCConfig. properties: clientId: description: ClientId defines the client ID for the OpenID Connect client type: string groupsClaim: description: GroupsClaim defines the name of a custom OpenID Connect claim for specifying user groups type: string groupsPrefix: description: GroupsPrefix defines a string to be prefixed to all groups to prevent conflicts with other authentication strategies type: string issuerUrl: description: IssuerUrl defines the URL of the OpenID issuer, only HTTPS scheme will be accepted type: string requiredClaims: description: RequiredClaims defines a key=value pair that describes a required claim in the ID Token items: properties: claim: type: string value: type: string type: object type: array usernameClaim: description: UsernameClaim defines the OpenID claim to use as the user name. Note that claims other than the default ('sub') is not guaranteed to be unique and immutable type: string usernamePrefix: description: UsernamePrefix defines a string to prefixed to all usernames. If not provided, username claims other than 'email' are prefixed by the issuer URL to avoid clashes. To skip any prefixing, provide the value '-'. type: string type: object status: description: OIDCConfigStatus defines the observed state of OIDCConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: snowdatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: SnowDatacenterConfig listKind: SnowDatacenterConfigList plural: snowdatacenterconfigs singular: snowdatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: SnowDatacenterConfig is the Schema for the SnowDatacenterConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: SnowDatacenterConfigSpec defines the desired state of SnowDatacenterConfig. properties: identityRef: description: IdentityRef is a reference to an identity for the Snow API to be used when reconciling this cluster properties: kind: type: string name: type: string type: object type: object status: description: SnowDatacenterConfigStatus defines the observed state of SnowDatacenterConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: snowippools.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: SnowIPPool listKind: SnowIPPoolList plural: snowippools singular: snowippool scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: SnowIPPool is the Schema for the SnowIPPools API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: SnowIPPoolSpec defines the desired state of SnowIPPool. properties: pools: description: IPPools defines a list of ip pool for the DNI. items: description: IPPool defines an ip pool with ip range, subnet and gateway. properties: gateway: description: Gateway is the gateway of the subnet for routing purpose. type: string ipEnd: description: IPEnd is the end address of an ip range. type: string ipStart: description: IPStart is the start address of an ip range. type: string subnet: description: Subnet is used to determine whether an ip is within subnet. type: string required: - gateway - ipEnd - ipStart - subnet type: object type: array type: object status: description: SnowIPPoolStatus defines the observed state of SnowIPPool. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: snowmachineconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: SnowMachineConfig listKind: SnowMachineConfigList plural: snowmachineconfigs singular: snowmachineconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: SnowMachineConfig is the Schema for the SnowMachineConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: SnowMachineConfigSpec defines the desired state of SnowMachineConfigSpec. properties: amiID: description: The AMI ID from which to create the machine instance. type: string containersVolume: description: ContainersVolume provides the configuration options for the containers data storage volume. properties: deviceName: description: Device name type: string size: description: |- Size specifies size (in Gi) of the storage device. Must be greater than the image snapshot size or 8 (whichever is greater). format: int64 minimum: 8 type: integer type: description: Type is the type of the volume (sbp1 for capacity-optimized HDD, sbg1 performance-optimized SSD, default is sbp1) enum: - sbp1 - sbg1 type: string required: - size type: object devices: description: Devices contains a device ip list assigned by the user to provision machines. items: type: string type: array hostOSConfiguration: description: HostOSConfiguration provides OS specific configurations for the machine properties: bottlerocketConfiguration: description: |- BottlerocketConfiguration defines the Bottlerocket configuration on the host OS. These settings only take effect when the `osFamily` is bottlerocket. properties: boot: description: Boot defines the boot settings for bottlerocket. properties: bootKernelParameters: additionalProperties: items: type: string type: array type: object type: object kernel: description: Kernel defines the kernel settings for bottlerocket. properties: sysctlSettings: additionalProperties: type: string description: SysctlSettings defines the kernel sysctl settings to set for bottlerocket nodes. type: object type: object kubernetes: description: Kubernetes defines the Kubernetes settings on the host OS. properties: allowedUnsafeSysctls: description: AllowedUnsafeSysctls defines the list of unsafe sysctls that can be set on a node. items: type: string type: array clusterDNSIPs: description: ClusterDNSIPs defines IP addresses of the DNS servers. items: type: string type: array clusterDomain: description: |- ClusterDomain defines the DNS domain for the cluster, allowing all Kubernetes-run containers to search this domain before the host’s search domains type: string containerLogMaxFiles: description: |- ContainerLogMaxFiles specifies the maximum number of container log files that can be present for a container type: integer containerLogMaxSize: description: |- ContainerLogMaxSize is a quantity defining the maximum size of the container log file before it is rotated type: string cpuCFSQuota: description: CPUCFSQuota enables CPU CFS quota enforcement for containers that specify CPU limits type: boolean cpuManagerPolicy: description: CPUManagerPolicy is the name of the policy to use. type: string cpuManagerPolicyOptions: additionalProperties: type: string description: |- CPUManagerPolicyOptions is a set of key=value which allows to set extra options to fine tune the behaviour of the cpu manager policies type: object cpuManagerReconcilePeriod: description: CPUManagerReconcilePeriod is the reconciliation period for the CPU Manager. type: string eventBurst: description: EventBurst is the maximum size of a burst of event creations. type: integer eventRecordQPS: description: EventRecordQPS is the maximum event creations per second. type: integer evictionHard: additionalProperties: type: string description: EvictionHard is a map of signal names to quantities that defines hard eviction thresholds. type: object evictionMaxPodGracePeriod: description: |- EvictionMaxPodGracePeriod is the maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. type: integer evictionSoft: additionalProperties: type: string description: EvictionSoft is a map of signal names to quantities that defines soft eviction thresholds. type: object evictionSoftGracePeriod: additionalProperties: type: string description: |- EvictionSoftGracePeriod is a map of signal names to quantities that defines grace periods for each soft eviction signal. type: object imageGCHighThresholdPercent: description: |- ImageGCHighThresholdPercent is the percent of disk usage after which image garbage collection is always run. type: integer imageGCLowThresholdPercent: description: ImageGCLowThresholdPercent is the percent of disk usage before which image garbage collection is never run. type: integer kubeAPIBurst: description: KubeAPIBurst is the burst to allow while talking with kubernetes API server. type: integer kubeAPIQPS: description: KubeAPIQPS is the QPS to use while talking with kubernetes apiserver. type: integer kubeReserved: additionalProperties: type: string description: |- KubeReserved is a set of ResourceName=ResourceQuantity pairs that describe resources reserved for kubernetes system components type: object maxPods: description: MaxPods defines the maximum number of pods that can run on a node. type: integer memoryManagerPolicy: description: MemoryManagerPolicy is the name of the policy to use by memory manager. type: string podPidsLimit: description: PodPidsLimit is the maximum number of PIDs in any pod. format: int64 type: integer providerID: description: ProviderID sets the unique ID of the instance that an external provider. type: string registryBurst: description: RegistryBurst is the maximum size of bursty pulls. type: integer registryPullQPS: description: RegistryPullQPS is the limit of registry pulls per second. type: integer shutdownGracePeriod: description: |- ShutdownGracePeriod specifies the total duration that the node should delay the shutdown and total grace period for pod termination during a node shutdown. type: string shutdownGracePeriodCriticalPods: description: |- ShutdownGracePeriodCriticalPods specifies the duration used to terminate critical pods during a node shutdown. type: string systemReserved: additionalProperties: type: string description: |- SystemReserved is a set of ResourceName=ResourceQuantity pairs that describe resources reserved for non-kubernetes components. type: object topologyManagerPolicy: description: TopologyManagerPolicy is the name of the topology manager policy to use. type: string topologyManagerScope: description: |- TopologyManagerScope represents the scope of topology hint generation that topology manager requests and hint providers generate. type: string type: object type: object certBundles: items: description: Cert defines additional trusted cert bundles on the host OS. properties: data: description: Data defines the cert bundle data. type: string name: description: Name defines the cert bundle name. type: string required: - data - name type: object type: array ntpConfiguration: description: NTPConfiguration defines the NTP configuration on the host OS. properties: servers: description: Servers defines a list of NTP servers to be configured on the host OS. items: type: string type: array required: - servers type: object type: object instanceType: description: InstanceType is the type of instance to create. type: string network: description: Network provides the custom network setting for the machine. properties: directNetworkInterfaces: description: DirectNetworkInterfaces contains a list of direct network interface (DNI) configuration. items: description: SnowDirectNetworkInterface defines a direct network interface (DNI) configuration. properties: dhcp: description: DHCP defines whether DHCP is used to assign ip for the DNI. type: boolean index: description: Index is the index number of DNI used to clarify the position in the list. Usually starts with 1. maximum: 8 minimum: 1 type: integer ipPoolRef: description: |- IPPool contains a reference to a snow ip pool which provides a range of ip addresses. When specified, an ip address selected from the pool is allocated to this DNI. properties: kind: type: string name: type: string type: object primary: description: Primary indicates whether the DNI is primary or not. type: boolean vlanID: description: VlanID is the vlan id assigned by the user for the DNI. format: int32 maximum: 4095 minimum: 0 type: integer type: object maxItems: 8 minItems: 1 type: array type: object nonRootVolumes: description: NonRootVolumes provides the configuration options for the non root storage volumes. items: description: Volume encapsulates the configuration options for the storage device properties: deviceName: description: Device name type: string size: description: |- Size specifies size (in Gi) of the storage device. Must be greater than the image snapshot size or 8 (whichever is greater). format: int64 minimum: 8 type: integer type: description: Type is the type of the volume (sbp1 for capacity-optimized HDD, sbg1 performance-optimized SSD, default is sbp1) enum: - sbp1 - sbg1 type: string required: - size type: object type: array osFamily: description: |- OSFamily is the node instance OS. Valid values: "bottlerocket" and "ubuntu". type: string physicalNetworkConnector: description: |- PhysicalNetworkConnector is the physical network connector type to use for creating direct network interfaces (DNI). Valid values: "SFP_PLUS" (default), "QSFP" and "RJ45". type: string sshKeyName: description: SSHKeyName is the name of the ssh key defined in the aws snow key pairs, to attach to the instance. type: string required: - network type: object status: description: SnowMachineConfigStatus defines the observed state of SnowMachineConfig. properties: failureMessage: description: |- FailureMessage indicates that there is a fatal problem reconciling the state, and will be set to a descriptive error message. type: string specValid: description: SpecValid is set to true if vspheredatacenterconfig is validated. type: boolean type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: tinkerbelldatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: TinkerbellDatacenterConfig listKind: TinkerbellDatacenterConfigList plural: tinkerbelldatacenterconfigs singular: tinkerbelldatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: TinkerbellDatacenterConfig is the Schema for the TinkerbellDatacenterConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: TinkerbellDatacenterConfigSpec defines the desired state of TinkerbellDatacenterConfig. properties: hookImagesURLPath: description: HookImagesURLPath can be used to override the default Hook images path to pull from a local server. type: string hookIsoURL: description: |- HookIsoURL is the URL of ISO image that will be used to provision the hardware during one time boot process. It can be used to override the default Hook OS ISO image to pull from a local server. type: string isoBoot: description: IsoBoot can be used to indicate that the hardware should boot using an ISO. type: boolean loadBalancerInterface: description: LoadBalancerInterface can be used to configure a load balancer interface for the Tinkerbell stack. type: string osImageURL: description: |- OSImageURL can be used to override the default OS image path to pull from a local server. OSImageURL is a URL to the OS image used during provisioning. To perform modular upgrades the OSImageURL must be specified on the TinkerbellMachineConfig objects. You cannot specify an OSImageURL on the TinkerbellDatacenterConfig and TinkerbellMachineConfigs simultaneously. It must include the Kubernetes version(s). For example, a URL used for Kubernetes 1.27 could be http://localhost:8080/ubuntu-2204-1.27.tgz type: string skipLoadBalancerDeployment: description: |- SkipLoadBalancerDeployment when set to "true" can be used to skip deploying a load balancer to expose Tinkerbell stack. Users will need to deploy and configure a load balancer manually after the cluster is created. type: boolean tinkerbellIP: description: TinkerbellIP is used to configure a VIP for hosting the Tinkerbell services. type: string required: - tinkerbellIP type: object status: description: |- TinkerbellDatacenterConfigStatus defines the observed state of TinkerbellDatacenterConfig Important: Run "make generate" to regenerate code after modifying this file. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: tinkerbellmachineconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: TinkerbellMachineConfig listKind: TinkerbellMachineConfigList plural: tinkerbellmachineconfigs singular: tinkerbellmachineconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: TinkerbellMachineConfig is the Schema for the tinkerbellmachineconfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: TinkerbellMachineConfigSpec defines the desired state of TinkerbellMachineConfig. properties: hardwareSelector: additionalProperties: type: string description: HardwareSelector models a simple key-value selector used in Tinkerbell provisioning. type: object hostOSConfiguration: description: HostOSConfiguration defines the configuration settings on the host OS. properties: bottlerocketConfiguration: description: |- BottlerocketConfiguration defines the Bottlerocket configuration on the host OS. These settings only take effect when the `osFamily` is bottlerocket. properties: boot: description: Boot defines the boot settings for bottlerocket. properties: bootKernelParameters: additionalProperties: items: type: string type: array type: object type: object kernel: description: Kernel defines the kernel settings for bottlerocket. properties: sysctlSettings: additionalProperties: type: string description: SysctlSettings defines the kernel sysctl settings to set for bottlerocket nodes. type: object type: object kubernetes: description: Kubernetes defines the Kubernetes settings on the host OS. properties: allowedUnsafeSysctls: description: AllowedUnsafeSysctls defines the list of unsafe sysctls that can be set on a node. items: type: string type: array clusterDNSIPs: description: ClusterDNSIPs defines IP addresses of the DNS servers. items: type: string type: array clusterDomain: description: |- ClusterDomain defines the DNS domain for the cluster, allowing all Kubernetes-run containers to search this domain before the host’s search domains type: string containerLogMaxFiles: description: |- ContainerLogMaxFiles specifies the maximum number of container log files that can be present for a container type: integer containerLogMaxSize: description: |- ContainerLogMaxSize is a quantity defining the maximum size of the container log file before it is rotated type: string cpuCFSQuota: description: CPUCFSQuota enables CPU CFS quota enforcement for containers that specify CPU limits type: boolean cpuManagerPolicy: description: CPUManagerPolicy is the name of the policy to use. type: string cpuManagerPolicyOptions: additionalProperties: type: string description: |- CPUManagerPolicyOptions is a set of key=value which allows to set extra options to fine tune the behaviour of the cpu manager policies type: object cpuManagerReconcilePeriod: description: CPUManagerReconcilePeriod is the reconciliation period for the CPU Manager. type: string eventBurst: description: EventBurst is the maximum size of a burst of event creations. type: integer eventRecordQPS: description: EventRecordQPS is the maximum event creations per second. type: integer evictionHard: additionalProperties: type: string description: EvictionHard is a map of signal names to quantities that defines hard eviction thresholds. type: object evictionMaxPodGracePeriod: description: |- EvictionMaxPodGracePeriod is the maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. type: integer evictionSoft: additionalProperties: type: string description: EvictionSoft is a map of signal names to quantities that defines soft eviction thresholds. type: object evictionSoftGracePeriod: additionalProperties: type: string description: |- EvictionSoftGracePeriod is a map of signal names to quantities that defines grace periods for each soft eviction signal. type: object imageGCHighThresholdPercent: description: |- ImageGCHighThresholdPercent is the percent of disk usage after which image garbage collection is always run. type: integer imageGCLowThresholdPercent: description: ImageGCLowThresholdPercent is the percent of disk usage before which image garbage collection is never run. type: integer kubeAPIBurst: description: KubeAPIBurst is the burst to allow while talking with kubernetes API server. type: integer kubeAPIQPS: description: KubeAPIQPS is the QPS to use while talking with kubernetes apiserver. type: integer kubeReserved: additionalProperties: type: string description: |- KubeReserved is a set of ResourceName=ResourceQuantity pairs that describe resources reserved for kubernetes system components type: object maxPods: description: MaxPods defines the maximum number of pods that can run on a node. type: integer memoryManagerPolicy: description: MemoryManagerPolicy is the name of the policy to use by memory manager. type: string podPidsLimit: description: PodPidsLimit is the maximum number of PIDs in any pod. format: int64 type: integer providerID: description: ProviderID sets the unique ID of the instance that an external provider. type: string registryBurst: description: RegistryBurst is the maximum size of bursty pulls. type: integer registryPullQPS: description: RegistryPullQPS is the limit of registry pulls per second. type: integer shutdownGracePeriod: description: |- ShutdownGracePeriod specifies the total duration that the node should delay the shutdown and total grace period for pod termination during a node shutdown. type: string shutdownGracePeriodCriticalPods: description: |- ShutdownGracePeriodCriticalPods specifies the duration used to terminate critical pods during a node shutdown. type: string systemReserved: additionalProperties: type: string description: |- SystemReserved is a set of ResourceName=ResourceQuantity pairs that describe resources reserved for non-kubernetes components. type: object topologyManagerPolicy: description: TopologyManagerPolicy is the name of the topology manager policy to use. type: string topologyManagerScope: description: |- TopologyManagerScope represents the scope of topology hint generation that topology manager requests and hint providers generate. type: string type: object type: object certBundles: items: description: Cert defines additional trusted cert bundles on the host OS. properties: data: description: Data defines the cert bundle data. type: string name: description: Name defines the cert bundle name. type: string required: - data - name type: object type: array ntpConfiguration: description: NTPConfiguration defines the NTP configuration on the host OS. properties: servers: description: Servers defines a list of NTP servers to be configured on the host OS. items: type: string type: array required: - servers type: object type: object osFamily: type: string osImageURL: description: |- OSImageURL can be used to override the default OS image path to pull from a local server. OSImageURL is a URL to the OS image used during provisioning. It must include the Kubernetes version(s). For example, a URL used for Kubernetes 1.27 could be http://localhost:8080/ubuntu-2204-1.27.tgz type: string templateRef: properties: kind: type: string name: type: string type: object users: items: description: UserConfiguration defines the configuration of the user to be added to the VM. properties: name: type: string sshAuthorizedKeys: items: type: string type: array required: - name - sshAuthorizedKeys type: object type: array required: - hardwareSelector - osFamily type: object status: description: TinkerbellMachineConfigStatus defines the observed state of TinkerbellMachineConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: tinkerbelltemplateconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: TinkerbellTemplateConfig listKind: TinkerbellTemplateConfigList plural: tinkerbelltemplateconfigs singular: tinkerbelltemplateconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: TinkerbellTemplateConfig is the Schema for the TinkerbellTemplateConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: TinkerbellTemplateConfigSpec defines the desired state of TinkerbellTemplateConfig. properties: template: description: Template defines a Tinkerbell workflow template with specific tasks and actions. properties: global_timeout: type: integer id: type: string name: type: string tasks: items: description: Task represents a task to be executed as part of a workflow. properties: actions: items: description: Action is the basic executional unit for a workflow. properties: command: items: type: string type: array environment: additionalProperties: type: string type: object image: type: string name: type: string on-failure: items: type: string type: array on-timeout: items: type: string type: array pid: type: string timeout: format: int64 type: integer volumes: items: type: string type: array required: - image - name - timeout type: object type: array environment: additionalProperties: type: string type: object name: type: string volumes: items: type: string type: array worker: type: string required: - actions - name - worker type: object type: array version: type: string required: - global_timeout - id - name - tasks - version type: object required: - template type: object status: description: TinkerbellTemplateConfigStatus defines the observed state of TinkerbellTemplateConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: vspheredatacenterconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: VSphereDatacenterConfig listKind: VSphereDatacenterConfigList plural: vspheredatacenterconfigs singular: vspheredatacenterconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: VSphereDatacenterConfig is the Schema for the VSphereDatacenterConfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: VSphereDatacenterConfigSpec defines the desired state of VSphereDatacenterConfig. properties: datacenter: type: string failureDomains: items: description: FailureDomain defines the list of failure domains to spread the VMs across. properties: computeCluster: description: ComputeCluster is the name or inventory path of the computecluster in which the VM is created/located type: string datastore: description: Datastore is the name or inventory path of the datastore in which the VM is created/located type: string folder: description: Folder is the name or inventory path of the folder in which the the VM is created/located type: string name: description: Name is used as a unique identifier for each failure domain. type: string network: description: Network is the name or inventory path of the network which will be added to the VM type: string resourcePool: description: ResourcePool is the name or inventory path of the resource pool in which the VM is created/located type: string required: - computeCluster - datastore - folder - name - network - resourcePool type: object type: array insecure: type: boolean network: type: string server: type: string thumbprint: type: string required: - datacenter - insecure - network - server - thumbprint type: object status: description: VSphereDatacenterConfigStatus defines the observed state of VSphereDatacenterConfig. properties: failureMessage: description: |- FailureMessage indicates that there is a fatal problem reconciling the state, and will be set to a descriptive error message. type: string observedGeneration: description: ObservedGeneration is the latest generation observed by the controller. format: int64 type: integer specValid: description: SpecValid is set to true if vspheredatacenterconfig is validated. type: boolean type: object type: object served: true storage: true subresources: status: {} --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: controller-gen.kubebuilder.io/version: v0.17.2 name: vspheremachineconfigs.anywhere.eks.amazonaws.com spec: group: anywhere.eks.amazonaws.com names: kind: VSphereMachineConfig listKind: VSphereMachineConfigList plural: vspheremachineconfigs singular: vspheremachineconfig scope: Namespaced versions: - name: v1alpha1 schema: openAPIV3Schema: description: VSphereMachineConfig is the Schema for the vspheremachineconfigs API. properties: apiVersion: description: |- APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: description: |- Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object spec: description: VSphereMachineConfigSpec defines the desired state of VSphereMachineConfig. properties: cloneMode: description: CloneMode describes the clone mode to be used when cloning vSphere VMs. enum: - fullClone - linkedClone type: string datastore: type: string diskGiB: type: integer folder: type: string hostOSConfiguration: description: HostOSConfiguration defines the configuration settings on the host OS. properties: bottlerocketConfiguration: description: |- BottlerocketConfiguration defines the Bottlerocket configuration on the host OS. These settings only take effect when the `osFamily` is bottlerocket. properties: boot: description: Boot defines the boot settings for bottlerocket. properties: bootKernelParameters: additionalProperties: items: type: string type: array type: object type: object kernel: description: Kernel defines the kernel settings for bottlerocket. properties: sysctlSettings: additionalProperties: type: string description: SysctlSettings defines the kernel sysctl settings to set for bottlerocket nodes. type: object type: object kubernetes: description: Kubernetes defines the Kubernetes settings on the host OS. properties: allowedUnsafeSysctls: description: AllowedUnsafeSysctls defines the list of unsafe sysctls that can be set on a node. items: type: string type: array clusterDNSIPs: description: ClusterDNSIPs defines IP addresses of the DNS servers. items: type: string type: array clusterDomain: description: |- ClusterDomain defines the DNS domain for the cluster, allowing all Kubernetes-run containers to search this domain before the host’s search domains type: string containerLogMaxFiles: description: |- ContainerLogMaxFiles specifies the maximum number of container log files that can be present for a container type: integer containerLogMaxSize: description: |- ContainerLogMaxSize is a quantity defining the maximum size of the container log file before it is rotated type: string cpuCFSQuota: description: CPUCFSQuota enables CPU CFS quota enforcement for containers that specify CPU limits type: boolean cpuManagerPolicy: description: CPUManagerPolicy is the name of the policy to use. type: string cpuManagerPolicyOptions: additionalProperties: type: string description: |- CPUManagerPolicyOptions is a set of key=value which allows to set extra options to fine tune the behaviour of the cpu manager policies type: object cpuManagerReconcilePeriod: description: CPUManagerReconcilePeriod is the reconciliation period for the CPU Manager. type: string eventBurst: description: EventBurst is the maximum size of a burst of event creations. type: integer eventRecordQPS: description: EventRecordQPS is the maximum event creations per second. type: integer evictionHard: additionalProperties: type: string description: EvictionHard is a map of signal names to quantities that defines hard eviction thresholds. type: object evictionMaxPodGracePeriod: description: |- EvictionMaxPodGracePeriod is the maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. type: integer evictionSoft: additionalProperties: type: string description: EvictionSoft is a map of signal names to quantities that defines soft eviction thresholds. type: object evictionSoftGracePeriod: additionalProperties: type: string description: |- EvictionSoftGracePeriod is a map of signal names to quantities that defines grace periods for each soft eviction signal. type: object imageGCHighThresholdPercent: description: |- ImageGCHighThresholdPercent is the percent of disk usage after which image garbage collection is always run. type: integer imageGCLowThresholdPercent: description: ImageGCLowThresholdPercent is the percent of disk usage before which image garbage collection is never run. type: integer kubeAPIBurst: description: KubeAPIBurst is the burst to allow while talking with kubernetes API server. type: integer kubeAPIQPS: description: KubeAPIQPS is the QPS to use while talking with kubernetes apiserver. type: integer kubeReserved: additionalProperties: type: string description: |- KubeReserved is a set of ResourceName=ResourceQuantity pairs that describe resources reserved for kubernetes system components type: object maxPods: description: MaxPods defines the maximum number of pods that can run on a node. type: integer memoryManagerPolicy: description: MemoryManagerPolicy is the name of the policy to use by memory manager. type: string podPidsLimit: description: PodPidsLimit is the maximum number of PIDs in any pod. format: int64 type: integer providerID: description: ProviderID sets the unique ID of the instance that an external provider. type: string registryBurst: description: RegistryBurst is the maximum size of bursty pulls. type: integer registryPullQPS: description: RegistryPullQPS is the limit of registry pulls per second. type: integer shutdownGracePeriod: description: |- ShutdownGracePeriod specifies the total duration that the node should delay the shutdown and total grace period for pod termination during a node shutdown. type: string shutdownGracePeriodCriticalPods: description: |- ShutdownGracePeriodCriticalPods specifies the duration used to terminate critical pods during a node shutdown. type: string systemReserved: additionalProperties: type: string description: |- SystemReserved is a set of ResourceName=ResourceQuantity pairs that describe resources reserved for non-kubernetes components. type: object topologyManagerPolicy: description: TopologyManagerPolicy is the name of the topology manager policy to use. type: string topologyManagerScope: description: |- TopologyManagerScope represents the scope of topology hint generation that topology manager requests and hint providers generate. type: string type: object type: object certBundles: items: description: Cert defines additional trusted cert bundles on the host OS. properties: data: description: Data defines the cert bundle data. type: string name: description: Name defines the cert bundle name. type: string required: - data - name type: object type: array ntpConfiguration: description: NTPConfiguration defines the NTP configuration on the host OS. properties: servers: description: Servers defines a list of NTP servers to be configured on the host OS. items: type: string type: array required: - servers type: object type: object memoryMiB: type: integer numCPUs: type: integer osFamily: type: string resourcePool: type: string storagePolicyName: type: string tags: items: type: string type: array template: description: |- Template field is the template to use for provisioning the VM. It must include the Kubernetes version(s). For example, a template used for Kubernetes 1.27 could be ubuntu-2204-1.27. type: string users: items: description: UserConfiguration defines the configuration of the user to be added to the VM. properties: name: type: string sshAuthorizedKeys: items: type: string type: array required: - name - sshAuthorizedKeys type: object type: array required: - datastore - folder - memoryMiB - numCPUs - osFamily - resourcePool type: object status: description: VSphereMachineConfigStatus defines the observed state of VSphereMachineConfig. type: object type: object served: true storage: true subresources: status: {} --- apiVersion: v1 kind: ServiceAccount metadata: name: eksa-controller-manager namespace: eksa-system --- apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: name: eksa-leader-election-role namespace: eksa-system rules: - apiGroups: - "" resources: - configmaps verbs: - get - list - watch - create - update - patch - delete - apiGroups: - coordination.k8s.io resources: - leases verbs: - get - list - watch - create - update - patch - delete - apiGroups: - "" resources: - events verbs: - create - patch --- apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: name: eksa-manager-role namespace: eksa-system rules: - apiGroups: - "" resources: - secrets verbs: - patch - update - apiGroups: - packages.eks.amazonaws.com resources: - packagebundlecontrollers verbs: - delete --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: eksa-manager-role rules: - apiGroups: - "" resources: - configmaps verbs: - get - list - watch - apiGroups: - "" resources: - events verbs: - create - patch - update - apiGroups: - "" resources: - namespaces verbs: - create - delete - get - list - apiGroups: - "" resources: - nodes verbs: - list - apiGroups: - "" resources: - pods verbs: - create - delete - get - list - watch - apiGroups: - "" resources: - secrets verbs: - create - delete - get - list - patch - update - watch - apiGroups: - addons.cluster.x-k8s.io resources: - clusterresourcesets verbs: - create - delete - get - list - patch - update - watch - apiGroups: - anywhere.eks.amazonaws.com resources: - awsiamconfigs - cloudstackdatacenterconfigs - cloudstackmachineconfigs - clusters - dockerdatacenterconfigs - fluxconfigs - gitopsconfigs - nutanixdatacenterconfigs - nutanixmachineconfigs - oidcconfigs - snowdatacenterconfigs - snowippools - snowmachineconfigs - tinkerbelldatacenterconfigs - tinkerbellmachineconfigs - tinkerbelltemplateconfigs - vspheredatacenterconfigs - vspheremachineconfigs verbs: - get - list - patch - update - watch - apiGroups: - anywhere.eks.amazonaws.com resources: - awsiamconfigs/finalizers - bundles/finalizers - cloudstackdatacenterconfigs/finalizers - cloudstackmachineconfigs/finalizers - clusters/finalizers - controlplaneupgrades/finalizers - dockerdatacenterconfigs/finalizers - machinedeploymentupgrades/finalizers - nodeupgrades/finalizers - snowippools/finalizers - snowmachineconfigs/finalizers - tinkerbelldatacenterconfigs/finalizers - tinkerbellmachineconfigs/finalizers - tinkerbelltemplateconfigs/finalizers - vspheredatacenterconfigs/finalizers - vspheremachineconfigs/finalizers verbs: - update - apiGroups: - anywhere.eks.amazonaws.com resources: - awsiamconfigs/status - cloudstackdatacenterconfigs/status - cloudstackmachineconfigs/status - clusters/status - controlplaneupgrades/status - dockerdatacenterconfigs/status - machinedeploymentupgrades/status - nodeupgrades/status - snowippools/status - snowmachineconfigs/status - tinkerbelldatacenterconfigs/status - tinkerbellmachineconfigs/status - tinkerbelltemplateconfigs/status - vspheredatacenterconfigs/status - vspheremachineconfigs/status verbs: - get - patch - update - apiGroups: - anywhere.eks.amazonaws.com resources: - bundles - eksareleases verbs: - get - list - watch - apiGroups: - anywhere.eks.amazonaws.com resources: - controlplaneupgrades - machinedeploymentupgrades - nodeupgrades verbs: - create - delete - get - list - patch - update - watch - apiGroups: - bmc.tinkerbell.org resources: - machines verbs: - list - watch - apiGroups: - bootstrap.cluster.x-k8s.io resources: - kubeadmconfigs verbs: - get - list - patch - update - watch - apiGroups: - bootstrap.cluster.x-k8s.io resources: - kubeadmconfigtemplates verbs: - create - get - list - patch - update - watch - apiGroups: - cluster.x-k8s.io resources: - clusters - machinedeployments verbs: - create - delete - get - list - patch - update - watch - apiGroups: - cluster.x-k8s.io resources: - machinedeployment - machines - machinesets verbs: - get - list - patch - update - watch - apiGroups: - cluster.x-k8s.io resources: - machinedeployment/status verbs: - get - apiGroups: - cluster.x-k8s.io resources: - machinehealthchecks verbs: - create - get - list - patch - watch - apiGroups: - clusterctl.cluster.x-k8s.io resources: - providers verbs: - get - list - watch - apiGroups: - controlplane.cluster.x-k8s.io resources: - kubeadmcontrolplane verbs: - get - list - patch - update - watch - apiGroups: - controlplane.cluster.x-k8s.io resources: - kubeadmcontrolplane/status verbs: - get - apiGroups: - controlplane.cluster.x-k8s.io resources: - kubeadmcontrolplanes verbs: - create - delete - get - list - patch - update - watch - apiGroups: - coordination.k8s.io resources: - leases verbs: - create - delete - get - list - update - watch - apiGroups: - distro.eks.amazonaws.com resources: - releases verbs: - get - list - watch - apiGroups: - etcdcluster.cluster.x-k8s.io resources: - '*' verbs: - create - get - list - patch - update - watch - apiGroups: - infrastructure.cluster.x-k8s.io resources: - awssnowclusters - awssnowippools - awssnowmachinetemplates - cloudstackclusters - cloudstackmachinetemplates - dockerclusters - dockermachinetemplates - nutanixclusters - nutanixmachinetemplates - tinkerbellclusters - tinkerbellmachinetemplates - vsphereclusters - vspheredeploymentzones - vspherefailuredomains - vspheremachinetemplates verbs: - create - delete - get - list - patch - update - watch - apiGroups: - infrastructure.cluster.x-k8s.io resources: - tinkerbellmachines - vspheremachines verbs: - get - list - patch - update - apiGroups: - packages.eks.amazonaws.com resources: - packages verbs: - create - delete - get - list - patch - update - watch - apiGroups: - tinkerbell.org resources: - hardware verbs: - list - watch --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: name: eksa-leader-election-rolebinding namespace: eksa-system roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: eksa-leader-election-role subjects: - kind: ServiceAccount name: eksa-controller-manager namespace: eksa-system --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: name: eksa-manager-rolebinding namespace: eksa-system roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: eksa-manager-role subjects: - kind: ServiceAccount name: eksa-controller-manager namespace: eksa-system --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: name: eksa-manager-rolebinding roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: eksa-manager-role subjects: - kind: ServiceAccount name: eksa-controller-manager namespace: eksa-system --- apiVersion: v1 kind: Service metadata: name: eksa-webhook-service namespace: eksa-system spec: ports: - port: 443 targetPort: 9443 selector: control-plane: eksa-controller-manager --- apiVersion: apps/v1 kind: Deployment metadata: labels: control-plane: eksa-controller-manager name: eksa-controller-manager namespace: eksa-system spec: replicas: 1 selector: matchLabels: control-plane: eksa-controller-manager template: metadata: labels: control-plane: eksa-controller-manager spec: containers: - args: - --leader-elect env: - name: POD_NAMESPACE valueFrom: fieldRef: fieldPath: metadata.namespace - name: POD_NAME valueFrom: fieldRef: fieldPath: metadata.name - name: POD_UID valueFrom: fieldRef: fieldPath: metadata.uid image: public.ecr.aws/l0g8r8j6/eks-anywhere-cluster-controller:v0.0.0-eks-a-v0.0.0-dev-build.251 imagePullPolicy: Always livenessProbe: httpGet: path: /healthz port: healthz name: manager ports: - containerPort: 9443 name: webhook-server protocol: TCP - containerPort: 8081 name: healthz protocol: TCP readinessProbe: httpGet: path: /readyz port: healthz securityContext: allowPrivilegeEscalation: false runAsNonRoot: true volumeMounts: - mountPath: /tmp/k8s-webhook-server/serving-certs name: cert readOnly: true securityContext: fsGroup: 1000 serviceAccountName: eksa-controller-manager terminationGracePeriodSeconds: 10 tolerations: - effect: NoSchedule key: node-role.kubernetes.io/master - effect: NoSchedule key: node-role.kubernetes.io/control-plane volumes: - name: cert secret: defaultMode: 420 secretName: webhook-server-cert --- apiVersion: cert-manager.io/v1 kind: Certificate metadata: name: eksa-serving-cert namespace: eksa-system spec: dnsNames: - eksa-webhook-service.eksa-system.svc - eksa-webhook-service.eksa-system.svc.cluster.local issuerRef: kind: Issuer name: eksa-selfsigned-issuer secretName: webhook-server-cert --- apiVersion: cert-manager.io/v1 kind: Issuer metadata: name: eksa-selfsigned-issuer namespace: eksa-system spec: selfSigned: {} --- apiVersion: admissionregistration.k8s.io/v1 kind: MutatingWebhookConfiguration metadata: annotations: cert-manager.io/inject-ca-from: eksa-system/eksa-serving-cert name: eksa-mutating-webhook-configuration webhooks: - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-awsiamconfig failurePolicy: Fail name: mutation.awsiamconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - awsiamconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-cloudstackdatacenterconfig failurePolicy: Fail name: mutation.cloudstackdatacenterconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - cloudstackdatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-cluster failurePolicy: Fail name: mutation.cluster.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - clusters sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-snowmachineconfig failurePolicy: Fail name: mutation.snowmachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - snowmachineconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-tinkerbellmachineconfig failurePolicy: Fail name: mutation.tinkerbellmachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - tinkerbellmachineconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-vspheredatacenterconfig failurePolicy: Fail name: mutation.vspheredatacenterconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - vspheredatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /mutate-anywhere-eks-amazonaws-com-v1alpha1-vspheremachineconfig failurePolicy: Fail name: mutation.vspheremachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - vspheremachineconfigs sideEffects: None --- apiVersion: admissionregistration.k8s.io/v1 kind: ValidatingWebhookConfiguration metadata: annotations: cert-manager.io/inject-ca-from: eksa-system/eksa-serving-cert name: eksa-validating-webhook-configuration webhooks: - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-snowdatacenterconfig failurePolicy: Fail name: snowdatacenterconfig.kb.io rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - snowdatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-awsiamconfig failurePolicy: Fail name: validation.awsiamconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - awsiamconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-cloudstackdatacenterconfig failurePolicy: Fail name: validation.cloudstackdatacenterconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - cloudstackdatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-cloudstackmachineconfig failurePolicy: Fail name: validation.cloudstackmachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - cloudstackmachineconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-cluster failurePolicy: Fail name: validation.cluster.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - clusters sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-fluxconfig failurePolicy: Fail name: validation.fluxconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - fluxconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-gitopsconfig failurePolicy: Fail name: validation.gitopsconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - gitopsconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-nutanixdatacenterconfig failurePolicy: Fail name: validation.nutanixdatacenterconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - nutanixdatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-nutanixmachineconfig failurePolicy: Fail name: validation.nutanixmachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - nutanixmachineconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-oidcconfig failurePolicy: Fail name: validation.oidcconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - oidcconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-snowippool failurePolicy: Fail name: validation.snowippool.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - snowippools sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-snowmachineconfig failurePolicy: Fail name: validation.snowmachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - snowmachineconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-tinkerbelldatacenterconfig failurePolicy: Fail name: validation.tinkerbelldatacenterconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - tinkerbelldatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-tinkerbellmachineconfig failurePolicy: Fail name: validation.tinkerbellmachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - tinkerbellmachineconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-vspheredatacenterconfig failurePolicy: Fail name: validation.vspheredatacenterconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - vspheredatacenterconfigs sideEffects: None - admissionReviewVersions: - v1 - v1beta1 clientConfig: service: name: eksa-webhook-service namespace: eksa-system path: /validate-anywhere-eks-amazonaws-com-v1alpha1-vspheremachineconfig failurePolicy: Fail name: validation.vspheremachineconfig.anywhere.amazonaws.com rules: - apiGroups: - anywhere.eks.amazonaws.com apiVersions: - v1alpha1 operations: - CREATE - UPDATE resources: - vspheremachineconfigs sideEffects: None