From 5498768e0f61c5b4739ba19d868c4ca9c45553bf Mon Sep 17 00:00:00 2001 From: Renovate <20075896+sszynrae@users.noreply.github.com> Date: Mon, 24 Nov 2025 23:00:17 +0000 Subject: [PATCH] Update dependency kubernetes/kubernetes to v1.34.2 Signed-off-by: Renovate <20075896+sszynrae@users.noreply.github.com> --- justfile | 2 +- k8s-pb/src/api/admission/mod.rs | 2 - k8s-pb/src/api/admission/v1/mod.rs | 145 - k8s-pb/src/api/admission/v1beta1/mod.rs | 145 - k8s-pb/src/api/admissionregistration/mod.rs | 3 - .../src/api/admissionregistration/v1/mod.rs | 1225 --- .../api/admissionregistration/v1alpha1/mod.rs | 965 -- .../api/admissionregistration/v1beta1/mod.rs | 1434 --- k8s-pb/src/api/apidiscovery/mod.rs | 2 - k8s-pb/src/api/apidiscovery/v2/mod.rs | 135 - k8s-pb/src/api/apidiscovery/v2beta1/mod.rs | 135 - k8s-pb/src/api/apiserverinternal/mod.rs | 1 - .../src/api/apiserverinternal/v1alpha1/mod.rs | 149 - k8s-pb/src/api/apps/mod.rs | 3 - k8s-pb/src/api/apps/v1/mod.rs | 1037 --- k8s-pb/src/api/apps/v1beta1/mod.rs | 571 -- k8s-pb/src/api/apps/v1beta2/mod.rs | 887 -- k8s-pb/src/api/authentication/mod.rs | 3 - k8s-pb/src/api/authentication/v1/mod.rs | 258 - k8s-pb/src/api/authentication/v1alpha1/mod.rs | 23 - k8s-pb/src/api/authentication/v1beta1/mod.rs | 121 - k8s-pb/src/api/authorization/mod.rs | 2 - k8s-pb/src/api/authorization/v1/mod.rs | 487 - k8s-pb/src/api/authorization/v1beta1/mod.rs | 283 - k8s-pb/src/api/autoscaling/mod.rs | 4 - k8s-pb/src/api/autoscaling/v1/mod.rs | 538 -- k8s-pb/src/api/autoscaling/v2/mod.rs | 565 -- k8s-pb/src/api/autoscaling/v2beta1/mod.rs | 480 - k8s-pb/src/api/autoscaling/v2beta2/mod.rs | 490 - k8s-pb/src/api/batch/mod.rs | 2 - k8s-pb/src/api/batch/v1/mod.rs | 698 -- k8s-pb/src/api/batch/v1beta1/mod.rs | 118 - k8s-pb/src/api/certificates/mod.rs | 3 - k8s-pb/src/api/certificates/v1/mod.rs | 278 - k8s-pb/src/api/certificates/v1alpha1/mod.rs | 360 - k8s-pb/src/api/certificates/v1beta1/mod.rs | 289 - k8s-pb/src/api/coordination/mod.rs | 3 - k8s-pb/src/api/coordination/v1/mod.rs | 98 - k8s-pb/src/api/coordination/v1alpha2/mod.rs | 98 - k8s-pb/src/api/coordination/v1beta1/mod.rs | 168 - k8s-pb/src/api/core/mod.rs | 1 - k8s-pb/src/api/core/v1/mod.rs | 8021 ----------------- k8s-pb/src/api/discovery/mod.rs | 2 - k8s-pb/src/api/discovery/v1/mod.rs | 222 - k8s-pb/src/api/discovery/v1beta1/mod.rs | 189 - k8s-pb/src/api/events/mod.rs | 2 - k8s-pb/src/api/events/v1/mod.rs | 122 - k8s-pb/src/api/events/v1beta1/mod.rs | 106 - k8s-pb/src/api/extensions/mod.rs | 1 - k8s-pb/src/api/extensions/v1beta1/mod.rs | 1096 --- k8s-pb/src/api/flowcontrol/mod.rs | 4 - k8s-pb/src/api/flowcontrol/v1/mod.rs | 606 -- k8s-pb/src/api/flowcontrol/v1beta1/mod.rs | 507 -- k8s-pb/src/api/flowcontrol/v1beta2/mod.rs | 507 -- k8s-pb/src/api/flowcontrol/v1beta3/mod.rs | 511 -- k8s-pb/src/api/imagepolicy/mod.rs | 1 - k8s-pb/src/api/imagepolicy/v1alpha1/mod.rs | 66 - k8s-pb/src/api/mod.rs | 25 - k8s-pb/src/api/networking/mod.rs | 2 - k8s-pb/src/api/networking/v1/mod.rs | 836 -- k8s-pb/src/api/networking/v1beta1/mod.rs | 530 -- k8s-pb/src/api/node/mod.rs | 3 - k8s-pb/src/api/node/v1/mod.rs | 103 - k8s-pb/src/api/node/v1alpha1/mod.rs | 96 - k8s-pb/src/api/node/v1beta1/mod.rs | 85 - k8s-pb/src/api/policy/mod.rs | 2 - k8s-pb/src/api/policy/v1/mod.rs | 204 - k8s-pb/src/api/policy/v1beta1/mod.rs | 159 - k8s-pb/src/api/rbac/mod.rs | 3 - k8s-pb/src/api/rbac/v1/mod.rs | 269 - k8s-pb/src/api/rbac/v1alpha1/mod.rs | 202 - k8s-pb/src/api/rbac/v1beta1/mod.rs | 202 - k8s-pb/src/api/resource/mod.rs | 4 - k8s-pb/src/api/resource/v1/mod.rs | 1727 ---- k8s-pb/src/api/resource/v1alpha3/mod.rs | 221 - k8s-pb/src/api/resource/v1beta1/mod.rs | 1741 ---- k8s-pb/src/api/resource/v1beta2/mod.rs | 1727 ---- k8s-pb/src/api/scheduling/mod.rs | 3 - k8s-pb/src/api/scheduling/v1/mod.rs | 64 - k8s-pb/src/api/scheduling/v1alpha1/mod.rs | 47 - k8s-pb/src/api/scheduling/v1beta1/mod.rs | 47 - k8s-pb/src/api/storage/mod.rs | 3 - k8s-pb/src/api/storage/v1/mod.rs | 775 -- k8s-pb/src/api/storage/v1alpha1/mod.rs | 278 - k8s-pb/src/api/storage/v1beta1/mod.rs | 651 -- k8s-pb/src/api/storagemigration/mod.rs | 1 - .../src/api/storagemigration/v1alpha1/mod.rs | 149 - k8s-pb/src/apiextensions_apiserver/mod.rs | 1 - .../pkg/apis/apiextensions/mod.rs | 2 - .../pkg/apis/apiextensions/v1/mod.rs | 882 -- .../pkg/apis/apiextensions/v1beta1/mod.rs | 879 -- .../apiextensions_apiserver/pkg/apis/mod.rs | 1 - k8s-pb/src/apiextensions_apiserver/pkg/mod.rs | 1 - k8s-pb/src/apimachinery/mod.rs | 1 - k8s-pb/src/apimachinery/pkg/api/mod.rs | 1 - .../src/apimachinery/pkg/api/resource/mod.rs | 88 - k8s-pb/src/apimachinery/pkg/apis/meta/mod.rs | 2 - .../src/apimachinery/pkg/apis/meta/v1/mod.rs | 1266 --- .../apimachinery/pkg/apis/meta/v1beta1/mod.rs | 14 - k8s-pb/src/apimachinery/pkg/apis/mod.rs | 2 - .../apimachinery/pkg/apis/testapigroup/mod.rs | 1 - .../pkg/apis/testapigroup/v1/mod.rs | 217 - k8s-pb/src/apimachinery/pkg/mod.rs | 4 - k8s-pb/src/apimachinery/pkg/runtime/mod.rs | 112 - .../src/apimachinery/pkg/util/intstr/mod.rs | 19 - k8s-pb/src/apimachinery/pkg/util/mod.rs | 1 - k8s-pb/src/kube_aggregator/mod.rs | 1 - .../pkg/apis/apiregistration/mod.rs | 2 - .../pkg/apis/apiregistration/v1/mod.rs | 178 - .../pkg/apis/apiregistration/v1beta1/mod.rs | 133 - k8s-pb/src/kube_aggregator/pkg/apis/mod.rs | 1 - k8s-pb/src/kube_aggregator/pkg/mod.rs | 1 - k8s-pb/src/lib.rs | 68 - k8s-pb/src/metrics/mod.rs | 1 - .../metrics/pkg/apis/custom_metrics/mod.rs | 2 - .../pkg/apis/custom_metrics/v1beta1/mod.rs | 59 - .../pkg/apis/custom_metrics/v1beta2/mod.rs | 65 - .../metrics/pkg/apis/external_metrics/mod.rs | 1 - .../pkg/apis/external_metrics/v1beta1/mod.rs | 39 - k8s-pb/src/metrics/pkg/apis/metrics/mod.rs | 2 - .../metrics/pkg/apis/metrics/v1alpha1/mod.rs | 90 - .../metrics/pkg/apis/metrics/v1beta1/mod.rs | 90 - k8s-pb/src/metrics/pkg/apis/mod.rs | 3 - k8s-pb/src/metrics/pkg/mod.rs | 1 - 124 files changed, 1 insertion(+), 38563 deletions(-) delete mode 100644 k8s-pb/src/api/admission/mod.rs delete mode 100644 k8s-pb/src/api/admission/v1/mod.rs delete mode 100644 k8s-pb/src/api/admission/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/admissionregistration/mod.rs delete mode 100644 k8s-pb/src/api/admissionregistration/v1/mod.rs delete mode 100644 k8s-pb/src/api/admissionregistration/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/admissionregistration/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/apidiscovery/mod.rs delete mode 100644 k8s-pb/src/api/apidiscovery/v2/mod.rs delete mode 100644 k8s-pb/src/api/apidiscovery/v2beta1/mod.rs delete mode 100644 k8s-pb/src/api/apiserverinternal/mod.rs delete mode 100644 k8s-pb/src/api/apiserverinternal/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/apps/mod.rs delete mode 100644 k8s-pb/src/api/apps/v1/mod.rs delete mode 100644 k8s-pb/src/api/apps/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/apps/v1beta2/mod.rs delete mode 100644 k8s-pb/src/api/authentication/mod.rs delete mode 100644 k8s-pb/src/api/authentication/v1/mod.rs delete mode 100644 k8s-pb/src/api/authentication/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/authentication/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/authorization/mod.rs delete mode 100644 k8s-pb/src/api/authorization/v1/mod.rs delete mode 100644 k8s-pb/src/api/authorization/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/autoscaling/mod.rs delete mode 100644 k8s-pb/src/api/autoscaling/v1/mod.rs delete mode 100644 k8s-pb/src/api/autoscaling/v2/mod.rs delete mode 100644 k8s-pb/src/api/autoscaling/v2beta1/mod.rs delete mode 100644 k8s-pb/src/api/autoscaling/v2beta2/mod.rs delete mode 100644 k8s-pb/src/api/batch/mod.rs delete mode 100644 k8s-pb/src/api/batch/v1/mod.rs delete mode 100644 k8s-pb/src/api/batch/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/certificates/mod.rs delete mode 100644 k8s-pb/src/api/certificates/v1/mod.rs delete mode 100644 k8s-pb/src/api/certificates/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/certificates/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/coordination/mod.rs delete mode 100644 k8s-pb/src/api/coordination/v1/mod.rs delete mode 100644 k8s-pb/src/api/coordination/v1alpha2/mod.rs delete mode 100644 k8s-pb/src/api/coordination/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/core/mod.rs delete mode 100644 k8s-pb/src/api/core/v1/mod.rs delete mode 100644 k8s-pb/src/api/discovery/mod.rs delete mode 100644 k8s-pb/src/api/discovery/v1/mod.rs delete mode 100644 k8s-pb/src/api/discovery/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/events/mod.rs delete mode 100644 k8s-pb/src/api/events/v1/mod.rs delete mode 100644 k8s-pb/src/api/events/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/extensions/mod.rs delete mode 100644 k8s-pb/src/api/extensions/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/flowcontrol/mod.rs delete mode 100644 k8s-pb/src/api/flowcontrol/v1/mod.rs delete mode 100644 k8s-pb/src/api/flowcontrol/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/flowcontrol/v1beta2/mod.rs delete mode 100644 k8s-pb/src/api/flowcontrol/v1beta3/mod.rs delete mode 100644 k8s-pb/src/api/imagepolicy/mod.rs delete mode 100644 k8s-pb/src/api/imagepolicy/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/mod.rs delete mode 100644 k8s-pb/src/api/networking/mod.rs delete mode 100644 k8s-pb/src/api/networking/v1/mod.rs delete mode 100644 k8s-pb/src/api/networking/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/node/mod.rs delete mode 100644 k8s-pb/src/api/node/v1/mod.rs delete mode 100644 k8s-pb/src/api/node/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/node/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/policy/mod.rs delete mode 100644 k8s-pb/src/api/policy/v1/mod.rs delete mode 100644 k8s-pb/src/api/policy/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/rbac/mod.rs delete mode 100644 k8s-pb/src/api/rbac/v1/mod.rs delete mode 100644 k8s-pb/src/api/rbac/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/rbac/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/resource/mod.rs delete mode 100644 k8s-pb/src/api/resource/v1/mod.rs delete mode 100644 k8s-pb/src/api/resource/v1alpha3/mod.rs delete mode 100644 k8s-pb/src/api/resource/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/resource/v1beta2/mod.rs delete mode 100644 k8s-pb/src/api/scheduling/mod.rs delete mode 100644 k8s-pb/src/api/scheduling/v1/mod.rs delete mode 100644 k8s-pb/src/api/scheduling/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/scheduling/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/storage/mod.rs delete mode 100644 k8s-pb/src/api/storage/v1/mod.rs delete mode 100644 k8s-pb/src/api/storage/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/api/storage/v1beta1/mod.rs delete mode 100644 k8s-pb/src/api/storagemigration/mod.rs delete mode 100644 k8s-pb/src/api/storagemigration/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/apiextensions_apiserver/mod.rs delete mode 100644 k8s-pb/src/apiextensions_apiserver/pkg/apis/apiextensions/mod.rs delete mode 100644 k8s-pb/src/apiextensions_apiserver/pkg/apis/apiextensions/v1/mod.rs delete mode 100644 k8s-pb/src/apiextensions_apiserver/pkg/apis/apiextensions/v1beta1/mod.rs delete mode 100644 k8s-pb/src/apiextensions_apiserver/pkg/apis/mod.rs delete mode 100644 k8s-pb/src/apiextensions_apiserver/pkg/mod.rs delete mode 100644 k8s-pb/src/apimachinery/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/api/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/api/resource/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/apis/meta/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/apis/meta/v1/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/apis/meta/v1beta1/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/apis/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/apis/testapigroup/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/apis/testapigroup/v1/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/runtime/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/util/intstr/mod.rs delete mode 100644 k8s-pb/src/apimachinery/pkg/util/mod.rs delete mode 100644 k8s-pb/src/kube_aggregator/mod.rs delete mode 100644 k8s-pb/src/kube_aggregator/pkg/apis/apiregistration/mod.rs delete mode 100644 k8s-pb/src/kube_aggregator/pkg/apis/apiregistration/v1/mod.rs delete mode 100644 k8s-pb/src/kube_aggregator/pkg/apis/apiregistration/v1beta1/mod.rs delete mode 100644 k8s-pb/src/kube_aggregator/pkg/apis/mod.rs delete mode 100644 k8s-pb/src/kube_aggregator/pkg/mod.rs delete mode 100644 k8s-pb/src/metrics/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/custom_metrics/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/custom_metrics/v1beta1/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/custom_metrics/v1beta2/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/external_metrics/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/external_metrics/v1beta1/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/metrics/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/metrics/v1alpha1/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/metrics/v1beta1/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/apis/mod.rs delete mode 100644 k8s-pb/src/metrics/pkg/mod.rs diff --git a/justfile b/justfile index 73f8ec0..e0fa05d 100644 --- a/justfile +++ b/justfile @@ -1,5 +1,5 @@ # renovate: datasource=github-releases depName=kubernetes/kubernetes -KUBERNETES_VERSION := "1.34.1" +KUBERNETES_VERSION := "1.34.2" export RUST_BACKTRACE := env_var_or_default("RUST_BACKTRACE", "full") diff --git a/k8s-pb/src/api/admission/mod.rs b/k8s-pb/src/api/admission/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/admission/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/admission/v1/mod.rs b/k8s-pb/src/api/admission/v1/mod.rs deleted file mode 100644 index d91465d..0000000 --- a/k8s-pb/src/api/admission/v1/mod.rs +++ /dev/null @@ -1,145 +0,0 @@ -// This file is @generated by prost-build. -/// AdmissionRequest describes the admission.Attributes for the admission request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AdmissionRequest { - /// UID is an identifier for the individual request/response. It allows us to distinguish instances of requests which are - /// otherwise identical (parallel requests, requests when earlier requests did not modify etc) - /// The UID is meant to track the round trip (request/response) between the KAS and the WebHook, not the user request. - /// It is suitable for correlating log entries between the webhook and apiserver, for either auditing or debugging. - #[prost(string, optional, tag = "1")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the fully-qualified type of object being submitted (for example, v1.Pod or autoscaling.v1.Scale) - #[prost(message, optional, tag = "2")] - pub kind: - ::core::option::Option, - /// Resource is the fully-qualified resource being requested (for example, v1.pods) - #[prost(message, optional, tag = "3")] - pub resource: - ::core::option::Option, - /// SubResource is the subresource being requested, if any (for example, "status" or "scale") - /// +optional - #[prost(string, optional, tag = "4")] - pub sub_resource: ::core::option::Option<::prost::alloc::string::String>, - /// RequestKind is the fully-qualified type of the original API request (for example, v1.Pod or autoscaling.v1.Scale). - /// If this is specified and differs from the value in "kind", an equivalent match and conversion was performed. - /// - /// For example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of - /// `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]` and `matchPolicy: Equivalent`, - /// an API request to apps/v1beta1 deployments would be converted and sent to the webhook - /// with `kind: {group:"apps", version:"v1", kind:"Deployment"}` (matching the rule the webhook registered for), - /// and `requestKind: {group:"apps", version:"v1beta1", kind:"Deployment"}` (indicating the kind of the original API request). - /// - /// See documentation for the "matchPolicy" field in the webhook configuration type for more details. - /// +optional - #[prost(message, optional, tag = "13")] - pub request_kind: - ::core::option::Option, - /// RequestResource is the fully-qualified resource of the original API request (for example, v1.pods). - /// If this is specified and differs from the value in "resource", an equivalent match and conversion was performed. - /// - /// For example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of - /// `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]` and `matchPolicy: Equivalent`, - /// an API request to apps/v1beta1 deployments would be converted and sent to the webhook - /// with `resource: {group:"apps", version:"v1", resource:"deployments"}` (matching the resource the webhook registered for), - /// and `requestResource: {group:"apps", version:"v1beta1", resource:"deployments"}` (indicating the resource of the original API request). - /// - /// See documentation for the "matchPolicy" field in the webhook configuration type. - /// +optional - #[prost(message, optional, tag = "14")] - pub request_resource: - ::core::option::Option, - /// RequestSubResource is the name of the subresource of the original API request, if any (for example, "status" or "scale") - /// If this is specified and differs from the value in "subResource", an equivalent match and conversion was performed. - /// See documentation for the "matchPolicy" field in the webhook configuration type. - /// +optional - #[prost(string, optional, tag = "15")] - pub request_sub_resource: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of the object as presented in the request. On a CREATE operation, the client may omit name and - /// rely on the server to generate the name. If that is the case, this field will contain an empty string. - /// +optional - #[prost(string, optional, tag = "5")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace is the namespace associated with the request (if any). - /// +optional - #[prost(string, optional, tag = "6")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Operation is the operation being performed. This may be different than the operation - /// requested. e.g. a patch can result in either a CREATE or UPDATE Operation. - #[prost(string, optional, tag = "7")] - pub operation: ::core::option::Option<::prost::alloc::string::String>, - /// UserInfo is information about the requesting user - #[prost(message, optional, tag = "8")] - pub user_info: ::core::option::Option, - /// Object is the object from the incoming request. - /// +optional - #[prost(message, optional, tag = "9")] - pub object: ::core::option::Option, - /// OldObject is the existing object. Only populated for DELETE and UPDATE requests. - /// +optional - #[prost(message, optional, tag = "10")] - pub old_object: ::core::option::Option, - /// DryRun indicates that modifications will definitely not be persisted for this request. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "11")] - pub dry_run: ::core::option::Option, - /// Options is the operation option structure of the operation being performed. - /// e.g. `meta.k8s.io/v1.DeleteOptions` or `meta.k8s.io/v1.CreateOptions`. This may be - /// different than the options the caller provided. e.g. for a patch request the performed - /// Operation might be a CREATE, in which case the Options will a - /// `meta.k8s.io/v1.CreateOptions` even though the caller provided `meta.k8s.io/v1.PatchOptions`. - /// +optional - #[prost(message, optional, tag = "12")] - pub options: ::core::option::Option, -} -/// AdmissionResponse describes an admission response. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AdmissionResponse { - /// UID is an identifier for the individual request/response. - /// This must be copied over from the corresponding AdmissionRequest. - #[prost(string, optional, tag = "1")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// Allowed indicates whether or not the admission request was permitted. - #[prost(bool, optional, tag = "2")] - pub allowed: ::core::option::Option, - /// Result contains extra details into why an admission request was denied. - /// This field IS NOT consulted in any way if "Allowed" is "true". - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, - /// The patch body. Currently we only support "JSONPatch" which implements RFC 6902. - /// +optional - #[prost(bytes = "vec", optional, tag = "4")] - pub patch: ::core::option::Option<::prost::alloc::vec::Vec>, - /// The type of Patch. Currently we only allow "JSONPatch". - /// +optional - #[prost(string, optional, tag = "5")] - pub patch_type: ::core::option::Option<::prost::alloc::string::String>, - /// AuditAnnotations is an unstructured key value map set by remote admission controller (e.g. error=image-blacklisted). - /// MutatingAdmissionWebhook and ValidatingAdmissionWebhook admission controller will prefix the keys with - /// admission webhook name (e.g. imagepolicy.example.com/error=image-blacklisted). AuditAnnotations will be provided by - /// the admission webhook to add additional context to the audit log for this request. - /// +optional - #[prost(btree_map = "string, string", tag = "6")] - pub audit_annotations: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// warnings is a list of warning messages to return to the requesting API client. - /// Warning messages describe a problem the client making the API request should correct or be aware of. - /// Limit warnings to 120 characters if possible. - /// Warnings over 256 characters and large numbers of warnings may be truncated. - /// +optional - #[prost(string, repeated, tag = "7")] - pub warnings: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// AdmissionReview describes an admission review request/response. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AdmissionReview { - /// Request describes the attributes for the admission request. - /// +optional - #[prost(message, optional, tag = "1")] - pub request: ::core::option::Option, - /// Response describes the attributes for the admission response. - /// +optional - #[prost(message, optional, tag = "2")] - pub response: ::core::option::Option, -} diff --git a/k8s-pb/src/api/admission/v1beta1/mod.rs b/k8s-pb/src/api/admission/v1beta1/mod.rs deleted file mode 100644 index 998319e..0000000 --- a/k8s-pb/src/api/admission/v1beta1/mod.rs +++ /dev/null @@ -1,145 +0,0 @@ -// This file is @generated by prost-build. -/// AdmissionRequest describes the admission.Attributes for the admission request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AdmissionRequest { - /// UID is an identifier for the individual request/response. It allows us to distinguish instances of requests which are - /// otherwise identical (parallel requests, requests when earlier requests did not modify etc) - /// The UID is meant to track the round trip (request/response) between the KAS and the WebHook, not the user request. - /// It is suitable for correlating log entries between the webhook and apiserver, for either auditing or debugging. - #[prost(string, optional, tag = "1")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the fully-qualified type of object being submitted (for example, v1.Pod or autoscaling.v1.Scale) - #[prost(message, optional, tag = "2")] - pub kind: - ::core::option::Option, - /// Resource is the fully-qualified resource being requested (for example, v1.pods) - #[prost(message, optional, tag = "3")] - pub resource: - ::core::option::Option, - /// SubResource is the subresource being requested, if any (for example, "status" or "scale") - /// +optional - #[prost(string, optional, tag = "4")] - pub sub_resource: ::core::option::Option<::prost::alloc::string::String>, - /// RequestKind is the fully-qualified type of the original API request (for example, v1.Pod or autoscaling.v1.Scale). - /// If this is specified and differs from the value in "kind", an equivalent match and conversion was performed. - /// - /// For example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of - /// `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]` and `matchPolicy: Equivalent`, - /// an API request to apps/v1beta1 deployments would be converted and sent to the webhook - /// with `kind: {group:"apps", version:"v1", kind:"Deployment"}` (matching the rule the webhook registered for), - /// and `requestKind: {group:"apps", version:"v1beta1", kind:"Deployment"}` (indicating the kind of the original API request). - /// - /// See documentation for the "matchPolicy" field in the webhook configuration type for more details. - /// +optional - #[prost(message, optional, tag = "13")] - pub request_kind: - ::core::option::Option, - /// RequestResource is the fully-qualified resource of the original API request (for example, v1.pods). - /// If this is specified and differs from the value in "resource", an equivalent match and conversion was performed. - /// - /// For example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of - /// `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]` and `matchPolicy: Equivalent`, - /// an API request to apps/v1beta1 deployments would be converted and sent to the webhook - /// with `resource: {group:"apps", version:"v1", resource:"deployments"}` (matching the resource the webhook registered for), - /// and `requestResource: {group:"apps", version:"v1beta1", resource:"deployments"}` (indicating the resource of the original API request). - /// - /// See documentation for the "matchPolicy" field in the webhook configuration type. - /// +optional - #[prost(message, optional, tag = "14")] - pub request_resource: - ::core::option::Option, - /// RequestSubResource is the name of the subresource of the original API request, if any (for example, "status" or "scale") - /// If this is specified and differs from the value in "subResource", an equivalent match and conversion was performed. - /// See documentation for the "matchPolicy" field in the webhook configuration type. - /// +optional - #[prost(string, optional, tag = "15")] - pub request_sub_resource: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of the object as presented in the request. On a CREATE operation, the client may omit name and - /// rely on the server to generate the name. If that is the case, this field will contain an empty string. - /// +optional - #[prost(string, optional, tag = "5")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace is the namespace associated with the request (if any). - /// +optional - #[prost(string, optional, tag = "6")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Operation is the operation being performed. This may be different than the operation - /// requested. e.g. a patch can result in either a CREATE or UPDATE Operation. - #[prost(string, optional, tag = "7")] - pub operation: ::core::option::Option<::prost::alloc::string::String>, - /// UserInfo is information about the requesting user - #[prost(message, optional, tag = "8")] - pub user_info: ::core::option::Option, - /// Object is the object from the incoming request. - /// +optional - #[prost(message, optional, tag = "9")] - pub object: ::core::option::Option, - /// OldObject is the existing object. Only populated for DELETE and UPDATE requests. - /// +optional - #[prost(message, optional, tag = "10")] - pub old_object: ::core::option::Option, - /// DryRun indicates that modifications will definitely not be persisted for this request. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "11")] - pub dry_run: ::core::option::Option, - /// Options is the operation option structure of the operation being performed. - /// e.g. `meta.k8s.io/v1.DeleteOptions` or `meta.k8s.io/v1.CreateOptions`. This may be - /// different than the options the caller provided. e.g. for a patch request the performed - /// Operation might be a CREATE, in which case the Options will a - /// `meta.k8s.io/v1.CreateOptions` even though the caller provided `meta.k8s.io/v1.PatchOptions`. - /// +optional - #[prost(message, optional, tag = "12")] - pub options: ::core::option::Option, -} -/// AdmissionResponse describes an admission response. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AdmissionResponse { - /// UID is an identifier for the individual request/response. - /// This should be copied over from the corresponding AdmissionRequest. - #[prost(string, optional, tag = "1")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// Allowed indicates whether or not the admission request was permitted. - #[prost(bool, optional, tag = "2")] - pub allowed: ::core::option::Option, - /// Result contains extra details into why an admission request was denied. - /// This field IS NOT consulted in any way if "Allowed" is "true". - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, - /// The patch body. Currently we only support "JSONPatch" which implements RFC 6902. - /// +optional - #[prost(bytes = "vec", optional, tag = "4")] - pub patch: ::core::option::Option<::prost::alloc::vec::Vec>, - /// The type of Patch. Currently we only allow "JSONPatch". - /// +optional - #[prost(string, optional, tag = "5")] - pub patch_type: ::core::option::Option<::prost::alloc::string::String>, - /// AuditAnnotations is an unstructured key value map set by remote admission controller (e.g. error=image-blacklisted). - /// MutatingAdmissionWebhook and ValidatingAdmissionWebhook admission controller will prefix the keys with - /// admission webhook name (e.g. imagepolicy.example.com/error=image-blacklisted). AuditAnnotations will be provided by - /// the admission webhook to add additional context to the audit log for this request. - /// +optional - #[prost(btree_map = "string, string", tag = "6")] - pub audit_annotations: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// warnings is a list of warning messages to return to the requesting API client. - /// Warning messages describe a problem the client making the API request should correct or be aware of. - /// Limit warnings to 120 characters if possible. - /// Warnings over 256 characters and large numbers of warnings may be truncated. - /// +optional - #[prost(string, repeated, tag = "7")] - pub warnings: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// AdmissionReview describes an admission review request/response. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AdmissionReview { - /// Request describes the attributes for the admission request. - /// +optional - #[prost(message, optional, tag = "1")] - pub request: ::core::option::Option, - /// Response describes the attributes for the admission response. - /// +optional - #[prost(message, optional, tag = "2")] - pub response: ::core::option::Option, -} diff --git a/k8s-pb/src/api/admissionregistration/mod.rs b/k8s-pb/src/api/admissionregistration/mod.rs deleted file mode 100644 index 5a1e260..0000000 --- a/k8s-pb/src/api/admissionregistration/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1alpha1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/admissionregistration/v1/mod.rs b/k8s-pb/src/api/admissionregistration/v1/mod.rs deleted file mode 100644 index bf83ce4..0000000 --- a/k8s-pb/src/api/admissionregistration/v1/mod.rs +++ /dev/null @@ -1,1225 +0,0 @@ -// This file is @generated by prost-build. -/// AuditAnnotation describes how to produce an audit annotation for an API request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AuditAnnotation { - /// key specifies the audit annotation key. The audit annotation keys of - /// a ValidatingAdmissionPolicy must be unique. The key must be a qualified - /// name ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length. - /// - /// The key is combined with the resource name of the - /// ValidatingAdmissionPolicy to construct an audit annotation key: - /// "{ValidatingAdmissionPolicy name}/{key}". - /// - /// If an admission webhook uses the same resource name as this ValidatingAdmissionPolicy - /// and the same audit annotation key, the annotation key will be identical. - /// In this case, the first annotation written with the key will be included - /// in the audit event and all subsequent annotations with the same key - /// will be discarded. - /// - /// Required. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// valueExpression represents the expression which is evaluated by CEL to - /// produce an audit annotation value. The expression must evaluate to either - /// a string or null value. If the expression evaluates to a string, the - /// audit annotation is included with the string value. If the expression - /// evaluates to null or empty string the audit annotation will be omitted. - /// The valueExpression may be no longer than 5kb in length. - /// If the result of the valueExpression is more than 10kb in length, it - /// will be truncated to 10kb. - /// - /// If multiple ValidatingAdmissionPolicyBinding resources match an - /// API request, then the valueExpression will be evaluated for - /// each binding. All unique values produced by the valueExpressions - /// will be joined together in a comma-separated list. - /// - /// Required. - #[prost(string, optional, tag = "2")] - pub value_expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExpressionWarning is a warning information that targets a specific expression. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExpressionWarning { - /// The path to the field that refers the expression. - /// For example, the reference to the expression of the first item of - /// validations is "spec.validations\[0\].expression" - #[prost(string, optional, tag = "2")] - pub field_ref: ::core::option::Option<::prost::alloc::string::String>, - /// The content of type checking information in a human-readable form. - /// Each line of the warning contains the type that the expression is checked - /// against, followed by the type check error from the compiler. - #[prost(string, optional, tag = "3")] - pub warning: ::core::option::Option<::prost::alloc::string::String>, -} -/// MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MatchCondition { - /// Name is an identifier for this match condition, used for strategic merging of MatchConditions, - /// as well as providing an identifier for logging purposes. A good name should be descriptive of - /// the associated expression. - /// Name must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and - /// must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or - /// '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\]') with an - /// optional DNS subdomain prefix and '/' (e.g. 'example.com/MyName') - /// - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Expression represents the expression which will be evaluated by CEL. Must evaluate to bool. - /// CEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables: - /// - /// 'object' - The object from the incoming request. The value is null for DELETE requests. - /// 'oldObject' - The existing object. The value is null for CREATE requests. - /// 'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest). - /// 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// Documentation on CEL: - /// - /// Required. - #[prost(string, optional, tag = "2")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// MatchResources decides whether to run the admission control policy on an object based -/// on whether it meets the match criteria. -/// The exclude rules take precedence over include rules (if a resource matches both, it is excluded) -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MatchResources { - /// NamespaceSelector decides whether to run the admission control policy on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the policy. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the policy on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "1")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the validation based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the cel validation, and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "2")] - pub object_selector: - ::core::option::Option, - /// ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches. - /// The policy cares about an operation if it matches _any_ Rule. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about. - /// The exclude rules take precedence over include rules (if a resource matches both, it is excluded) - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub exclude_resource_rules: ::prost::alloc::vec::Vec, - /// matchPolicy defines how the "MatchResources" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy. - /// - /// Defaults to "Equivalent" - /// +optional - #[prost(string, optional, tag = "7")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// MutatingWebhook describes an admission webhook and the resources and operations it applies to. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingWebhook { - /// The name of the admission webhook. - /// Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where - /// "imagepolicy" is the name of the webhook, and kubernetes.io is the name - /// of the organization. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// ClientConfig defines how to communicate with the hook. - /// Required - #[prost(message, optional, tag = "2")] - pub client_config: ::core::option::Option, - /// Rules describes what operations on what resources/subresources the webhook cares about. - /// The webhook cares about an operation if it matches _any_ Rule. - /// However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks - /// from putting the cluster in a state which cannot be recovered from without completely - /// disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called - /// on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects. - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, - /// FailurePolicy defines how unrecognized errors from the admission endpoint are handled - - /// allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// matchPolicy defines how the "rules" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook. - /// - /// Defaults to "Equivalent" - /// +optional - #[prost(string, optional, tag = "9")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, - /// NamespaceSelector decides whether to run the webhook on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the webhook. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the webhook on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "5")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the webhook based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the webhook, and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "11")] - pub object_selector: - ::core::option::Option, - /// SideEffects states whether this webhook has side effects. - /// Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). - /// Webhooks with side effects MUST implement a reconciliation system, since a request may be - /// rejected by a future step in the admission chain and the side effects therefore need to be undone. - /// Requests with the dryRun attribute will be auto-rejected if they match a webhook with - /// sideEffects == Unknown or Some. - #[prost(string, optional, tag = "6")] - pub side_effects: ::core::option::Option<::prost::alloc::string::String>, - /// TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, - /// the webhook call will be ignored or the API call will fail based on the - /// failure policy. - /// The timeout value must be between 1 and 30 seconds. - /// Default to 10 seconds. - /// +optional - #[prost(int32, optional, tag = "7")] - pub timeout_seconds: ::core::option::Option, - /// AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` - /// versions the Webhook expects. API server will try to use first version in - /// the list which it supports. If none of the versions specified in this list - /// supported by API server, validation will fail for this object. - /// If a persisted webhook configuration specifies allowed versions and does not - /// include any versions known to the API Server, calls to the webhook will fail - /// and be subject to the failure policy. - /// +listType=atomic - #[prost(string, repeated, tag = "8")] - pub admission_review_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// reinvocationPolicy indicates whether this webhook should be called multiple times as part of a single admission evaluation. - /// Allowed values are "Never" and "IfNeeded". - /// - /// Never: the webhook will not be called more than once in a single admission evaluation. - /// - /// IfNeeded: the webhook will be called at least one additional time as part of the admission evaluation - /// if the object being admitted is modified by other admission plugins after the initial webhook call. - /// Webhooks that specify this option *must* be idempotent, able to process objects they previously admitted. - /// Note: - /// * the number of additional invocations is not guaranteed to be exactly one. - /// * if additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again. - /// * webhooks that use this option may be reordered to minimize the number of additional invocations. - /// * to validate an object after all mutations are guaranteed complete, use a validating admission webhook instead. - /// - /// Defaults to "Never". - /// +optional - #[prost(string, optional, tag = "10")] - pub reinvocation_policy: ::core::option::Option<::prost::alloc::string::String>, - /// MatchConditions is a list of conditions that must be met for a request to be sent to this - /// webhook. Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the webhook is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the webhook is called. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the error is ignored and the webhook is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "12")] - pub match_conditions: ::prost::alloc::vec::Vec, -} -/// MutatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and may change the object. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingWebhookConfiguration { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Webhooks is a list of webhooks and the affected resources and operations. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "2")] - pub webhooks: ::prost::alloc::vec::Vec, -} -/// MutatingWebhookConfigurationList is a list of MutatingWebhookConfiguration. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingWebhookConfigurationList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of MutatingWebhookConfiguration. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NamedRuleWithOperations { - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "1")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// RuleWithOperations is a tuple of Operations and Resources. - #[prost(message, optional, tag = "2")] - pub rule_with_operations: ::core::option::Option, -} -/// ParamKind is a tuple of Group Kind and Version. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ParamKind { - /// APIVersion is the API group version the resources belong to. - /// In format of "group/version". - /// Required. - #[prost(string, optional, tag = "1")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the API kind the resources belong to. - /// Required. - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, -} -/// ParamRef describes how to locate the params to be used as input to -/// expressions of rules applied by a policy binding. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ParamRef { - /// name is the name of the resource being referenced. - /// - /// One of `name` or `selector` must be set, but `name` and `selector` are - /// mutually exclusive properties. If one is set, the other must be unset. - /// - /// A single parameter used for all admission requests can be configured - /// by setting the `name` field, leaving `selector` blank, and setting namespace - /// if `paramKind` is namespace-scoped. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// namespace is the namespace of the referenced resource. Allows limiting - /// the search for params to a specific namespace. Applies to both `name` and - /// `selector` fields. - /// - /// A per-namespace parameter may be used by specifying a namespace-scoped - /// `paramKind` in the policy and leaving this field empty. - /// - /// - If `paramKind` is cluster-scoped, this field MUST be unset. Setting this - /// field results in a configuration error. - /// - /// - If `paramKind` is namespace-scoped, the namespace of the object being - /// evaluated for admission will be used when this field is left unset. Take - /// care that if this is left empty the binding must not match any cluster-scoped - /// resources, which will result in an error. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// selector can be used to match multiple param objects based on their labels. - /// Supply selector: {} to match all resources of the ParamKind. - /// - /// If multiple params are found, they are all evaluated with the policy expressions - /// and the results are ANDed together. - /// - /// One of `name` or `selector` must be set, but `name` and `selector` are - /// mutually exclusive properties. If one is set, the other must be unset. - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, - /// `parameterNotFoundAction` controls the behavior of the binding when the resource - /// exists, and name or selector is valid, but there are no parameters - /// matched by the binding. If the value is set to `Allow`, then no - /// matched parameters will be treated as successful validation by the binding. - /// If set to `Deny`, then no matched parameters will be subject to the - /// `failurePolicy` of the policy. - /// - /// Allowed values are `Allow` or `Deny` - /// - /// Required - #[prost(string, optional, tag = "4")] - pub parameter_not_found_action: ::core::option::Option<::prost::alloc::string::String>, -} -/// Rule is a tuple of APIGroups, APIVersion, and Resources.It is recommended -/// to make sure that all the tuple expansions are valid. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Rule { - /// APIGroups is the API groups the resources belong to. '*' is all groups. - /// If '*' is present, the length of the slice must be one. - /// Required. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// APIVersions is the API versions the resources belong to. '*' is all versions. - /// If '*' is present, the length of the slice must be one. - /// Required. - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub api_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Resources is a list of resources this rule applies to. - /// - /// For example: - /// 'pods' means pods. - /// 'pods/log' means the log subresource of pods. - /// '*' means all resources, but not subresources. - /// 'pods/*' means all subresources of pods. - /// '*/scale' means all scale subresources. - /// '*/*' means all resources and their subresources. - /// - /// If wildcard is present, the validation rule will ensure resources do not - /// overlap with each other. - /// - /// Depending on the enclosing object, subresources might not be allowed. - /// Required. - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// scope specifies the scope of this rule. - /// Valid values are "Cluster", "Namespaced", and "*" - /// "Cluster" means that only cluster-scoped resources will match this rule. - /// Namespace API objects are cluster-scoped. - /// "Namespaced" means that only namespaced resources will match this rule. - /// "*" means that there are no scope restrictions. - /// Subresources match the scope of their parent resource. - /// Default is "*". - /// - /// +optional - #[prost(string, optional, tag = "4")] - pub scope: ::core::option::Option<::prost::alloc::string::String>, -} -/// RuleWithOperations is a tuple of Operations and Resources. It is recommended to make -/// sure that all the tuple expansions are valid. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RuleWithOperations { - /// Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * - /// for all of those operations and any future admission operations that are added. - /// If '*' is present, the length of the slice must be one. - /// Required. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub operations: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Rule is embedded, it describes other criteria of the rule, like - /// APIGroups, APIVersions, Resources, etc. - #[prost(message, optional, tag = "2")] - pub rule: ::core::option::Option, -} -/// ServiceReference holds a reference to Service.legacy.k8s.io -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceReference { - /// `namespace` is the namespace of the service. - /// Required - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// `name` is the name of the service. - /// Required - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// `path` is an optional URL path which will be sent in any request to - /// this service. - /// +optional - #[prost(string, optional, tag = "3")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// If specified, the port on the service that hosting webhook. - /// Default to 443 for backward compatibility. - /// `port` should be a valid port number (1-65535, inclusive). - /// +optional - #[prost(int32, optional, tag = "4")] - pub port: ::core::option::Option, -} -/// TypeChecking contains results of type checking the expressions in the -/// ValidatingAdmissionPolicy -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TypeChecking { - /// The type checking warnings for each expression. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub expression_warnings: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicy describes the definition of an admission validation policy that accepts or rejects an object without changing it. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicy { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the ValidatingAdmissionPolicy. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// The status of the ValidatingAdmissionPolicy, including warnings that are useful to determine if the policy - /// behaves in the expected way. - /// Populated by the system. - /// Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ValidatingAdmissionPolicyBinding binds the ValidatingAdmissionPolicy with paramerized resources. -/// ValidatingAdmissionPolicyBinding and parameter CRDs together define how cluster administrators configure policies for clusters. -/// -/// For a given admission request, each binding will cause its policy to be -/// evaluated N times, where N is 1 for policies/bindings that don't use -/// params, otherwise N is the number of parameters selected by the binding. -/// -/// The CEL expressions of a policy must have a computed CEL cost below the maximum -/// CEL budget. Each evaluation of the policy is given an independent CEL cost budget. -/// Adding/removing policies, bindings, or params can not affect whether a -/// given (policy, binding, param) combination is within its own CEL budget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBinding { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the ValidatingAdmissionPolicyBinding. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// ValidatingAdmissionPolicyBindingList is a list of ValidatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBindingList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of PolicyBinding. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicyBindingSpec is the specification of the ValidatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBindingSpec { - /// PolicyName references a ValidatingAdmissionPolicy name which the ValidatingAdmissionPolicyBinding binds to. - /// If the referenced resource does not exist, this binding is considered invalid and will be ignored - /// Required. - #[prost(string, optional, tag = "1")] - pub policy_name: ::core::option::Option<::prost::alloc::string::String>, - /// paramRef specifies the parameter resource used to configure the admission control policy. - /// It should point to a resource of the type specified in ParamKind of the bound ValidatingAdmissionPolicy. - /// If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the ValidatingAdmissionPolicy applied. - /// If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param. - /// +optional - #[prost(message, optional, tag = "2")] - pub param_ref: ::core::option::Option, - /// MatchResources declares what resources match this binding and will be validated by it. - /// Note that this is intersected with the policy's matchConstraints, so only requests that are matched by the policy can be selected by this. - /// If this is unset, all resources matched by the policy are validated by this binding - /// When resourceRules is unset, it does not constrain resource matching. If a resource is matched by the other fields of this object, it will be validated. - /// Note that this is differs from ValidatingAdmissionPolicy matchConstraints, where resourceRules are required. - /// +optional - #[prost(message, optional, tag = "3")] - pub match_resources: ::core::option::Option, - /// validationActions declares how Validations of the referenced ValidatingAdmissionPolicy are enforced. - /// If a validation evaluates to false it is always enforced according to these actions. - /// - /// Failures defined by the ValidatingAdmissionPolicy's FailurePolicy are enforced according - /// to these actions only if the FailurePolicy is set to Fail, otherwise the failures are - /// ignored. This includes compilation errors, runtime errors and misconfigurations of the policy. - /// - /// validationActions is declared as a set of action values. Order does - /// not matter. validationActions may not contain duplicates of the same action. - /// - /// The supported actions values are: - /// - /// "Deny" specifies that a validation failure results in a denied request. - /// - /// "Warn" specifies that a validation failure is reported to the request client - /// in HTTP Warning headers, with a warning code of 299. Warnings can be sent - /// both for allowed or denied admission responses. - /// - /// "Audit" specifies that a validation failure is included in the published - /// audit event for the request. The audit event will contain a - /// `validation.policy.admission.k8s.io/validation_failure` audit annotation - /// with a value containing the details of the validation failures, formatted as - /// a JSON list of objects, each with the following fields: - /// - message: The validation failure message string - /// - policy: The resource name of the ValidatingAdmissionPolicy - /// - binding: The resource name of the ValidatingAdmissionPolicyBinding - /// - expressionIndex: The index of the failed validations in the ValidatingAdmissionPolicy - /// - validationActions: The enforcement actions enacted for the validation failure - /// Example audit annotation: - /// `"validation.policy.admission.k8s.io/validation_failure": "\[{\"message\": \"Invalid value\", {\"policy\": \"policy.example.com\", {\"binding\": \"policybinding.example.com\", {\"expressionIndex\": \"1\", {\"validationActions\": [\"Audit\"\]}]"` - /// - /// Clients should expect to handle additional values by ignoring - /// any values not recognized. - /// - /// "Deny" and "Warn" may not be used together since this combination - /// needlessly duplicates the validation failure both in the - /// API response body and the HTTP warning headers. - /// - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "4")] - pub validation_actions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ValidatingAdmissionPolicyList is a list of ValidatingAdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingAdmissionPolicy. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicySpec is the specification of the desired behavior of the AdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicySpec { - /// ParamKind specifies the kind of resources used to parameterize this policy. - /// If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. - /// If ParamKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. - /// If paramKind is specified but paramRef is unset in ValidatingAdmissionPolicyBinding, the params variable will be null. - /// +optional - #[prost(message, optional, tag = "1")] - pub param_kind: ::core::option::Option, - /// MatchConstraints specifies what resources this policy is designed to validate. - /// The AdmissionPolicy cares about a request if it matches _all_ Constraints. - /// However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API - /// ValidatingAdmissionPolicy cannot match ValidatingAdmissionPolicy and ValidatingAdmissionPolicyBinding. - /// Required. - #[prost(message, optional, tag = "2")] - pub match_constraints: ::core::option::Option, - /// Validations contain CEL expressions which is used to apply the validation. - /// Validations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is - /// required. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub validations: ::prost::alloc::vec::Vec, - /// failurePolicy defines how to handle failures for the admission policy. Failures can - /// occur from CEL expression parse errors, type check errors, runtime errors and invalid - /// or mis-configured policy definitions or bindings. - /// - /// A policy is invalid if spec.paramKind refers to a non-existent Kind. - /// A binding is invalid if spec.paramRef.name refers to a non-existent resource. - /// - /// failurePolicy does not define how validations that evaluate to false are handled. - /// - /// When failurePolicy is set to Fail, ValidatingAdmissionPolicyBinding validationActions - /// define how failures are enforced. - /// - /// Allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// auditAnnotations contains CEL expressions which are used to produce audit - /// annotations for the audit event of the API request. - /// validations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is - /// required. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "5")] - pub audit_annotations: ::prost::alloc::vec::Vec, - /// MatchConditions is a list of conditions that must be met for a request to be validated. - /// Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// If a parameter object is provided, it can be accessed via the `params` handle in the same - /// manner as validation expressions. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the policy is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the policy is evaluated. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the policy is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "6")] - pub match_conditions: ::prost::alloc::vec::Vec, - /// Variables contain definitions of variables that can be used in composition of other expressions. - /// Each variable is defined as a named CEL expression. - /// The variables defined here will be available under `variables` in other expressions of the policy - /// except MatchConditions because MatchConditions are evaluated before the rest of the policy. - /// - /// The expression of a variable can refer to other variables defined earlier in the list but not those after. - /// Thus, Variables must be sorted by the order of first appearance and acyclic. - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "7")] - pub variables: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicyStatus represents the status of an admission validation policy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyStatus { - /// The generation observed by the controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// The results of type checking for each expression. - /// Presence of this field indicates the completion of the type checking. - /// +optional - #[prost(message, optional, tag = "2")] - pub type_checking: ::core::option::Option, - /// The conditions represent the latest available observations of a policy's current state. - /// +optional - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "3")] - pub conditions: - ::prost::alloc::vec::Vec, -} -/// ValidatingWebhook describes an admission webhook and the resources and operations it applies to. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingWebhook { - /// The name of the admission webhook. - /// Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where - /// "imagepolicy" is the name of the webhook, and kubernetes.io is the name - /// of the organization. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// ClientConfig defines how to communicate with the hook. - /// Required - #[prost(message, optional, tag = "2")] - pub client_config: ::core::option::Option, - /// Rules describes what operations on what resources/subresources the webhook cares about. - /// The webhook cares about an operation if it matches _any_ Rule. - /// However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks - /// from putting the cluster in a state which cannot be recovered from without completely - /// disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called - /// on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects. - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, - /// FailurePolicy defines how unrecognized errors from the admission endpoint are handled - - /// allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// matchPolicy defines how the "rules" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook. - /// - /// Defaults to "Equivalent" - /// +optional - #[prost(string, optional, tag = "9")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, - /// NamespaceSelector decides whether to run the webhook on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the webhook. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the webhook on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "5")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the webhook based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the webhook, and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "10")] - pub object_selector: - ::core::option::Option, - /// SideEffects states whether this webhook has side effects. - /// Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). - /// Webhooks with side effects MUST implement a reconciliation system, since a request may be - /// rejected by a future step in the admission chain and the side effects therefore need to be undone. - /// Requests with the dryRun attribute will be auto-rejected if they match a webhook with - /// sideEffects == Unknown or Some. - #[prost(string, optional, tag = "6")] - pub side_effects: ::core::option::Option<::prost::alloc::string::String>, - /// TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, - /// the webhook call will be ignored or the API call will fail based on the - /// failure policy. - /// The timeout value must be between 1 and 30 seconds. - /// Default to 10 seconds. - /// +optional - #[prost(int32, optional, tag = "7")] - pub timeout_seconds: ::core::option::Option, - /// AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` - /// versions the Webhook expects. API server will try to use first version in - /// the list which it supports. If none of the versions specified in this list - /// supported by API server, validation will fail for this object. - /// If a persisted webhook configuration specifies allowed versions and does not - /// include any versions known to the API Server, calls to the webhook will fail - /// and be subject to the failure policy. - /// +listType=atomic - #[prost(string, repeated, tag = "8")] - pub admission_review_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// MatchConditions is a list of conditions that must be met for a request to be sent to this - /// webhook. Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the webhook is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the webhook is called. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the error is ignored and the webhook is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "11")] - pub match_conditions: ::prost::alloc::vec::Vec, -} -/// ValidatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and object without changing it. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingWebhookConfiguration { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Webhooks is a list of webhooks and the affected resources and operations. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "2")] - pub webhooks: ::prost::alloc::vec::Vec, -} -/// ValidatingWebhookConfigurationList is a list of ValidatingWebhookConfiguration. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingWebhookConfigurationList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingWebhookConfiguration. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// Validation specifies the CEL expression which is used to apply the validation. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Validation { - /// Expression represents the expression which will be evaluated by CEL. - /// ref: - /// CEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the - /// object. No other metadata properties are accessible. - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Accessible property names are escaped according to the following rules when accessed in the expression: - /// - '__' escapes to '__underscores__' - /// - '.' escapes to '__dot__' - /// - '-' escapes to '__dash__' - /// - '/' escapes to '__slash__' - /// - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are: - /// "true", "false", "null", "in", "as", "break", "const", "continue", "else", "for", "function", "if", - /// "import", "let", "loop", "package", "namespace", "return". - /// Examples: - /// - Expression accessing a property named "namespace": {"Expression": "object.__namespace__ > 0"} - /// - Expression accessing a property named "x-prop": {"Expression": "object.x__dash__prop > 0"} - /// - Expression accessing a property named "redact__d": {"Expression": "object.redact__underscores__d > 0"} - /// - /// Equality on arrays with list type of 'set' or 'map' ignores element order, i.e. \[1, 2\] == \[2, 1\]. - /// Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type: - /// - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and - /// non-intersecting elements in `Y` are appended, retaining their partial order. - /// - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values - /// are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with - /// non-intersecting keys are appended, retaining their partial order. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, - /// Message represents the message displayed when validation fails. The message is required if the Expression contains - /// line breaks. The message must not contain line breaks. - /// If unset, the message is "failed rule: {Rule}". - /// e.g. "must be a URL with the host matching spec.host" - /// If the Expression contains line breaks. Message is required. - /// The message must not contain line breaks. - /// If unset, the message is "failed Expression: {Expression}". - /// +optional - #[prost(string, optional, tag = "2")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// Reason represents a machine-readable description of why this validation failed. - /// If this is the first validation in the list to fail, this reason, as well as the - /// corresponding HTTP response code, are used in the - /// HTTP response to the client. - /// The currently supported reasons are: "Unauthorized", "Forbidden", "Invalid", "RequestEntityTooLarge". - /// If not set, StatusReasonInvalid is used in the response to the client. - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails. - /// Since messageExpression is used as a failure message, it must evaluate to a string. - /// If both message and messageExpression are present on a validation, then messageExpression will be used if validation fails. - /// If messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced - /// as if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string - /// that contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and - /// the fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged. - /// messageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'. - /// Example: - /// "object.x must be less than max ("+string(params.max)+")" - /// +optional - #[prost(string, optional, tag = "4")] - pub message_expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// Variable is the definition of a variable that is used for composition. A variable is defined as a named expression. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Variable { - /// Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables. - /// The variable can be accessed in other expressions through `variables` - /// For example, if name is "foo", the variable will be available as `variables.foo` - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Expression is the expression that will be evaluated as the value of the variable. - /// The CEL expression has access to the same identifiers as the CEL expressions in Validation. - #[prost(string, optional, tag = "2")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// WebhookClientConfig contains the information to make a TLS -/// connection with the webhook -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct WebhookClientConfig { - /// `url` gives the location of the webhook, in standard URL form - /// (`scheme://host:port/path`). Exactly one of `url` or `service` - /// must be specified. - /// - /// The `host` should not refer to a service running in the cluster; use - /// the `service` field instead. The host might be resolved via external - /// DNS in some apiservers (e.g., `kube-apiserver` cannot resolve - /// in-cluster DNS as that would be a layering violation). `host` may - /// also be an IP address. - /// - /// Please note that using `localhost` or `127.0.0.1` as a `host` is - /// risky unless you take great care to run this webhook on all hosts - /// which run an apiserver which might need to make calls to this - /// webhook. Such installs are likely to be non-portable, i.e., not easy - /// to turn up in a new cluster. - /// - /// The scheme must be "https"; the URL must begin with " - /// - /// A path is optional, and if present may be any string permissible in - /// a URL. You may use the path to pass an arbitrary string to the - /// webhook, for example, a cluster identifier. - /// - /// Attempting to use a user or basic auth e.g. "user:password@" is not - /// allowed. Fragments ("#...") and query parameters ("?...") are not - /// allowed, either. - /// - /// +optional - #[prost(string, optional, tag = "3")] - pub url: ::core::option::Option<::prost::alloc::string::String>, - /// `service` is a reference to the service for this webhook. Either - /// `service` or `url` must be specified. - /// - /// If the webhook is running within the cluster, then you should use `service`. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub service: ::core::option::Option, - /// `caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. - /// If unspecified, system trust roots on the apiserver are used. - /// +optional - #[prost(bytes = "vec", optional, tag = "2")] - pub ca_bundle: ::core::option::Option<::prost::alloc::vec::Vec>, -} - -impl crate::Resource for MutatingWebhookConfiguration { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "MutatingWebhookConfiguration"; - const URL_PATH_SEGMENT: &'static str = "mutatingwebhookconfigurations"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for MutatingWebhookConfiguration { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for ValidatingAdmissionPolicy { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ValidatingAdmissionPolicy"; - const URL_PATH_SEGMENT: &'static str = "validatingadmissionpolicies"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ValidatingAdmissionPolicy { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ValidatingAdmissionPolicy { - type Spec = crate::api::admissionregistration::v1::ValidatingAdmissionPolicySpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for ValidatingAdmissionPolicy { - type Status = crate::api::admissionregistration::v1::ValidatingAdmissionPolicyStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for ValidatingAdmissionPolicy { - type Condition = crate::apimachinery::pkg::apis::meta::v1::Condition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for ValidatingAdmissionPolicyBinding { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ValidatingAdmissionPolicyBinding"; - const URL_PATH_SEGMENT: &'static str = "validatingadmissionpolicybindings"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ValidatingAdmissionPolicyBinding { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ValidatingAdmissionPolicyBinding { - type Spec = crate::api::admissionregistration::v1::ValidatingAdmissionPolicyBindingSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for ValidatingWebhookConfiguration { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ValidatingWebhookConfiguration"; - const URL_PATH_SEGMENT: &'static str = "validatingwebhookconfigurations"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ValidatingWebhookConfiguration { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} diff --git a/k8s-pb/src/api/admissionregistration/v1alpha1/mod.rs b/k8s-pb/src/api/admissionregistration/v1alpha1/mod.rs deleted file mode 100644 index be607b0..0000000 --- a/k8s-pb/src/api/admissionregistration/v1alpha1/mod.rs +++ /dev/null @@ -1,965 +0,0 @@ -// This file is @generated by prost-build. -/// ApplyConfiguration defines the desired configuration values of an object. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ApplyConfiguration { - /// expression will be evaluated by CEL to create an apply configuration. - /// ref: - /// - /// Apply configurations are declared in CEL using object initialization. For example, this CEL expression - /// returns an apply configuration to set a single field: - /// - /// Object{ - /// spec: Object.spec{ - /// serviceAccountName: "example" - /// } - /// } - /// - /// Apply configurations may not modify atomic structs, maps or arrays due to the risk of accidental deletion of - /// values not included in the apply configuration. - /// - /// CEL expressions have access to the object types needed to create apply configurations: - /// - /// - 'Object' - CEL type of the resource object. - /// - 'Object.' - CEL type of object field (such as 'Object.spec') - /// - 'Object.....` - CEL type of nested field (such as 'Object.spec.containers') - /// - /// CEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the - /// object. No other metadata properties are accessible. - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// AuditAnnotation describes how to produce an audit annotation for an API request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AuditAnnotation { - /// key specifies the audit annotation key. The audit annotation keys of - /// a ValidatingAdmissionPolicy must be unique. The key must be a qualified - /// name ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length. - /// - /// The key is combined with the resource name of the - /// ValidatingAdmissionPolicy to construct an audit annotation key: - /// "{ValidatingAdmissionPolicy name}/{key}". - /// - /// If an admission webhook uses the same resource name as this ValidatingAdmissionPolicy - /// and the same audit annotation key, the annotation key will be identical. - /// In this case, the first annotation written with the key will be included - /// in the audit event and all subsequent annotations with the same key - /// will be discarded. - /// - /// Required. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// valueExpression represents the expression which is evaluated by CEL to - /// produce an audit annotation value. The expression must evaluate to either - /// a string or null value. If the expression evaluates to a string, the - /// audit annotation is included with the string value. If the expression - /// evaluates to null or empty string the audit annotation will be omitted. - /// The valueExpression may be no longer than 5kb in length. - /// If the result of the valueExpression is more than 10kb in length, it - /// will be truncated to 10kb. - /// - /// If multiple ValidatingAdmissionPolicyBinding resources match an - /// API request, then the valueExpression will be evaluated for - /// each binding. All unique values produced by the valueExpressions - /// will be joined together in a comma-separated list. - /// - /// Required. - #[prost(string, optional, tag = "2")] - pub value_expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExpressionWarning is a warning information that targets a specific expression. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExpressionWarning { - /// The path to the field that refers the expression. - /// For example, the reference to the expression of the first item of - /// validations is "spec.validations\[0\].expression" - #[prost(string, optional, tag = "2")] - pub field_ref: ::core::option::Option<::prost::alloc::string::String>, - /// The content of type checking information in a human-readable form. - /// Each line of the warning contains the type that the expression is checked - /// against, followed by the type check error from the compiler. - #[prost(string, optional, tag = "3")] - pub warning: ::core::option::Option<::prost::alloc::string::String>, -} -/// JSONPatch defines a JSON Patch. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct JsonPatch { - /// expression will be evaluated by CEL to create a [JSON patch](). - /// ref: - /// - /// expression must return an array of JSONPatch values. - /// - /// For example, this CEL expression returns a JSON patch to conditionally modify a value: - /// - /// [ - /// JSONPatch{op: "test", path: "/spec/example", value: "Red"}, - /// JSONPatch{op: "replace", path: "/spec/example", value: "Green"} - /// ] - /// - /// To define an object for the patch value, use Object types. For example: - /// - /// [ - /// JSONPatch{ - /// op: "add", - /// path: "/spec/selector", - /// value: Object.spec.selector{matchLabels: {"environment": "test"}} - /// } - /// ] - /// - /// To use strings containing '/' and '~' as JSONPatch path keys, use "jsonpatch.escapeKey". For example: - /// - /// [ - /// JSONPatch{ - /// op: "add", - /// path: "/metadata/labels/" + jsonpatch.escapeKey("example.com/environment"), - /// value: "test" - /// }, - /// ] - /// - /// CEL expressions have access to the types needed to create JSON patches and objects: - /// - /// - 'JSONPatch' - CEL type of JSON Patch operations. JSONPatch has the fields 'op', 'from', 'path' and 'value'. - /// See [JSON patch]() for more details. The 'value' field may be set to any of: string, - /// integer, array, map or object. If set, the 'path' and 'from' fields must be set to a - /// [JSON pointer]() string, where the 'jsonpatch.escapeKey()' CEL - /// function may be used to escape path keys containing '/' and '~'. - /// - 'Object' - CEL type of the resource object. - /// - 'Object.' - CEL type of object field (such as 'Object.spec') - /// - 'Object.....` - CEL type of nested field (such as 'Object.spec.containers') - /// - /// CEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// CEL expressions have access to [Kubernetes CEL function libraries]() - /// as well as: - /// - /// - 'jsonpatch.escapeKey' - Performs JSONPatch key escaping. '~' and '/' are escaped as '~0' and `~1' respectively). - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MatchCondition { - /// Name is an identifier for this match condition, used for strategic merging of MatchConditions, - /// as well as providing an identifier for logging purposes. A good name should be descriptive of - /// the associated expression. - /// Name must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and - /// must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or - /// '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\]') with an - /// optional DNS subdomain prefix and '/' (e.g. 'example.com/MyName') - /// - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Expression represents the expression which will be evaluated by CEL. Must evaluate to bool. - /// CEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables: - /// - /// 'object' - The object from the incoming request. The value is null for DELETE requests. - /// 'oldObject' - The existing object. The value is null for CREATE requests. - /// 'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest). - /// 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// Documentation on CEL: - /// - /// Required. - #[prost(string, optional, tag = "2")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// MatchResources decides whether to run the admission control policy on an object based -/// on whether it meets the match criteria. -/// The exclude rules take precedence over include rules (if a resource matches both, it is excluded) -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MatchResources { - /// NamespaceSelector decides whether to run the admission control policy on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the policy. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the policy on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "1")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the policy based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the policy's expression (CEL), and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "2")] - pub object_selector: - ::core::option::Option, - /// ResourceRules describes what operations on what resources/subresources the admission policy matches. - /// The policy cares about an operation if it matches _any_ Rule. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// ExcludeResourceRules describes what operations on what resources/subresources the policy should not care about. - /// The exclude rules take precedence over include rules (if a resource matches both, it is excluded) - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub exclude_resource_rules: ::prost::alloc::vec::Vec, - /// matchPolicy defines how the "MatchResources" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// the admission policy does not consider requests to apps/v1beta1 or extensions/v1beta1 API groups. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// the admission policy **does** consider requests made to apps/v1beta1 or extensions/v1beta1 - /// API groups. The API server translates the request to a matched resource API if necessary. - /// - /// Defaults to "Equivalent" - /// +optional - #[prost(string, optional, tag = "7")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// MutatingAdmissionPolicy describes the definition of an admission mutation policy that mutates the object coming into admission chain. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicy { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the MutatingAdmissionPolicy. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// MutatingAdmissionPolicyBinding binds the MutatingAdmissionPolicy with parametrized resources. -/// MutatingAdmissionPolicyBinding and the optional parameter resource together define how cluster administrators -/// configure policies for clusters. -/// -/// For a given admission request, each binding will cause its policy to be -/// evaluated N times, where N is 1 for policies/bindings that don't use -/// params, otherwise N is the number of parameters selected by the binding. -/// Each evaluation is constrained by a [runtime cost budget](). -/// -/// Adding/removing policies, bindings, or params can not affect whether a -/// given (policy, binding, param) combination is within its own CEL budget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyBinding { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the MutatingAdmissionPolicyBinding. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// MutatingAdmissionPolicyBindingList is a list of MutatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyBindingList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of PolicyBinding. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// MutatingAdmissionPolicyBindingSpec is the specification of the MutatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyBindingSpec { - /// policyName references a MutatingAdmissionPolicy name which the MutatingAdmissionPolicyBinding binds to. - /// If the referenced resource does not exist, this binding is considered invalid and will be ignored - /// Required. - #[prost(string, optional, tag = "1")] - pub policy_name: ::core::option::Option<::prost::alloc::string::String>, - /// paramRef specifies the parameter resource used to configure the admission control policy. - /// It should point to a resource of the type specified in spec.ParamKind of the bound MutatingAdmissionPolicy. - /// If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the MutatingAdmissionPolicy applied. - /// If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param. - /// +optional - #[prost(message, optional, tag = "2")] - pub param_ref: ::core::option::Option, - /// matchResources limits what resources match this binding and may be mutated by it. - /// Note that if matchResources matches a resource, the resource must also match a policy's matchConstraints and - /// matchConditions before the resource may be mutated. - /// When matchResources is unset, it does not constrain resource matching, and only the policy's matchConstraints - /// and matchConditions must match for the resource to be mutated. - /// Additionally, matchResources.resourceRules are optional and do not constraint matching when unset. - /// Note that this is differs from MutatingAdmissionPolicy matchConstraints, where resourceRules are required. - /// The CREATE, UPDATE and CONNECT operations are allowed. The DELETE operation may not be matched. - /// '*' matches CREATE, UPDATE and CONNECT. - /// +optional - #[prost(message, optional, tag = "3")] - pub match_resources: ::core::option::Option, -} -/// MutatingAdmissionPolicyList is a list of MutatingAdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingAdmissionPolicy. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// MutatingAdmissionPolicySpec is the specification of the desired behavior of the admission policy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicySpec { - /// paramKind specifies the kind of resources used to parameterize this policy. - /// If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. - /// If paramKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. - /// If paramKind is specified but paramRef is unset in MutatingAdmissionPolicyBinding, the params variable will be null. - /// +optional - #[prost(message, optional, tag = "1")] - pub param_kind: ::core::option::Option, - /// matchConstraints specifies what resources this policy is designed to validate. - /// The MutatingAdmissionPolicy cares about a request if it matches _all_ Constraints. - /// However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API - /// MutatingAdmissionPolicy cannot match MutatingAdmissionPolicy and MutatingAdmissionPolicyBinding. - /// The CREATE, UPDATE and CONNECT operations are allowed. The DELETE operation may not be matched. - /// '*' matches CREATE, UPDATE and CONNECT. - /// Required. - #[prost(message, optional, tag = "2")] - pub match_constraints: ::core::option::Option, - /// variables contain definitions of variables that can be used in composition of other expressions. - /// Each variable is defined as a named CEL expression. - /// The variables defined here will be available under `variables` in other expressions of the policy - /// except matchConditions because matchConditions are evaluated before the rest of the policy. - /// - /// The expression of a variable can refer to other variables defined earlier in the list but not those after. - /// Thus, variables must be sorted by the order of first appearance and acyclic. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub variables: ::prost::alloc::vec::Vec, - /// mutations contain operations to perform on matching objects. - /// mutations may not be empty; a minimum of one mutation is required. - /// mutations are evaluated in order, and are reinvoked according to - /// the reinvocationPolicy. - /// The mutations of a policy are invoked for each binding of this policy - /// and reinvocation of mutations occurs on a per binding basis. - /// - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub mutations: ::prost::alloc::vec::Vec, - /// failurePolicy defines how to handle failures for the admission policy. Failures can - /// occur from CEL expression parse errors, type check errors, runtime errors and invalid - /// or mis-configured policy definitions or bindings. - /// - /// A policy is invalid if paramKind refers to a non-existent Kind. - /// A binding is invalid if paramRef.name refers to a non-existent resource. - /// - /// failurePolicy does not define how validations that evaluate to false are handled. - /// - /// Allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "5")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// matchConditions is a list of conditions that must be met for a request to be validated. - /// Match conditions filter requests that have already been matched by the matchConstraints. - /// An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// If a parameter object is provided, it can be accessed via the `params` handle in the same - /// manner as validation expressions. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the policy is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the policy is evaluated. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the policy is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "6")] - pub match_conditions: ::prost::alloc::vec::Vec, - /// reinvocationPolicy indicates whether mutations may be called multiple times per MutatingAdmissionPolicyBinding - /// as part of a single admission evaluation. - /// Allowed values are "Never" and "IfNeeded". - /// - /// Never: These mutations will not be called more than once per binding in a single admission evaluation. - /// - /// IfNeeded: These mutations may be invoked more than once per binding for a single admission request and there is no guarantee of - /// order with respect to other admission plugins, admission webhooks, bindings of this policy and admission policies. Mutations are only - /// reinvoked when mutations change the object after this mutation is invoked. - /// Required. - #[prost(string, optional, tag = "7")] - pub reinvocation_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// Mutation specifies the CEL expression which is used to apply the Mutation. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Mutation { - /// patchType indicates the patch strategy used. - /// Allowed values are "ApplyConfiguration" and "JSONPatch". - /// Required. - /// - /// +unionDiscriminator - #[prost(string, optional, tag = "2")] - pub patch_type: ::core::option::Option<::prost::alloc::string::String>, - /// applyConfiguration defines the desired configuration values of an object. - /// The configuration is applied to the admission object using - /// [structured merge diff](). - /// A CEL expression is used to create apply configuration. - #[prost(message, optional, tag = "3")] - pub apply_configuration: ::core::option::Option, - /// jsonPatch defines a [JSON patch]() operation to perform a mutation to the object. - /// A CEL expression is used to create the JSON patch. - #[prost(message, optional, tag = "4")] - pub json_patch: ::core::option::Option, -} -/// NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NamedRuleWithOperations { - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "1")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// RuleWithOperations is a tuple of Operations and Resources. - #[prost(message, optional, tag = "2")] - pub rule_with_operations: ::core::option::Option, -} -/// ParamKind is a tuple of Group Kind and Version. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ParamKind { - /// APIVersion is the API group version the resources belong to. - /// In format of "group/version". - /// Required. - #[prost(string, optional, tag = "1")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the API kind the resources belong to. - /// Required. - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, -} -/// ParamRef describes how to locate the params to be used as input to -/// expressions of rules applied by a policy binding. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ParamRef { - /// `name` is the name of the resource being referenced. - /// - /// `name` and `selector` are mutually exclusive properties. If one is set, - /// the other must be unset. - /// - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// namespace is the namespace of the referenced resource. Allows limiting - /// the search for params to a specific namespace. Applies to both `name` and - /// `selector` fields. - /// - /// A per-namespace parameter may be used by specifying a namespace-scoped - /// `paramKind` in the policy and leaving this field empty. - /// - /// - If `paramKind` is cluster-scoped, this field MUST be unset. Setting this - /// field results in a configuration error. - /// - /// - If `paramKind` is namespace-scoped, the namespace of the object being - /// evaluated for admission will be used when this field is left unset. Take - /// care that if this is left empty the binding must not match any cluster-scoped - /// resources, which will result in an error. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// selector can be used to match multiple param objects based on their labels. - /// Supply selector: {} to match all resources of the ParamKind. - /// - /// If multiple params are found, they are all evaluated with the policy expressions - /// and the results are ANDed together. - /// - /// One of `name` or `selector` must be set, but `name` and `selector` are - /// mutually exclusive properties. If one is set, the other must be unset. - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, - /// `parameterNotFoundAction` controls the behavior of the binding when the resource - /// exists, and name or selector is valid, but there are no parameters - /// matched by the binding. If the value is set to `Allow`, then no - /// matched parameters will be treated as successful validation by the binding. - /// If set to `Deny`, then no matched parameters will be subject to the - /// `failurePolicy` of the policy. - /// - /// Allowed values are `Allow` or `Deny` - /// Default to `Deny` - /// +optional - #[prost(string, optional, tag = "4")] - pub parameter_not_found_action: ::core::option::Option<::prost::alloc::string::String>, -} -/// TypeChecking contains results of type checking the expressions in the -/// ValidatingAdmissionPolicy -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TypeChecking { - /// The type checking warnings for each expression. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub expression_warnings: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicy describes the definition of an admission validation policy that accepts or rejects an object without changing it. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicy { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the ValidatingAdmissionPolicy. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// The status of the ValidatingAdmissionPolicy, including warnings that are useful to determine if the policy - /// behaves in the expected way. - /// Populated by the system. - /// Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ValidatingAdmissionPolicyBinding binds the ValidatingAdmissionPolicy with paramerized resources. -/// ValidatingAdmissionPolicyBinding and parameter CRDs together define how cluster administrators configure policies for clusters. -/// -/// For a given admission request, each binding will cause its policy to be -/// evaluated N times, where N is 1 for policies/bindings that don't use -/// params, otherwise N is the number of parameters selected by the binding. -/// -/// The CEL expressions of a policy must have a computed CEL cost below the maximum -/// CEL budget. Each evaluation of the policy is given an independent CEL cost budget. -/// Adding/removing policies, bindings, or params can not affect whether a -/// given (policy, binding, param) combination is within its own CEL budget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBinding { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the ValidatingAdmissionPolicyBinding. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// ValidatingAdmissionPolicyBindingList is a list of ValidatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBindingList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of PolicyBinding. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicyBindingSpec is the specification of the ValidatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBindingSpec { - /// PolicyName references a ValidatingAdmissionPolicy name which the ValidatingAdmissionPolicyBinding binds to. - /// If the referenced resource does not exist, this binding is considered invalid and will be ignored - /// Required. - #[prost(string, optional, tag = "1")] - pub policy_name: ::core::option::Option<::prost::alloc::string::String>, - /// paramRef specifies the parameter resource used to configure the admission control policy. - /// It should point to a resource of the type specified in ParamKind of the bound ValidatingAdmissionPolicy. - /// If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the ValidatingAdmissionPolicy applied. - /// If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param. - /// +optional - #[prost(message, optional, tag = "2")] - pub param_ref: ::core::option::Option, - /// MatchResources declares what resources match this binding and will be validated by it. - /// Note that this is intersected with the policy's matchConstraints, so only requests that are matched by the policy can be selected by this. - /// If this is unset, all resources matched by the policy are validated by this binding - /// When resourceRules is unset, it does not constrain resource matching. If a resource is matched by the other fields of this object, it will be validated. - /// Note that this is differs from ValidatingAdmissionPolicy matchConstraints, where resourceRules are required. - /// +optional - #[prost(message, optional, tag = "3")] - pub match_resources: ::core::option::Option, - /// validationActions declares how Validations of the referenced ValidatingAdmissionPolicy are enforced. - /// If a validation evaluates to false it is always enforced according to these actions. - /// - /// Failures defined by the ValidatingAdmissionPolicy's FailurePolicy are enforced according - /// to these actions only if the FailurePolicy is set to Fail, otherwise the failures are - /// ignored. This includes compilation errors, runtime errors and misconfigurations of the policy. - /// - /// validationActions is declared as a set of action values. Order does - /// not matter. validationActions may not contain duplicates of the same action. - /// - /// The supported actions values are: - /// - /// "Deny" specifies that a validation failure results in a denied request. - /// - /// "Warn" specifies that a validation failure is reported to the request client - /// in HTTP Warning headers, with a warning code of 299. Warnings can be sent - /// both for allowed or denied admission responses. - /// - /// "Audit" specifies that a validation failure is included in the published - /// audit event for the request. The audit event will contain a - /// `validation.policy.admission.k8s.io/validation_failure` audit annotation - /// with a value containing the details of the validation failures, formatted as - /// a JSON list of objects, each with the following fields: - /// - message: The validation failure message string - /// - policy: The resource name of the ValidatingAdmissionPolicy - /// - binding: The resource name of the ValidatingAdmissionPolicyBinding - /// - expressionIndex: The index of the failed validations in the ValidatingAdmissionPolicy - /// - validationActions: The enforcement actions enacted for the validation failure - /// Example audit annotation: - /// `"validation.policy.admission.k8s.io/validation_failure": "\[{\"message\": \"Invalid value\", {\"policy\": \"policy.example.com\", {\"binding\": \"policybinding.example.com\", {\"expressionIndex\": \"1\", {\"validationActions\": [\"Audit\"\]}]"` - /// - /// Clients should expect to handle additional values by ignoring - /// any values not recognized. - /// - /// "Deny" and "Warn" may not be used together since this combination - /// needlessly duplicates the validation failure both in the - /// API response body and the HTTP warning headers. - /// - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "4")] - pub validation_actions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ValidatingAdmissionPolicyList is a list of ValidatingAdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingAdmissionPolicy. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicySpec is the specification of the desired behavior of the AdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicySpec { - /// ParamKind specifies the kind of resources used to parameterize this policy. - /// If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. - /// If ParamKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. - /// If paramKind is specified but paramRef is unset in ValidatingAdmissionPolicyBinding, the params variable will be null. - /// +optional - #[prost(message, optional, tag = "1")] - pub param_kind: ::core::option::Option, - /// MatchConstraints specifies what resources this policy is designed to validate. - /// The AdmissionPolicy cares about a request if it matches _all_ Constraints. - /// However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API - /// ValidatingAdmissionPolicy cannot match ValidatingAdmissionPolicy and ValidatingAdmissionPolicyBinding. - /// Required. - #[prost(message, optional, tag = "2")] - pub match_constraints: ::core::option::Option, - /// Validations contain CEL expressions which is used to apply the validation. - /// Validations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is - /// required. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub validations: ::prost::alloc::vec::Vec, - /// failurePolicy defines how to handle failures for the admission policy. Failures can - /// occur from CEL expression parse errors, type check errors, runtime errors and invalid - /// or mis-configured policy definitions or bindings. - /// - /// A policy is invalid if spec.paramKind refers to a non-existent Kind. - /// A binding is invalid if spec.paramRef.name refers to a non-existent resource. - /// - /// failurePolicy does not define how validations that evaluate to false are handled. - /// - /// When failurePolicy is set to Fail, ValidatingAdmissionPolicyBinding validationActions - /// define how failures are enforced. - /// - /// Allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// auditAnnotations contains CEL expressions which are used to produce audit - /// annotations for the audit event of the API request. - /// validations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is - /// required. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "5")] - pub audit_annotations: ::prost::alloc::vec::Vec, - /// MatchConditions is a list of conditions that must be met for a request to be validated. - /// Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// If a parameter object is provided, it can be accessed via the `params` handle in the same - /// manner as validation expressions. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the policy is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the policy is evaluated. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the policy is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "6")] - pub match_conditions: ::prost::alloc::vec::Vec, - /// Variables contain definitions of variables that can be used in composition of other expressions. - /// Each variable is defined as a named CEL expression. - /// The variables defined here will be available under `variables` in other expressions of the policy - /// except MatchConditions because MatchConditions are evaluated before the rest of the policy. - /// - /// The expression of a variable can refer to other variables defined earlier in the list but not those after. - /// Thus, Variables must be sorted by the order of first appearance and acyclic. - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "7")] - pub variables: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicyStatus represents the status of a ValidatingAdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyStatus { - /// The generation observed by the controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// The results of type checking for each expression. - /// Presence of this field indicates the completion of the type checking. - /// +optional - #[prost(message, optional, tag = "2")] - pub type_checking: ::core::option::Option, - /// The conditions represent the latest available observations of a policy's current state. - /// +optional - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "3")] - pub conditions: - ::prost::alloc::vec::Vec, -} -/// Validation specifies the CEL expression which is used to apply the validation. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Validation { - /// Expression represents the expression which will be evaluated by CEL. - /// ref: - /// CEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the - /// object. No other metadata properties are accessible. - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Accessible property names are escaped according to the following rules when accessed in the expression: - /// - '__' escapes to '__underscores__' - /// - '.' escapes to '__dot__' - /// - '-' escapes to '__dash__' - /// - '/' escapes to '__slash__' - /// - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are: - /// "true", "false", "null", "in", "as", "break", "const", "continue", "else", "for", "function", "if", - /// "import", "let", "loop", "package", "namespace", "return". - /// Examples: - /// - Expression accessing a property named "namespace": {"Expression": "object.__namespace__ > 0"} - /// - Expression accessing a property named "x-prop": {"Expression": "object.x__dash__prop > 0"} - /// - Expression accessing a property named "redact__d": {"Expression": "object.redact__underscores__d > 0"} - /// - /// Equality on arrays with list type of 'set' or 'map' ignores element order, i.e. \[1, 2\] == \[2, 1\]. - /// Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type: - /// - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and - /// non-intersecting elements in `Y` are appended, retaining their partial order. - /// - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values - /// are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with - /// non-intersecting keys are appended, retaining their partial order. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, - /// Message represents the message displayed when validation fails. The message is required if the Expression contains - /// line breaks. The message must not contain line breaks. - /// If unset, the message is "failed rule: {Rule}". - /// e.g. "must be a URL with the host matching spec.host" - /// If the Expression contains line breaks. Message is required. - /// The message must not contain line breaks. - /// If unset, the message is "failed Expression: {Expression}". - /// +optional - #[prost(string, optional, tag = "2")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// Reason represents a machine-readable description of why this validation failed. - /// If this is the first validation in the list to fail, this reason, as well as the - /// corresponding HTTP response code, are used in the - /// HTTP response to the client. - /// The currently supported reasons are: "Unauthorized", "Forbidden", "Invalid", "RequestEntityTooLarge". - /// If not set, StatusReasonInvalid is used in the response to the client. - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails. - /// Since messageExpression is used as a failure message, it must evaluate to a string. - /// If both message and messageExpression are present on a validation, then messageExpression will be used if validation fails. - /// If messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced - /// as if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string - /// that contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and - /// the fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged. - /// messageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'. - /// Example: - /// "object.x must be less than max ("+string(params.max)+")" - /// +optional - #[prost(string, optional, tag = "4")] - pub message_expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// Variable is the definition of a variable that is used for composition. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Variable { - /// Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables. - /// The variable can be accessed in other expressions through `variables` - /// For example, if name is "foo", the variable will be available as `variables.foo` - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Expression is the expression that will be evaluated as the value of the variable. - /// The CEL expression has access to the same identifiers as the CEL expressions in Validation. - #[prost(string, optional, tag = "2")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for MutatingAdmissionPolicy { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1alpha1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1alpha1"; - const KIND: &'static str = "MutatingAdmissionPolicy"; - const URL_PATH_SEGMENT: &'static str = "mutatingadmissionpolicies"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for MutatingAdmissionPolicy { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for MutatingAdmissionPolicy { - type Spec = crate::api::admissionregistration::v1alpha1::MutatingAdmissionPolicySpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for MutatingAdmissionPolicyBinding { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1alpha1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1alpha1"; - const KIND: &'static str = "MutatingAdmissionPolicyBinding"; - const URL_PATH_SEGMENT: &'static str = "mutatingadmissionpolicybindings"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for MutatingAdmissionPolicyBinding { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for MutatingAdmissionPolicyBinding { - type Spec = crate::api::admissionregistration::v1alpha1::MutatingAdmissionPolicyBindingSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} diff --git a/k8s-pb/src/api/admissionregistration/v1beta1/mod.rs b/k8s-pb/src/api/admissionregistration/v1beta1/mod.rs deleted file mode 100644 index a2bf42b..0000000 --- a/k8s-pb/src/api/admissionregistration/v1beta1/mod.rs +++ /dev/null @@ -1,1434 +0,0 @@ -// This file is @generated by prost-build. -/// ApplyConfiguration defines the desired configuration values of an object. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ApplyConfiguration { - /// expression will be evaluated by CEL to create an apply configuration. - /// ref: - /// - /// Apply configurations are declared in CEL using object initialization. For example, this CEL expression - /// returns an apply configuration to set a single field: - /// - /// Object{ - /// spec: Object.spec{ - /// serviceAccountName: "example" - /// } - /// } - /// - /// Apply configurations may not modify atomic structs, maps or arrays due to the risk of accidental deletion of - /// values not included in the apply configuration. - /// - /// CEL expressions have access to the object types needed to create apply configurations: - /// - /// - 'Object' - CEL type of the resource object. - /// - 'Object.' - CEL type of object field (such as 'Object.spec') - /// - 'Object.....` - CEL type of nested field (such as 'Object.spec.containers') - /// - /// CEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the - /// object. No other metadata properties are accessible. - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// AuditAnnotation describes how to produce an audit annotation for an API request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AuditAnnotation { - /// key specifies the audit annotation key. The audit annotation keys of - /// a ValidatingAdmissionPolicy must be unique. The key must be a qualified - /// name ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length. - /// - /// The key is combined with the resource name of the - /// ValidatingAdmissionPolicy to construct an audit annotation key: - /// "{ValidatingAdmissionPolicy name}/{key}". - /// - /// If an admission webhook uses the same resource name as this ValidatingAdmissionPolicy - /// and the same audit annotation key, the annotation key will be identical. - /// In this case, the first annotation written with the key will be included - /// in the audit event and all subsequent annotations with the same key - /// will be discarded. - /// - /// Required. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// valueExpression represents the expression which is evaluated by CEL to - /// produce an audit annotation value. The expression must evaluate to either - /// a string or null value. If the expression evaluates to a string, the - /// audit annotation is included with the string value. If the expression - /// evaluates to null or empty string the audit annotation will be omitted. - /// The valueExpression may be no longer than 5kb in length. - /// If the result of the valueExpression is more than 10kb in length, it - /// will be truncated to 10kb. - /// - /// If multiple ValidatingAdmissionPolicyBinding resources match an - /// API request, then the valueExpression will be evaluated for - /// each binding. All unique values produced by the valueExpressions - /// will be joined together in a comma-separated list. - /// - /// Required. - #[prost(string, optional, tag = "2")] - pub value_expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExpressionWarning is a warning information that targets a specific expression. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExpressionWarning { - /// The path to the field that refers the expression. - /// For example, the reference to the expression of the first item of - /// validations is "spec.validations\[0\].expression" - #[prost(string, optional, tag = "2")] - pub field_ref: ::core::option::Option<::prost::alloc::string::String>, - /// The content of type checking information in a human-readable form. - /// Each line of the warning contains the type that the expression is checked - /// against, followed by the type check error from the compiler. - #[prost(string, optional, tag = "3")] - pub warning: ::core::option::Option<::prost::alloc::string::String>, -} -/// JSONPatch defines a JSON Patch. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct JsonPatch { - /// expression will be evaluated by CEL to create a [JSON patch](). - /// ref: - /// - /// expression must return an array of JSONPatch values. - /// - /// For example, this CEL expression returns a JSON patch to conditionally modify a value: - /// - /// [ - /// JSONPatch{op: "test", path: "/spec/example", value: "Red"}, - /// JSONPatch{op: "replace", path: "/spec/example", value: "Green"} - /// ] - /// - /// To define an object for the patch value, use Object types. For example: - /// - /// [ - /// JSONPatch{ - /// op: "add", - /// path: "/spec/selector", - /// value: Object.spec.selector{matchLabels: {"environment": "test"}} - /// } - /// ] - /// - /// To use strings containing '/' and '~' as JSONPatch path keys, use "jsonpatch.escapeKey". For example: - /// - /// [ - /// JSONPatch{ - /// op: "add", - /// path: "/metadata/labels/" + jsonpatch.escapeKey("example.com/environment"), - /// value: "test" - /// }, - /// ] - /// - /// CEL expressions have access to the types needed to create JSON patches and objects: - /// - /// - 'JSONPatch' - CEL type of JSON Patch operations. JSONPatch has the fields 'op', 'from', 'path' and 'value'. - /// See [JSON patch]() for more details. The 'value' field may be set to any of: string, - /// integer, array, map or object. If set, the 'path' and 'from' fields must be set to a - /// [JSON pointer]() string, where the 'jsonpatch.escapeKey()' CEL - /// function may be used to escape path keys containing '/' and '~'. - /// - 'Object' - CEL type of the resource object. - /// - 'Object.' - CEL type of object field (such as 'Object.spec') - /// - 'Object.....` - CEL type of nested field (such as 'Object.spec.containers') - /// - /// CEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// CEL expressions have access to [Kubernetes CEL function libraries]() - /// as well as: - /// - /// - 'jsonpatch.escapeKey' - Performs JSONPatch key escaping. '~' and '/' are escaped as '~0' and `~1' respectively). - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// MatchCondition represents a condition which must be fulfilled for a request to be sent to a webhook. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MatchCondition { - /// Name is an identifier for this match condition, used for strategic merging of MatchConditions, - /// as well as providing an identifier for logging purposes. A good name should be descriptive of - /// the associated expression. - /// Name must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and - /// must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or - /// '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\]') with an - /// optional DNS subdomain prefix and '/' (e.g. 'example.com/MyName') - /// - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Expression represents the expression which will be evaluated by CEL. Must evaluate to bool. - /// CEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables: - /// - /// 'object' - The object from the incoming request. The value is null for DELETE requests. - /// 'oldObject' - The existing object. The value is null for CREATE requests. - /// 'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest). - /// 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// Documentation on CEL: - /// - /// Required. - #[prost(string, optional, tag = "2")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// MatchResources decides whether to run the admission control policy on an object based -/// on whether it meets the match criteria. -/// The exclude rules take precedence over include rules (if a resource matches both, it is excluded) -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MatchResources { - /// NamespaceSelector decides whether to run the admission control policy on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the policy. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the policy on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "1")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the validation based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the cel validation, and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "2")] - pub object_selector: - ::core::option::Option, - /// ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches. - /// The policy cares about an operation if it matches _any_ Rule. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about. - /// The exclude rules take precedence over include rules (if a resource matches both, it is excluded) - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub exclude_resource_rules: ::prost::alloc::vec::Vec, - /// matchPolicy defines how the "MatchResources" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy. - /// - /// Defaults to "Equivalent" - /// +optional - #[prost(string, optional, tag = "7")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// MutatingAdmissionPolicy describes the definition of an admission mutation policy that mutates the object coming into admission chain. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicy { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the MutatingAdmissionPolicy. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// MutatingAdmissionPolicyBinding binds the MutatingAdmissionPolicy with parametrized resources. -/// MutatingAdmissionPolicyBinding and the optional parameter resource together define how cluster administrators -/// configure policies for clusters. -/// -/// For a given admission request, each binding will cause its policy to be -/// evaluated N times, where N is 1 for policies/bindings that don't use -/// params, otherwise N is the number of parameters selected by the binding. -/// Each evaluation is constrained by a [runtime cost budget](). -/// -/// Adding/removing policies, bindings, or params can not affect whether a -/// given (policy, binding, param) combination is within its own CEL budget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyBinding { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the MutatingAdmissionPolicyBinding. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// MutatingAdmissionPolicyBindingList is a list of MutatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyBindingList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of PolicyBinding. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// MutatingAdmissionPolicyBindingSpec is the specification of the MutatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyBindingSpec { - /// policyName references a MutatingAdmissionPolicy name which the MutatingAdmissionPolicyBinding binds to. - /// If the referenced resource does not exist, this binding is considered invalid and will be ignored - /// Required. - #[prost(string, optional, tag = "1")] - pub policy_name: ::core::option::Option<::prost::alloc::string::String>, - /// paramRef specifies the parameter resource used to configure the admission control policy. - /// It should point to a resource of the type specified in spec.ParamKind of the bound MutatingAdmissionPolicy. - /// If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the MutatingAdmissionPolicy applied. - /// If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param. - /// +optional - #[prost(message, optional, tag = "2")] - pub param_ref: ::core::option::Option, - /// matchResources limits what resources match this binding and may be mutated by it. - /// Note that if matchResources matches a resource, the resource must also match a policy's matchConstraints and - /// matchConditions before the resource may be mutated. - /// When matchResources is unset, it does not constrain resource matching, and only the policy's matchConstraints - /// and matchConditions must match for the resource to be mutated. - /// Additionally, matchResources.resourceRules are optional and do not constraint matching when unset. - /// Note that this is differs from MutatingAdmissionPolicy matchConstraints, where resourceRules are required. - /// The CREATE, UPDATE and CONNECT operations are allowed. The DELETE operation may not be matched. - /// '*' matches CREATE, UPDATE and CONNECT. - /// +optional - #[prost(message, optional, tag = "3")] - pub match_resources: ::core::option::Option, -} -/// MutatingAdmissionPolicyList is a list of MutatingAdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingAdmissionPolicy. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// MutatingAdmissionPolicySpec is the specification of the desired behavior of the admission policy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingAdmissionPolicySpec { - /// paramKind specifies the kind of resources used to parameterize this policy. - /// If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. - /// If paramKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. - /// If paramKind is specified but paramRef is unset in MutatingAdmissionPolicyBinding, the params variable will be null. - /// +optional - #[prost(message, optional, tag = "1")] - pub param_kind: ::core::option::Option, - /// matchConstraints specifies what resources this policy is designed to validate. - /// The MutatingAdmissionPolicy cares about a request if it matches _all_ Constraints. - /// However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API - /// MutatingAdmissionPolicy cannot match MutatingAdmissionPolicy and MutatingAdmissionPolicyBinding. - /// The CREATE, UPDATE and CONNECT operations are allowed. The DELETE operation may not be matched. - /// '*' matches CREATE, UPDATE and CONNECT. - /// Required. - #[prost(message, optional, tag = "2")] - pub match_constraints: ::core::option::Option, - /// variables contain definitions of variables that can be used in composition of other expressions. - /// Each variable is defined as a named CEL expression. - /// The variables defined here will be available under `variables` in other expressions of the policy - /// except matchConditions because matchConditions are evaluated before the rest of the policy. - /// - /// The expression of a variable can refer to other variables defined earlier in the list but not those after. - /// Thus, variables must be sorted by the order of first appearance and acyclic. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub variables: ::prost::alloc::vec::Vec, - /// mutations contain operations to perform on matching objects. - /// mutations may not be empty; a minimum of one mutation is required. - /// mutations are evaluated in order, and are reinvoked according to - /// the reinvocationPolicy. - /// The mutations of a policy are invoked for each binding of this policy - /// and reinvocation of mutations occurs on a per binding basis. - /// - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub mutations: ::prost::alloc::vec::Vec, - /// failurePolicy defines how to handle failures for the admission policy. Failures can - /// occur from CEL expression parse errors, type check errors, runtime errors and invalid - /// or mis-configured policy definitions or bindings. - /// - /// A policy is invalid if paramKind refers to a non-existent Kind. - /// A binding is invalid if paramRef.name refers to a non-existent resource. - /// - /// failurePolicy does not define how validations that evaluate to false are handled. - /// - /// Allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "5")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// matchConditions is a list of conditions that must be met for a request to be validated. - /// Match conditions filter requests that have already been matched by the matchConstraints. - /// An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// If a parameter object is provided, it can be accessed via the `params` handle in the same - /// manner as validation expressions. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the policy is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the policy is evaluated. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the policy is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "6")] - pub match_conditions: ::prost::alloc::vec::Vec, - /// reinvocationPolicy indicates whether mutations may be called multiple times per MutatingAdmissionPolicyBinding - /// as part of a single admission evaluation. - /// Allowed values are "Never" and "IfNeeded". - /// - /// Never: These mutations will not be called more than once per binding in a single admission evaluation. - /// - /// IfNeeded: These mutations may be invoked more than once per binding for a single admission request and there is no guarantee of - /// order with respect to other admission plugins, admission webhooks, bindings of this policy and admission policies. Mutations are only - /// reinvoked when mutations change the object after this mutation is invoked. - /// Required. - #[prost(string, optional, tag = "7")] - pub reinvocation_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// MutatingWebhook describes an admission webhook and the resources and operations it applies to. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingWebhook { - /// The name of the admission webhook. - /// Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where - /// "imagepolicy" is the name of the webhook, and kubernetes.io is the name - /// of the organization. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// ClientConfig defines how to communicate with the hook. - /// Required - #[prost(message, optional, tag = "2")] - pub client_config: ::core::option::Option, - /// Rules describes what operations on what resources/subresources the webhook cares about. - /// The webhook cares about an operation if it matches _any_ Rule. - /// However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks - /// from putting the cluster in a state which cannot be recovered from without completely - /// disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called - /// on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects. - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, - /// FailurePolicy defines how unrecognized errors from the admission endpoint are handled - - /// allowed values are Ignore or Fail. Defaults to Ignore. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// matchPolicy defines how the "rules" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook. - /// - /// Defaults to "Exact" - /// +optional - #[prost(string, optional, tag = "9")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, - /// NamespaceSelector decides whether to run the webhook on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the webhook. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the webhook on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "5")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the webhook based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the webhook, and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "11")] - pub object_selector: - ::core::option::Option, - /// SideEffects states whether this webhook has side effects. - /// Acceptable values are: Unknown, None, Some, NoneOnDryRun - /// Webhooks with side effects MUST implement a reconciliation system, since a request may be - /// rejected by a future step in the admission chain and the side effects therefore need to be undone. - /// Requests with the dryRun attribute will be auto-rejected if they match a webhook with - /// sideEffects == Unknown or Some. Defaults to Unknown. - /// +optional - #[prost(string, optional, tag = "6")] - pub side_effects: ::core::option::Option<::prost::alloc::string::String>, - /// TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, - /// the webhook call will be ignored or the API call will fail based on the - /// failure policy. - /// The timeout value must be between 1 and 30 seconds. - /// Default to 30 seconds. - /// +optional - #[prost(int32, optional, tag = "7")] - pub timeout_seconds: ::core::option::Option, - /// AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` - /// versions the Webhook expects. API server will try to use first version in - /// the list which it supports. If none of the versions specified in this list - /// supported by API server, validation will fail for this object. - /// If a persisted webhook configuration specifies allowed versions and does not - /// include any versions known to the API Server, calls to the webhook will fail - /// and be subject to the failure policy. - /// Default to `\['v1beta1'\]`. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "8")] - pub admission_review_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// reinvocationPolicy indicates whether this webhook should be called multiple times as part of a single admission evaluation. - /// Allowed values are "Never" and "IfNeeded". - /// - /// Never: the webhook will not be called more than once in a single admission evaluation. - /// - /// IfNeeded: the webhook will be called at least one additional time as part of the admission evaluation - /// if the object being admitted is modified by other admission plugins after the initial webhook call. - /// Webhooks that specify this option *must* be idempotent, able to process objects they previously admitted. - /// Note: - /// * the number of additional invocations is not guaranteed to be exactly one. - /// * if additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again. - /// * webhooks that use this option may be reordered to minimize the number of additional invocations. - /// * to validate an object after all mutations are guaranteed complete, use a validating admission webhook instead. - /// - /// Defaults to "Never". - /// +optional - #[prost(string, optional, tag = "10")] - pub reinvocation_policy: ::core::option::Option<::prost::alloc::string::String>, - /// MatchConditions is a list of conditions that must be met for a request to be sent to this - /// webhook. Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the webhook is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the webhook is called. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the error is ignored and the webhook is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "12")] - pub match_conditions: ::prost::alloc::vec::Vec, -} -/// MutatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and may change the object. -/// Deprecated in v1.16, planned for removal in v1.19. Use admissionregistration.k8s.io/v1 MutatingWebhookConfiguration instead. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingWebhookConfiguration { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Webhooks is a list of webhooks and the affected resources and operations. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "2")] - pub webhooks: ::prost::alloc::vec::Vec, -} -/// MutatingWebhookConfigurationList is a list of MutatingWebhookConfiguration. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MutatingWebhookConfigurationList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of MutatingWebhookConfiguration. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// Mutation specifies the CEL expression which is used to apply the Mutation. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Mutation { - /// patchType indicates the patch strategy used. - /// Allowed values are "ApplyConfiguration" and "JSONPatch". - /// Required. - /// - /// +unionDiscriminator - #[prost(string, optional, tag = "2")] - pub patch_type: ::core::option::Option<::prost::alloc::string::String>, - /// applyConfiguration defines the desired configuration values of an object. - /// The configuration is applied to the admission object using - /// [structured merge diff](). - /// A CEL expression is used to create apply configuration. - #[prost(message, optional, tag = "3")] - pub apply_configuration: ::core::option::Option, - /// jsonPatch defines a [JSON patch]() operation to perform a mutation to the object. - /// A CEL expression is used to create the JSON patch. - #[prost(message, optional, tag = "4")] - pub json_patch: ::core::option::Option, -} -/// NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NamedRuleWithOperations { - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "1")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// RuleWithOperations is a tuple of Operations and Resources. - #[prost(message, optional, tag = "2")] - pub rule_with_operations: ::core::option::Option, -} -/// ParamKind is a tuple of Group Kind and Version. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ParamKind { - /// APIVersion is the API group version the resources belong to. - /// In format of "group/version". - /// Required. - #[prost(string, optional, tag = "1")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the API kind the resources belong to. - /// Required. - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, -} -/// ParamRef describes how to locate the params to be used as input to -/// expressions of rules applied by a policy binding. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ParamRef { - /// name is the name of the resource being referenced. - /// - /// One of `name` or `selector` must be set, but `name` and `selector` are - /// mutually exclusive properties. If one is set, the other must be unset. - /// - /// A single parameter used for all admission requests can be configured - /// by setting the `name` field, leaving `selector` blank, and setting namespace - /// if `paramKind` is namespace-scoped. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// namespace is the namespace of the referenced resource. Allows limiting - /// the search for params to a specific namespace. Applies to both `name` and - /// `selector` fields. - /// - /// A per-namespace parameter may be used by specifying a namespace-scoped - /// `paramKind` in the policy and leaving this field empty. - /// - /// - If `paramKind` is cluster-scoped, this field MUST be unset. Setting this - /// field results in a configuration error. - /// - /// - If `paramKind` is namespace-scoped, the namespace of the object being - /// evaluated for admission will be used when this field is left unset. Take - /// care that if this is left empty the binding must not match any cluster-scoped - /// resources, which will result in an error. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// selector can be used to match multiple param objects based on their labels. - /// Supply selector: {} to match all resources of the ParamKind. - /// - /// If multiple params are found, they are all evaluated with the policy expressions - /// and the results are ANDed together. - /// - /// One of `name` or `selector` must be set, but `name` and `selector` are - /// mutually exclusive properties. If one is set, the other must be unset. - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, - /// `parameterNotFoundAction` controls the behavior of the binding when the resource - /// exists, and name or selector is valid, but there are no parameters - /// matched by the binding. If the value is set to `Allow`, then no - /// matched parameters will be treated as successful validation by the binding. - /// If set to `Deny`, then no matched parameters will be subject to the - /// `failurePolicy` of the policy. - /// - /// Allowed values are `Allow` or `Deny` - /// - /// Required - #[prost(string, optional, tag = "4")] - pub parameter_not_found_action: ::core::option::Option<::prost::alloc::string::String>, -} -/// ServiceReference holds a reference to Service.legacy.k8s.io -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceReference { - /// `namespace` is the namespace of the service. - /// Required - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// `name` is the name of the service. - /// Required - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// `path` is an optional URL path which will be sent in any request to - /// this service. - /// +optional - #[prost(string, optional, tag = "3")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// If specified, the port on the service that hosting webhook. - /// Default to 443 for backward compatibility. - /// `port` should be a valid port number (1-65535, inclusive). - /// +optional - #[prost(int32, optional, tag = "4")] - pub port: ::core::option::Option, -} -/// TypeChecking contains results of type checking the expressions in the -/// ValidatingAdmissionPolicy -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TypeChecking { - /// The type checking warnings for each expression. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub expression_warnings: ::prost::alloc::vec::Vec, -} -/// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object -/// +genclient -/// +genclient:nonNamespaced -/// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object -/// +k8s:prerelease-lifecycle-gen:introduced=1.28 -/// ValidatingAdmissionPolicy describes the definition of an admission validation policy that accepts or rejects an object without changing it. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicy { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the ValidatingAdmissionPolicy. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// The status of the ValidatingAdmissionPolicy, including warnings that are useful to determine if the policy - /// behaves in the expected way. - /// Populated by the system. - /// Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ValidatingAdmissionPolicyBinding binds the ValidatingAdmissionPolicy with paramerized resources. -/// ValidatingAdmissionPolicyBinding and parameter CRDs together define how cluster administrators configure policies for clusters. -/// -/// For a given admission request, each binding will cause its policy to be -/// evaluated N times, where N is 1 for policies/bindings that don't use -/// params, otherwise N is the number of parameters selected by the binding. -/// -/// The CEL expressions of a policy must have a computed CEL cost below the maximum -/// CEL budget. Each evaluation of the policy is given an independent CEL cost budget. -/// Adding/removing policies, bindings, or params can not affect whether a -/// given (policy, binding, param) combination is within its own CEL budget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBinding { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the ValidatingAdmissionPolicyBinding. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// ValidatingAdmissionPolicyBindingList is a list of ValidatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBindingList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of PolicyBinding. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicyBindingSpec is the specification of the ValidatingAdmissionPolicyBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyBindingSpec { - /// PolicyName references a ValidatingAdmissionPolicy name which the ValidatingAdmissionPolicyBinding binds to. - /// If the referenced resource does not exist, this binding is considered invalid and will be ignored - /// Required. - #[prost(string, optional, tag = "1")] - pub policy_name: ::core::option::Option<::prost::alloc::string::String>, - /// paramRef specifies the parameter resource used to configure the admission control policy. - /// It should point to a resource of the type specified in ParamKind of the bound ValidatingAdmissionPolicy. - /// If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the ValidatingAdmissionPolicy applied. - /// If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param. - /// +optional - #[prost(message, optional, tag = "2")] - pub param_ref: ::core::option::Option, - /// MatchResources declares what resources match this binding and will be validated by it. - /// Note that this is intersected with the policy's matchConstraints, so only requests that are matched by the policy can be selected by this. - /// If this is unset, all resources matched by the policy are validated by this binding - /// When resourceRules is unset, it does not constrain resource matching. If a resource is matched by the other fields of this object, it will be validated. - /// Note that this is differs from ValidatingAdmissionPolicy matchConstraints, where resourceRules are required. - /// +optional - #[prost(message, optional, tag = "3")] - pub match_resources: ::core::option::Option, - /// validationActions declares how Validations of the referenced ValidatingAdmissionPolicy are enforced. - /// If a validation evaluates to false it is always enforced according to these actions. - /// - /// Failures defined by the ValidatingAdmissionPolicy's FailurePolicy are enforced according - /// to these actions only if the FailurePolicy is set to Fail, otherwise the failures are - /// ignored. This includes compilation errors, runtime errors and misconfigurations of the policy. - /// - /// validationActions is declared as a set of action values. Order does - /// not matter. validationActions may not contain duplicates of the same action. - /// - /// The supported actions values are: - /// - /// "Deny" specifies that a validation failure results in a denied request. - /// - /// "Warn" specifies that a validation failure is reported to the request client - /// in HTTP Warning headers, with a warning code of 299. Warnings can be sent - /// both for allowed or denied admission responses. - /// - /// "Audit" specifies that a validation failure is included in the published - /// audit event for the request. The audit event will contain a - /// `validation.policy.admission.k8s.io/validation_failure` audit annotation - /// with a value containing the details of the validation failures, formatted as - /// a JSON list of objects, each with the following fields: - /// - message: The validation failure message string - /// - policy: The resource name of the ValidatingAdmissionPolicy - /// - binding: The resource name of the ValidatingAdmissionPolicyBinding - /// - expressionIndex: The index of the failed validations in the ValidatingAdmissionPolicy - /// - validationActions: The enforcement actions enacted for the validation failure - /// Example audit annotation: - /// `"validation.policy.admission.k8s.io/validation_failure": "\[{\"message\": \"Invalid value\", {\"policy\": \"policy.example.com\", {\"binding\": \"policybinding.example.com\", {\"expressionIndex\": \"1\", {\"validationActions\": [\"Audit\"\]}]"` - /// - /// Clients should expect to handle additional values by ignoring - /// any values not recognized. - /// - /// "Deny" and "Warn" may not be used together since this combination - /// needlessly duplicates the validation failure both in the - /// API response body and the HTTP warning headers. - /// - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "4")] - pub validation_actions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object -/// +k8s:prerelease-lifecycle-gen:introduced=1.28 -/// ValidatingAdmissionPolicyList is a list of ValidatingAdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingAdmissionPolicy. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicySpec is the specification of the desired behavior of the AdmissionPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicySpec { - /// ParamKind specifies the kind of resources used to parameterize this policy. - /// If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. - /// If ParamKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. - /// If paramKind is specified but paramRef is unset in ValidatingAdmissionPolicyBinding, the params variable will be null. - /// +optional - #[prost(message, optional, tag = "1")] - pub param_kind: ::core::option::Option, - /// MatchConstraints specifies what resources this policy is designed to validate. - /// The AdmissionPolicy cares about a request if it matches _all_ Constraints. - /// However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API - /// ValidatingAdmissionPolicy cannot match ValidatingAdmissionPolicy and ValidatingAdmissionPolicyBinding. - /// Required. - #[prost(message, optional, tag = "2")] - pub match_constraints: ::core::option::Option, - /// Validations contain CEL expressions which is used to apply the validation. - /// Validations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is - /// required. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub validations: ::prost::alloc::vec::Vec, - /// failurePolicy defines how to handle failures for the admission policy. Failures can - /// occur from CEL expression parse errors, type check errors, runtime errors and invalid - /// or mis-configured policy definitions or bindings. - /// - /// A policy is invalid if spec.paramKind refers to a non-existent Kind. - /// A binding is invalid if spec.paramRef.name refers to a non-existent resource. - /// - /// failurePolicy does not define how validations that evaluate to false are handled. - /// - /// When failurePolicy is set to Fail, ValidatingAdmissionPolicyBinding validationActions - /// define how failures are enforced. - /// - /// Allowed values are Ignore or Fail. Defaults to Fail. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// auditAnnotations contains CEL expressions which are used to produce audit - /// annotations for the audit event of the API request. - /// validations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is - /// required. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "5")] - pub audit_annotations: ::prost::alloc::vec::Vec, - /// MatchConditions is a list of conditions that must be met for a request to be validated. - /// Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// If a parameter object is provided, it can be accessed via the `params` handle in the same - /// manner as validation expressions. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the policy is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the policy is evaluated. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the policy is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "6")] - pub match_conditions: ::prost::alloc::vec::Vec, - /// Variables contain definitions of variables that can be used in composition of other expressions. - /// Each variable is defined as a named CEL expression. - /// The variables defined here will be available under `variables` in other expressions of the policy - /// except MatchConditions because MatchConditions are evaluated before the rest of the policy. - /// - /// The expression of a variable can refer to other variables defined earlier in the list but not those after. - /// Thus, Variables must be sorted by the order of first appearance and acyclic. - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "7")] - pub variables: ::prost::alloc::vec::Vec, -} -/// ValidatingAdmissionPolicyStatus represents the status of an admission validation policy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingAdmissionPolicyStatus { - /// The generation observed by the controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// The results of type checking for each expression. - /// Presence of this field indicates the completion of the type checking. - /// +optional - #[prost(message, optional, tag = "2")] - pub type_checking: ::core::option::Option, - /// The conditions represent the latest available observations of a policy's current state. - /// +optional - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "3")] - pub conditions: - ::prost::alloc::vec::Vec, -} -/// ValidatingWebhook describes an admission webhook and the resources and operations it applies to. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingWebhook { - /// The name of the admission webhook. - /// Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where - /// "imagepolicy" is the name of the webhook, and kubernetes.io is the name - /// of the organization. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// ClientConfig defines how to communicate with the hook. - /// Required - #[prost(message, optional, tag = "2")] - pub client_config: ::core::option::Option, - /// Rules describes what operations on what resources/subresources the webhook cares about. - /// The webhook cares about an operation if it matches _any_ Rule. - /// However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks - /// from putting the cluster in a state which cannot be recovered from without completely - /// disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called - /// on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects. - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, - /// FailurePolicy defines how unrecognized errors from the admission endpoint are handled - - /// allowed values are Ignore or Fail. Defaults to Ignore. - /// +optional - #[prost(string, optional, tag = "4")] - pub failure_policy: ::core::option::Option<::prost::alloc::string::String>, - /// matchPolicy defines how the "rules" list is used to match incoming requests. - /// Allowed values are "Exact" or "Equivalent". - /// - /// - Exact: match a request only if it exactly matches a specified rule. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// but "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook. - /// - /// - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. - /// For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, - /// and "rules" only included `apiGroups:\["apps"\], apiVersions:\["v1"\], resources: \["deployments"\]`, - /// a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook. - /// - /// Defaults to "Exact" - /// +optional - #[prost(string, optional, tag = "9")] - pub match_policy: ::core::option::Option<::prost::alloc::string::String>, - /// NamespaceSelector decides whether to run the webhook on an object based - /// on whether the namespace for that object matches the selector. If the - /// object itself is a namespace, the matching is performed on - /// object.metadata.labels. If the object is another cluster scoped resource, - /// it never skips the webhook. - /// - /// For example, to run the webhook on any objects whose namespace is not - /// associated with "runlevel" of "0" or "1"; you will set the selector as - /// follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "runlevel", - /// "operator": "NotIn", - /// "values": [ - /// "0", - /// "1" - /// ] - /// } - /// ] - /// } - /// - /// If instead you want to only run the webhook on any objects whose - /// namespace is associated with the "environment" of "prod" or "staging"; - /// you will set the selector as follows: - /// "namespaceSelector": { - /// "matchExpressions": [ - /// { - /// "key": "environment", - /// "operator": "In", - /// "values": [ - /// "prod", - /// "staging" - /// ] - /// } - /// ] - /// } - /// - /// See - /// - /// for more examples of label selectors. - /// - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "5")] - pub namespace_selector: - ::core::option::Option, - /// ObjectSelector decides whether to run the webhook based on if the - /// object has matching labels. objectSelector is evaluated against both - /// the oldObject and newObject that would be sent to the webhook, and - /// is considered to match if either object matches the selector. A null - /// object (oldObject in the case of create, or newObject in the case of - /// delete) or an object that cannot have labels (like a - /// DeploymentRollback or a PodProxyOptions object) is not considered to - /// match. - /// Use the object selector only if the webhook is opt-in, because end - /// users may skip the admission webhook by setting the labels. - /// Default to the empty LabelSelector, which matches everything. - /// +optional - #[prost(message, optional, tag = "10")] - pub object_selector: - ::core::option::Option, - /// SideEffects states whether this webhook has side effects. - /// Acceptable values are: Unknown, None, Some, NoneOnDryRun - /// Webhooks with side effects MUST implement a reconciliation system, since a request may be - /// rejected by a future step in the admission chain and the side effects therefore need to be undone. - /// Requests with the dryRun attribute will be auto-rejected if they match a webhook with - /// sideEffects == Unknown or Some. Defaults to Unknown. - /// +optional - /// +listType=atomic - #[prost(string, optional, tag = "6")] - pub side_effects: ::core::option::Option<::prost::alloc::string::String>, - /// TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, - /// the webhook call will be ignored or the API call will fail based on the - /// failure policy. - /// The timeout value must be between 1 and 30 seconds. - /// Default to 30 seconds. - /// +optional - #[prost(int32, optional, tag = "7")] - pub timeout_seconds: ::core::option::Option, - /// AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` - /// versions the Webhook expects. API server will try to use first version in - /// the list which it supports. If none of the versions specified in this list - /// supported by API server, validation will fail for this object. - /// If a persisted webhook configuration specifies allowed versions and does not - /// include any versions known to the API Server, calls to the webhook will fail - /// and be subject to the failure policy. - /// Default to `\['v1beta1'\]`. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "8")] - pub admission_review_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// MatchConditions is a list of conditions that must be met for a request to be sent to this - /// webhook. Match conditions filter requests that have already been matched by the rules, - /// namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. - /// There are a maximum of 64 match conditions allowed. - /// - /// The exact matching logic is (in order): - /// 1. If ANY matchCondition evaluates to FALSE, the webhook is skipped. - /// 2. If ALL matchConditions evaluate to TRUE, the webhook is called. - /// 3. If any matchCondition evaluates to an error (but none are FALSE): - /// - If failurePolicy=Fail, reject the request - /// - If failurePolicy=Ignore, the error is ignored and the webhook is skipped - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "11")] - pub match_conditions: ::prost::alloc::vec::Vec, -} -/// ValidatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and object without changing it. -/// Deprecated in v1.16, planned for removal in v1.19. Use admissionregistration.k8s.io/v1 ValidatingWebhookConfiguration instead. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingWebhookConfiguration { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Webhooks is a list of webhooks and the affected resources and operations. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "2")] - pub webhooks: ::prost::alloc::vec::Vec, -} -/// ValidatingWebhookConfigurationList is a list of ValidatingWebhookConfiguration. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ValidatingWebhookConfigurationList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ValidatingWebhookConfiguration. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// Validation specifies the CEL expression which is used to apply the validation. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Validation { - /// Expression represents the expression which will be evaluated by CEL. - /// ref: - /// CEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables: - /// - /// - 'object' - The object from the incoming request. The value is null for DELETE requests. - /// - 'oldObject' - The existing object. The value is null for CREATE requests. - /// - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - /// - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - /// - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - /// - 'variables' - Map of composited variables, from its name to its lazily evaluated value. - /// For example, a variable named 'foo' can be accessed as 'variables.foo'. - /// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. - /// See - /// - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the - /// request resource. - /// - /// The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the - /// object. No other metadata properties are accessible. - /// - /// Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. - /// Accessible property names are escaped according to the following rules when accessed in the expression: - /// - '__' escapes to '__underscores__' - /// - '.' escapes to '__dot__' - /// - '-' escapes to '__dash__' - /// - '/' escapes to '__slash__' - /// - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are: - /// "true", "false", "null", "in", "as", "break", "const", "continue", "else", "for", "function", "if", - /// "import", "let", "loop", "package", "namespace", "return". - /// Examples: - /// - Expression accessing a property named "namespace": {"Expression": "object.__namespace__ > 0"} - /// - Expression accessing a property named "x-prop": {"Expression": "object.x__dash__prop > 0"} - /// - Expression accessing a property named "redact__d": {"Expression": "object.redact__underscores__d > 0"} - /// - /// Equality on arrays with list type of 'set' or 'map' ignores element order, i.e. \[1, 2\] == \[2, 1\]. - /// Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type: - /// - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and - /// non-intersecting elements in `Y` are appended, retaining their partial order. - /// - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values - /// are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with - /// non-intersecting keys are appended, retaining their partial order. - /// Required. - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, - /// Message represents the message displayed when validation fails. The message is required if the Expression contains - /// line breaks. The message must not contain line breaks. - /// If unset, the message is "failed rule: {Rule}". - /// e.g. "must be a URL with the host matching spec.host" - /// If the Expression contains line breaks. Message is required. - /// The message must not contain line breaks. - /// If unset, the message is "failed Expression: {Expression}". - /// +optional - #[prost(string, optional, tag = "2")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// Reason represents a machine-readable description of why this validation failed. - /// If this is the first validation in the list to fail, this reason, as well as the - /// corresponding HTTP response code, are used in the - /// HTTP response to the client. - /// The currently supported reasons are: "Unauthorized", "Forbidden", "Invalid", "RequestEntityTooLarge". - /// If not set, StatusReasonInvalid is used in the response to the client. - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails. - /// Since messageExpression is used as a failure message, it must evaluate to a string. - /// If both message and messageExpression are present on a validation, then messageExpression will be used if validation fails. - /// If messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced - /// as if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string - /// that contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and - /// the fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged. - /// messageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'. - /// Example: - /// "object.x must be less than max ("+string(params.max)+")" - /// +optional - #[prost(string, optional, tag = "4")] - pub message_expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// Variable is the definition of a variable that is used for composition. A variable is defined as a named expression. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Variable { - /// Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables. - /// The variable can be accessed in other expressions through `variables` - /// For example, if name is "foo", the variable will be available as `variables.foo` - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Expression is the expression that will be evaluated as the value of the variable. - /// The CEL expression has access to the same identifiers as the CEL expressions in Validation. - #[prost(string, optional, tag = "2")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// WebhookClientConfig contains the information to make a TLS -/// connection with the webhook -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct WebhookClientConfig { - /// `url` gives the location of the webhook, in standard URL form - /// (`scheme://host:port/path`). Exactly one of `url` or `service` - /// must be specified. - /// - /// The `host` should not refer to a service running in the cluster; use - /// the `service` field instead. The host might be resolved via external - /// DNS in some apiservers (e.g., `kube-apiserver` cannot resolve - /// in-cluster DNS as that would be a layering violation). `host` may - /// also be an IP address. - /// - /// Please note that using `localhost` or `127.0.0.1` as a `host` is - /// risky unless you take great care to run this webhook on all hosts - /// which run an apiserver which might need to make calls to this - /// webhook. Such installs are likely to be non-portable, i.e., not easy - /// to turn up in a new cluster. - /// - /// The scheme must be "https"; the URL must begin with " - /// - /// A path is optional, and if present may be any string permissible in - /// a URL. You may use the path to pass an arbitrary string to the - /// webhook, for example, a cluster identifier. - /// - /// Attempting to use a user or basic auth e.g. "user:password@" is not - /// allowed. Fragments ("#...") and query parameters ("?...") are not - /// allowed, either. - /// - /// +optional - #[prost(string, optional, tag = "3")] - pub url: ::core::option::Option<::prost::alloc::string::String>, - /// `service` is a reference to the service for this webhook. Either - /// `service` or `url` must be specified. - /// - /// If the webhook is running within the cluster, then you should use `service`. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub service: ::core::option::Option, - /// `caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. - /// If unspecified, system trust roots on the apiserver are used. - /// +optional - #[prost(bytes = "vec", optional, tag = "2")] - pub ca_bundle: ::core::option::Option<::prost::alloc::vec::Vec>, -} - -impl crate::Resource for MutatingAdmissionPolicy { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1beta1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1beta1"; - const KIND: &'static str = "MutatingAdmissionPolicy"; - const URL_PATH_SEGMENT: &'static str = "mutatingadmissionpolicies"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for MutatingAdmissionPolicy { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for MutatingAdmissionPolicy { - type Spec = crate::api::admissionregistration::v1beta1::MutatingAdmissionPolicySpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for MutatingAdmissionPolicyBinding { - const API_VERSION: &'static str = "admissionregistration.k8s.io/v1beta1"; - const GROUP: &'static str = "admissionregistration.k8s.io"; - const VERSION: &'static str = "v1beta1"; - const KIND: &'static str = "MutatingAdmissionPolicyBinding"; - const URL_PATH_SEGMENT: &'static str = "mutatingadmissionpolicybindings"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for MutatingAdmissionPolicyBinding { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for MutatingAdmissionPolicyBinding { - type Spec = crate::api::admissionregistration::v1beta1::MutatingAdmissionPolicyBindingSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} diff --git a/k8s-pb/src/api/apidiscovery/mod.rs b/k8s-pb/src/api/apidiscovery/mod.rs deleted file mode 100644 index b690644..0000000 --- a/k8s-pb/src/api/apidiscovery/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v2; -pub mod v2beta1; diff --git a/k8s-pb/src/api/apidiscovery/v2/mod.rs b/k8s-pb/src/api/apidiscovery/v2/mod.rs deleted file mode 100644 index 201d977..0000000 --- a/k8s-pb/src/api/apidiscovery/v2/mod.rs +++ /dev/null @@ -1,135 +0,0 @@ -// This file is @generated by prost-build. -/// APIGroupDiscovery holds information about which resources are being served for all version of the API Group. -/// It contains a list of APIVersionDiscovery that holds a list of APIResourceDiscovery types served for a version. -/// Versions are in descending order of preference, with the first version being the preferred entry. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIGroupDiscovery { - /// Standard object's metadata. - /// The only field completed will be name. For instance, resourceVersion will be empty. - /// name is the name of the API group whose discovery information is presented here. - /// name is allowed to be "" to represent the legacy, ungroupified resources. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// versions are the versions supported in this group. They are sorted in descending order of preference, - /// with the preferred version being the first entry. - /// +listType=map - /// +listMapKey=version - #[prost(message, repeated, tag = "2")] - pub versions: ::prost::alloc::vec::Vec, -} -/// APIGroupDiscoveryList is a resource containing a list of APIGroupDiscovery. -/// This is one of the types able to be returned from the /api and /apis endpoint and contains an aggregated -/// list of API resources (built-ins, Custom Resource Definitions, resources from aggregated servers) -/// that a cluster supports. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIGroupDiscoveryList { - /// ResourceVersion will not be set, because this does not have a replayable ordering among multiple apiservers. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of groups for discovery. The groups are listed in priority order. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// APIResourceDiscovery provides information about an API resource for discovery. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIResourceDiscovery { - /// resource is the plural name of the resource. This is used in the URL path and is the unique identifier - /// for this resource across all versions in the API group. - /// Resources with non-empty groups are located at /apis/// - /// Resources with empty groups are located at /api/v1/ - #[prost(string, optional, tag = "1")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// responseKind describes the group, version, and kind of the serialization schema for the object type this endpoint typically returns. - /// APIs may return other objects types at their discretion, such as error conditions, requests for alternate representations, or other operation specific behavior. - /// This value will be null or empty if an APIService reports subresources but supports no operations on the parent resource - #[prost(message, optional, tag = "2")] - pub response_kind: - ::core::option::Option, - /// scope indicates the scope of a resource, either Cluster or Namespaced - #[prost(string, optional, tag = "3")] - pub scope: ::core::option::Option<::prost::alloc::string::String>, - /// singularResource is the singular name of the resource. This allows clients to handle plural and singular opaquely. - /// For many clients the singular form of the resource will be more understandable to users reading messages and should be used when integrating the name of the resource into a sentence. - /// The command line tool kubectl, for example, allows use of the singular resource name in place of plurals. - /// The singular form of a resource should always be an optional element - when in doubt use the canonical resource name. - #[prost(string, optional, tag = "4")] - pub singular_resource: ::core::option::Option<::prost::alloc::string::String>, - /// verbs is a list of supported API operation types (this includes - /// but is not limited to get, list, watch, create, update, patch, - /// delete, deletecollection, and proxy). - /// +listType=set - #[prost(string, repeated, tag = "5")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// shortNames is a list of suggested short names of the resource. - /// +listType=set - #[prost(string, repeated, tag = "6")] - pub short_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// categories is a list of the grouped resources this resource belongs to (e.g. 'all'). - /// Clients may use this to simplify acting on multiple resource types at once. - /// +listType=set - #[prost(string, repeated, tag = "7")] - pub categories: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// subresources is a list of subresources provided by this resource. Subresources are located at /apis////name-of-instance/ - /// +listType=map - /// +listMapKey=subresource - #[prost(message, repeated, tag = "8")] - pub subresources: ::prost::alloc::vec::Vec, -} -/// APISubresourceDiscovery provides information about an API subresource for discovery. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APISubresourceDiscovery { - /// subresource is the name of the subresource. This is used in the URL path and is the unique identifier - /// for this resource across all versions. - #[prost(string, optional, tag = "1")] - pub subresource: ::core::option::Option<::prost::alloc::string::String>, - /// responseKind describes the group, version, and kind of the serialization schema for the object type this endpoint typically returns. - /// Some subresources do not return normal resources, these will have null or empty return types. - #[prost(message, optional, tag = "2")] - pub response_kind: - ::core::option::Option, - /// acceptedTypes describes the kinds that this endpoint accepts. - /// Subresources may accept the standard content types or define - /// custom negotiation schemes. The list may not be exhaustive for - /// all operations. - /// +listType=map - /// +listMapKey=group - /// +listMapKey=version - /// +listMapKey=kind - #[prost(message, repeated, tag = "3")] - pub accepted_types: - ::prost::alloc::vec::Vec, - /// verbs is a list of supported API operation types (this includes - /// but is not limited to get, list, watch, create, update, patch, - /// delete, deletecollection, and proxy). Subresources may define - /// custom verbs outside the standard Kubernetes verb set. Clients - /// should expect the behavior of standard verbs to align with - /// Kubernetes interaction conventions. - /// +listType=set - #[prost(string, repeated, tag = "4")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// APIVersionDiscovery holds a list of APIResourceDiscovery types that are served for a particular version within an API Group. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIVersionDiscovery { - /// version is the name of the version within a group version. - #[prost(string, optional, tag = "1")] - pub version: ::core::option::Option<::prost::alloc::string::String>, - /// resources is a list of APIResourceDiscovery objects for the corresponding group version. - /// +listType=map - /// +listMapKey=resource - #[prost(message, repeated, tag = "2")] - pub resources: ::prost::alloc::vec::Vec, - /// freshness marks whether a group version's discovery document is up to date. - /// "Current" indicates the discovery document was recently - /// refreshed. "Stale" indicates the discovery document could not - /// be retrieved and the returned discovery document may be - /// significantly out of date. Clients that require the latest - /// version of the discovery information be retrieved before - /// performing an operation should not use the aggregated document - #[prost(string, optional, tag = "3")] - pub freshness: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/apidiscovery/v2beta1/mod.rs b/k8s-pb/src/api/apidiscovery/v2beta1/mod.rs deleted file mode 100644 index 201d977..0000000 --- a/k8s-pb/src/api/apidiscovery/v2beta1/mod.rs +++ /dev/null @@ -1,135 +0,0 @@ -// This file is @generated by prost-build. -/// APIGroupDiscovery holds information about which resources are being served for all version of the API Group. -/// It contains a list of APIVersionDiscovery that holds a list of APIResourceDiscovery types served for a version. -/// Versions are in descending order of preference, with the first version being the preferred entry. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIGroupDiscovery { - /// Standard object's metadata. - /// The only field completed will be name. For instance, resourceVersion will be empty. - /// name is the name of the API group whose discovery information is presented here. - /// name is allowed to be "" to represent the legacy, ungroupified resources. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// versions are the versions supported in this group. They are sorted in descending order of preference, - /// with the preferred version being the first entry. - /// +listType=map - /// +listMapKey=version - #[prost(message, repeated, tag = "2")] - pub versions: ::prost::alloc::vec::Vec, -} -/// APIGroupDiscoveryList is a resource containing a list of APIGroupDiscovery. -/// This is one of the types able to be returned from the /api and /apis endpoint and contains an aggregated -/// list of API resources (built-ins, Custom Resource Definitions, resources from aggregated servers) -/// that a cluster supports. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIGroupDiscoveryList { - /// ResourceVersion will not be set, because this does not have a replayable ordering among multiple apiservers. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of groups for discovery. The groups are listed in priority order. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// APIResourceDiscovery provides information about an API resource for discovery. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIResourceDiscovery { - /// resource is the plural name of the resource. This is used in the URL path and is the unique identifier - /// for this resource across all versions in the API group. - /// Resources with non-empty groups are located at /apis/// - /// Resources with empty groups are located at /api/v1/ - #[prost(string, optional, tag = "1")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// responseKind describes the group, version, and kind of the serialization schema for the object type this endpoint typically returns. - /// APIs may return other objects types at their discretion, such as error conditions, requests for alternate representations, or other operation specific behavior. - /// This value will be null or empty if an APIService reports subresources but supports no operations on the parent resource - #[prost(message, optional, tag = "2")] - pub response_kind: - ::core::option::Option, - /// scope indicates the scope of a resource, either Cluster or Namespaced - #[prost(string, optional, tag = "3")] - pub scope: ::core::option::Option<::prost::alloc::string::String>, - /// singularResource is the singular name of the resource. This allows clients to handle plural and singular opaquely. - /// For many clients the singular form of the resource will be more understandable to users reading messages and should be used when integrating the name of the resource into a sentence. - /// The command line tool kubectl, for example, allows use of the singular resource name in place of plurals. - /// The singular form of a resource should always be an optional element - when in doubt use the canonical resource name. - #[prost(string, optional, tag = "4")] - pub singular_resource: ::core::option::Option<::prost::alloc::string::String>, - /// verbs is a list of supported API operation types (this includes - /// but is not limited to get, list, watch, create, update, patch, - /// delete, deletecollection, and proxy). - /// +listType=set - #[prost(string, repeated, tag = "5")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// shortNames is a list of suggested short names of the resource. - /// +listType=set - #[prost(string, repeated, tag = "6")] - pub short_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// categories is a list of the grouped resources this resource belongs to (e.g. 'all'). - /// Clients may use this to simplify acting on multiple resource types at once. - /// +listType=set - #[prost(string, repeated, tag = "7")] - pub categories: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// subresources is a list of subresources provided by this resource. Subresources are located at /apis////name-of-instance/ - /// +listType=map - /// +listMapKey=subresource - #[prost(message, repeated, tag = "8")] - pub subresources: ::prost::alloc::vec::Vec, -} -/// APISubresourceDiscovery provides information about an API subresource for discovery. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APISubresourceDiscovery { - /// subresource is the name of the subresource. This is used in the URL path and is the unique identifier - /// for this resource across all versions. - #[prost(string, optional, tag = "1")] - pub subresource: ::core::option::Option<::prost::alloc::string::String>, - /// responseKind describes the group, version, and kind of the serialization schema for the object type this endpoint typically returns. - /// Some subresources do not return normal resources, these will have null or empty return types. - #[prost(message, optional, tag = "2")] - pub response_kind: - ::core::option::Option, - /// acceptedTypes describes the kinds that this endpoint accepts. - /// Subresources may accept the standard content types or define - /// custom negotiation schemes. The list may not be exhaustive for - /// all operations. - /// +listType=map - /// +listMapKey=group - /// +listMapKey=version - /// +listMapKey=kind - #[prost(message, repeated, tag = "3")] - pub accepted_types: - ::prost::alloc::vec::Vec, - /// verbs is a list of supported API operation types (this includes - /// but is not limited to get, list, watch, create, update, patch, - /// delete, deletecollection, and proxy). Subresources may define - /// custom verbs outside the standard Kubernetes verb set. Clients - /// should expect the behavior of standard verbs to align with - /// Kubernetes interaction conventions. - /// +listType=set - #[prost(string, repeated, tag = "4")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// APIVersionDiscovery holds a list of APIResourceDiscovery types that are served for a particular version within an API Group. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct APIVersionDiscovery { - /// version is the name of the version within a group version. - #[prost(string, optional, tag = "1")] - pub version: ::core::option::Option<::prost::alloc::string::String>, - /// resources is a list of APIResourceDiscovery objects for the corresponding group version. - /// +listType=map - /// +listMapKey=resource - #[prost(message, repeated, tag = "2")] - pub resources: ::prost::alloc::vec::Vec, - /// freshness marks whether a group version's discovery document is up to date. - /// "Current" indicates the discovery document was recently - /// refreshed. "Stale" indicates the discovery document could not - /// be retrieved and the returned discovery document may be - /// significantly out of date. Clients that require the latest - /// version of the discovery information be retrieved before - /// performing an operation should not use the aggregated document - #[prost(string, optional, tag = "3")] - pub freshness: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/apiserverinternal/mod.rs b/k8s-pb/src/api/apiserverinternal/mod.rs deleted file mode 100644 index 32a5a9d..0000000 --- a/k8s-pb/src/api/apiserverinternal/mod.rs +++ /dev/null @@ -1 +0,0 @@ -pub mod v1alpha1; diff --git a/k8s-pb/src/api/apiserverinternal/v1alpha1/mod.rs b/k8s-pb/src/api/apiserverinternal/v1alpha1/mod.rs deleted file mode 100644 index c980d9c..0000000 --- a/k8s-pb/src/api/apiserverinternal/v1alpha1/mod.rs +++ /dev/null @@ -1,149 +0,0 @@ -// This file is @generated by prost-build. -/// An API server instance reports the version it can decode and the version it -/// encodes objects to when persisting objects in the backend. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServerStorageVersion { - /// The ID of the reporting API server. - #[prost(string, optional, tag = "1")] - pub api_server_id: ::core::option::Option<::prost::alloc::string::String>, - /// The API server encodes the object to this version when persisting it in - /// the backend (e.g., etcd). - #[prost(string, optional, tag = "2")] - pub encoding_version: ::core::option::Option<::prost::alloc::string::String>, - /// The API server can decode objects encoded in these versions. - /// The encodingVersion must be included in the decodableVersions. - /// +listType=set - #[prost(string, repeated, tag = "3")] - pub decodable_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// The API server can serve these versions. - /// DecodableVersions must include all ServedVersions. - /// +listType=set - #[prost(string, repeated, tag = "4")] - pub served_versions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Storage version of a specific resource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StorageVersion { - /// The name is .. - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec is an empty spec. It is here to comply with Kubernetes API style. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// API server instances report the version they can decode and the version they - /// encode objects to when persisting objects in the backend. - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// Describes the state of the storageVersion at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StorageVersionCondition { - /// Type of the condition. - /// +required - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - /// +required - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// If set, this represents the .metadata.generation that the condition was set based upon. - /// +optional - #[prost(int64, optional, tag = "3")] - pub observed_generation: ::core::option::Option, - /// Last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "4")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +required - #[prost(string, optional, tag = "5")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +required - #[prost(string, optional, tag = "6")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// A list of StorageVersions. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StorageVersionList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items holds a list of StorageVersion - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// StorageVersionSpec is an empty spec. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StorageVersionSpec {} -/// API server instances report the versions they can decode and the version they -/// encode objects to when persisting objects in the backend. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StorageVersionStatus { - /// The reported versions per API server instance. - /// +optional - /// +listType=map - /// +listMapKey=apiServerID - #[prost(message, repeated, tag = "1")] - pub storage_versions: ::prost::alloc::vec::Vec, - /// If all API server instances agree on the same encoding storage version, - /// then this field is set to that version. Otherwise this field is left empty. - /// API servers should finish updating its storageVersionStatus entry before - /// serving write operations, so that this field will be in sync with the reality. - /// +optional - #[prost(string, optional, tag = "2")] - pub common_encoding_version: ::core::option::Option<::prost::alloc::string::String>, - /// The latest available observations of the storageVersion's state. - /// +optional - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "3")] - pub conditions: ::prost::alloc::vec::Vec, -} - -impl crate::Resource for StorageVersion { - const API_VERSION: &'static str = "internal.apiserver.k8s.io/v1alpha1"; - const GROUP: &'static str = "internal.apiserver.k8s.io"; - const VERSION: &'static str = "v1alpha1"; - const KIND: &'static str = "StorageVersion"; - const URL_PATH_SEGMENT: &'static str = "storageversions"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for StorageVersion { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for StorageVersion { - type Spec = crate::api::apiserverinternal::v1alpha1::StorageVersionSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for StorageVersion { - type Status = crate::api::apiserverinternal::v1alpha1::StorageVersionStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for StorageVersion { - type Condition = crate::api::apiserverinternal::v1alpha1::StorageVersionCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/apps/mod.rs b/k8s-pb/src/api/apps/mod.rs deleted file mode 100644 index 700e97f..0000000 --- a/k8s-pb/src/api/apps/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1beta1; -pub mod v1beta2; diff --git a/k8s-pb/src/api/apps/v1/mod.rs b/k8s-pb/src/api/apps/v1/mod.rs deleted file mode 100644 index ba4c302..0000000 --- a/k8s-pb/src/api/apps/v1/mod.rs +++ /dev/null @@ -1,1037 +0,0 @@ -// This file is @generated by prost-build. -/// ControllerRevision implements an immutable snapshot of state data. Clients -/// are responsible for serializing and deserializing the objects that contain -/// their internal state. -/// Once a ControllerRevision has been successfully created, it can not be updated. -/// The API Server will fail validation of all requests that attempt to mutate -/// the Data field. ControllerRevisions may, however, be deleted. Note that, due to its use by both -/// the DaemonSet and StatefulSet controllers for update and rollback, this object is beta. However, -/// it may be subject to name and representation changes in future releases, and clients should not -/// depend on its stability. It is primarily for internal use by controllers. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ControllerRevision { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Data is the serialized representation of the state. - #[prost(message, optional, tag = "2")] - pub data: ::core::option::Option, - /// Revision indicates the revision of the state represented by Data. - #[prost(int64, optional, tag = "3")] - pub revision: ::core::option::Option, -} -/// ControllerRevisionList is a resource containing a list of ControllerRevision objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ControllerRevisionList { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of ControllerRevisions - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DaemonSet represents the configuration of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSet { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The desired behavior of this daemon set. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// The current status of this daemon set. This data may be - /// out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DaemonSetCondition describes the state of a DaemonSet at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonSetCondition { - /// Type of DaemonSet condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DaemonSetList is a collection of daemon sets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// A list of daemon sets. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DaemonSetSpec is the specification of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetSpec { - /// A label query over pods that are managed by the daemon set. - /// Must match in order to be controlled. - /// It must match the pod template's labels. - /// More info: - #[prost(message, optional, tag = "1")] - pub selector: - ::core::option::Option, - /// An object that describes the pod that will be created. - /// The DaemonSet will create exactly one copy of this pod on every node - /// that matches the template's node selector (or on every node if no node - /// selector is specified). - /// The only allowed template.spec.restartPolicy value is "Always". - /// More info: - #[prost(message, optional, tag = "2")] - pub template: ::core::option::Option, - /// An update strategy to replace existing DaemonSet pods with new pods. - /// +optional - #[prost(message, optional, tag = "3")] - pub update_strategy: ::core::option::Option, - /// The minimum number of seconds for which a newly created DaemonSet pod should - /// be ready without any of its container crashing, for it to be considered - /// available. Defaults to 0 (pod will be considered available as soon as it - /// is ready). - /// +optional - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// The number of old history to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 10. - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, -} -/// DaemonSetStatus represents the current status of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetStatus { - /// The number of nodes that are running at least 1 - /// daemon pod and are supposed to run the daemon pod. - /// More info: - #[prost(int32, optional, tag = "1")] - pub current_number_scheduled: ::core::option::Option, - /// The number of nodes that are running the daemon pod, but are - /// not supposed to run the daemon pod. - /// More info: - #[prost(int32, optional, tag = "2")] - pub number_misscheduled: ::core::option::Option, - /// The total number of nodes that should be running the daemon - /// pod (including nodes correctly running the daemon pod). - /// More info: - #[prost(int32, optional, tag = "3")] - pub desired_number_scheduled: ::core::option::Option, - /// numberReady is the number of nodes that should be running the daemon pod and have one - /// or more of the daemon pod running with a Ready Condition. - #[prost(int32, optional, tag = "4")] - pub number_ready: ::core::option::Option, - /// The most recent generation observed by the daemon set controller. - /// +optional - #[prost(int64, optional, tag = "5")] - pub observed_generation: ::core::option::Option, - /// The total number of nodes that are running updated daemon pod - /// +optional - #[prost(int32, optional, tag = "6")] - pub updated_number_scheduled: ::core::option::Option, - /// The number of nodes that should be running the - /// daemon pod and have one or more of the daemon pod running and - /// available (ready for at least spec.minReadySeconds) - /// +optional - #[prost(int32, optional, tag = "7")] - pub number_available: ::core::option::Option, - /// The number of nodes that should be running the - /// daemon pod and have none of the daemon pod running and available - /// (ready for at least spec.minReadySeconds) - /// +optional - #[prost(int32, optional, tag = "8")] - pub number_unavailable: ::core::option::Option, - /// Count of hash collisions for the DaemonSet. The DaemonSet controller - /// uses this field as a collision avoidance mechanism when it needs to - /// create the name for the newest ControllerRevision. - /// +optional - #[prost(int32, optional, tag = "9")] - pub collision_count: ::core::option::Option, - /// Represents the latest available observations of a DaemonSet's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "10")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonSetUpdateStrategy { - /// Type of daemon set update. Can be "RollingUpdate" or "OnDelete". Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if type = "RollingUpdate". - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. Same as Deployment `strategy.rollingUpdate`. - /// See - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// Deployment enables declarative updates for Pods and ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Deployment { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the Deployment. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the Deployment. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DeploymentCondition describes the state of a deployment at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentCondition { - /// Type of deployment condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time this condition was updated. - #[prost(message, optional, tag = "6")] - pub last_update_time: - ::core::option::Option, - /// Last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "7")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeploymentList is a list of Deployments. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of Deployments. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DeploymentSpec is the specification of the desired behavior of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentSpec { - /// Number of desired pods. This is a pointer to distinguish between explicit - /// zero and not specified. Defaults to 1. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Label selector for pods. Existing ReplicaSets whose pods are - /// selected by this will be the ones affected by this deployment. - /// It must match the pod template's labels. - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template describes the pods that will be created. - /// The only allowed template.spec.restartPolicy value is "Always". - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// The deployment strategy to use to replace existing pods with new ones. - /// +optional - /// +patchStrategy=retainKeys - #[prost(message, optional, tag = "4")] - pub strategy: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "5")] - pub min_ready_seconds: ::core::option::Option, - /// The number of old ReplicaSets to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 10. - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, - /// Indicates that the deployment is paused. - /// +optional - #[prost(bool, optional, tag = "7")] - pub paused: ::core::option::Option, - /// The maximum time in seconds for a deployment to make progress before it - /// is considered to be failed. The deployment controller will continue to - /// process failed deployments and a condition with a ProgressDeadlineExceeded - /// reason will be surfaced in the deployment status. Note that progress will - /// not be estimated during the time a deployment is paused. Defaults to 600s. - #[prost(int32, optional, tag = "9")] - pub progress_deadline_seconds: ::core::option::Option, -} -/// DeploymentStatus is the most recently observed status of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentStatus { - /// The generation observed by the deployment controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment (their labels match the selector). - /// +optional - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment that have the desired template spec. - /// +optional - #[prost(int32, optional, tag = "3")] - pub updated_replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this Deployment with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "7")] - pub ready_replicas: ::core::option::Option, - /// Total number of available non-terminating pods (ready for at least minReadySeconds) targeted by this deployment. - /// +optional - #[prost(int32, optional, tag = "4")] - pub available_replicas: ::core::option::Option, - /// Total number of unavailable pods targeted by this deployment. This is the total number of - /// pods that are still required for the deployment to have 100% available capacity. They may - /// either be pods that are running but not yet available or pods that still have not been created. - /// +optional - #[prost(int32, optional, tag = "5")] - pub unavailable_replicas: ::core::option::Option, - /// Total number of terminating pods targeted by this deployment. Terminating pods have a non-null - /// .metadata.deletionTimestamp and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "9")] - pub terminating_replicas: ::core::option::Option, - /// Represents the latest available observations of a deployment's current state. - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, - /// Count of hash collisions for the Deployment. The Deployment controller uses this - /// field as a collision avoidance mechanism when it needs to create the name for the - /// newest ReplicaSet. - /// +optional - #[prost(int32, optional, tag = "8")] - pub collision_count: ::core::option::Option, -} -/// DeploymentStrategy describes how to replace existing pods with new ones. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentStrategy { - /// Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if DeploymentStrategyType = - /// RollingUpdate. - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// ReplicaSet ensures that a specified number of pod replicas are running at any given time. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSet { - /// If the Labels of a ReplicaSet are empty, they are defaulted to - /// be the same as the Pod(s) that the ReplicaSet manages. - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the specification of the desired behavior of the ReplicaSet. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the most recently observed status of the ReplicaSet. - /// This data may be out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ReplicaSetCondition describes the state of a replica set at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ReplicaSetCondition { - /// Type of replica set condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// ReplicaSetList is a collection of ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ReplicaSets. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ReplicaSetSpec is the specification of a ReplicaSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetSpec { - /// Replicas is the number of desired pods. - /// This is a pointer to distinguish between explicit zero and unspecified. - /// Defaults to 1. - /// More info: - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// Selector is a label query over pods that should match the replica count. - /// Label keys and values that must match in order to be controlled by this replica set. - /// It must match the pod template's labels. - /// More info: - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template is the object that describes the pod that will be created if - /// insufficient replicas are detected. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, -} -/// ReplicaSetStatus represents the current status of a ReplicaSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetStatus { - /// Replicas is the most recently observed number of non-terminating pods. - /// More info: - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// The number of non-terminating pods that have labels matching the labels of the pod template of the replicaset. - /// +optional - #[prost(int32, optional, tag = "2")] - pub fully_labeled_replicas: ::core::option::Option, - /// The number of non-terminating pods targeted by this ReplicaSet with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "4")] - pub ready_replicas: ::core::option::Option, - /// The number of available non-terminating pods (ready for at least minReadySeconds) for this replica set. - /// +optional - #[prost(int32, optional, tag = "5")] - pub available_replicas: ::core::option::Option, - /// The number of terminating pods for this replica set. Terminating pods have a non-null .metadata.deletionTimestamp - /// and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "7")] - pub terminating_replicas: ::core::option::Option, - /// ObservedGeneration reflects the generation of the most recently observed ReplicaSet. - /// +optional - #[prost(int64, optional, tag = "3")] - pub observed_generation: ::core::option::Option, - /// Represents the latest available observations of a replica set's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// Spec to control the desired behavior of daemon set rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDaemonSet { - /// The maximum number of DaemonSet pods that can be unavailable during the - /// update. Value can be an absolute number (ex: 5) or a percentage of total - /// number of DaemonSet pods at the start of the update (ex: 10%). Absolute - /// number is calculated from percentage by rounding up. - /// This cannot be 0 if MaxSurge is 0 - /// Default value is 1. - /// Example: when this is set to 30%, at most 30% of the total number of nodes - /// that should be running the daemon pod (i.e. status.desiredNumberScheduled) - /// can have their pods stopped for an update at any given time. The update - /// starts by stopping at most 30% of those DaemonSet pods and then brings - /// up new DaemonSet pods in their place. Once the new pods are available, - /// it then proceeds onto other DaemonSet pods, thus ensuring that at least - /// 70% of original number of DaemonSet pods are available at all times during - /// the update. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of nodes with an existing available DaemonSet pod that - /// can have an updated DaemonSet pod during during an update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up to a minimum of 1. - /// Default value is 0. - /// Example: when this is set to 30%, at most 30% of the total number of nodes - /// that should be running the daemon pod (i.e. status.desiredNumberScheduled) - /// can have their a new pod created before the old pod is marked as deleted. - /// The update starts by launching new pods on 30% of nodes. Once an updated - /// pod is available (Ready for at least minReadySeconds) the old DaemonSet pod - /// on that node is marked deleted. If the old pod becomes unavailable for any - /// reason (Ready transitions to false, is evicted, or is drained) an updated - /// pod is immediately created on that node without considering surge limits. - /// Allowing surge implies the possibility that the resources consumed by the - /// daemonset on any given node can double if the readiness check fails, and - /// so resource intensive daemonsets should take into account that they may - /// cause evictions during disruption. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// Spec to control the desired behavior of rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDeployment { - /// The maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding down. - /// This can not be 0 if MaxSurge is 0. - /// Defaults to 25%. - /// Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods - /// immediately when the rolling update starts. Once new pods are ready, old ReplicaSet - /// can be scaled down further, followed by scaling up the new ReplicaSet, ensuring - /// that the total number of pods available at all times during the update is at - /// least 70% of desired pods. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of pods that can be scheduled above the desired number of - /// pods. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up. - /// Defaults to 25%. - /// Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when - /// the rolling update starts, such that the total number of old and new pods do not exceed - /// 130% of desired pods. Once old pods have been killed, - /// new ReplicaSet can be scaled up further, ensuring that total number of pods running - /// at any time during the update is at most 130% of desired pods. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateStatefulSetStrategy { - /// Partition indicates the ordinal at which the StatefulSet should be partitioned - /// for updates. During a rolling update, all pods from ordinal Replicas-1 to - /// Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. - /// This is helpful in being able to do a canary based deployment. The default value is 0. - /// +optional - #[prost(int32, optional, tag = "1")] - pub partition: ::core::option::Option, - /// The maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding up. This can not be 0. - /// Defaults to 1. This field is alpha-level and is only honored by servers that enable the - /// MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to - /// Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it - /// will be counted towards MaxUnavailable. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_unavailable: - ::core::option::Option, -} -/// StatefulSet represents a set of pods with consistent identities. -/// Identities are defined as: -/// - Network: A single stable DNS and hostname. -/// - Storage: As many VolumeClaims as requested. -/// -/// The StatefulSet guarantees that a given network identity will always -/// map to the same storage identity. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSet { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the desired identities of pods in this set. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the current status of Pods in this StatefulSet. This data - /// may be out of date by some window of time. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// StatefulSetCondition describes the state of a statefulset at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetCondition { - /// Type of statefulset condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// StatefulSetList is a collection of StatefulSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetList { - /// Standard list's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of stateful sets. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// StatefulSetOrdinals describes the policy used for replica ordinal assignment -/// in this StatefulSet. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetOrdinals { - /// start is the number representing the first replica's index. It may be used - /// to number replicas from an alternate index (eg: 1-indexed) over the default - /// 0-indexed names, or to orchestrate progressive movement of replicas from - /// one StatefulSet to another. - /// If set, replica indices will be in the range: - /// [.spec.ordinals.start, .spec.ordinals.start + .spec.replicas). - /// If unset, defaults to 0. Replica indices will be in the range: - /// [0, .spec.replicas). - /// +optional - #[prost(int32, optional, tag = "1")] - pub start: ::core::option::Option, -} -/// StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs -/// created from the StatefulSet VolumeClaimTemplates. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetPersistentVolumeClaimRetentionPolicy { - /// WhenDeleted specifies what happens to PVCs created from StatefulSet - /// VolumeClaimTemplates when the StatefulSet is deleted. The default policy - /// of `Retain` causes PVCs to not be affected by StatefulSet deletion. The - /// `Delete` policy causes those PVCs to be deleted. - #[prost(string, optional, tag = "1")] - pub when_deleted: ::core::option::Option<::prost::alloc::string::String>, - /// WhenScaled specifies what happens to PVCs created from StatefulSet - /// VolumeClaimTemplates when the StatefulSet is scaled down. The default - /// policy of `Retain` causes PVCs to not be affected by a scaledown. The - /// `Delete` policy causes the associated PVCs for any excess pods above - /// the replica count to be deleted. - #[prost(string, optional, tag = "2")] - pub when_scaled: ::core::option::Option<::prost::alloc::string::String>, -} -/// A StatefulSetSpec is the specification of a StatefulSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetSpec { - /// replicas is the desired number of replicas of the given Template. - /// These are replicas in the sense that they are instantiations of the - /// same Template, but individual replicas also have a consistent identity. - /// If unspecified, defaults to 1. - /// TODO: Consider a rename of this field. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is a label query over pods that should match the replica count. - /// It must match the pod template's labels. - /// More info: - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// template is the object that describes the pod that will be created if - /// insufficient replicas are detected. Each pod stamped out by the StatefulSet - /// will fulfill this Template, but have a unique identity from the rest - /// of the StatefulSet. Each pod will be named with the format - /// -. For example, a pod in a StatefulSet named - /// "web" with index number "3" would be named "web-3". - /// The only allowed template.spec.restartPolicy value is "Always". - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// volumeClaimTemplates is a list of claims that pods are allowed to reference. - /// The StatefulSet controller is responsible for mapping network identities to - /// claims in a way that maintains the identity of a pod. Every claim in - /// this list must have at least one matching (by name) volumeMount in one - /// container in the template. A claim in this list takes precedence over - /// any volumes in the template, with the same name. - /// TODO: Define the behavior if a claim already exists with the same name. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "4")] - pub volume_claim_templates: ::prost::alloc::vec::Vec, - /// serviceName is the name of the service that governs this StatefulSet. - /// This service must exist before the StatefulSet, and is responsible for - /// the network identity of the set. Pods get DNS/hostnames that follow the - /// pattern: pod-specific-string.serviceName.default.svc.cluster.local - /// where "pod-specific-string" is managed by the StatefulSet controller. - /// +optional - #[prost(string, optional, tag = "5")] - pub service_name: ::core::option::Option<::prost::alloc::string::String>, - /// podManagementPolicy controls how pods are created during initial scale up, - /// when replacing pods on nodes, or when scaling down. The default policy is - /// `OrderedReady`, where pods are created in increasing order (pod-0, then - /// pod-1, etc) and the controller will wait until each pod is ready before - /// continuing. When scaling down, the pods are removed in the opposite order. - /// The alternative policy is `Parallel` which will create pods in parallel - /// to match the desired scale without waiting, and on scale down will delete - /// all pods at once. - /// +optional - #[prost(string, optional, tag = "6")] - pub pod_management_policy: ::core::option::Option<::prost::alloc::string::String>, - /// updateStrategy indicates the StatefulSetUpdateStrategy that will be - /// employed to update Pods in the StatefulSet when a revision is made to - /// Template. - #[prost(message, optional, tag = "7")] - pub update_strategy: ::core::option::Option, - /// revisionHistoryLimit is the maximum number of revisions that will - /// be maintained in the StatefulSet's revision history. The revision history - /// consists of all revisions not represented by a currently applied - /// StatefulSetSpec version. The default value is 10. - #[prost(int32, optional, tag = "8")] - pub revision_history_limit: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "9")] - pub min_ready_seconds: ::core::option::Option, - /// persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent - /// volume claims created from volumeClaimTemplates. By default, all persistent - /// volume claims are created as needed and retained until manually deleted. This - /// policy allows the lifecycle to be altered, for example by deleting persistent - /// volume claims when their stateful set is deleted, or when their pod is scaled - /// down. - /// +optional - #[prost(message, optional, tag = "10")] - pub persistent_volume_claim_retention_policy: - ::core::option::Option, - /// ordinals controls the numbering of replica indices in a StatefulSet. The - /// default ordinals behavior assigns a "0" index to the first replica and - /// increments the index by one for each additional replica requested. - /// +optional - #[prost(message, optional, tag = "11")] - pub ordinals: ::core::option::Option, -} -/// StatefulSetStatus represents the current state of a StatefulSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetStatus { - /// observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the - /// StatefulSet's generation, which is updated on mutation by the API Server. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// replicas is the number of Pods created by the StatefulSet controller. - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// readyReplicas is the number of pods created for this StatefulSet with a Ready Condition. - #[prost(int32, optional, tag = "3")] - pub ready_replicas: ::core::option::Option, - /// currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version - /// indicated by currentRevision. - #[prost(int32, optional, tag = "4")] - pub current_replicas: ::core::option::Option, - /// updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version - /// indicated by updateRevision. - #[prost(int32, optional, tag = "5")] - pub updated_replicas: ::core::option::Option, - /// currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the - /// sequence [0,currentReplicas). - #[prost(string, optional, tag = "6")] - pub current_revision: ::core::option::Option<::prost::alloc::string::String>, - /// updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence - /// [replicas-updatedReplicas,replicas) - #[prost(string, optional, tag = "7")] - pub update_revision: ::core::option::Option<::prost::alloc::string::String>, - /// collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller - /// uses this field as a collision avoidance mechanism when it needs to create the name for the - /// newest ControllerRevision. - /// +optional - #[prost(int32, optional, tag = "9")] - pub collision_count: ::core::option::Option, - /// Represents the latest available observations of a statefulset's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "10")] - pub conditions: ::prost::alloc::vec::Vec, - /// Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. - /// +optional - #[prost(int32, optional, tag = "11")] - pub available_replicas: ::core::option::Option, -} -/// StatefulSetUpdateStrategy indicates the strategy that the StatefulSet -/// controller will use to perform updates. It includes any additional parameters -/// necessary to perform the update for the indicated strategy. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetUpdateStrategy { - /// Type indicates the type of the StatefulSetUpdateStrategy. - /// Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType. - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} - -impl crate::Resource for ControllerRevision { - const API_VERSION: &'static str = "apps/v1"; - const GROUP: &'static str = "apps"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ControllerRevision"; - const URL_PATH_SEGMENT: &'static str = "controllerrevisions"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for ControllerRevision { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for DaemonSet { - const API_VERSION: &'static str = "apps/v1"; - const GROUP: &'static str = "apps"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "DaemonSet"; - const URL_PATH_SEGMENT: &'static str = "daemonsets"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for DaemonSet { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for DaemonSet { - type Spec = crate::api::apps::v1::DaemonSetSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for DaemonSet { - type Status = crate::api::apps::v1::DaemonSetStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for DaemonSet { - type Condition = crate::api::apps::v1::DaemonSetCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for Deployment { - const API_VERSION: &'static str = "apps/v1"; - const GROUP: &'static str = "apps"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Deployment"; - const URL_PATH_SEGMENT: &'static str = "deployments"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Deployment { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Deployment { - type Spec = crate::api::apps::v1::DeploymentSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Deployment { - type Status = crate::api::apps::v1::DeploymentStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for Deployment { - type Condition = crate::api::apps::v1::DeploymentCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for ReplicaSet { - const API_VERSION: &'static str = "apps/v1"; - const GROUP: &'static str = "apps"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ReplicaSet"; - const URL_PATH_SEGMENT: &'static str = "replicasets"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for ReplicaSet { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ReplicaSet { - type Spec = crate::api::apps::v1::ReplicaSetSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for ReplicaSet { - type Status = crate::api::apps::v1::ReplicaSetStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for ReplicaSet { - type Condition = crate::api::apps::v1::ReplicaSetCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for StatefulSet { - const API_VERSION: &'static str = "apps/v1"; - const GROUP: &'static str = "apps"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "StatefulSet"; - const URL_PATH_SEGMENT: &'static str = "statefulsets"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for StatefulSet { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for StatefulSet { - type Spec = crate::api::apps::v1::StatefulSetSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for StatefulSet { - type Status = crate::api::apps::v1::StatefulSetStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for StatefulSet { - type Condition = crate::api::apps::v1::StatefulSetCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/apps/v1beta1/mod.rs b/k8s-pb/src/api/apps/v1beta1/mod.rs deleted file mode 100644 index 0dce305..0000000 --- a/k8s-pb/src/api/apps/v1beta1/mod.rs +++ /dev/null @@ -1,571 +0,0 @@ -// This file is @generated by prost-build. -/// DEPRECATED - This group version of ControllerRevision is deprecated by apps/v1beta2/ControllerRevision. See the -/// release notes for more information. -/// ControllerRevision implements an immutable snapshot of state data. Clients -/// are responsible for serializing and deserializing the objects that contain -/// their internal state. -/// Once a ControllerRevision has been successfully created, it can not be updated. -/// The API Server will fail validation of all requests that attempt to mutate -/// the Data field. ControllerRevisions may, however, be deleted. Note that, due to its use by both -/// the DaemonSet and StatefulSet controllers for update and rollback, this object is beta. However, -/// it may be subject to name and representation changes in future releases, and clients should not -/// depend on its stability. It is primarily for internal use by controllers. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ControllerRevision { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// data is the serialized representation of the state. - #[prost(message, optional, tag = "2")] - pub data: ::core::option::Option, - /// revision indicates the revision of the state represented by Data. - #[prost(int64, optional, tag = "3")] - pub revision: ::core::option::Option, -} -/// ControllerRevisionList is a resource containing a list of ControllerRevision objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ControllerRevisionList { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of ControllerRevisions - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DEPRECATED - This group version of Deployment is deprecated by apps/v1beta2/Deployment. See the release notes for -/// more information. -/// Deployment enables declarative updates for Pods and ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Deployment { - /// Standard object metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the Deployment. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the Deployment. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DeploymentCondition describes the state of a deployment at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentCondition { - /// Type of deployment condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time this condition was updated. - #[prost(message, optional, tag = "6")] - pub last_update_time: - ::core::option::Option, - /// Last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "7")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeploymentList is a list of Deployments. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of Deployments. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DEPRECATED. -/// DeploymentRollback stores the information required to rollback a deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentRollback { - /// Required: This must match the Name of a deployment. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// The annotations to be updated to a deployment - /// +optional - #[prost(btree_map = "string, string", tag = "2")] - pub updated_annotations: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// The config of this deployment rollback. - #[prost(message, optional, tag = "3")] - pub rollback_to: ::core::option::Option, -} -/// DeploymentSpec is the specification of the desired behavior of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentSpec { - /// replicas is the number of desired pods. This is a pointer to distinguish between explicit - /// zero and not specified. Defaults to 1. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is the label selector for pods. Existing ReplicaSets whose pods are - /// selected by this will be the ones affected by this deployment. - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template describes the pods that will be created. - /// The only allowed template.spec.restartPolicy value is "Always". - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// The deployment strategy to use to replace existing pods with new ones. - /// +optional - /// +patchStrategy=retainKeys - #[prost(message, optional, tag = "4")] - pub strategy: ::core::option::Option, - /// minReadySeconds is the minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "5")] - pub min_ready_seconds: ::core::option::Option, - /// revisionHistoryLimit is the number of old ReplicaSets to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 2. - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, - /// paused indicates that the deployment is paused. - /// +optional - #[prost(bool, optional, tag = "7")] - pub paused: ::core::option::Option, - /// DEPRECATED. - /// rollbackTo is the config this deployment is rolling back to. Will be cleared after rollback is done. - /// +optional - #[prost(message, optional, tag = "8")] - pub rollback_to: ::core::option::Option, - /// progressDeadlineSeconds is the maximum time in seconds for a deployment to make progress before it - /// is considered to be failed. The deployment controller will continue to - /// process failed deployments and a condition with a ProgressDeadlineExceeded - /// reason will be surfaced in the deployment status. Note that progress will - /// not be estimated during the time a deployment is paused. Defaults to 600s. - /// +optional - #[prost(int32, optional, tag = "9")] - pub progress_deadline_seconds: ::core::option::Option, -} -/// DeploymentStatus is the most recently observed status of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentStatus { - /// The generation observed by the deployment controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment (their labels match the selector). - /// +optional - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment that have the desired template spec. - /// +optional - #[prost(int32, optional, tag = "3")] - pub updated_replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this Deployment with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "7")] - pub ready_replicas: ::core::option::Option, - /// Total number of available non-terminating pods (ready for at least minReadySeconds) targeted by this deployment. - /// +optional - #[prost(int32, optional, tag = "4")] - pub available_replicas: ::core::option::Option, - /// Total number of unavailable pods targeted by this deployment. This is the total number of - /// pods that are still required for the deployment to have 100% available capacity. They may - /// either be pods that are running but not yet available or pods that still have not been created. - /// +optional - #[prost(int32, optional, tag = "5")] - pub unavailable_replicas: ::core::option::Option, - /// Total number of terminating pods targeted by this deployment. Terminating pods have a non-null - /// .metadata.deletionTimestamp and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "9")] - pub terminating_replicas: ::core::option::Option, - /// Represents the latest available observations of a deployment's current state. - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, - /// collisionCount is the count of hash collisions for the Deployment. The Deployment controller uses this - /// field as a collision avoidance mechanism when it needs to create the name for the - /// newest ReplicaSet. - /// +optional - #[prost(int32, optional, tag = "8")] - pub collision_count: ::core::option::Option, -} -/// DeploymentStrategy describes how to replace existing pods with new ones. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentStrategy { - /// Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if DeploymentStrategyType = - /// RollingUpdate. - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// DEPRECATED. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollbackConfig { - /// The revision to rollback to. If set to 0, rollback to the last revision. - /// +optional - #[prost(int64, optional, tag = "1")] - pub revision: ::core::option::Option, -} -/// Spec to control the desired behavior of rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDeployment { - /// The maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding down. - /// This can not be 0 if MaxSurge is 0. - /// Defaults to 25%. - /// Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods - /// immediately when the rolling update starts. Once new pods are ready, old ReplicaSet - /// can be scaled down further, followed by scaling up the new ReplicaSet, ensuring - /// that the total number of pods available at all times during the update is at - /// least 70% of desired pods. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of pods that can be scheduled above the desired number of - /// pods. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up. - /// Defaults to 25%. - /// Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when - /// the rolling update starts, such that the total number of old and new pods do not exceed - /// 130% of desired pods. Once old pods have been killed, - /// new ReplicaSet can be scaled up further, ensuring that total number of pods running - /// at any time during the update is at most 130% of desired pods. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateStatefulSetStrategy { - /// Partition indicates the ordinal at which the StatefulSet should be partitioned - /// for updates. During a rolling update, all pods from ordinal Replicas-1 to - /// Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. - /// This is helpful in being able to do a canary based deployment. The default value is 0. - #[prost(int32, optional, tag = "1")] - pub partition: ::core::option::Option, - /// maxUnavailable is the maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding up. This can not be 0. - /// Defaults to 1. This field is alpha-level and is only honored by servers that enable the - /// MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to - /// Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it - /// will be counted towards MaxUnavailable. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_unavailable: - ::core::option::Option, -} -/// Scale represents a scaling request for a resource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scale { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec defines the behavior of the scale. More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status defines current status of the scale. More info: Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ScaleSpec describes the attributes of a scale subresource -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleSpec { - /// replicas is the number of observed instances of the scaled object. - /// +optional - /// +k8s:optional - /// +default=0 - /// +k8s:minimum=0 - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, -} -/// ScaleStatus represents the current status of a scale subresource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ScaleStatus { - /// replias is the actual number of observed instances of the scaled object. - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is a label query over pods that should match the replicas count. More info: - /// +optional - #[prost(btree_map = "string, string", tag = "2")] - pub selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// targetSelector is the label selector for pods that should match the replicas count. This is a serializated - /// version of both map-based and more expressive set-based selectors. This is done to - /// avoid introspection in the clients. The string will be in the same format as the - /// query-param syntax. If the target type only supports map-based selectors, both this - /// field and map-based selector field are populated. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub target_selector: ::core::option::Option<::prost::alloc::string::String>, -} -/// DEPRECATED - This group version of StatefulSet is deprecated by apps/v1beta2/StatefulSet. See the release notes for -/// more information. -/// StatefulSet represents a set of pods with consistent identities. -/// Identities are defined as: -/// - Network: A single stable DNS and hostname. -/// - Storage: As many VolumeClaims as requested. -/// -/// The StatefulSet guarantees that a given network identity will always -/// map to the same storage identity. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSet { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the desired identities of pods in this set. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the current status of Pods in this StatefulSet. This data - /// may be out of date by some window of time. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// StatefulSetCondition describes the state of a statefulset at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetCondition { - /// Type of statefulset condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// StatefulSetList is a collection of StatefulSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetList { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// StatefulSetOrdinals describes the policy used for replica ordinal assignment -/// in this StatefulSet. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetOrdinals { - /// start is the number representing the first replica's index. It may be used - /// to number replicas from an alternate index (eg: 1-indexed) over the default - /// 0-indexed names, or to orchestrate progressive movement of replicas from - /// one StatefulSet to another. - /// If set, replica indices will be in the range: - /// [.spec.ordinals.start, .spec.ordinals.start + .spec.replicas). - /// If unset, defaults to 0. Replica indices will be in the range: - /// [0, .spec.replicas). - /// +optional - #[prost(int32, optional, tag = "1")] - pub start: ::core::option::Option, -} -/// StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs -/// created from the StatefulSet VolumeClaimTemplates. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetPersistentVolumeClaimRetentionPolicy { - /// whenDeleted specifies what happens to PVCs created from StatefulSet - /// VolumeClaimTemplates when the StatefulSet is deleted. The default policy - /// of `Retain` causes PVCs to not be affected by StatefulSet deletion. The - /// `Delete` policy causes those PVCs to be deleted. - #[prost(string, optional, tag = "1")] - pub when_deleted: ::core::option::Option<::prost::alloc::string::String>, - /// whenScaled specifies what happens to PVCs created from StatefulSet - /// VolumeClaimTemplates when the StatefulSet is scaled down. The default - /// policy of `Retain` causes PVCs to not be affected by a scaledown. The - /// `Delete` policy causes the associated PVCs for any excess pods above - /// the replica count to be deleted. - #[prost(string, optional, tag = "2")] - pub when_scaled: ::core::option::Option<::prost::alloc::string::String>, -} -/// A StatefulSetSpec is the specification of a StatefulSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetSpec { - /// replicas is the desired number of replicas of the given Template. - /// These are replicas in the sense that they are instantiations of the - /// same Template, but individual replicas also have a consistent identity. - /// If unspecified, defaults to 1. - /// TODO: Consider a rename of this field. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is a label query over pods that should match the replica count. - /// If empty, defaulted to labels on the pod template. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// template is the object that describes the pod that will be created if - /// insufficient replicas are detected. Each pod stamped out by the StatefulSet - /// will fulfill this Template, but have a unique identity from the rest - /// of the StatefulSet. Each pod will be named with the format - /// -. For example, a pod in a StatefulSet named - /// "web" with index number "3" would be named "web-3". - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// volumeClaimTemplates is a list of claims that pods are allowed to reference. - /// The StatefulSet controller is responsible for mapping network identities to - /// claims in a way that maintains the identity of a pod. Every claim in - /// this list must have at least one matching (by name) volumeMount in one - /// container in the template. A claim in this list takes precedence over - /// any volumes in the template, with the same name. - /// TODO: Define the behavior if a claim already exists with the same name. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "4")] - pub volume_claim_templates: ::prost::alloc::vec::Vec, - /// serviceName is the name of the service that governs this StatefulSet. - /// This service must exist before the StatefulSet, and is responsible for - /// the network identity of the set. Pods get DNS/hostnames that follow the - /// pattern: pod-specific-string.serviceName.default.svc.cluster.local - /// where "pod-specific-string" is managed by the StatefulSet controller. - /// +optional - #[prost(string, optional, tag = "5")] - pub service_name: ::core::option::Option<::prost::alloc::string::String>, - /// podManagementPolicy controls how pods are created during initial scale up, - /// when replacing pods on nodes, or when scaling down. The default policy is - /// `OrderedReady`, where pods are created in increasing order (pod-0, then - /// pod-1, etc) and the controller will wait until each pod is ready before - /// continuing. When scaling down, the pods are removed in the opposite order. - /// The alternative policy is `Parallel` which will create pods in parallel - /// to match the desired scale without waiting, and on scale down will delete - /// all pods at once. - /// +optional - #[prost(string, optional, tag = "6")] - pub pod_management_policy: ::core::option::Option<::prost::alloc::string::String>, - /// updateStrategy indicates the StatefulSetUpdateStrategy that will be - /// employed to update Pods in the StatefulSet when a revision is made to - /// Template. - #[prost(message, optional, tag = "7")] - pub update_strategy: ::core::option::Option, - /// revisionHistoryLimit is the maximum number of revisions that will - /// be maintained in the StatefulSet's revision history. The revision history - /// consists of all revisions not represented by a currently applied - /// StatefulSetSpec version. The default value is 10. - #[prost(int32, optional, tag = "8")] - pub revision_history_limit: ::core::option::Option, - /// minReadySeconds is the minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "9")] - pub min_ready_seconds: ::core::option::Option, - /// PersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from - /// the StatefulSet VolumeClaimTemplates. - /// +optional - #[prost(message, optional, tag = "10")] - pub persistent_volume_claim_retention_policy: - ::core::option::Option, - /// ordinals controls the numbering of replica indices in a StatefulSet. The - /// default ordinals behavior assigns a "0" index to the first replica and - /// increments the index by one for each additional replica requested. - /// +optional - #[prost(message, optional, tag = "11")] - pub ordinals: ::core::option::Option, -} -/// StatefulSetStatus represents the current state of a StatefulSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetStatus { - /// observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the - /// StatefulSet's generation, which is updated on mutation by the API Server. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// replicas is the number of Pods created by the StatefulSet controller. - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// readyReplicas is the number of pods created by this StatefulSet controller with a Ready Condition. - #[prost(int32, optional, tag = "3")] - pub ready_replicas: ::core::option::Option, - /// currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version - /// indicated by currentRevision. - #[prost(int32, optional, tag = "4")] - pub current_replicas: ::core::option::Option, - /// updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version - /// indicated by updateRevision. - #[prost(int32, optional, tag = "5")] - pub updated_replicas: ::core::option::Option, - /// currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the - /// sequence [0,currentReplicas). - #[prost(string, optional, tag = "6")] - pub current_revision: ::core::option::Option<::prost::alloc::string::String>, - /// updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence - /// [replicas-updatedReplicas,replicas) - #[prost(string, optional, tag = "7")] - pub update_revision: ::core::option::Option<::prost::alloc::string::String>, - /// collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller - /// uses this field as a collision avoidance mechanism when it needs to create the name for the - /// newest ControllerRevision. - /// +optional - #[prost(int32, optional, tag = "9")] - pub collision_count: ::core::option::Option, - /// conditions represent the latest available observations of a statefulset's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "10")] - pub conditions: ::prost::alloc::vec::Vec, - /// availableReplicas is the total number of available pods (ready for at least minReadySeconds) targeted by this StatefulSet. - /// +optional - #[prost(int32, optional, tag = "11")] - pub available_replicas: ::core::option::Option, -} -/// StatefulSetUpdateStrategy indicates the strategy that the StatefulSet -/// controller will use to perform updates. It includes any additional parameters -/// necessary to perform the update for the indicated strategy. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetUpdateStrategy { - /// Type indicates the type of the StatefulSetUpdateStrategy. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType. - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} diff --git a/k8s-pb/src/api/apps/v1beta2/mod.rs b/k8s-pb/src/api/apps/v1beta2/mod.rs deleted file mode 100644 index e7a8b3e..0000000 --- a/k8s-pb/src/api/apps/v1beta2/mod.rs +++ /dev/null @@ -1,887 +0,0 @@ -// This file is @generated by prost-build. -/// DEPRECATED - This group version of ControllerRevision is deprecated by apps/v1/ControllerRevision. See the -/// release notes for more information. -/// ControllerRevision implements an immutable snapshot of state data. Clients -/// are responsible for serializing and deserializing the objects that contain -/// their internal state. -/// Once a ControllerRevision has been successfully created, it can not be updated. -/// The API Server will fail validation of all requests that attempt to mutate -/// the Data field. ControllerRevisions may, however, be deleted. Note that, due to its use by both -/// the DaemonSet and StatefulSet controllers for update and rollback, this object is beta. However, -/// it may be subject to name and representation changes in future releases, and clients should not -/// depend on its stability. It is primarily for internal use by controllers. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ControllerRevision { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Data is the serialized representation of the state. - #[prost(message, optional, tag = "2")] - pub data: ::core::option::Option, - /// Revision indicates the revision of the state represented by Data. - #[prost(int64, optional, tag = "3")] - pub revision: ::core::option::Option, -} -/// ControllerRevisionList is a resource containing a list of ControllerRevision objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ControllerRevisionList { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of ControllerRevisions - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DEPRECATED - This group version of DaemonSet is deprecated by apps/v1/DaemonSet. See the release notes for -/// more information. -/// DaemonSet represents the configuration of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSet { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The desired behavior of this daemon set. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// The current status of this daemon set. This data may be - /// out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DaemonSetCondition describes the state of a DaemonSet at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonSetCondition { - /// Type of DaemonSet condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DaemonSetList is a collection of daemon sets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// A list of daemon sets. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DaemonSetSpec is the specification of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetSpec { - /// A label query over pods that are managed by the daemon set. - /// Must match in order to be controlled. - /// It must match the pod template's labels. - /// More info: - #[prost(message, optional, tag = "1")] - pub selector: - ::core::option::Option, - /// An object that describes the pod that will be created. - /// The DaemonSet will create exactly one copy of this pod on every node - /// that matches the template's node selector (or on every node if no node - /// selector is specified). - /// The only allowed template.spec.restartPolicy value is "Always". - /// More info: - #[prost(message, optional, tag = "2")] - pub template: ::core::option::Option, - /// An update strategy to replace existing DaemonSet pods with new pods. - /// +optional - #[prost(message, optional, tag = "3")] - pub update_strategy: ::core::option::Option, - /// The minimum number of seconds for which a newly created DaemonSet pod should - /// be ready without any of its container crashing, for it to be considered - /// available. Defaults to 0 (pod will be considered available as soon as it - /// is ready). - /// +optional - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// The number of old history to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 10. - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, -} -/// DaemonSetStatus represents the current status of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetStatus { - /// The number of nodes that are running at least 1 - /// daemon pod and are supposed to run the daemon pod. - /// More info: - #[prost(int32, optional, tag = "1")] - pub current_number_scheduled: ::core::option::Option, - /// The number of nodes that are running the daemon pod, but are - /// not supposed to run the daemon pod. - /// More info: - #[prost(int32, optional, tag = "2")] - pub number_misscheduled: ::core::option::Option, - /// The total number of nodes that should be running the daemon - /// pod (including nodes correctly running the daemon pod). - /// More info: - #[prost(int32, optional, tag = "3")] - pub desired_number_scheduled: ::core::option::Option, - /// Total number of nodes that should be running the daemon pod and have one - /// or more of the daemon pod running with a Ready Condition by passing the readinessProbe. - #[prost(int32, optional, tag = "4")] - pub number_ready: ::core::option::Option, - /// The most recent generation observed by the daemon set controller. - /// +optional - #[prost(int64, optional, tag = "5")] - pub observed_generation: ::core::option::Option, - /// The total number of nodes that are running updated daemon pod - /// +optional - #[prost(int32, optional, tag = "6")] - pub updated_number_scheduled: ::core::option::Option, - /// The number of nodes that should be running the - /// daemon pod and have one or more of the daemon pod running and - /// available (ready for at least spec.minReadySeconds) - /// +optional - #[prost(int32, optional, tag = "7")] - pub number_available: ::core::option::Option, - /// The number of nodes that should be running the - /// daemon pod and have none of the daemon pod running and available - /// (ready for at least spec.minReadySeconds) - /// +optional - #[prost(int32, optional, tag = "8")] - pub number_unavailable: ::core::option::Option, - /// Count of hash collisions for the DaemonSet. The DaemonSet controller - /// uses this field as a collision avoidance mechanism when it needs to - /// create the name for the newest ControllerRevision. - /// +optional - #[prost(int32, optional, tag = "9")] - pub collision_count: ::core::option::Option, - /// Represents the latest available observations of a DaemonSet's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "10")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonSetUpdateStrategy { - /// Type of daemon set update. Can be "RollingUpdate" or "OnDelete". Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if type = "RollingUpdate". - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. Same as Deployment `strategy.rollingUpdate`. - /// See - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// DEPRECATED - This group version of Deployment is deprecated by apps/v1/Deployment. See the release notes for -/// more information. -/// Deployment enables declarative updates for Pods and ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Deployment { - /// Standard object metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the Deployment. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the Deployment. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DeploymentCondition describes the state of a deployment at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentCondition { - /// Type of deployment condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time this condition was updated. - #[prost(message, optional, tag = "6")] - pub last_update_time: - ::core::option::Option, - /// Last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "7")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeploymentList is a list of Deployments. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of Deployments. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DeploymentSpec is the specification of the desired behavior of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentSpec { - /// Number of desired pods. This is a pointer to distinguish between explicit - /// zero and not specified. Defaults to 1. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Label selector for pods. Existing ReplicaSets whose pods are - /// selected by this will be the ones affected by this deployment. - /// It must match the pod template's labels. - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template describes the pods that will be created. - /// The only allowed template.spec.restartPolicy value is "Always". - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// The deployment strategy to use to replace existing pods with new ones. - /// +optional - /// +patchStrategy=retainKeys - #[prost(message, optional, tag = "4")] - pub strategy: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "5")] - pub min_ready_seconds: ::core::option::Option, - /// The number of old ReplicaSets to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 10. - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, - /// Indicates that the deployment is paused. - /// +optional - #[prost(bool, optional, tag = "7")] - pub paused: ::core::option::Option, - /// The maximum time in seconds for a deployment to make progress before it - /// is considered to be failed. The deployment controller will continue to - /// process failed deployments and a condition with a ProgressDeadlineExceeded - /// reason will be surfaced in the deployment status. Note that progress will - /// not be estimated during the time a deployment is paused. Defaults to 600s. - #[prost(int32, optional, tag = "9")] - pub progress_deadline_seconds: ::core::option::Option, -} -/// DeploymentStatus is the most recently observed status of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentStatus { - /// The generation observed by the deployment controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment (their labels match the selector). - /// +optional - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment that have the desired template spec. - /// +optional - #[prost(int32, optional, tag = "3")] - pub updated_replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this Deployment with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "7")] - pub ready_replicas: ::core::option::Option, - /// Total number of available non-terminating pods (ready for at least minReadySeconds) targeted by this deployment. - /// +optional - #[prost(int32, optional, tag = "4")] - pub available_replicas: ::core::option::Option, - /// Total number of unavailable pods targeted by this deployment. This is the total number of - /// pods that are still required for the deployment to have 100% available capacity. They may - /// either be pods that are running but not yet available or pods that still have not been created. - /// +optional - #[prost(int32, optional, tag = "5")] - pub unavailable_replicas: ::core::option::Option, - /// Total number of terminating pods targeted by this deployment. Terminating pods have a non-null - /// .metadata.deletionTimestamp and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "9")] - pub terminating_replicas: ::core::option::Option, - /// Represents the latest available observations of a deployment's current state. - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, - /// Count of hash collisions for the Deployment. The Deployment controller uses this - /// field as a collision avoidance mechanism when it needs to create the name for the - /// newest ReplicaSet. - /// +optional - #[prost(int32, optional, tag = "8")] - pub collision_count: ::core::option::Option, -} -/// DeploymentStrategy describes how to replace existing pods with new ones. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentStrategy { - /// Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if DeploymentStrategyType = - /// RollingUpdate. - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// DEPRECATED - This group version of ReplicaSet is deprecated by apps/v1/ReplicaSet. See the release notes for -/// more information. -/// ReplicaSet ensures that a specified number of pod replicas are running at any given time. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSet { - /// If the Labels of a ReplicaSet are empty, they are defaulted to - /// be the same as the Pod(s) that the ReplicaSet manages. - /// Standard object's metadata. More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the specification of the desired behavior of the ReplicaSet. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the most recently observed status of the ReplicaSet. - /// This data may be out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ReplicaSetCondition describes the state of a replica set at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ReplicaSetCondition { - /// Type of replica set condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// ReplicaSetList is a collection of ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ReplicaSets. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ReplicaSetSpec is the specification of a ReplicaSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetSpec { - /// Replicas is the number of desired pods. - /// This is a pointer to distinguish between explicit zero and unspecified. - /// Defaults to 1. - /// More info: - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// Selector is a label query over pods that should match the replica count. - /// Label keys and values that must match in order to be controlled by this replica set. - /// It must match the pod template's labels. - /// More info: - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template is the object that describes the pod that will be created if - /// insufficient replicas are detected. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, -} -/// ReplicaSetStatus represents the current status of a ReplicaSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetStatus { - /// Replicas is the most recently observed number of non-terminating pods. - /// More info: - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// The number of non-terminating pods that have labels matching the labels of the pod template of the replicaset. - /// +optional - #[prost(int32, optional, tag = "2")] - pub fully_labeled_replicas: ::core::option::Option, - /// The number of non-terminating pods targeted by this ReplicaSet with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "4")] - pub ready_replicas: ::core::option::Option, - /// The number of available non-terminating pods (ready for at least minReadySeconds) for this replica set. - /// +optional - #[prost(int32, optional, tag = "5")] - pub available_replicas: ::core::option::Option, - /// The number of terminating pods for this replica set. Terminating pods have a non-null .metadata.deletionTimestamp - /// and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "7")] - pub terminating_replicas: ::core::option::Option, - /// ObservedGeneration reflects the generation of the most recently observed ReplicaSet. - /// +optional - #[prost(int64, optional, tag = "3")] - pub observed_generation: ::core::option::Option, - /// Represents the latest available observations of a replica set's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// Spec to control the desired behavior of daemon set rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDaemonSet { - /// The maximum number of DaemonSet pods that can be unavailable during the - /// update. Value can be an absolute number (ex: 5) or a percentage of total - /// number of DaemonSet pods at the start of the update (ex: 10%). Absolute - /// number is calculated from percentage by rounding up. - /// This cannot be 0 if MaxSurge is 0 - /// Default value is 1. - /// Example: when this is set to 30%, at most 30% of the total number of nodes - /// that should be running the daemon pod (i.e. status.desiredNumberScheduled) - /// can have their pods stopped for an update at any given time. The update - /// starts by stopping at most 30% of those DaemonSet pods and then brings - /// up new DaemonSet pods in their place. Once the new pods are available, - /// it then proceeds onto other DaemonSet pods, thus ensuring that at least - /// 70% of original number of DaemonSet pods are available at all times during - /// the update. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of nodes with an existing available DaemonSet pod that - /// can have an updated DaemonSet pod during during an update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up to a minimum of 1. - /// Default value is 0. - /// Example: when this is set to 30%, at most 30% of the total number of nodes - /// that should be running the daemon pod (i.e. status.desiredNumberScheduled) - /// can have their a new pod created before the old pod is marked as deleted. - /// The update starts by launching new pods on 30% of nodes. Once an updated - /// pod is available (Ready for at least minReadySeconds) the old DaemonSet pod - /// on that node is marked deleted. If the old pod becomes unavailable for any - /// reason (Ready transitions to false, is evicted, or is drained) an updated - /// pod is immediately created on that node without considering surge limits. - /// Allowing surge implies the possibility that the resources consumed by the - /// daemonset on any given node can double if the readiness check fails, and - /// so resource intensive daemonsets should take into account that they may - /// cause evictions during disruption. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// Spec to control the desired behavior of rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDeployment { - /// The maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding down. - /// This can not be 0 if MaxSurge is 0. - /// Defaults to 25%. - /// Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods - /// immediately when the rolling update starts. Once new pods are ready, old ReplicaSet - /// can be scaled down further, followed by scaling up the new ReplicaSet, ensuring - /// that the total number of pods available at all times during the update is at - /// least 70% of desired pods. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of pods that can be scheduled above the desired number of - /// pods. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up. - /// Defaults to 25%. - /// Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when - /// the rolling update starts, such that the total number of old and new pods do not exceed - /// 130% of desired pods. Once old pods have been killed, - /// new ReplicaSet can be scaled up further, ensuring that total number of pods running - /// at any time during the update is at most 130% of desired pods. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateStatefulSetStrategy { - /// Partition indicates the ordinal at which the StatefulSet should be partitioned - /// for updates. During a rolling update, all pods from ordinal Replicas-1 to - /// Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. - /// This is helpful in being able to do a canary based deployment. The default value is 0. - /// +optional - #[prost(int32, optional, tag = "1")] - pub partition: ::core::option::Option, - /// The maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding up. This can not be 0. - /// Defaults to 1. This field is alpha-level and is only honored by servers that enable the - /// MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to - /// Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it - /// will be counted towards MaxUnavailable. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_unavailable: - ::core::option::Option, -} -/// Scale represents a scaling request for a resource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scale { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// defines the behavior of the scale. More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// current status of the scale. More info: Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ScaleSpec describes the attributes of a scale subresource -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleSpec { - /// desired number of instances for the scaled object. - /// +optional - /// +k8s:optional - /// +default=0 - /// +k8s:minimum=0 - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, -} -/// ScaleStatus represents the current status of a scale subresource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ScaleStatus { - /// actual number of observed instances of the scaled object. - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is a label query over pods that should match the replicas count. More info: - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "2")] - pub selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// label selector for pods that should match the replicas count. This is a serializated - /// version of both map-based and more expressive set-based selectors. This is done to - /// avoid introspection in the clients. The string will be in the same format as the - /// query-param syntax. If the target type only supports map-based selectors, both this - /// field and map-based selector field are populated. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub target_selector: ::core::option::Option<::prost::alloc::string::String>, -} -/// DEPRECATED - This group version of StatefulSet is deprecated by apps/v1/StatefulSet. See the release notes for -/// more information. -/// StatefulSet represents a set of pods with consistent identities. -/// Identities are defined as: -/// - Network: A single stable DNS and hostname. -/// - Storage: As many VolumeClaims as requested. -/// -/// The StatefulSet guarantees that a given network identity will always -/// map to the same storage identity. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSet { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the desired identities of pods in this set. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the current status of Pods in this StatefulSet. This data - /// may be out of date by some window of time. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// StatefulSetCondition describes the state of a statefulset at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetCondition { - /// Type of statefulset condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// StatefulSetList is a collection of StatefulSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetList { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// StatefulSetOrdinals describes the policy used for replica ordinal assignment -/// in this StatefulSet. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetOrdinals { - /// start is the number representing the first replica's index. It may be used - /// to number replicas from an alternate index (eg: 1-indexed) over the default - /// 0-indexed names, or to orchestrate progressive movement of replicas from - /// one StatefulSet to another. - /// If set, replica indices will be in the range: - /// [.spec.ordinals.start, .spec.ordinals.start + .spec.replicas). - /// If unset, defaults to 0. Replica indices will be in the range: - /// [0, .spec.replicas). - /// +optional - #[prost(int32, optional, tag = "1")] - pub start: ::core::option::Option, -} -/// StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs -/// created from the StatefulSet VolumeClaimTemplates. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetPersistentVolumeClaimRetentionPolicy { - /// WhenDeleted specifies what happens to PVCs created from StatefulSet - /// VolumeClaimTemplates when the StatefulSet is deleted. The default policy - /// of `Retain` causes PVCs to not be affected by StatefulSet deletion. The - /// `Delete` policy causes those PVCs to be deleted. - #[prost(string, optional, tag = "1")] - pub when_deleted: ::core::option::Option<::prost::alloc::string::String>, - /// WhenScaled specifies what happens to PVCs created from StatefulSet - /// VolumeClaimTemplates when the StatefulSet is scaled down. The default - /// policy of `Retain` causes PVCs to not be affected by a scaledown. The - /// `Delete` policy causes the associated PVCs for any excess pods above - /// the replica count to be deleted. - #[prost(string, optional, tag = "2")] - pub when_scaled: ::core::option::Option<::prost::alloc::string::String>, -} -/// A StatefulSetSpec is the specification of a StatefulSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetSpec { - /// replicas is the desired number of replicas of the given Template. - /// These are replicas in the sense that they are instantiations of the - /// same Template, but individual replicas also have a consistent identity. - /// If unspecified, defaults to 1. - /// TODO: Consider a rename of this field. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is a label query over pods that should match the replica count. - /// It must match the pod template's labels. - /// More info: - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// template is the object that describes the pod that will be created if - /// insufficient replicas are detected. Each pod stamped out by the StatefulSet - /// will fulfill this Template, but have a unique identity from the rest - /// of the StatefulSet. Each pod will be named with the format - /// -. For example, a pod in a StatefulSet named - /// "web" with index number "3" would be named "web-3". - /// The only allowed template.spec.restartPolicy value is "Always". - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// volumeClaimTemplates is a list of claims that pods are allowed to reference. - /// The StatefulSet controller is responsible for mapping network identities to - /// claims in a way that maintains the identity of a pod. Every claim in - /// this list must have at least one matching (by name) volumeMount in one - /// container in the template. A claim in this list takes precedence over - /// any volumes in the template, with the same name. - /// TODO: Define the behavior if a claim already exists with the same name. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "4")] - pub volume_claim_templates: ::prost::alloc::vec::Vec, - /// serviceName is the name of the service that governs this StatefulSet. - /// This service must exist before the StatefulSet, and is responsible for - /// the network identity of the set. Pods get DNS/hostnames that follow the - /// pattern: pod-specific-string.serviceName.default.svc.cluster.local - /// where "pod-specific-string" is managed by the StatefulSet controller. - /// +optional - #[prost(string, optional, tag = "5")] - pub service_name: ::core::option::Option<::prost::alloc::string::String>, - /// podManagementPolicy controls how pods are created during initial scale up, - /// when replacing pods on nodes, or when scaling down. The default policy is - /// `OrderedReady`, where pods are created in increasing order (pod-0, then - /// pod-1, etc) and the controller will wait until each pod is ready before - /// continuing. When scaling down, the pods are removed in the opposite order. - /// The alternative policy is `Parallel` which will create pods in parallel - /// to match the desired scale without waiting, and on scale down will delete - /// all pods at once. - /// +optional - #[prost(string, optional, tag = "6")] - pub pod_management_policy: ::core::option::Option<::prost::alloc::string::String>, - /// updateStrategy indicates the StatefulSetUpdateStrategy that will be - /// employed to update Pods in the StatefulSet when a revision is made to - /// Template. - #[prost(message, optional, tag = "7")] - pub update_strategy: ::core::option::Option, - /// revisionHistoryLimit is the maximum number of revisions that will - /// be maintained in the StatefulSet's revision history. The revision history - /// consists of all revisions not represented by a currently applied - /// StatefulSetSpec version. The default value is 10. - #[prost(int32, optional, tag = "8")] - pub revision_history_limit: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "9")] - pub min_ready_seconds: ::core::option::Option, - /// PersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from - /// the StatefulSet VolumeClaimTemplates. - /// +optional - #[prost(message, optional, tag = "10")] - pub persistent_volume_claim_retention_policy: - ::core::option::Option, - /// ordinals controls the numbering of replica indices in a StatefulSet. The - /// default ordinals behavior assigns a "0" index to the first replica and - /// increments the index by one for each additional replica requested. - /// +optional - #[prost(message, optional, tag = "11")] - pub ordinals: ::core::option::Option, -} -/// StatefulSetStatus represents the current state of a StatefulSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct StatefulSetStatus { - /// observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the - /// StatefulSet's generation, which is updated on mutation by the API Server. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// replicas is the number of Pods created by the StatefulSet controller. - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// readyReplicas is the number of pods created by this StatefulSet controller with a Ready Condition. - #[prost(int32, optional, tag = "3")] - pub ready_replicas: ::core::option::Option, - /// currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version - /// indicated by currentRevision. - #[prost(int32, optional, tag = "4")] - pub current_replicas: ::core::option::Option, - /// updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version - /// indicated by updateRevision. - #[prost(int32, optional, tag = "5")] - pub updated_replicas: ::core::option::Option, - /// currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the - /// sequence [0,currentReplicas). - #[prost(string, optional, tag = "6")] - pub current_revision: ::core::option::Option<::prost::alloc::string::String>, - /// updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence - /// [replicas-updatedReplicas,replicas) - #[prost(string, optional, tag = "7")] - pub update_revision: ::core::option::Option<::prost::alloc::string::String>, - /// collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller - /// uses this field as a collision avoidance mechanism when it needs to create the name for the - /// newest ControllerRevision. - /// +optional - #[prost(int32, optional, tag = "9")] - pub collision_count: ::core::option::Option, - /// Represents the latest available observations of a statefulset's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "10")] - pub conditions: ::prost::alloc::vec::Vec, - /// Total number of available pods (ready for at least minReadySeconds) targeted by this StatefulSet. - /// +optional - #[prost(int32, optional, tag = "11")] - pub available_replicas: ::core::option::Option, -} -/// StatefulSetUpdateStrategy indicates the strategy that the StatefulSet -/// controller will use to perform updates. It includes any additional parameters -/// necessary to perform the update for the indicated strategy. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StatefulSetUpdateStrategy { - /// Type indicates the type of the StatefulSetUpdateStrategy. - /// Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType. - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} diff --git a/k8s-pb/src/api/authentication/mod.rs b/k8s-pb/src/api/authentication/mod.rs deleted file mode 100644 index 5a1e260..0000000 --- a/k8s-pb/src/api/authentication/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1alpha1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/authentication/v1/mod.rs b/k8s-pb/src/api/authentication/v1/mod.rs deleted file mode 100644 index d4971a5..0000000 --- a/k8s-pb/src/api/authentication/v1/mod.rs +++ /dev/null @@ -1,258 +0,0 @@ -// This file is @generated by prost-build. -/// BoundObjectReference is a reference to an object that a token is bound to. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct BoundObjectReference { - /// Kind of the referent. Valid kinds are 'Pod' and 'Secret'. - /// +optional - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// API version of the referent. - /// +optional - #[prost(string, optional, tag = "2")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Name of the referent. - /// +optional - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// UID of the referent. - /// +optional - #[prost(string, optional, tag = "4")] - pub u_id: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExtraValue masks the value so protobuf can generate -/// +protobuf.nullable=true -/// +protobuf.options.(gogoproto.goproto_stringer)=false -/// -/// items, if empty, will result in an empty slice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExtraValue { - #[prost(string, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// SelfSubjectReview contains the user information that the kube-apiserver has about the user making this request. -/// When using impersonation, users will receive the user info of the user being impersonated. If impersonation or -/// request header authentication is used, any extra keys will have their case ignored and returned as lowercase. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectReview { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Status is filled in by the server with the user attributes. - #[prost(message, optional, tag = "2")] - pub status: ::core::option::Option, -} -/// SelfSubjectReviewStatus is filled by the kube-apiserver and sent back to a user. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectReviewStatus { - /// User attributes of the user making this request. - /// +optional - #[prost(message, optional, tag = "1")] - pub user_info: ::core::option::Option, -} -/// TokenRequest requests a token for a given service account. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TokenRequest { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the token can be authenticated. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// TokenRequestSpec contains client provided parameters of a token request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TokenRequestSpec { - /// Audiences are the intendend audiences of the token. A recipient of a - /// token must identify themself with an identifier in the list of - /// audiences of the token, and otherwise should reject the token. A - /// token issued for multiple audiences may be used to authenticate - /// against any of the audiences listed but implies a high degree of - /// trust between the target audiences. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub audiences: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ExpirationSeconds is the requested duration of validity of the request. The - /// token issuer may return a token with a different validity duration so a - /// client needs to check the 'expiration' field in a response. - /// +optional - #[prost(int64, optional, tag = "4")] - pub expiration_seconds: ::core::option::Option, - /// BoundObjectRef is a reference to an object that the token will be bound to. - /// The token will only be valid for as long as the bound object exists. - /// NOTE: The API server's TokenReview endpoint will validate the - /// BoundObjectRef, but other audiences may not. Keep ExpirationSeconds - /// small if you want prompt revocation. - /// +optional - #[prost(message, optional, tag = "3")] - pub bound_object_ref: ::core::option::Option, -} -/// TokenRequestStatus is the result of a token request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TokenRequestStatus { - /// Token is the opaque bearer token. - #[prost(string, optional, tag = "1")] - pub token: ::core::option::Option<::prost::alloc::string::String>, - /// ExpirationTimestamp is the time of expiration of the returned token. - #[prost(message, optional, tag = "2")] - pub expiration_timestamp: - ::core::option::Option, -} -/// TokenReview attempts to authenticate a token to a known user. -/// Note: TokenReview requests may be cached by the webhook token authenticator -/// plugin in the kube-apiserver. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TokenReview { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request can be authenticated. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// TokenReviewSpec is a description of the token authentication request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TokenReviewSpec { - /// Token is the opaque bearer token. - /// +optional - #[prost(string, optional, tag = "1")] - pub token: ::core::option::Option<::prost::alloc::string::String>, - /// Audiences is a list of the identifiers that the resource server presented - /// with the token identifies as. Audience-aware token authenticators will - /// verify that the token was intended for at least one of the audiences in - /// this list. If no audiences are provided, the audience will default to the - /// audience of the Kubernetes apiserver. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub audiences: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// TokenReviewStatus is the result of the token authentication request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TokenReviewStatus { - /// Authenticated indicates that the token was associated with a known user. - /// +optional - #[prost(bool, optional, tag = "1")] - pub authenticated: ::core::option::Option, - /// User is the UserInfo associated with the provided token. - /// +optional - #[prost(message, optional, tag = "2")] - pub user: ::core::option::Option, - /// Audiences are audience identifiers chosen by the authenticator that are - /// compatible with both the TokenReview and token. An identifier is any - /// identifier in the intersection of the TokenReviewSpec audiences and the - /// token's audiences. A client of the TokenReview API that sets the - /// spec.audiences field should validate that a compatible audience identifier - /// is returned in the status.audiences field to ensure that the TokenReview - /// server is audience aware. If a TokenReview returns an empty - /// status.audience field where status.authenticated is "true", the token is - /// valid against the audience of the Kubernetes API server. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub audiences: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Error indicates that the token couldn't be checked - /// +optional - #[prost(string, optional, tag = "3")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// UserInfo holds the information about the user needed to implement the -/// user.Info interface. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct UserInfo { - /// The name that uniquely identifies this user among all active users. - /// +optional - #[prost(string, optional, tag = "1")] - pub username: ::core::option::Option<::prost::alloc::string::String>, - /// A unique value that identifies this user across time. If this user is - /// deleted and another user by the same name is added, they will have - /// different UIDs. - /// +optional - #[prost(string, optional, tag = "2")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// The names of groups this user is a part of. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Any additional information provided by the authenticator. - /// +optional - #[prost(btree_map = "string, message", tag = "4")] - pub extra: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ExtraValue>, -} - -impl crate::Resource for SelfSubjectReview { - const API_VERSION: &'static str = "authentication.k8s.io/v1"; - const GROUP: &'static str = "authentication.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "SelfSubjectReview"; - const URL_PATH_SEGMENT: &'static str = "selfsubjectreviews"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for SelfSubjectReview { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasStatus for SelfSubjectReview { - type Status = crate::api::authentication::v1::SelfSubjectReviewStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for TokenReview { - const API_VERSION: &'static str = "authentication.k8s.io/v1"; - const GROUP: &'static str = "authentication.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "TokenReview"; - const URL_PATH_SEGMENT: &'static str = "tokenreviews"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for TokenReview { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for TokenReview { - type Spec = crate::api::authentication::v1::TokenReviewSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for TokenReview { - type Status = crate::api::authentication::v1::TokenReviewStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} diff --git a/k8s-pb/src/api/authentication/v1alpha1/mod.rs b/k8s-pb/src/api/authentication/v1alpha1/mod.rs deleted file mode 100644 index 1b66a21..0000000 --- a/k8s-pb/src/api/authentication/v1alpha1/mod.rs +++ /dev/null @@ -1,23 +0,0 @@ -// This file is @generated by prost-build. -/// SelfSubjectReview contains the user information that the kube-apiserver has about the user making this request. -/// When using impersonation, users will receive the user info of the user being impersonated. If impersonation or -/// request header authentication is used, any extra keys will have their case ignored and returned as lowercase. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectReview { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Status is filled in by the server with the user attributes. - #[prost(message, optional, tag = "2")] - pub status: ::core::option::Option, -} -/// SelfSubjectReviewStatus is filled by the kube-apiserver and sent back to a user. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectReviewStatus { - /// User attributes of the user making this request. - /// +optional - #[prost(message, optional, tag = "1")] - pub user_info: ::core::option::Option, -} diff --git a/k8s-pb/src/api/authentication/v1beta1/mod.rs b/k8s-pb/src/api/authentication/v1beta1/mod.rs deleted file mode 100644 index d470be1..0000000 --- a/k8s-pb/src/api/authentication/v1beta1/mod.rs +++ /dev/null @@ -1,121 +0,0 @@ -// This file is @generated by prost-build. -/// ExtraValue masks the value so protobuf can generate -/// +protobuf.nullable=true -/// +protobuf.options.(gogoproto.goproto_stringer)=false -/// -/// items, if empty, will result in an empty slice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExtraValue { - #[prost(string, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// SelfSubjectReview contains the user information that the kube-apiserver has about the user making this request. -/// When using impersonation, users will receive the user info of the user being impersonated. If impersonation or -/// request header authentication is used, any extra keys will have their case ignored and returned as lowercase. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectReview { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Status is filled in by the server with the user attributes. - #[prost(message, optional, tag = "2")] - pub status: ::core::option::Option, -} -/// SelfSubjectReviewStatus is filled by the kube-apiserver and sent back to a user. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectReviewStatus { - /// User attributes of the user making this request. - /// +optional - #[prost(message, optional, tag = "1")] - pub user_info: ::core::option::Option, -} -/// TokenReview attempts to authenticate a token to a known user. -/// Note: TokenReview requests may be cached by the webhook token authenticator -/// plugin in the kube-apiserver. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TokenReview { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the token can be authenticated. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// TokenReviewSpec is a description of the token authentication request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TokenReviewSpec { - /// Token is the opaque bearer token. - /// +optional - #[prost(string, optional, tag = "1")] - pub token: ::core::option::Option<::prost::alloc::string::String>, - /// Audiences is a list of the identifiers that the resource server presented - /// with the token identifies as. Audience-aware token authenticators will - /// verify that the token was intended for at least one of the audiences in - /// this list. If no audiences are provided, the audience will default to the - /// audience of the Kubernetes apiserver. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub audiences: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// TokenReviewStatus is the result of the token authentication request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TokenReviewStatus { - /// Authenticated indicates that the token was associated with a known user. - /// +optional - #[prost(bool, optional, tag = "1")] - pub authenticated: ::core::option::Option, - /// User is the UserInfo associated with the provided token. - /// +optional - #[prost(message, optional, tag = "2")] - pub user: ::core::option::Option, - /// Audiences are audience identifiers chosen by the authenticator that are - /// compatible with both the TokenReview and token. An identifier is any - /// identifier in the intersection of the TokenReviewSpec audiences and the - /// token's audiences. A client of the TokenReview API that sets the - /// spec.audiences field should validate that a compatible audience identifier - /// is returned in the status.audiences field to ensure that the TokenReview - /// server is audience aware. If a TokenReview returns an empty - /// status.audience field where status.authenticated is "true", the token is - /// valid against the audience of the Kubernetes API server. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub audiences: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Error indicates that the token couldn't be checked - /// +optional - #[prost(string, optional, tag = "3")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// UserInfo holds the information about the user needed to implement the -/// user.Info interface. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct UserInfo { - /// The name that uniquely identifies this user among all active users. - /// +optional - #[prost(string, optional, tag = "1")] - pub username: ::core::option::Option<::prost::alloc::string::String>, - /// A unique value that identifies this user across time. If this user is - /// deleted and another user by the same name is added, they will have - /// different UIDs. - /// +optional - #[prost(string, optional, tag = "2")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// The names of groups this user is a part of. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Any additional information provided by the authenticator. - /// +optional - #[prost(btree_map = "string, message", tag = "4")] - pub extra: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ExtraValue>, -} diff --git a/k8s-pb/src/api/authorization/mod.rs b/k8s-pb/src/api/authorization/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/authorization/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/authorization/v1/mod.rs b/k8s-pb/src/api/authorization/v1/mod.rs deleted file mode 100644 index f0b450e..0000000 --- a/k8s-pb/src/api/authorization/v1/mod.rs +++ /dev/null @@ -1,487 +0,0 @@ -// This file is @generated by prost-build. -/// ExtraValue masks the value so protobuf can generate -/// +protobuf.nullable=true -/// +protobuf.options.(gogoproto.goproto_stringer)=false -/// -/// items, if empty, will result in an empty slice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExtraValue { - #[prost(string, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// FieldSelectorAttributes indicates a field limited access. -/// Webhook authors are encouraged to -/// * ensure rawSelector and requirements are not both set -/// * consider the requirements field if set -/// * not try to parse or consider the rawSelector field if set. This is to avoid another CVE-2022-2880 (i.e. getting different systems to agree on how exactly to parse a query is not something we want), see for more details. -/// For the *SubjectAccessReview endpoints of the kube-apiserver: -/// * If rawSelector is empty and requirements are empty, the request is not limited. -/// * If rawSelector is present and requirements are empty, the rawSelector will be parsed and limited if the parsing succeeds. -/// * If rawSelector is empty and requirements are present, the requirements should be honored -/// * If rawSelector is present and requirements are present, the request is invalid. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FieldSelectorAttributes { - /// rawSelector is the serialization of a field selector that would be included in a query parameter. - /// Webhook implementations are encouraged to ignore rawSelector. - /// The kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present. - /// +optional - #[prost(string, optional, tag = "1")] - pub raw_selector: ::core::option::Option<::prost::alloc::string::String>, - /// requirements is the parsed interpretation of a field selector. - /// All requirements must be met for a resource instance to match the selector. - /// Webhook implementations should handle requirements, but how to handle them is up to the webhook. - /// Since requirements can only limit the request, it is safe to authorize as unlimited request if the requirements - /// are not understood. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub requirements: ::prost::alloc::vec::Vec< - super::super::super::apimachinery::pkg::apis::meta::v1::FieldSelectorRequirement, - >, -} -/// LabelSelectorAttributes indicates a label limited access. -/// Webhook authors are encouraged to -/// * ensure rawSelector and requirements are not both set -/// * consider the requirements field if set -/// * not try to parse or consider the rawSelector field if set. This is to avoid another CVE-2022-2880 (i.e. getting different systems to agree on how exactly to parse a query is not something we want), see for more details. -/// For the *SubjectAccessReview endpoints of the kube-apiserver: -/// * If rawSelector is empty and requirements are empty, the request is not limited. -/// * If rawSelector is present and requirements are empty, the rawSelector will be parsed and limited if the parsing succeeds. -/// * If rawSelector is empty and requirements are present, the requirements should be honored -/// * If rawSelector is present and requirements are present, the request is invalid. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LabelSelectorAttributes { - /// rawSelector is the serialization of a field selector that would be included in a query parameter. - /// Webhook implementations are encouraged to ignore rawSelector. - /// The kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present. - /// +optional - #[prost(string, optional, tag = "1")] - pub raw_selector: ::core::option::Option<::prost::alloc::string::String>, - /// requirements is the parsed interpretation of a label selector. - /// All requirements must be met for a resource instance to match the selector. - /// Webhook implementations should handle requirements, but how to handle them is up to the webhook. - /// Since requirements can only limit the request, it is safe to authorize as unlimited request if the requirements - /// are not understood. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub requirements: ::prost::alloc::vec::Vec< - super::super::super::apimachinery::pkg::apis::meta::v1::LabelSelectorRequirement, - >, -} -/// LocalSubjectAccessReview checks whether or not a user or group can perform an action in a given namespace. -/// Having a namespace scoped resource makes it much easier to grant namespace scoped policy that includes permissions -/// checking. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LocalSubjectAccessReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated. spec.namespace must be equal to the namespace - /// you made the request against. If empty, it is defaulted. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request is allowed or not - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourceAttributes { - /// Path is the URL path of the request - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// Verb is the standard HTTP verb - /// +optional - #[prost(string, optional, tag = "2")] - pub verb: ::core::option::Option<::prost::alloc::string::String>, -} -/// NonResourceRule holds information that describes a rule for the non-resource -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourceRule { - /// Verb is a list of kubernetes non-resource API verbs, like: get, post, put, delete, patch, head, options. "*" means all. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, - /// final step in the path. "*" means all. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceAttributes { - /// Namespace is the namespace of the action being requested. Currently, there is no distinction between no namespace and all namespaces - /// "" (empty) is defaulted for LocalSubjectAccessReviews - /// "" (empty) is empty for cluster-scoped resources - /// "" (empty) means "all" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview - /// +optional - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy. "*" means all. - /// +optional - #[prost(string, optional, tag = "2")] - pub verb: ::core::option::Option<::prost::alloc::string::String>, - /// Group is the API Group of the Resource. "*" means all. - /// +optional - #[prost(string, optional, tag = "3")] - pub group: ::core::option::Option<::prost::alloc::string::String>, - /// Version is the API Version of the Resource. "*" means all. - /// +optional - #[prost(string, optional, tag = "4")] - pub version: ::core::option::Option<::prost::alloc::string::String>, - /// Resource is one of the existing resource types. "*" means all. - /// +optional - #[prost(string, optional, tag = "5")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// Subresource is one of the existing resource types. "" means none. - /// +optional - #[prost(string, optional, tag = "6")] - pub subresource: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of the resource being requested for a "get" or deleted for a "delete". "" (empty) means all. - /// +optional - #[prost(string, optional, tag = "7")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// fieldSelector describes the limitation on access based on field. It can only limit access, not broaden it. - /// +optional - #[prost(message, optional, tag = "8")] - pub field_selector: ::core::option::Option, - /// labelSelector describes the limitation on access based on labels. It can only limit access, not broaden it. - /// +optional - #[prost(message, optional, tag = "9")] - pub label_selector: ::core::option::Option, -} -/// ResourceRule is the list of actions the subject is allowed to perform on resources. The list ordering isn't significant, -/// may contain duplicates, and possibly be incomplete. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceRule { - /// Verb is a list of kubernetes resource API verbs, like: get, list, watch, create, update, delete, proxy. "*" means all. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of - /// the enumerated resources in any API group will be allowed. "*" means all. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Resources is a list of resources this rule applies to. "*" means all in the specified apiGroups. - /// "*/foo" represents the subresource 'foo' for all resources in the specified apiGroups. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. "*" means all. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// SelfSubjectAccessReview checks whether or the current user can perform an action. Not filling in a -/// spec.namespace means "in all namespaces". Self is a special case, because users should always be able -/// to check whether they can perform an action -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectAccessReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated. user and groups must be empty - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request is allowed or not - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// SelfSubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes -/// and NonResourceAuthorizationAttributes must be set -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectAccessReviewSpec { - /// ResourceAuthorizationAttributes describes information for a resource access request - /// +optional - #[prost(message, optional, tag = "1")] - pub resource_attributes: ::core::option::Option, - /// NonResourceAttributes describes information for a non-resource access request - /// +optional - #[prost(message, optional, tag = "2")] - pub non_resource_attributes: ::core::option::Option, -} -/// SelfSubjectRulesReview enumerates the set of actions the current user can perform within a namespace. -/// The returned list of actions may be incomplete depending on the server's authorization mode, -/// and any errors experienced during the evaluation. SelfSubjectRulesReview should be used by UIs to show/hide actions, -/// or to quickly let an end user reason about their permissions. It should NOT Be used by external systems to -/// drive authorization decisions as this raises confused deputy, cache lifetime/revocation, and correctness concerns. -/// SubjectAccessReview, and LocalAccessReview are the correct way to defer authorization decisions to the API server. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectRulesReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates the set of actions a user can perform. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// SelfSubjectRulesReviewSpec defines the specification for SelfSubjectRulesReview. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SelfSubjectRulesReviewSpec { - /// Namespace to evaluate rules for. Required. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// SubjectAccessReview checks whether or not a user or group can perform an action. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SubjectAccessReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request is allowed or not - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// SubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes -/// and NonResourceAuthorizationAttributes must be set -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SubjectAccessReviewSpec { - /// ResourceAuthorizationAttributes describes information for a resource access request - /// +optional - #[prost(message, optional, tag = "1")] - pub resource_attributes: ::core::option::Option, - /// NonResourceAttributes describes information for a non-resource access request - /// +optional - #[prost(message, optional, tag = "2")] - pub non_resource_attributes: ::core::option::Option, - /// User is the user you're testing for. - /// If you specify "User" but not "Groups", then is it interpreted as "What if User were not a member of any groups - /// +optional - #[prost(string, optional, tag = "3")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// Groups is the groups you're testing for. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Extra corresponds to the user.Info.GetExtra() method from the authenticator. Since that is input to the authorizer - /// it needs a reflection here. - /// +optional - #[prost(btree_map = "string, message", tag = "5")] - pub extra: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ExtraValue>, - /// UID information about the requesting user. - /// +optional - #[prost(string, optional, tag = "6")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, -} -/// SubjectAccessReviewStatus -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SubjectAccessReviewStatus { - /// Allowed is required. True if the action would be allowed, false otherwise. - #[prost(bool, optional, tag = "1")] - pub allowed: ::core::option::Option, - /// Denied is optional. True if the action would be denied, otherwise - /// false. If both allowed is false and denied is false, then the - /// authorizer has no opinion on whether to authorize the action. Denied - /// may not be true if Allowed is true. - /// +optional - #[prost(bool, optional, tag = "4")] - pub denied: ::core::option::Option, - /// Reason is optional. It indicates why a request was allowed or denied. - /// +optional - #[prost(string, optional, tag = "2")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// EvaluationError is an indication that some error occurred during the authorization check. - /// It is entirely possible to get an error and be able to continue determine authorization status in spite of it. - /// For instance, RBAC can be missing a role, but enough roles are still present and bound to reason about the request. - /// +optional - #[prost(string, optional, tag = "3")] - pub evaluation_error: ::core::option::Option<::prost::alloc::string::String>, -} -/// SubjectRulesReviewStatus contains the result of a rules check. This check can be incomplete depending on -/// the set of authorizers the server is configured with and any errors experienced during evaluation. -/// Because authorization rules are additive, if a rule appears in a list it's safe to assume the subject has that permission, -/// even if that list is incomplete. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SubjectRulesReviewStatus { - /// ResourceRules is the list of actions the subject is allowed to perform on resources. - /// The list ordering isn't significant, may contain duplicates, and possibly be incomplete. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// NonResourceRules is the list of actions the subject is allowed to perform on non-resources. - /// The list ordering isn't significant, may contain duplicates, and possibly be incomplete. - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub non_resource_rules: ::prost::alloc::vec::Vec, - /// Incomplete is true when the rules returned by this call are incomplete. This is most commonly - /// encountered when an authorizer, such as an external authorizer, doesn't support rules evaluation. - #[prost(bool, optional, tag = "3")] - pub incomplete: ::core::option::Option, - /// EvaluationError can appear in combination with Rules. It indicates an error occurred during - /// rule evaluation, such as an authorizer that doesn't support rule evaluation, and that - /// ResourceRules and/or NonResourceRules may be incomplete. - /// +optional - #[prost(string, optional, tag = "4")] - pub evaluation_error: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for LocalSubjectAccessReview { - const API_VERSION: &'static str = "authorization.k8s.io/v1"; - const GROUP: &'static str = "authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "LocalSubjectAccessReview"; - const URL_PATH_SEGMENT: &'static str = "localsubjectaccessreviews"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for LocalSubjectAccessReview { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for LocalSubjectAccessReview { - type Spec = crate::api::authorization::v1::SubjectAccessReviewSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for LocalSubjectAccessReview { - type Status = crate::api::authorization::v1::SubjectAccessReviewStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for SelfSubjectAccessReview { - const API_VERSION: &'static str = "authorization.k8s.io/v1"; - const GROUP: &'static str = "authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "SelfSubjectAccessReview"; - const URL_PATH_SEGMENT: &'static str = "selfsubjectaccessreviews"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for SelfSubjectAccessReview { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for SelfSubjectAccessReview { - type Spec = crate::api::authorization::v1::SelfSubjectAccessReviewSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for SelfSubjectAccessReview { - type Status = crate::api::authorization::v1::SubjectAccessReviewStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for SelfSubjectRulesReview { - const API_VERSION: &'static str = "authorization.k8s.io/v1"; - const GROUP: &'static str = "authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "SelfSubjectRulesReview"; - const URL_PATH_SEGMENT: &'static str = "selfsubjectrulesreviews"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for SelfSubjectRulesReview { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for SelfSubjectRulesReview { - type Spec = crate::api::authorization::v1::SelfSubjectRulesReviewSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for SelfSubjectRulesReview { - type Status = crate::api::authorization::v1::SubjectRulesReviewStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for SubjectAccessReview { - const API_VERSION: &'static str = "authorization.k8s.io/v1"; - const GROUP: &'static str = "authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "SubjectAccessReview"; - const URL_PATH_SEGMENT: &'static str = "subjectaccessreviews"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for SubjectAccessReview { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for SubjectAccessReview { - type Spec = crate::api::authorization::v1::SubjectAccessReviewSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for SubjectAccessReview { - type Status = crate::api::authorization::v1::SubjectAccessReviewStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} diff --git a/k8s-pb/src/api/authorization/v1beta1/mod.rs b/k8s-pb/src/api/authorization/v1beta1/mod.rs deleted file mode 100644 index 04cce53..0000000 --- a/k8s-pb/src/api/authorization/v1beta1/mod.rs +++ /dev/null @@ -1,283 +0,0 @@ -// This file is @generated by prost-build. -/// ExtraValue masks the value so protobuf can generate -/// +protobuf.nullable=true -/// +protobuf.options.(gogoproto.goproto_stringer)=false -/// -/// items, if empty, will result in an empty slice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExtraValue { - #[prost(string, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// LocalSubjectAccessReview checks whether or not a user or group can perform an action in a given namespace. -/// Having a namespace scoped resource makes it much easier to grant namespace scoped policy that includes permissions -/// checking. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LocalSubjectAccessReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated. spec.namespace must be equal to the namespace - /// you made the request against. If empty, it is defaulted. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request is allowed or not - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourceAttributes { - /// Path is the URL path of the request - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// Verb is the standard HTTP verb - /// +optional - #[prost(string, optional, tag = "2")] - pub verb: ::core::option::Option<::prost::alloc::string::String>, -} -/// NonResourceRule holds information that describes a rule for the non-resource -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourceRule { - /// Verb is a list of kubernetes non-resource API verbs, like: get, post, put, delete, patch, head, options. "*" means all. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, - /// final step in the path. "*" means all. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceAttributes { - /// Namespace is the namespace of the action being requested. Currently, there is no distinction between no namespace and all namespaces - /// "" (empty) is defaulted for LocalSubjectAccessReviews - /// "" (empty) is empty for cluster-scoped resources - /// "" (empty) means "all" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview - /// +optional - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy. "*" means all. - /// +optional - #[prost(string, optional, tag = "2")] - pub verb: ::core::option::Option<::prost::alloc::string::String>, - /// Group is the API Group of the Resource. "*" means all. - /// +optional - #[prost(string, optional, tag = "3")] - pub group: ::core::option::Option<::prost::alloc::string::String>, - /// Version is the API Version of the Resource. "*" means all. - /// +optional - #[prost(string, optional, tag = "4")] - pub version: ::core::option::Option<::prost::alloc::string::String>, - /// Resource is one of the existing resource types. "*" means all. - /// +optional - #[prost(string, optional, tag = "5")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// Subresource is one of the existing resource types. "" means none. - /// +optional - #[prost(string, optional, tag = "6")] - pub subresource: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of the resource being requested for a "get" or deleted for a "delete". "" (empty) means all. - /// +optional - #[prost(string, optional, tag = "7")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// fieldSelector describes the limitation on access based on field. It can only limit access, not broaden it. - /// +optional - #[prost(message, optional, tag = "8")] - pub field_selector: ::core::option::Option, - /// labelSelector describes the limitation on access based on labels. It can only limit access, not broaden it. - /// +optional - #[prost(message, optional, tag = "9")] - pub label_selector: ::core::option::Option, -} -/// ResourceRule is the list of actions the subject is allowed to perform on resources. The list ordering isn't significant, -/// may contain duplicates, and possibly be incomplete. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceRule { - /// Verb is a list of kubernetes resource API verbs, like: get, list, watch, create, update, delete, proxy. "*" means all. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of - /// the enumerated resources in any API group will be allowed. "*" means all. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Resources is a list of resources this rule applies to. "*" means all in the specified apiGroups. - /// "*/foo" represents the subresource 'foo' for all resources in the specified apiGroups. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. "*" means all. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// SelfSubjectAccessReview checks whether or the current user can perform an action. Not filling in a -/// spec.namespace means "in all namespaces". Self is a special case, because users should always be able -/// to check whether they can perform an action -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectAccessReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated. user and groups must be empty - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request is allowed or not - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// SelfSubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes -/// and NonResourceAuthorizationAttributes must be set -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectAccessReviewSpec { - /// ResourceAuthorizationAttributes describes information for a resource access request - /// +optional - #[prost(message, optional, tag = "1")] - pub resource_attributes: ::core::option::Option, - /// NonResourceAttributes describes information for a non-resource access request - /// +optional - #[prost(message, optional, tag = "2")] - pub non_resource_attributes: ::core::option::Option, -} -/// SelfSubjectRulesReview enumerates the set of actions the current user can perform within a namespace. -/// The returned list of actions may be incomplete depending on the server's authorization mode, -/// and any errors experienced during the evaluation. SelfSubjectRulesReview should be used by UIs to show/hide actions, -/// or to quickly let an end user reason about their permissions. It should NOT Be used by external systems to -/// drive authorization decisions as this raises confused deputy, cache lifetime/revocation, and correctness concerns. -/// SubjectAccessReview, and LocalAccessReview are the correct way to defer authorization decisions to the API server. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SelfSubjectRulesReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates the set of actions a user can perform. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// SelfSubjectRulesReviewSpec defines the specification for SelfSubjectRulesReview. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SelfSubjectRulesReviewSpec { - /// Namespace to evaluate rules for. Required. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// SubjectAccessReview checks whether or not a user or group can perform an action. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SubjectAccessReview { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the request being evaluated - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the server and indicates whether the request is allowed or not - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// SubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes -/// and NonResourceAuthorizationAttributes must be set -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SubjectAccessReviewSpec { - /// ResourceAuthorizationAttributes describes information for a resource access request - /// +optional - #[prost(message, optional, tag = "1")] - pub resource_attributes: ::core::option::Option, - /// NonResourceAttributes describes information for a non-resource access request - /// +optional - #[prost(message, optional, tag = "2")] - pub non_resource_attributes: ::core::option::Option, - /// User is the user you're testing for. - /// If you specify "User" but not "Group", then is it interpreted as "What if User were not a member of any groups - /// +optional - #[prost(string, optional, tag = "3")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// Groups is the groups you're testing for. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub group: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Extra corresponds to the user.Info.GetExtra() method from the authenticator. Since that is input to the authorizer - /// it needs a reflection here. - /// +optional - #[prost(btree_map = "string, message", tag = "5")] - pub extra: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ExtraValue>, - /// UID information about the requesting user. - /// +optional - #[prost(string, optional, tag = "6")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, -} -/// SubjectAccessReviewStatus -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SubjectAccessReviewStatus { - /// Allowed is required. True if the action would be allowed, false otherwise. - #[prost(bool, optional, tag = "1")] - pub allowed: ::core::option::Option, - /// Denied is optional. True if the action would be denied, otherwise - /// false. If both allowed is false and denied is false, then the - /// authorizer has no opinion on whether to authorize the action. Denied - /// may not be true if Allowed is true. - /// +optional - #[prost(bool, optional, tag = "4")] - pub denied: ::core::option::Option, - /// Reason is optional. It indicates why a request was allowed or denied. - /// +optional - #[prost(string, optional, tag = "2")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// EvaluationError is an indication that some error occurred during the authorization check. - /// It is entirely possible to get an error and be able to continue determine authorization status in spite of it. - /// For instance, RBAC can be missing a role, but enough roles are still present and bound to reason about the request. - /// +optional - #[prost(string, optional, tag = "3")] - pub evaluation_error: ::core::option::Option<::prost::alloc::string::String>, -} -/// SubjectRulesReviewStatus contains the result of a rules check. This check can be incomplete depending on -/// the set of authorizers the server is configured with and any errors experienced during evaluation. -/// Because authorization rules are additive, if a rule appears in a list it's safe to assume the subject has that permission, -/// even if that list is incomplete. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SubjectRulesReviewStatus { - /// ResourceRules is the list of actions the subject is allowed to perform on resources. - /// The list ordering isn't significant, may contain duplicates, and possibly be incomplete. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// NonResourceRules is the list of actions the subject is allowed to perform on non-resources. - /// The list ordering isn't significant, may contain duplicates, and possibly be incomplete. - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub non_resource_rules: ::prost::alloc::vec::Vec, - /// Incomplete is true when the rules returned by this call are incomplete. This is most commonly - /// encountered when an authorizer, such as an external authorizer, doesn't support rules evaluation. - #[prost(bool, optional, tag = "3")] - pub incomplete: ::core::option::Option, - /// EvaluationError can appear in combination with Rules. It indicates an error occurred during - /// rule evaluation, such as an authorizer that doesn't support rule evaluation, and that - /// ResourceRules and/or NonResourceRules may be incomplete. - /// +optional - #[prost(string, optional, tag = "4")] - pub evaluation_error: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/autoscaling/mod.rs b/k8s-pb/src/api/autoscaling/mod.rs deleted file mode 100644 index 691c188..0000000 --- a/k8s-pb/src/api/autoscaling/mod.rs +++ /dev/null @@ -1,4 +0,0 @@ -pub mod v1; -pub mod v2; -pub mod v2beta1; -pub mod v2beta2; diff --git a/k8s-pb/src/api/autoscaling/v1/mod.rs b/k8s-pb/src/api/autoscaling/v1/mod.rs deleted file mode 100644 index f6580b1..0000000 --- a/k8s-pb/src/api/autoscaling/v1/mod.rs +++ /dev/null @@ -1,538 +0,0 @@ -// This file is @generated by prost-build. -/// ContainerResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in the requests and limits, describing a single container in -/// each of the pods of the current scale target(e.g. CPU or memory). The values will be -/// averaged together before being compared to the target. Such metrics are built into -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// targetAverageUtilization is the target value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// +optional - #[prost(int32, optional, tag = "2")] - pub target_average_utilization: ::core::option::Option, - /// targetAverageValue is the target value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// +optional - #[prost(message, optional, tag = "3")] - pub target_average_value: - ::core::option::Option, - /// container is the name of the container in the pods of the scaling target. - #[prost(string, optional, tag = "5")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing a single container in each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// currentAverageUtilization is the current value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. It will only be - /// present if `targetAverageValue` was set in the corresponding metric - /// specification. - /// +optional - #[prost(int32, optional, tag = "2")] - pub current_average_utilization: ::core::option::Option, - /// currentAverageValue is the current value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// It will always be set, regardless of the corresponding metric specification. - #[prost(message, optional, tag = "3")] - pub current_average_value: - ::core::option::Option, - /// container is the name of the container in the pods of the scaling taget - #[prost(string, optional, tag = "4")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// CrossVersionObjectReference contains enough information to let you identify the referred resource. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CrossVersionObjectReference { - /// kind is the kind of the referent; More info: - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// name is the name of the referent; More info: - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// apiVersion is the API version of the referent - /// +optional - #[prost(string, optional, tag = "3")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExternalMetricSource indicates how to scale on a metric not associated with -/// any Kubernetes object (for example length of queue in cloud -/// messaging service, or QPS from loadbalancer running outside of cluster). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricSource { - /// metricName is the name of the metric in question. - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// metricSelector is used to identify a specific time series - /// within a given metric. - /// +optional - #[prost(message, optional, tag = "2")] - pub metric_selector: - ::core::option::Option, - /// targetValue is the target value of the metric (as a quantity). - /// Mutually exclusive with TargetAverageValue. - /// +optional - #[prost(message, optional, tag = "3")] - pub target_value: ::core::option::Option, - /// targetAverageValue is the target per-pod value of global metric (as a quantity). - /// Mutually exclusive with TargetValue. - /// +optional - #[prost(message, optional, tag = "4")] - pub target_average_value: - ::core::option::Option, -} -/// ExternalMetricStatus indicates the current value of a global metric -/// not associated with any Kubernetes object. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricStatus { - /// metricName is the name of a metric used for autoscaling in - /// metric system. - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// metricSelector is used to identify a specific time series - /// within a given metric. - /// +optional - #[prost(message, optional, tag = "2")] - pub metric_selector: - ::core::option::Option, - /// currentValue is the current value of the metric (as a quantity) - #[prost(message, optional, tag = "3")] - pub current_value: - ::core::option::Option, - /// currentAverageValue is the current value of metric averaged over autoscaled pods. - /// +optional - #[prost(message, optional, tag = "4")] - pub current_average_value: - ::core::option::Option, -} -/// configuration of a horizontal pod autoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscaler { - /// Standard object metadata. More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec defines the behaviour of autoscaler. More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current information about the autoscaler. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// HorizontalPodAutoscalerCondition describes the state of -/// a HorizontalPodAutoscaler at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HorizontalPodAutoscalerCondition { - /// type describes the current condition - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// status is the status of the condition (True, False, Unknown) - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// lastTransitionTime is the last time the condition transitioned from - /// one status to another - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// reason is the reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// message is a human-readable explanation containing details about - /// the transition - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// list of horizontal pod autoscaler objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of horizontal pod autoscaler objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// specification of a horizontal pod autoscaler. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HorizontalPodAutoscalerSpec { - /// reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption - /// and will set the desired number of pods by using its Scale subresource. - #[prost(message, optional, tag = "1")] - pub scale_target_ref: ::core::option::Option, - /// minReplicas is the lower limit for the number of replicas to which the autoscaler - /// can scale down. It defaults to 1 pod. minReplicas is allowed to be 0 if the - /// alpha feature gate HPAScaleToZero is enabled and at least one Object or External - /// metric is configured. Scaling is active as long as at least one metric value is - /// available. - /// +optional - #[prost(int32, optional, tag = "2")] - pub min_replicas: ::core::option::Option, - /// maxReplicas is the upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas. - #[prost(int32, optional, tag = "3")] - pub max_replicas: ::core::option::Option, - /// targetCPUUtilizationPercentage is the target average CPU utilization (represented as a percentage of requested CPU) over all the pods; - /// if not specified the default autoscaling policy will be used. - /// +optional - #[prost(int32, optional, tag = "4")] - pub target_cpu_utilization_percentage: ::core::option::Option, -} -/// current status of a horizontal pod autoscaler -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HorizontalPodAutoscalerStatus { - /// observedGeneration is the most recent generation observed by this autoscaler. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods; - /// used by the autoscaler to control how often the number of pods is changed. - /// +optional - #[prost(message, optional, tag = "2")] - pub last_scale_time: ::core::option::Option, - /// currentReplicas is the current number of replicas of pods managed by this autoscaler. - #[prost(int32, optional, tag = "3")] - pub current_replicas: ::core::option::Option, - /// desiredReplicas is the desired number of replicas of pods managed by this autoscaler. - #[prost(int32, optional, tag = "4")] - pub desired_replicas: ::core::option::Option, - /// currentCPUUtilizationPercentage is the current average CPU utilization over all pods, represented as a percentage of requested CPU, - /// e.g. 70 means that an average pod is using now 70% of its requested CPU. - /// +optional - #[prost(int32, optional, tag = "5")] - pub current_cpu_utilization_percentage: ::core::option::Option, -} -/// MetricSpec specifies how to scale based on a single metric -/// (only `type` and one other matching field should be set at once). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricSpec { - /// type is the type of metric source. It should be one of "ContainerResource", - /// "External", "Object", "Pods" or "Resource", each mapping to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// containerResource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in each pod of the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// MetricStatus describes the last-read state of a single metric. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricStatus { - /// type is the type of metric source. It will be one of "ContainerResource", - /// "External", "Object", "Pods" or "Resource", each corresponds to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// containerResource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// ObjectMetricSource indicates how to scale on a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricSource { - /// target is the described Kubernetes object. - #[prost(message, optional, tag = "1")] - pub target: ::core::option::Option, - /// metricName is the name of the metric in question. - #[prost(string, optional, tag = "2")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// targetValue is the target value of the metric (as a quantity). - #[prost(message, optional, tag = "3")] - pub target_value: ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric. - /// When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "4")] - pub selector: - ::core::option::Option, - /// averageValue is the target value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "5")] - pub average_value: - ::core::option::Option, -} -/// ObjectMetricStatus indicates the current value of a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricStatus { - /// target is the described Kubernetes object. - #[prost(message, optional, tag = "1")] - pub target: ::core::option::Option, - /// metricName is the name of the metric in question. - #[prost(string, optional, tag = "2")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// currentValue is the current value of the metric (as a quantity). - #[prost(message, optional, tag = "3")] - pub current_value: - ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set in the ObjectMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "4")] - pub selector: - ::core::option::Option, - /// averageValue is the current value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "5")] - pub average_value: - ::core::option::Option, -} -/// PodsMetricSource indicates how to scale on a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -/// The values will be averaged together before being compared to the target -/// value. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricSource { - /// metricName is the name of the metric in question - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// targetAverageValue is the target value of the average of the - /// metric across all relevant pods (as a quantity) - #[prost(message, optional, tag = "2")] - pub target_average_value: - ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, -} -/// PodsMetricStatus indicates the current value of a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricStatus { - /// metricName is the name of the metric in question - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// currentAverageValue is the current value of the average of the - /// metric across all relevant pods (as a quantity) - #[prost(message, optional, tag = "2")] - pub current_average_value: - ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set in the PodsMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, -} -/// ResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// targetAverageUtilization is the target value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// +optional - #[prost(int32, optional, tag = "2")] - pub target_average_utilization: ::core::option::Option, - /// targetAverageValue is the target value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// +optional - #[prost(message, optional, tag = "3")] - pub target_average_value: - ::core::option::Option, -} -/// ResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// currentAverageUtilization is the current value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. It will only be - /// present if `targetAverageValue` was set in the corresponding metric - /// specification. - /// +optional - #[prost(int32, optional, tag = "2")] - pub current_average_utilization: ::core::option::Option, - /// currentAverageValue is the current value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// It will always be set, regardless of the corresponding metric specification. - #[prost(message, optional, tag = "3")] - pub current_average_value: - ::core::option::Option, -} -/// Scale represents a scaling request for a resource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scale { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec defines the behavior of the scale. More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current status of the scale. More info: Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ScaleSpec describes the attributes of a scale subresource. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleSpec { - /// replicas is the desired number of instances for the scaled object. - /// +optional - /// +k8s:optional - /// +default=0 - /// +k8s:minimum=0 - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, -} -/// ScaleStatus represents the current status of a scale subresource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleStatus { - /// replicas is the actual number of observed instances of the scaled object. - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is the label query over pods that should match the replicas count. This is same - /// as the label selector but in the string format to avoid introspection - /// by clients. The string will be in the same format as the query-param syntax. - /// More info about label selectors: - /// +optional - #[prost(string, optional, tag = "2")] - pub selector: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for HorizontalPodAutoscaler { - const API_VERSION: &'static str = "autoscaling/v1"; - const GROUP: &'static str = "autoscaling"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "HorizontalPodAutoscaler"; - const URL_PATH_SEGMENT: &'static str = "horizontalpodautoscalers"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for HorizontalPodAutoscaler { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for HorizontalPodAutoscaler { - type Spec = crate::api::autoscaling::v1::HorizontalPodAutoscalerSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for HorizontalPodAutoscaler { - type Status = crate::api::autoscaling::v1::HorizontalPodAutoscalerStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} diff --git a/k8s-pb/src/api/autoscaling/v2/mod.rs b/k8s-pb/src/api/autoscaling/v2/mod.rs deleted file mode 100644 index d2b9b78..0000000 --- a/k8s-pb/src/api/autoscaling/v2/mod.rs +++ /dev/null @@ -1,565 +0,0 @@ -// This file is @generated by prost-build. -/// ContainerResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, - /// container is the name of the container in the pods of the scaling target - #[prost(string, optional, tag = "3")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing a single container in each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, - /// container is the name of the container in the pods of the scaling target - #[prost(string, optional, tag = "3")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// CrossVersionObjectReference contains enough information to let you identify the referred resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CrossVersionObjectReference { - /// kind is the kind of the referent; More info: - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// name is the name of the referent; More info: - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// apiVersion is the API version of the referent - /// +optional - #[prost(string, optional, tag = "3")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExternalMetricSource indicates how to scale on a metric not associated with -/// any Kubernetes object (for example length of queue in cloud -/// messaging service, or QPS from loadbalancer running outside of cluster). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricSource { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// ExternalMetricStatus indicates the current value of a global metric -/// not associated with any Kubernetes object. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricStatus { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, -} -/// HPAScalingPolicy is a single policy which must hold true for a specified past interval. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HpaScalingPolicy { - /// type is used to specify the scaling policy. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// value contains the amount of change which is permitted by the policy. - /// It must be greater than zero - #[prost(int32, optional, tag = "2")] - pub value: ::core::option::Option, - /// periodSeconds specifies the window of time for which the policy should hold true. - /// PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min). - #[prost(int32, optional, tag = "3")] - pub period_seconds: ::core::option::Option, -} -/// HPAScalingRules configures the scaling behavior for one direction via -/// scaling Policy Rules and a configurable metric tolerance. -/// -/// Scaling Policy Rules are applied after calculating DesiredReplicas from metrics for the HPA. -/// They can limit the scaling velocity by specifying scaling policies. -/// They can prevent flapping by specifying the stabilization window, so that the -/// number of replicas is not set instantly, instead, the safest value from the stabilization -/// window is chosen. -/// -/// The tolerance is applied to the metric values and prevents scaling too -/// eagerly for small metric variations. (Note that setting a tolerance requires -/// enabling the alpha HPAConfigurableTolerance feature gate.) -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HpaScalingRules { - /// stabilizationWindowSeconds is the number of seconds for which past recommendations should be - /// considered while scaling up or scaling down. - /// StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). - /// If not set, use the default values: - /// - For scale up: 0 (i.e. no stabilization is done). - /// - For scale down: 300 (i.e. the stabilization window is 300 seconds long). - /// +optional - #[prost(int32, optional, tag = "3")] - pub stabilization_window_seconds: ::core::option::Option, - /// selectPolicy is used to specify which policy should be used. - /// If not set, the default value Max is used. - /// +optional - #[prost(string, optional, tag = "1")] - pub select_policy: ::core::option::Option<::prost::alloc::string::String>, - /// policies is a list of potential scaling polices which can be used during scaling. - /// If not set, use the default values: - /// - For scale up: allow doubling the number of pods, or an absolute change of 4 pods in a 15s window. - /// - For scale down: allow all pods to be removed in a 15s window. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "2")] - pub policies: ::prost::alloc::vec::Vec, - /// tolerance is the tolerance on the ratio between the current and desired - /// metric value under which no updates are made to the desired number of - /// replicas (e.g. 0.01 for 1%). Must be greater than or equal to zero. If not - /// set, the default cluster-wide tolerance is applied (by default 10%). - /// - /// For example, if autoscaling is configured with a memory consumption target of 100Mi, - /// and scale-down and scale-up tolerances of 5% and 1% respectively, scaling will be - /// triggered when the actual consumption falls below 95Mi or exceeds 101Mi. - /// - /// This is an alpha field and requires enabling the HPAConfigurableTolerance - /// feature gate. - /// - /// +featureGate=HPAConfigurableTolerance - /// +optional - #[prost(message, optional, tag = "4")] - pub tolerance: ::core::option::Option, -} -/// HorizontalPodAutoscaler is the configuration for a horizontal pod -/// autoscaler, which automatically manages the replica count of any resource -/// implementing the scale subresource based on the metrics specified. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscaler { - /// metadata is the standard object metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the specification for the behaviour of the autoscaler. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current information about the autoscaler. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// HorizontalPodAutoscalerBehavior configures the scaling behavior of the target -/// in both Up and Down directions (scaleUp and scaleDown fields respectively). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerBehavior { - /// scaleUp is scaling policy for scaling Up. - /// If not set, the default value is the higher of: - /// * increase no more than 4 pods per 60 seconds - /// * double the number of pods per 60 seconds - /// No stabilization is used. - /// +optional - #[prost(message, optional, tag = "1")] - pub scale_up: ::core::option::Option, - /// scaleDown is scaling policy for scaling Down. - /// If not set, the default value is to allow to scale down to minReplicas pods, with a - /// 300 second stabilization window (i.e., the highest recommendation for - /// the last 300sec is used). - /// +optional - #[prost(message, optional, tag = "2")] - pub scale_down: ::core::option::Option, -} -/// HorizontalPodAutoscalerCondition describes the state of -/// a HorizontalPodAutoscaler at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HorizontalPodAutoscalerCondition { - /// type describes the current condition - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// status is the status of the condition (True, False, Unknown) - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// lastTransitionTime is the last time the condition transitioned from - /// one status to another - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// reason is the reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// message is a human-readable explanation containing details about - /// the transition - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerList { - /// metadata is the standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of horizontal pod autoscaler objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerSpec { - /// scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics - /// should be collected, as well as to actually change the replica count. - #[prost(message, optional, tag = "1")] - pub scale_target_ref: ::core::option::Option, - /// minReplicas is the lower limit for the number of replicas to which the autoscaler - /// can scale down. It defaults to 1 pod. minReplicas is allowed to be 0 if the - /// alpha feature gate HPAScaleToZero is enabled and at least one Object or External - /// metric is configured. Scaling is active as long as at least one metric value is - /// available. - /// +optional - #[prost(int32, optional, tag = "2")] - pub min_replicas: ::core::option::Option, - /// maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. - /// It cannot be less that minReplicas. - #[prost(int32, optional, tag = "3")] - pub max_replicas: ::core::option::Option, - /// metrics contains the specifications for which to use to calculate the - /// desired replica count (the maximum replica count across all metrics will - /// be used). The desired replica count is calculated multiplying the - /// ratio between the target value and the current value by the current - /// number of pods. Ergo, metrics used must decrease as the pod count is - /// increased, and vice-versa. See the individual metric source types for - /// more information about how each type of metric must respond. - /// If not set, the default metric will be set to 80% average CPU utilization. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub metrics: ::prost::alloc::vec::Vec, - /// behavior configures the scaling behavior of the target - /// in both Up and Down directions (scaleUp and scaleDown fields respectively). - /// If not set, the default HPAScalingRules for scale up and scale down are used. - /// +optional - #[prost(message, optional, tag = "5")] - pub behavior: ::core::option::Option, -} -/// HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerStatus { - /// observedGeneration is the most recent generation observed by this autoscaler. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, - /// used by the autoscaler to control how often the number of pods is changed. - /// +optional - #[prost(message, optional, tag = "2")] - pub last_scale_time: ::core::option::Option, - /// currentReplicas is current number of replicas of pods managed by this autoscaler, - /// as last seen by the autoscaler. - /// +optional - #[prost(int32, optional, tag = "3")] - pub current_replicas: ::core::option::Option, - /// desiredReplicas is the desired number of replicas of pods managed by this autoscaler, - /// as last calculated by the autoscaler. - #[prost(int32, optional, tag = "4")] - pub desired_replicas: ::core::option::Option, - /// currentMetrics is the last read state of the metrics used by this autoscaler. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "5")] - pub current_metrics: ::prost::alloc::vec::Vec, - /// conditions is the set of conditions required for this autoscaler to scale its target, - /// and indicates whether or not those conditions are met. - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - /// +optional - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// MetricIdentifier defines the name and optionally selector for a metric -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricIdentifier { - /// name is the name of the given metric - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, -} -/// MetricSpec specifies how to scale based on a single metric -/// (only `type` and one other matching field should be set at once). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricSpec { - /// type is the type of metric source. It should be one of "ContainerResource", "External", - /// "Object", "Pods" or "Resource", each mapping to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// containerResource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in - /// each pod of the current scale target (e.g. CPU or memory). Such metrics are - /// built in to Kubernetes, and have special scaling options on top of those - /// available to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// MetricStatus describes the last-read state of a single metric. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricStatus { - /// type is the type of metric source. It will be one of "ContainerResource", "External", - /// "Object", "Pods" or "Resource", each corresponds to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// container resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// MetricTarget defines the target value, average value, or average utilization of a specific metric -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MetricTarget { - /// type represents whether the metric type is Utilization, Value, or AverageValue - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// value is the target value of the metric (as a quantity). - /// +optional - #[prost(message, optional, tag = "2")] - pub value: ::core::option::Option, - /// averageValue is the target value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "3")] - pub average_value: - ::core::option::Option, - /// averageUtilization is the target value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// Currently only valid for Resource metric source type - /// +optional - #[prost(int32, optional, tag = "4")] - pub average_utilization: ::core::option::Option, -} -/// MetricValueStatus holds the current value for a metric -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MetricValueStatus { - /// value is the current value of the metric (as a quantity). - /// +optional - #[prost(message, optional, tag = "1")] - pub value: ::core::option::Option, - /// averageValue is the current value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "2")] - pub average_value: - ::core::option::Option, - /// currentAverageUtilization is the current value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// +optional - #[prost(int32, optional, tag = "3")] - pub average_utilization: ::core::option::Option, -} -/// ObjectMetricSource indicates how to scale on a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricSource { - /// describedObject specifies the descriptions of a object,such as kind,name apiVersion - #[prost(message, optional, tag = "1")] - pub described_object: ::core::option::Option, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "3")] - pub metric: ::core::option::Option, -} -/// ObjectMetricStatus indicates the current value of a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricStatus { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, - /// DescribedObject specifies the descriptions of a object,such as kind,name apiVersion - #[prost(message, optional, tag = "3")] - pub described_object: ::core::option::Option, -} -/// PodsMetricSource indicates how to scale on a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -/// The values will be averaged together before being compared to the target -/// value. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricSource { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// PodsMetricStatus indicates the current value of a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricStatus { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, -} -/// ResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// ResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, -} - -impl crate::Resource for HorizontalPodAutoscaler { - const API_VERSION: &'static str = "autoscaling/v2"; - const GROUP: &'static str = "autoscaling"; - const VERSION: &'static str = "v2"; - const KIND: &'static str = "HorizontalPodAutoscaler"; - const URL_PATH_SEGMENT: &'static str = "horizontalpodautoscalers"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for HorizontalPodAutoscaler { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for HorizontalPodAutoscaler { - type Spec = crate::api::autoscaling::v2::HorizontalPodAutoscalerSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for HorizontalPodAutoscaler { - type Status = crate::api::autoscaling::v2::HorizontalPodAutoscalerStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for HorizontalPodAutoscaler { - type Condition = crate::api::autoscaling::v2::HorizontalPodAutoscalerCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/autoscaling/v2beta1/mod.rs b/k8s-pb/src/api/autoscaling/v2beta1/mod.rs deleted file mode 100644 index 9864e5d..0000000 --- a/k8s-pb/src/api/autoscaling/v2beta1/mod.rs +++ /dev/null @@ -1,480 +0,0 @@ -// This file is @generated by prost-build. -/// ContainerResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// targetAverageUtilization is the target value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// +optional - #[prost(int32, optional, tag = "2")] - pub target_average_utilization: ::core::option::Option, - /// targetAverageValue is the target value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// +optional - #[prost(message, optional, tag = "3")] - pub target_average_value: - ::core::option::Option, - /// container is the name of the container in the pods of the scaling target - #[prost(string, optional, tag = "4")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing a single container in each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// currentAverageUtilization is the current value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. It will only be - /// present if `targetAverageValue` was set in the corresponding metric - /// specification. - /// +optional - #[prost(int32, optional, tag = "2")] - pub current_average_utilization: ::core::option::Option, - /// currentAverageValue is the current value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// It will always be set, regardless of the corresponding metric specification. - #[prost(message, optional, tag = "3")] - pub current_average_value: - ::core::option::Option, - /// container is the name of the container in the pods of the scaling target - #[prost(string, optional, tag = "4")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// CrossVersionObjectReference contains enough information to let you identify the referred resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CrossVersionObjectReference { - /// Kind of the referent; More info: - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Name of the referent; More info: - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// API version of the referent - /// +optional - #[prost(string, optional, tag = "3")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExternalMetricSource indicates how to scale on a metric not associated with -/// any Kubernetes object (for example length of queue in cloud -/// messaging service, or QPS from loadbalancer running outside of cluster). -/// Exactly one "target" type should be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricSource { - /// metricName is the name of the metric in question. - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// metricSelector is used to identify a specific time series - /// within a given metric. - /// +optional - #[prost(message, optional, tag = "2")] - pub metric_selector: - ::core::option::Option, - /// targetValue is the target value of the metric (as a quantity). - /// Mutually exclusive with TargetAverageValue. - /// +optional - #[prost(message, optional, tag = "3")] - pub target_value: ::core::option::Option, - /// targetAverageValue is the target per-pod value of global metric (as a quantity). - /// Mutually exclusive with TargetValue. - /// +optional - #[prost(message, optional, tag = "4")] - pub target_average_value: - ::core::option::Option, -} -/// ExternalMetricStatus indicates the current value of a global metric -/// not associated with any Kubernetes object. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricStatus { - /// metricName is the name of a metric used for autoscaling in - /// metric system. - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// metricSelector is used to identify a specific time series - /// within a given metric. - /// +optional - #[prost(message, optional, tag = "2")] - pub metric_selector: - ::core::option::Option, - /// currentValue is the current value of the metric (as a quantity) - #[prost(message, optional, tag = "3")] - pub current_value: - ::core::option::Option, - /// currentAverageValue is the current value of metric averaged over autoscaled pods. - /// +optional - #[prost(message, optional, tag = "4")] - pub current_average_value: - ::core::option::Option, -} -/// HorizontalPodAutoscaler is the configuration for a horizontal pod -/// autoscaler, which automatically manages the replica count of any resource -/// implementing the scale subresource based on the metrics specified. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscaler { - /// metadata is the standard object metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the specification for the behaviour of the autoscaler. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current information about the autoscaler. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// HorizontalPodAutoscalerCondition describes the state of -/// a HorizontalPodAutoscaler at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HorizontalPodAutoscalerCondition { - /// type describes the current condition - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// status is the status of the condition (True, False, Unknown) - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// lastTransitionTime is the last time the condition transitioned from - /// one status to another - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// reason is the reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// message is a human-readable explanation containing details about - /// the transition - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// HorizontalPodAutoscaler is a list of horizontal pod autoscaler objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerList { - /// metadata is the standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of horizontal pod autoscaler objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerSpec { - /// scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics - /// should be collected, as well as to actually change the replica count. - #[prost(message, optional, tag = "1")] - pub scale_target_ref: ::core::option::Option, - /// minReplicas is the lower limit for the number of replicas to which the autoscaler - /// can scale down. It defaults to 1 pod. minReplicas is allowed to be 0 if the - /// alpha feature gate HPAScaleToZero is enabled and at least one Object or External - /// metric is configured. Scaling is active as long as at least one metric value is - /// available. - /// +optional - #[prost(int32, optional, tag = "2")] - pub min_replicas: ::core::option::Option, - /// maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. - /// It cannot be less that minReplicas. - #[prost(int32, optional, tag = "3")] - pub max_replicas: ::core::option::Option, - /// metrics contains the specifications for which to use to calculate the - /// desired replica count (the maximum replica count across all metrics will - /// be used). The desired replica count is calculated multiplying the - /// ratio between the target value and the current value by the current - /// number of pods. Ergo, metrics used must decrease as the pod count is - /// increased, and vice-versa. See the individual metric source types for - /// more information about how each type of metric must respond. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "4")] - pub metrics: ::prost::alloc::vec::Vec, -} -/// HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerStatus { - /// observedGeneration is the most recent generation observed by this autoscaler. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, - /// used by the autoscaler to control how often the number of pods is changed. - /// +optional - #[prost(message, optional, tag = "2")] - pub last_scale_time: ::core::option::Option, - /// currentReplicas is current number of replicas of pods managed by this autoscaler, - /// as last seen by the autoscaler. - #[prost(int32, optional, tag = "3")] - pub current_replicas: ::core::option::Option, - /// desiredReplicas is the desired number of replicas of pods managed by this autoscaler, - /// as last calculated by the autoscaler. - #[prost(int32, optional, tag = "4")] - pub desired_replicas: ::core::option::Option, - /// currentMetrics is the last read state of the metrics used by this autoscaler. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "5")] - pub current_metrics: ::prost::alloc::vec::Vec, - /// conditions is the set of conditions required for this autoscaler to scale its target, - /// and indicates whether or not those conditions are met. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// MetricSpec specifies how to scale based on a single metric -/// (only `type` and one other matching field should be set at once). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricSpec { - /// type is the type of metric source. It should be one of "ContainerResource", - /// "External", "Object", "Pods" or "Resource", each mapping to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// container resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in - /// each pod of the current scale target (e.g. CPU or memory). Such metrics are - /// built in to Kubernetes, and have special scaling options on top of those - /// available to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// MetricStatus describes the last-read state of a single metric. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricStatus { - /// type is the type of metric source. It will be one of "ContainerResource", - /// "External", "Object", "Pods" or "Resource", each corresponds to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// container resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// ObjectMetricSource indicates how to scale on a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricSource { - /// target is the described Kubernetes object. - #[prost(message, optional, tag = "1")] - pub target: ::core::option::Option, - /// metricName is the name of the metric in question. - #[prost(string, optional, tag = "2")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// targetValue is the target value of the metric (as a quantity). - #[prost(message, optional, tag = "3")] - pub target_value: ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "4")] - pub selector: - ::core::option::Option, - /// averageValue is the target value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "5")] - pub average_value: - ::core::option::Option, -} -/// ObjectMetricStatus indicates the current value of a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricStatus { - /// target is the described Kubernetes object. - #[prost(message, optional, tag = "1")] - pub target: ::core::option::Option, - /// metricName is the name of the metric in question. - #[prost(string, optional, tag = "2")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// currentValue is the current value of the metric (as a quantity). - #[prost(message, optional, tag = "3")] - pub current_value: - ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set in the ObjectMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "4")] - pub selector: - ::core::option::Option, - /// averageValue is the current value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "5")] - pub average_value: - ::core::option::Option, -} -/// PodsMetricSource indicates how to scale on a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -/// The values will be averaged together before being compared to the target -/// value. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricSource { - /// metricName is the name of the metric in question - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// targetAverageValue is the target value of the average of the - /// metric across all relevant pods (as a quantity) - #[prost(message, optional, tag = "2")] - pub target_average_value: - ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, -} -/// PodsMetricStatus indicates the current value of a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricStatus { - /// metricName is the name of the metric in question - #[prost(string, optional, tag = "1")] - pub metric_name: ::core::option::Option<::prost::alloc::string::String>, - /// currentAverageValue is the current value of the average of the - /// metric across all relevant pods (as a quantity) - #[prost(message, optional, tag = "2")] - pub current_average_value: - ::core::option::Option, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set in the PodsMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "3")] - pub selector: - ::core::option::Option, -} -/// ResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// targetAverageUtilization is the target value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// +optional - #[prost(int32, optional, tag = "2")] - pub target_average_utilization: ::core::option::Option, - /// targetAverageValue is the target value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// +optional - #[prost(message, optional, tag = "3")] - pub target_average_value: - ::core::option::Option, -} -/// ResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// currentAverageUtilization is the current value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. It will only be - /// present if `targetAverageValue` was set in the corresponding metric - /// specification. - /// +optional - #[prost(int32, optional, tag = "2")] - pub current_average_utilization: ::core::option::Option, - /// currentAverageValue is the current value of the average of the - /// resource metric across all relevant pods, as a raw value (instead of as - /// a percentage of the request), similar to the "pods" metric source type. - /// It will always be set, regardless of the corresponding metric specification. - #[prost(message, optional, tag = "3")] - pub current_average_value: - ::core::option::Option, -} diff --git a/k8s-pb/src/api/autoscaling/v2beta2/mod.rs b/k8s-pb/src/api/autoscaling/v2beta2/mod.rs deleted file mode 100644 index 6d391b8..0000000 --- a/k8s-pb/src/api/autoscaling/v2beta2/mod.rs +++ /dev/null @@ -1,490 +0,0 @@ -// This file is @generated by prost-build. -/// ContainerResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, - /// container is the name of the container in the pods of the scaling target - #[prost(string, optional, tag = "3")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing a single container in each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, - /// container is the name of the container in the pods of the scaling target - #[prost(string, optional, tag = "3")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// CrossVersionObjectReference contains enough information to let you identify the referred resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CrossVersionObjectReference { - /// kind is the kind of the referent; More info: - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// name is the name of the referent; More info: - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// apiVersion is the API version of the referent - /// +optional - #[prost(string, optional, tag = "3")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExternalMetricSource indicates how to scale on a metric not associated with -/// any Kubernetes object (for example length of queue in cloud -/// messaging service, or QPS from loadbalancer running outside of cluster). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricSource { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// ExternalMetricStatus indicates the current value of a global metric -/// not associated with any Kubernetes object. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ExternalMetricStatus { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, -} -/// HPAScalingPolicy is a single policy which must hold true for a specified past interval. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HpaScalingPolicy { - /// type is used to specify the scaling policy. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// value contains the amount of change which is permitted by the policy. - /// It must be greater than zero - #[prost(int32, optional, tag = "2")] - pub value: ::core::option::Option, - /// periodSeconds specifies the window of time for which the policy should hold true. - /// PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min). - #[prost(int32, optional, tag = "3")] - pub period_seconds: ::core::option::Option, -} -/// HPAScalingRules configures the scaling behavior for one direction. -/// These Rules are applied after calculating DesiredReplicas from metrics for the HPA. -/// They can limit the scaling velocity by specifying scaling policies. -/// They can prevent flapping by specifying the stabilization window, so that the -/// number of replicas is not set instantly, instead, the safest value from the stabilization -/// window is chosen. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HpaScalingRules { - /// stabilizationWindowSeconds is the number of seconds for which past recommendations should be - /// considered while scaling up or scaling down. - /// StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). - /// If not set, use the default values: - /// - For scale up: 0 (i.e. no stabilization is done). - /// - For scale down: 300 (i.e. the stabilization window is 300 seconds long). - /// +optional - #[prost(int32, optional, tag = "3")] - pub stabilization_window_seconds: ::core::option::Option, - /// selectPolicy is used to specify which policy should be used. - /// If not set, the default value MaxPolicySelect is used. - /// +optional - #[prost(string, optional, tag = "1")] - pub select_policy: ::core::option::Option<::prost::alloc::string::String>, - /// policies is a list of potential scaling polices which can be used during scaling. - /// At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub policies: ::prost::alloc::vec::Vec, -} -/// HorizontalPodAutoscaler is the configuration for a horizontal pod -/// autoscaler, which automatically manages the replica count of any resource -/// implementing the scale subresource based on the metrics specified. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscaler { - /// metadata is the standard object metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the specification for the behaviour of the autoscaler. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current information about the autoscaler. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// HorizontalPodAutoscalerBehavior configures the scaling behavior of the target -/// in both Up and Down directions (scaleUp and scaleDown fields respectively). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerBehavior { - /// scaleUp is scaling policy for scaling Up. - /// If not set, the default value is the higher of: - /// * increase no more than 4 pods per 60 seconds - /// * double the number of pods per 60 seconds - /// No stabilization is used. - /// +optional - #[prost(message, optional, tag = "1")] - pub scale_up: ::core::option::Option, - /// scaleDown is scaling policy for scaling Down. - /// If not set, the default value is to allow to scale down to minReplicas pods, with a - /// 300 second stabilization window (i.e., the highest recommendation for - /// the last 300sec is used). - /// +optional - #[prost(message, optional, tag = "2")] - pub scale_down: ::core::option::Option, -} -/// HorizontalPodAutoscalerCondition describes the state of -/// a HorizontalPodAutoscaler at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HorizontalPodAutoscalerCondition { - /// type describes the current condition - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// status is the status of the condition (True, False, Unknown) - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// lastTransitionTime is the last time the condition transitioned from - /// one status to another - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// reason is the reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// message is a human-readable explanation containing details about - /// the transition - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerList { - /// metadata is the standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of horizontal pod autoscaler objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerSpec { - /// scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics - /// should be collected, as well as to actually change the replica count. - #[prost(message, optional, tag = "1")] - pub scale_target_ref: ::core::option::Option, - /// minReplicas is the lower limit for the number of replicas to which the autoscaler - /// can scale down. It defaults to 1 pod. minReplicas is allowed to be 0 if the - /// alpha feature gate HPAScaleToZero is enabled and at least one Object or External - /// metric is configured. Scaling is active as long as at least one metric value is - /// available. - /// +optional - #[prost(int32, optional, tag = "2")] - pub min_replicas: ::core::option::Option, - /// maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. - /// It cannot be less that minReplicas. - #[prost(int32, optional, tag = "3")] - pub max_replicas: ::core::option::Option, - /// metrics contains the specifications for which to use to calculate the - /// desired replica count (the maximum replica count across all metrics will - /// be used). The desired replica count is calculated multiplying the - /// ratio between the target value and the current value by the current - /// number of pods. Ergo, metrics used must decrease as the pod count is - /// increased, and vice-versa. See the individual metric source types for - /// more information about how each type of metric must respond. - /// If not set, the default metric will be set to 80% average CPU utilization. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "4")] - pub metrics: ::prost::alloc::vec::Vec, - /// behavior configures the scaling behavior of the target - /// in both Up and Down directions (scaleUp and scaleDown fields respectively). - /// If not set, the default HPAScalingRules for scale up and scale down are used. - /// +optional - #[prost(message, optional, tag = "5")] - pub behavior: ::core::option::Option, -} -/// HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HorizontalPodAutoscalerStatus { - /// observedGeneration is the most recent generation observed by this autoscaler. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, - /// used by the autoscaler to control how often the number of pods is changed. - /// +optional - #[prost(message, optional, tag = "2")] - pub last_scale_time: ::core::option::Option, - /// currentReplicas is current number of replicas of pods managed by this autoscaler, - /// as last seen by the autoscaler. - #[prost(int32, optional, tag = "3")] - pub current_replicas: ::core::option::Option, - /// desiredReplicas is the desired number of replicas of pods managed by this autoscaler, - /// as last calculated by the autoscaler. - #[prost(int32, optional, tag = "4")] - pub desired_replicas: ::core::option::Option, - /// currentMetrics is the last read state of the metrics used by this autoscaler. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "5")] - pub current_metrics: ::prost::alloc::vec::Vec, - /// conditions is the set of conditions required for this autoscaler to scale its target, - /// and indicates whether or not those conditions are met. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// MetricIdentifier defines the name and optionally selector for a metric -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricIdentifier { - /// name is the name of the given metric - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// selector is the string-encoded form of a standard kubernetes label selector for the given metric - /// When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. - /// When unset, just the metricName will be used to gather metrics. - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, -} -/// MetricSpec specifies how to scale based on a single metric -/// (only `type` and one other matching field should be set at once). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricSpec { - /// type is the type of metric source. It should be one of "ContainerResource", "External", - /// "Object", "Pods" or "Resource", each mapping to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// container resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in - /// each pod of the current scale target (e.g. CPU or memory). Such metrics are - /// built in to Kubernetes, and have special scaling options on top of those - /// available to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// MetricStatus describes the last-read state of a single metric. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct MetricStatus { - /// type is the type of metric source. It will be one of "ContainerResource", "External", - /// "Object", "Pods" or "Resource", each corresponds to a matching field in the object. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// object refers to a metric describing a single kubernetes object - /// (for example, hits-per-second on an Ingress object). - /// +optional - #[prost(message, optional, tag = "2")] - pub object: ::core::option::Option, - /// pods refers to a metric describing each pod in the current scale target - /// (for example, transactions-processed-per-second). The values will be - /// averaged together before being compared to the target value. - /// +optional - #[prost(message, optional, tag = "3")] - pub pods: ::core::option::Option, - /// resource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "4")] - pub resource: ::core::option::Option, - /// containerResource refers to a resource metric (such as those specified in - /// requests and limits) known to Kubernetes describing a single container in each pod in the - /// current scale target (e.g. CPU or memory). Such metrics are built in to - /// Kubernetes, and have special scaling options on top of those available - /// to normal per-pod metrics using the "pods" source. - /// +optional - #[prost(message, optional, tag = "7")] - pub container_resource: ::core::option::Option, - /// external refers to a global metric that is not associated - /// with any Kubernetes object. It allows autoscaling based on information - /// coming from components running outside of cluster - /// (for example length of queue in cloud messaging service, or - /// QPS from loadbalancer running outside of cluster). - /// +optional - #[prost(message, optional, tag = "5")] - pub external: ::core::option::Option, -} -/// MetricTarget defines the target value, average value, or average utilization of a specific metric -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MetricTarget { - /// type represents whether the metric type is Utilization, Value, or AverageValue - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// value is the target value of the metric (as a quantity). - /// +optional - #[prost(message, optional, tag = "2")] - pub value: ::core::option::Option, - /// averageValue is the target value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "3")] - pub average_value: - ::core::option::Option, - /// averageUtilization is the target value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// Currently only valid for Resource metric source type - /// +optional - #[prost(int32, optional, tag = "4")] - pub average_utilization: ::core::option::Option, -} -/// MetricValueStatus holds the current value for a metric -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct MetricValueStatus { - /// value is the current value of the metric (as a quantity). - /// +optional - #[prost(message, optional, tag = "1")] - pub value: ::core::option::Option, - /// averageValue is the current value of the average of the - /// metric across all relevant pods (as a quantity) - /// +optional - #[prost(message, optional, tag = "2")] - pub average_value: - ::core::option::Option, - /// averageUtilization is the current value of the average of the - /// resource metric across all relevant pods, represented as a percentage of - /// the requested value of the resource for the pods. - /// +optional - #[prost(int32, optional, tag = "3")] - pub average_utilization: ::core::option::Option, -} -/// ObjectMetricSource indicates how to scale on a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricSource { - #[prost(message, optional, tag = "1")] - pub described_object: ::core::option::Option, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "3")] - pub metric: ::core::option::Option, -} -/// ObjectMetricStatus indicates the current value of a metric describing a -/// kubernetes object (for example, hits-per-second on an Ingress object). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ObjectMetricStatus { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, - #[prost(message, optional, tag = "3")] - pub described_object: ::core::option::Option, -} -/// PodsMetricSource indicates how to scale on a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -/// The values will be averaged together before being compared to the target -/// value. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricSource { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// PodsMetricStatus indicates the current value of a metric describing each pod in -/// the current scale target (for example, transactions-processed-per-second). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodsMetricStatus { - /// metric identifies the target metric by name and selector - #[prost(message, optional, tag = "1")] - pub metric: ::core::option::Option, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, -} -/// ResourceMetricSource indicates how to scale on a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). The values will be averaged -/// together before being compared to the target. Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. Only one "target" type -/// should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricSource { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// target specifies the target value for the given metric - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// ResourceMetricStatus indicates the current value of a resource metric known to -/// Kubernetes, as specified in requests and limits, describing each pod in the -/// current scale target (e.g. CPU or memory). Such metrics are built in to -/// Kubernetes, and have special scaling options on top of those available to -/// normal per-pod metrics using the "pods" source. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceMetricStatus { - /// name is the name of the resource in question. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// current contains the current value for the given metric - #[prost(message, optional, tag = "2")] - pub current: ::core::option::Option, -} diff --git a/k8s-pb/src/api/batch/mod.rs b/k8s-pb/src/api/batch/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/batch/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/batch/v1/mod.rs b/k8s-pb/src/api/batch/v1/mod.rs deleted file mode 100644 index bad16be..0000000 --- a/k8s-pb/src/api/batch/v1/mod.rs +++ /dev/null @@ -1,698 +0,0 @@ -// This file is @generated by prost-build. -/// CronJob represents the configuration of a single cron job. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJob { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of a cron job, including the schedule. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Current status of a cron job. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// CronJobList is a collection of cron jobs. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJobList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of CronJobs. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// CronJobSpec describes how the job execution will look like and when it will actually run. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJobSpec { - /// The schedule in Cron format, see - #[prost(string, optional, tag = "1")] - pub schedule: ::core::option::Option<::prost::alloc::string::String>, - /// The time zone name for the given schedule, see - /// If not specified, this will default to the time zone of the kube-controller-manager process. - /// The set of valid time zone names and the time zone offset is loaded from the system-wide time zone - /// database by the API server during CronJob validation and the controller manager during execution. - /// If no system-wide time zone database can be found a bundled version of the database is used instead. - /// If the time zone name becomes invalid during the lifetime of a CronJob or due to a change in host - /// configuration, the controller will stop creating new new Jobs and will create a system event with the - /// reason UnknownTimeZone. - /// More information can be found in - /// +optional - #[prost(string, optional, tag = "8")] - pub time_zone: ::core::option::Option<::prost::alloc::string::String>, - /// Optional deadline in seconds for starting the job if it misses scheduled - /// time for any reason. Missed jobs executions will be counted as failed ones. - /// +optional - #[prost(int64, optional, tag = "2")] - pub starting_deadline_seconds: ::core::option::Option, - /// Specifies how to treat concurrent executions of a Job. - /// Valid values are: - /// - /// - "Allow" (default): allows CronJobs to run concurrently; - /// - "Forbid": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - /// - "Replace": cancels currently running job and replaces it with a new one - /// +optional - #[prost(string, optional, tag = "3")] - pub concurrency_policy: ::core::option::Option<::prost::alloc::string::String>, - /// This flag tells the controller to suspend subsequent executions, it does - /// not apply to already started executions. Defaults to false. - /// +optional - #[prost(bool, optional, tag = "4")] - pub suspend: ::core::option::Option, - /// Specifies the job that will be created when executing a CronJob. - #[prost(message, optional, tag = "5")] - pub job_template: ::core::option::Option, - /// The number of successful finished jobs to retain. Value must be non-negative integer. - /// Defaults to 3. - /// +optional - #[prost(int32, optional, tag = "6")] - pub successful_jobs_history_limit: ::core::option::Option, - /// The number of failed finished jobs to retain. Value must be non-negative integer. - /// Defaults to 1. - /// +optional - #[prost(int32, optional, tag = "7")] - pub failed_jobs_history_limit: ::core::option::Option, -} -/// CronJobStatus represents the current state of a cron job. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJobStatus { - /// A list of pointers to currently running jobs. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub active: ::prost::alloc::vec::Vec, - /// Information when was the last time the job was successfully scheduled. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_schedule_time: - ::core::option::Option, - /// Information when was the last time the job successfully completed. - /// +optional - #[prost(message, optional, tag = "5")] - pub last_successful_time: - ::core::option::Option, -} -/// Job represents the configuration of a single job. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Job { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of a job. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Current status of a job. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// JobCondition describes current state of a job. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct JobCondition { - /// Type of job condition, Complete or Failed. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition was checked. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_probe_time: ::core::option::Option, - /// Last time the condition transit from one status to another. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_transition_time: - ::core::option::Option, - /// (brief) reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Human readable message indicating details about last transition. - /// +optional - #[prost(string, optional, tag = "6")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// JobList is a collection of jobs. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct JobList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of Jobs. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// JobSpec describes how the job execution will look like. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct JobSpec { - /// Specifies the maximum desired number of pods the job should - /// run at any given time. The actual number of pods running in steady state will - /// be less than this number when ((.spec.completions - .status.successful) < .spec.parallelism), - /// i.e. when the work left to do is less than max parallelism. - /// More info: - /// +optional - #[prost(int32, optional, tag = "1")] - pub parallelism: ::core::option::Option, - /// Specifies the desired number of successfully finished pods the - /// job should be run with. Setting to null means that the success of any - /// pod signals the success of all pods, and allows parallelism to have any positive - /// value. Setting to 1 means that parallelism is limited to 1 and the success of that - /// pod signals the success of the job. - /// More info: - /// +optional - #[prost(int32, optional, tag = "2")] - pub completions: ::core::option::Option, - /// Specifies the duration in seconds relative to the startTime that the job - /// may be continuously active before the system tries to terminate it; value - /// must be positive integer. If a Job is suspended (at creation or through an - /// update), this timer will effectively be stopped and reset when the Job is - /// resumed again. - /// +optional - #[prost(int64, optional, tag = "3")] - pub active_deadline_seconds: ::core::option::Option, - /// Specifies the policy of handling failed pods. In particular, it allows to - /// specify the set of actions and conditions which need to be - /// satisfied to take the associated action. - /// If empty, the default behaviour applies - the counter of failed pods, - /// represented by the jobs's .status.failed field, is incremented and it is - /// checked against the backoffLimit. This field cannot be used in combination - /// with restartPolicy=OnFailure. - /// - /// +optional - #[prost(message, optional, tag = "11")] - pub pod_failure_policy: ::core::option::Option, - /// successPolicy specifies the policy when the Job can be declared as succeeded. - /// If empty, the default behavior applies - the Job is declared as succeeded - /// only when the number of succeeded pods equals to the completions. - /// When the field is specified, it must be immutable and works only for the Indexed Jobs. - /// Once the Job meets the SuccessPolicy, the lingering pods are terminated. - /// - /// +optional - #[prost(message, optional, tag = "16")] - pub success_policy: ::core::option::Option, - /// Specifies the number of retries before marking this job failed. - /// Defaults to 6, unless backoffLimitPerIndex (only Indexed Job) is specified. - /// When backoffLimitPerIndex is specified, backoffLimit defaults to 2147483647. - /// +optional - #[prost(int32, optional, tag = "7")] - pub backoff_limit: ::core::option::Option, - /// Specifies the limit for the number of retries within an - /// index before marking this index as failed. When enabled the number of - /// failures per index is kept in the pod's - /// batch.kubernetes.io/job-index-failure-count annotation. It can only - /// be set when Job's completionMode=Indexed, and the Pod's restart - /// policy is Never. The field is immutable. - /// +optional - #[prost(int32, optional, tag = "12")] - pub backoff_limit_per_index: ::core::option::Option, - /// Specifies the maximal number of failed indexes before marking the Job as - /// failed, when backoffLimitPerIndex is set. Once the number of failed - /// indexes exceeds this number the entire Job is marked as Failed and its - /// execution is terminated. When left as null the job continues execution of - /// all of its indexes and is marked with the `Complete` Job condition. - /// It can only be specified when backoffLimitPerIndex is set. - /// It can be null or up to completions. It is required and must be - /// less than or equal to 10^4 when is completions greater than 10^5. - /// +optional - #[prost(int32, optional, tag = "13")] - pub max_failed_indexes: ::core::option::Option, - /// A label query over pods that should match the pod count. - /// Normally, the system sets this field for you. - /// More info: - /// +optional - #[prost(message, optional, tag = "4")] - pub selector: - ::core::option::Option, - /// manualSelector controls generation of pod labels and pod selectors. - /// Leave `manualSelector` unset unless you are certain what you are doing. - /// When false or unset, the system pick labels unique to this job - /// and appends those labels to the pod template. When true, - /// the user is responsible for picking unique labels and specifying - /// the selector. Failure to pick a unique label may cause this - /// and other jobs to not function correctly. However, You may see - /// `manualSelector=true` in jobs that were created with the old `extensions/v1beta1` - /// API. - /// More info: - /// +optional - #[prost(bool, optional, tag = "5")] - pub manual_selector: ::core::option::Option, - /// Describes the pod that will be created when executing a job. - /// The only allowed template.spec.restartPolicy values are "Never" or "OnFailure". - /// More info: - #[prost(message, optional, tag = "6")] - pub template: ::core::option::Option, - /// ttlSecondsAfterFinished limits the lifetime of a Job that has finished - /// execution (either Complete or Failed). If this field is set, - /// ttlSecondsAfterFinished after the Job finishes, it is eligible to be - /// automatically deleted. When the Job is being deleted, its lifecycle - /// guarantees (e.g. finalizers) will be honored. If this field is unset, - /// the Job won't be automatically deleted. If this field is set to zero, - /// the Job becomes eligible to be deleted immediately after it finishes. - /// +optional - #[prost(int32, optional, tag = "8")] - pub ttl_seconds_after_finished: ::core::option::Option, - /// completionMode specifies how Pod completions are tracked. It can be - /// `NonIndexed` (default) or `Indexed`. - /// - /// `NonIndexed` means that the Job is considered complete when there have - /// been .spec.completions successfully completed Pods. Each Pod completion is - /// homologous to each other. - /// - /// `Indexed` means that the Pods of a - /// Job get an associated completion index from 0 to (.spec.completions - 1), - /// available in the annotation batch.kubernetes.io/job-completion-index. - /// The Job is considered complete when there is one successfully completed Pod - /// for each index. - /// When value is `Indexed`, .spec.completions must be specified and - /// `.spec.parallelism` must be less than or equal to 10^5. - /// In addition, The Pod name takes the form - /// `$(job-name)-$(index)-$(random-string)`, - /// the Pod hostname takes the form `$(job-name)-$(index)`. - /// - /// More completion modes can be added in the future. - /// If the Job controller observes a mode that it doesn't recognize, which - /// is possible during upgrades due to version skew, the controller - /// skips updates for the Job. - /// +optional - #[prost(string, optional, tag = "9")] - pub completion_mode: ::core::option::Option<::prost::alloc::string::String>, - /// suspend specifies whether the Job controller should create Pods or not. If - /// a Job is created with suspend set to true, no Pods are created by the Job - /// controller. If a Job is suspended after creation (i.e. the flag goes from - /// false to true), the Job controller will delete all active Pods associated - /// with this Job. Users must design their workload to gracefully handle this. - /// Suspending a Job will reset the StartTime field of the Job, effectively - /// resetting the ActiveDeadlineSeconds timer too. Defaults to false. - /// - /// +optional - #[prost(bool, optional, tag = "10")] - pub suspend: ::core::option::Option, - /// podReplacementPolicy specifies when to create replacement Pods. - /// Possible values are: - /// - TerminatingOrFailed means that we recreate pods - /// when they are terminating (has a metadata.deletionTimestamp) or failed. - /// - Failed means to wait until a previously created Pod is fully terminated (has phase - /// Failed or Succeeded) before creating a replacement Pod. - /// - /// When using podFailurePolicy, Failed is the the only allowed value. - /// TerminatingOrFailed and Failed are allowed values when podFailurePolicy is not in use. - /// +optional - #[prost(string, optional, tag = "14")] - pub pod_replacement_policy: ::core::option::Option<::prost::alloc::string::String>, - /// ManagedBy field indicates the controller that manages a Job. The k8s Job - /// controller reconciles jobs which don't have this field at all or the field - /// value is the reserved string `kubernetes.io/job-controller`, but skips - /// reconciling Jobs with a custom value for this field. - /// The value must be a valid domain-prefixed path (e.g. acme.io/foo) - - /// all characters before the first "/" must be a valid subdomain as defined - /// by RFC 1123. All characters trailing the first "/" must be valid HTTP Path - /// characters as defined by RFC 3986. The value cannot exceed 63 characters. - /// This field is immutable. - /// - /// This field is beta-level. The job controller accepts setting the field - /// when the feature gate JobManagedBy is enabled (enabled by default). - /// +optional - #[prost(string, optional, tag = "15")] - pub managed_by: ::core::option::Option<::prost::alloc::string::String>, -} -/// JobStatus represents the current state of a Job. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct JobStatus { - /// The latest available observations of an object's current state. When a Job - /// fails, one of the conditions will have type "Failed" and status true. When - /// a Job is suspended, one of the conditions will have type "Suspended" and - /// status true; when the Job is resumed, the status of this condition will - /// become false. When a Job is completed, one of the conditions will have - /// type "Complete" and status true. - /// - /// A job is considered finished when it is in a terminal condition, either - /// "Complete" or "Failed". A Job cannot have both the "Complete" and "Failed" conditions. - /// Additionally, it cannot be in the "Complete" and "FailureTarget" conditions. - /// The "Complete", "Failed" and "FailureTarget" conditions cannot be disabled. - /// - /// More info: - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, - /// Represents time when the job controller started processing a job. When a - /// Job is created in the suspended state, this field is not set until the - /// first time it is resumed. This field is reset every time a Job is resumed - /// from suspension. It is represented in RFC3339 form and is in UTC. - /// - /// Once set, the field can only be removed when the job is suspended. - /// The field cannot be modified while the job is unsuspended or finished. - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub start_time: ::core::option::Option, - /// Represents time when the job was completed. It is not guaranteed to - /// be set in happens-before order across separate operations. - /// It is represented in RFC3339 form and is in UTC. - /// The completion time is set when the job finishes successfully, and only then. - /// The value cannot be updated or removed. The value indicates the same or - /// later point in time as the startTime field. - /// +optional - #[prost(message, optional, tag = "3")] - pub completion_time: ::core::option::Option, - /// The number of pending and running pods which are not terminating (without - /// a deletionTimestamp). - /// The value is zero for finished jobs. - /// +optional - #[prost(int32, optional, tag = "4")] - pub active: ::core::option::Option, - /// The number of pods which reached phase Succeeded. - /// The value increases monotonically for a given spec. However, it may - /// decrease in reaction to scale down of elastic indexed jobs. - /// +optional - #[prost(int32, optional, tag = "5")] - pub succeeded: ::core::option::Option, - /// The number of pods which reached phase Failed. - /// The value increases monotonically. - /// +optional - #[prost(int32, optional, tag = "6")] - pub failed: ::core::option::Option, - /// The number of pods which are terminating (in phase Pending or Running - /// and have a deletionTimestamp). - /// - /// This field is beta-level. The job controller populates the field when - /// the feature gate JobPodReplacementPolicy is enabled (enabled by default). - /// +optional - #[prost(int32, optional, tag = "11")] - pub terminating: ::core::option::Option, - /// completedIndexes holds the completed indexes when .spec.completionMode = - /// "Indexed" in a text format. The indexes are represented as decimal integers - /// separated by commas. The numbers are listed in increasing order. Three or - /// more consecutive numbers are compressed and represented by the first and - /// last element of the series, separated by a hyphen. - /// For example, if the completed indexes are 1, 3, 4, 5 and 7, they are - /// represented as "1,3-5,7". - /// +optional - #[prost(string, optional, tag = "7")] - pub completed_indexes: ::core::option::Option<::prost::alloc::string::String>, - /// FailedIndexes holds the failed indexes when spec.backoffLimitPerIndex is set. - /// The indexes are represented in the text format analogous as for the - /// `completedIndexes` field, ie. they are kept as decimal integers - /// separated by commas. The numbers are listed in increasing order. Three or - /// more consecutive numbers are compressed and represented by the first and - /// last element of the series, separated by a hyphen. - /// For example, if the failed indexes are 1, 3, 4, 5 and 7, they are - /// represented as "1,3-5,7". - /// The set of failed indexes cannot overlap with the set of completed indexes. - /// - /// +optional - #[prost(string, optional, tag = "10")] - pub failed_indexes: ::core::option::Option<::prost::alloc::string::String>, - /// uncountedTerminatedPods holds the UIDs of Pods that have terminated but - /// the job controller hasn't yet accounted for in the status counters. - /// - /// The job controller creates pods with a finalizer. When a pod terminates - /// (succeeded or failed), the controller does three steps to account for it - /// in the job status: - /// - /// 1. Add the pod UID to the arrays in this field. - /// 2. Remove the pod finalizer. - /// 3. Remove the pod UID from the arrays while increasing the corresponding - /// counter. - /// - /// Old jobs might not be tracked using this field, in which case the field - /// remains null. - /// The structure is empty for finished jobs. - /// +optional - #[prost(message, optional, tag = "8")] - pub uncounted_terminated_pods: ::core::option::Option, - /// The number of active pods which have a Ready condition and are not - /// terminating (without a deletionTimestamp). - #[prost(int32, optional, tag = "9")] - pub ready: ::core::option::Option, -} -/// JobTemplateSpec describes the data a Job should have when created from a template -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct JobTemplateSpec { - /// Standard object's metadata of the jobs created from this template. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the job. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// PodFailurePolicy describes how failed pods influence the backoffLimit. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodFailurePolicy { - /// A list of pod failure policy rules. The rules are evaluated in order. - /// Once a rule matches a Pod failure, the remaining of the rules are ignored. - /// When no rule matches the Pod failure, the default handling applies - the - /// counter of pod failures is incremented and it is checked against - /// the backoffLimit. At most 20 elements are allowed. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub rules: ::prost::alloc::vec::Vec, -} -/// PodFailurePolicyOnExitCodesRequirement describes the requirement for handling -/// a failed pod based on its container exit codes. In particular, it lookups the -/// .state.terminated.exitCode for each app container and init container status, -/// represented by the .status.containerStatuses and .status.initContainerStatuses -/// fields in the Pod status, respectively. Containers completed with success -/// (exit code 0) are excluded from the requirement check. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodFailurePolicyOnExitCodesRequirement { - /// Restricts the check for exit codes to the container with the - /// specified name. When null, the rule applies to all containers. - /// When specified, it should match one the container or initContainer - /// names in the pod template. - /// +optional - #[prost(string, optional, tag = "1")] - pub container_name: ::core::option::Option<::prost::alloc::string::String>, - /// Represents the relationship between the container exit code(s) and the - /// specified values. Containers completed with success (exit code 0) are - /// excluded from the requirement check. Possible values are: - /// - /// - In: the requirement is satisfied if at least one container exit code - /// (might be multiple if there are multiple containers not restricted - /// by the 'containerName' field) is in the set of specified values. - /// - NotIn: the requirement is satisfied if at least one container exit code - /// (might be multiple if there are multiple containers not restricted - /// by the 'containerName' field) is not in the set of specified values. - /// Additional values are considered to be added in the future. Clients should - /// react to an unknown operator by assuming the requirement is not satisfied. - #[prost(string, optional, tag = "2")] - pub operator: ::core::option::Option<::prost::alloc::string::String>, - /// Specifies the set of values. Each returned container exit code (might be - /// multiple in case of multiple containers) is checked against this set of - /// values with respect to the operator. The list of values must be ordered - /// and must not contain duplicates. Value '0' cannot be used for the In operator. - /// At least one element is required. At most 255 elements are allowed. - /// +listType=set - #[prost(int32, repeated, packed = "false", tag = "3")] - pub values: ::prost::alloc::vec::Vec, -} -/// PodFailurePolicyOnPodConditionsPattern describes a pattern for matching -/// an actual pod condition type. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodFailurePolicyOnPodConditionsPattern { - /// Specifies the required Pod condition type. To match a pod condition - /// it is required that specified type equals the pod condition type. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Specifies the required Pod condition status. To match a pod condition - /// it is required that the specified status equals the pod condition status. - /// Defaults to True. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodFailurePolicyRule describes how a pod failure is handled when the requirements are met. -/// One of onExitCodes and onPodConditions, but not both, can be used in each rule. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodFailurePolicyRule { - /// Specifies the action taken on a pod failure when the requirements are satisfied. - /// Possible values are: - /// - /// - FailJob: indicates that the pod's job is marked as Failed and all - /// running pods are terminated. - /// - FailIndex: indicates that the pod's index is marked as Failed and will - /// not be restarted. - /// - Ignore: indicates that the counter towards the .backoffLimit is not - /// incremented and a replacement pod is created. - /// - Count: indicates that the pod is handled in the default way - the - /// counter towards the .backoffLimit is incremented. - /// Additional values are considered to be added in the future. Clients should - /// react to an unknown action by skipping the rule. - #[prost(string, optional, tag = "1")] - pub action: ::core::option::Option<::prost::alloc::string::String>, - /// Represents the requirement on the container exit codes. - /// +optional - #[prost(message, optional, tag = "2")] - pub on_exit_codes: ::core::option::Option, - /// Represents the requirement on the pod conditions. The requirement is represented - /// as a list of pod condition patterns. The requirement is satisfied if at - /// least one pattern matches an actual pod condition. At most 20 elements are allowed. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub on_pod_conditions: ::prost::alloc::vec::Vec, -} -/// SuccessPolicy describes when a Job can be declared as succeeded based on the success of some indexes. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SuccessPolicy { - /// rules represents the list of alternative rules for the declaring the Jobs - /// as successful before `.status.succeeded >= .spec.completions`. Once any of the rules are met, - /// the "SuccessCriteriaMet" condition is added, and the lingering pods are removed. - /// The terminal state for such a Job has the "Complete" condition. - /// Additionally, these rules are evaluated in order; Once the Job meets one of the rules, - /// other rules are ignored. At most 20 elements are allowed. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub rules: ::prost::alloc::vec::Vec, -} -/// SuccessPolicyRule describes rule for declaring a Job as succeeded. -/// Each rule must have at least one of the "succeededIndexes" or "succeededCount" specified. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SuccessPolicyRule { - /// succeededIndexes specifies the set of indexes - /// which need to be contained in the actual set of the succeeded indexes for the Job. - /// The list of indexes must be within 0 to ".spec.completions-1" and - /// must not contain duplicates. At least one element is required. - /// The indexes are represented as intervals separated by commas. - /// The intervals can be a decimal integer or a pair of decimal integers separated by a hyphen. - /// The number are listed in represented by the first and last element of the series, - /// separated by a hyphen. - /// For example, if the completed indexes are 1, 3, 4, 5 and 7, they are - /// represented as "1,3-5,7". - /// When this field is null, this field doesn't default to any value - /// and is never evaluated at any time. - /// - /// +optional - #[prost(string, optional, tag = "1")] - pub succeeded_indexes: ::core::option::Option<::prost::alloc::string::String>, - /// succeededCount specifies the minimal required size of the actual set of the succeeded indexes - /// for the Job. When succeededCount is used along with succeededIndexes, the check is - /// constrained only to the set of indexes specified by succeededIndexes. - /// For example, given that succeededIndexes is "1-4", succeededCount is "3", - /// and completed indexes are "1", "3", and "5", the Job isn't declared as succeeded - /// because only "1" and "3" indexes are considered in that rules. - /// When this field is null, this doesn't default to any value and - /// is never evaluated at any time. - /// When specified it needs to be a positive integer. - /// - /// +optional - #[prost(int32, optional, tag = "2")] - pub succeeded_count: ::core::option::Option, -} -/// UncountedTerminatedPods holds UIDs of Pods that have terminated but haven't -/// been accounted in Job status counters. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct UncountedTerminatedPods { - /// succeeded holds UIDs of succeeded Pods. - /// +listType=set - /// +optional - #[prost(string, repeated, tag = "1")] - pub succeeded: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// failed holds UIDs of failed Pods. - /// +listType=set - /// +optional - #[prost(string, repeated, tag = "2")] - pub failed: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} - -impl crate::Resource for CronJob { - const API_VERSION: &'static str = "batch/v1"; - const GROUP: &'static str = "batch"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "CronJob"; - const URL_PATH_SEGMENT: &'static str = "cronjobs"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for CronJob { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for CronJob { - type Spec = crate::api::batch::v1::CronJobSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for CronJob { - type Status = crate::api::batch::v1::CronJobStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for Job { - const API_VERSION: &'static str = "batch/v1"; - const GROUP: &'static str = "batch"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Job"; - const URL_PATH_SEGMENT: &'static str = "jobs"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Job { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Job { - type Spec = crate::api::batch::v1::JobSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Job { - type Status = crate::api::batch::v1::JobStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for Job { - type Condition = crate::api::batch::v1::JobCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/batch/v1beta1/mod.rs b/k8s-pb/src/api/batch/v1beta1/mod.rs deleted file mode 100644 index ce62cba..0000000 --- a/k8s-pb/src/api/batch/v1beta1/mod.rs +++ /dev/null @@ -1,118 +0,0 @@ -// This file is @generated by prost-build. -/// CronJob represents the configuration of a single cron job. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJob { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of a cron job, including the schedule. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Current status of a cron job. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// CronJobList is a collection of cron jobs. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJobList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of CronJobs. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// CronJobSpec describes how the job execution will look like and when it will actually run. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJobSpec { - /// The schedule in Cron format, see - #[prost(string, optional, tag = "1")] - pub schedule: ::core::option::Option<::prost::alloc::string::String>, - /// The time zone name for the given schedule, see - /// If not specified, this will default to the time zone of the kube-controller-manager process. - /// The set of valid time zone names and the time zone offset is loaded from the system-wide time zone - /// database by the API server during CronJob validation and the controller manager during execution. - /// If no system-wide time zone database can be found a bundled version of the database is used instead. - /// If the time zone name becomes invalid during the lifetime of a CronJob or due to a change in host - /// configuration, the controller will stop creating new new Jobs and will create a system event with the - /// reason UnknownTimeZone. - /// More information can be found in - /// +optional - #[prost(string, optional, tag = "8")] - pub time_zone: ::core::option::Option<::prost::alloc::string::String>, - /// Optional deadline in seconds for starting the job if it misses scheduled - /// time for any reason. Missed jobs executions will be counted as failed ones. - /// +optional - #[prost(int64, optional, tag = "2")] - pub starting_deadline_seconds: ::core::option::Option, - /// Specifies how to treat concurrent executions of a Job. - /// Valid values are: - /// - /// - "Allow" (default): allows CronJobs to run concurrently; - /// - "Forbid": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - /// - "Replace": cancels currently running job and replaces it with a new one - /// +optional - #[prost(string, optional, tag = "3")] - pub concurrency_policy: ::core::option::Option<::prost::alloc::string::String>, - /// This flag tells the controller to suspend subsequent executions, it does - /// not apply to already started executions. Defaults to false. - /// +optional - #[prost(bool, optional, tag = "4")] - pub suspend: ::core::option::Option, - /// Specifies the job that will be created when executing a CronJob. - #[prost(message, optional, tag = "5")] - pub job_template: ::core::option::Option, - /// The number of successful finished jobs to retain. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 3. - /// +optional - #[prost(int32, optional, tag = "6")] - pub successful_jobs_history_limit: ::core::option::Option, - /// The number of failed finished jobs to retain. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 1. - /// +optional - #[prost(int32, optional, tag = "7")] - pub failed_jobs_history_limit: ::core::option::Option, -} -/// CronJobStatus represents the current state of a cron job. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CronJobStatus { - /// A list of pointers to currently running jobs. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub active: ::prost::alloc::vec::Vec, - /// Information when was the last time the job was successfully scheduled. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_schedule_time: - ::core::option::Option, - /// Information when was the last time the job successfully completed. - /// +optional - #[prost(message, optional, tag = "5")] - pub last_successful_time: - ::core::option::Option, -} -/// JobTemplateSpec describes the data a Job should have when created from a template -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct JobTemplateSpec { - /// Standard object's metadata of the jobs created from this template. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the job. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} diff --git a/k8s-pb/src/api/certificates/mod.rs b/k8s-pb/src/api/certificates/mod.rs deleted file mode 100644 index 5a1e260..0000000 --- a/k8s-pb/src/api/certificates/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1alpha1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/certificates/v1/mod.rs b/k8s-pb/src/api/certificates/v1/mod.rs deleted file mode 100644 index 6405b98..0000000 --- a/k8s-pb/src/api/certificates/v1/mod.rs +++ /dev/null @@ -1,278 +0,0 @@ -// This file is @generated by prost-build. -/// CertificateSigningRequest objects provide a mechanism to obtain x509 certificates -/// by submitting a certificate signing request, and having it asynchronously approved and issued. -/// -/// Kubelets use this API to obtain: -/// 1. client certificates to authenticate to kube-apiserver (with the "kubernetes.io/kube-apiserver-client-kubelet" signerName). -/// 2. serving certificates for TLS endpoints kube-apiserver can connect to securely (with the "kubernetes.io/kubelet-serving" signerName). -/// -/// This API can be used to request client certificates to authenticate to kube-apiserver -/// (with the "kubernetes.io/kube-apiserver-client" signerName), -/// or to obtain certificates from custom non-Kubernetes signers. -/// +k8s:supportsSubresource=/status -/// +k8s:supportsSubresource=/approval -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequest { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the certificate request, and is immutable after creation. - /// Only the request, signerName, expirationSeconds, and usages fields can be set on creation. - /// Other fields are derived by Kubernetes and cannot be modified by users. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status contains information about whether the request is approved or denied, - /// and the certificate issued by the signer, or the failure condition indicating signer failure. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// CertificateSigningRequestCondition describes a condition of a CertificateSigningRequest object -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CertificateSigningRequestCondition { - /// type of the condition. Known conditions are "Approved", "Denied", and "Failed". - /// - /// An "Approved" condition is added via the /approval subresource, - /// indicating the request was approved and should be issued by the signer. - /// - /// A "Denied" condition is added via the /approval subresource, - /// indicating the request was denied and should not be issued by the signer. - /// - /// A "Failed" condition is added via the /status subresource, - /// indicating the signer failed to issue the certificate. - /// - /// Approved and Denied conditions are mutually exclusive. - /// Approved, Denied, and Failed conditions cannot be removed once added. - /// - /// Only one condition of a given type is allowed. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// status of the condition, one of True, False, Unknown. - /// Approved, Denied, and Failed conditions may not be "False" or "Unknown". - #[prost(string, optional, tag = "6")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// reason indicates a brief reason for the request state - /// +optional - #[prost(string, optional, tag = "2")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// message contains a human readable message with details about the request state - /// +optional - #[prost(string, optional, tag = "3")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// lastUpdateTime is the time of the last update to this condition - /// +optional - #[prost(message, optional, tag = "4")] - pub last_update_time: - ::core::option::Option, - /// lastTransitionTime is the time the condition last transitioned from one status to another. - /// If unset, when a new condition type is added or an existing condition's status is changed, - /// the server defaults this to the current time. - /// +optional - #[prost(message, optional, tag = "5")] - pub last_transition_time: - ::core::option::Option, -} -/// CertificateSigningRequestList is a collection of CertificateSigningRequest objects -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequestList { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a collection of CertificateSigningRequest objects - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// CertificateSigningRequestSpec contains the certificate request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequestSpec { - /// request contains an x509 certificate signing request encoded in a "CERTIFICATE REQUEST" PEM block. - /// When serialized as JSON or YAML, the data is additionally base64-encoded. - /// +listType=atomic - #[prost(bytes = "vec", optional, tag = "1")] - pub request: ::core::option::Option<::prost::alloc::vec::Vec>, - /// signerName indicates the requested signer, and is a qualified name. - /// - /// List/watch requests for CertificateSigningRequests can filter on this field using a "spec.signerName=NAME" fieldSelector. - /// - /// Well-known Kubernetes signers are: - /// 1. "kubernetes.io/kube-apiserver-client": issues client certificates that can be used to authenticate to kube-apiserver. - /// Requests for this signer are never auto-approved by kube-controller-manager, can be issued by the "csrsigning" controller in kube-controller-manager. - /// 2. "kubernetes.io/kube-apiserver-client-kubelet": issues client certificates that kubelets use to authenticate to kube-apiserver. - /// Requests for this signer can be auto-approved by the "csrapproving" controller in kube-controller-manager, and can be issued by the "csrsigning" controller in kube-controller-manager. - /// 3. "kubernetes.io/kubelet-serving" issues serving certificates that kubelets use to serve TLS endpoints, which kube-apiserver can connect to securely. - /// Requests for this signer are never auto-approved by kube-controller-manager, and can be issued by the "csrsigning" controller in kube-controller-manager. - /// - /// More details are available at - /// - /// Custom signerNames can also be specified. The signer defines: - /// 1. Trust distribution: how trust (CA bundles) are distributed. - /// 2. Permitted subjects: and behavior when a disallowed subject is requested. - /// 3. Required, permitted, or forbidden x509 extensions in the request (including whether subjectAltNames are allowed, which types, restrictions on allowed values) and behavior when a disallowed extension is requested. - /// 4. Required, permitted, or forbidden key usages / extended key usages. - /// 5. Expiration/certificate lifetime: whether it is fixed by the signer, configurable by the admin. - /// 6. Whether or not requests for CA certificates are allowed. - #[prost(string, optional, tag = "7")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// expirationSeconds is the requested duration of validity of the issued - /// certificate. The certificate signer may issue a certificate with a different - /// validity duration so a client must check the delta between the notBefore and - /// and notAfter fields in the issued certificate to determine the actual duration. - /// - /// The v1.22+ in-tree implementations of the well-known Kubernetes signers will - /// honor this field as long as the requested duration is not greater than the - /// maximum duration they will honor per the --cluster-signing-duration CLI - /// flag to the Kubernetes controller manager. - /// - /// Certificate signers may not honor this field for various reasons: - /// - /// 1. Old signer that is unaware of the field (such as the in-tree - /// implementations prior to v1.22) - /// 2. Signer whose configured maximum is shorter than the requested duration - /// 3. Signer whose configured minimum is longer than the requested duration - /// - /// The minimum valid value for expirationSeconds is 600, i.e. 10 minutes. - /// - /// +optional - #[prost(int32, optional, tag = "8")] - pub expiration_seconds: ::core::option::Option, - /// usages specifies a set of key usages requested in the issued certificate. - /// - /// Requests for TLS client certificates typically request: "digital signature", "key encipherment", "client auth". - /// - /// Requests for TLS serving certificates typically request: "key encipherment", "digital signature", "server auth". - /// - /// Valid values are: - /// "signing", "digital signature", "content commitment", - /// "key encipherment", "key agreement", "data encipherment", - /// "cert sign", "crl sign", "encipher only", "decipher only", "any", - /// "server auth", "client auth", - /// "code signing", "email protection", "s/mime", - /// "ipsec end system", "ipsec tunnel", "ipsec user", - /// "timestamping", "ocsp signing", "microsoft sgc", "netscape sgc" - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub usages: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// username contains the name of the user that created the CertificateSigningRequest. - /// Populated by the API server on creation and immutable. - /// +optional - #[prost(string, optional, tag = "2")] - pub username: ::core::option::Option<::prost::alloc::string::String>, - /// uid contains the uid of the user that created the CertificateSigningRequest. - /// Populated by the API server on creation and immutable. - /// +optional - #[prost(string, optional, tag = "3")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// groups contains group membership of the user that created the CertificateSigningRequest. - /// Populated by the API server on creation and immutable. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "4")] - pub groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// extra contains extra attributes of the user that created the CertificateSigningRequest. - /// Populated by the API server on creation and immutable. - /// +optional - #[prost(btree_map = "string, message", tag = "6")] - pub extra: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ExtraValue>, -} -/// CertificateSigningRequestStatus contains conditions used to indicate -/// approved/denied/failed status of the request, and the issued certificate. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequestStatus { - /// conditions applied to the request. Known conditions are "Approved", "Denied", and "Failed". - /// +listType=map - /// +listMapKey=type - /// +optional - /// +k8s:listType=map - /// +k8s:listMapKey=type - /// +k8s:optional - /// +k8s:item(type: "Approved")=+k8s:zeroOrOneOfMember - /// +k8s:item(type: "Denied")=+k8s:zeroOrOneOfMember - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, - /// certificate is populated with an issued certificate by the signer after an Approved condition is present. - /// This field is set via the /status subresource. Once populated, this field is immutable. - /// - /// If the certificate signing request is denied, a condition of type "Denied" is added and this field remains empty. - /// If the signer cannot issue the certificate, a condition of type "Failed" is added and this field remains empty. - /// - /// Validation requirements: - /// 1. certificate must contain one or more PEM blocks. - /// 2. All PEM blocks must have the "CERTIFICATE" label, contain no headers, and the encoded data - /// must be a BER-encoded ASN.1 Certificate structure as described in section 4 of RFC5280. - /// 3. Non-PEM content may appear before or after the "CERTIFICATE" PEM blocks and is unvalidated, - /// to allow for explanatory text as described in section 5.2 of RFC7468. - /// - /// If more than one PEM block is present, and the definition of the requested spec.signerName - /// does not indicate otherwise, the first block is the issued certificate, - /// and subsequent blocks should be treated as intermediate certificates and presented in TLS handshakes. - /// - /// The certificate is encoded in PEM format. - /// - /// When serialized as JSON or YAML, the data is additionally base64-encoded, so it consists of: - /// - /// base64( - /// -----BEGIN CERTIFICATE----- - /// ... - /// -----END CERTIFICATE----- - /// ) - /// - /// +listType=atomic - /// +optional - #[prost(bytes = "vec", optional, tag = "2")] - pub certificate: ::core::option::Option<::prost::alloc::vec::Vec>, -} -/// ExtraValue masks the value so protobuf can generate -/// +protobuf.nullable=true -/// +protobuf.options.(gogoproto.goproto_stringer)=false -/// -/// items, if empty, will result in an empty slice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExtraValue { - #[prost(string, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} - -impl crate::Resource for CertificateSigningRequest { - const API_VERSION: &'static str = "certificates.k8s.io/v1"; - const GROUP: &'static str = "certificates.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "CertificateSigningRequest"; - const URL_PATH_SEGMENT: &'static str = "certificatesigningrequests"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for CertificateSigningRequest { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for CertificateSigningRequest { - type Spec = crate::api::certificates::v1::CertificateSigningRequestSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for CertificateSigningRequest { - type Status = crate::api::certificates::v1::CertificateSigningRequestStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for CertificateSigningRequest { - type Condition = crate::api::certificates::v1::CertificateSigningRequestCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/certificates/v1alpha1/mod.rs b/k8s-pb/src/api/certificates/v1alpha1/mod.rs deleted file mode 100644 index 097b7d6..0000000 --- a/k8s-pb/src/api/certificates/v1alpha1/mod.rs +++ /dev/null @@ -1,360 +0,0 @@ -// This file is @generated by prost-build. -/// ClusterTrustBundle is a cluster-scoped container for X.509 trust anchors -/// (root certificates). -/// -/// ClusterTrustBundle objects are considered to be readable by any authenticated -/// user in the cluster, because they can be mounted by pods using the -/// `clusterTrustBundle` projection. All service accounts have read access to -/// ClusterTrustBundles by default. Users who only have namespace-level access -/// to a cluster can read ClusterTrustBundles by impersonating a serviceaccount -/// that they have access to. -/// -/// It can be optionally associated with a particular assigner, in which case it -/// contains one valid set of trust anchors for that signer. Signers may have -/// multiple associated ClusterTrustBundles; each is an independent set of trust -/// anchors for that signer. Admission control is used to enforce that only users -/// with permissions on the signer can create or modify the corresponding bundle. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterTrustBundle { - /// metadata contains the object metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the signer (if any) and trust anchors. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// ClusterTrustBundleList is a collection of ClusterTrustBundle objects -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterTrustBundleList { - /// metadata contains the list metadata. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a collection of ClusterTrustBundle objects - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ClusterTrustBundleSpec contains the signer and trust anchors. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ClusterTrustBundleSpec { - /// signerName indicates the associated signer, if any. - /// - /// In order to create or update a ClusterTrustBundle that sets signerName, - /// you must have the following cluster-scoped permission: - /// group=certificates.k8s.io resource=signers resourceName= - /// verb=attest. - /// - /// If signerName is not empty, then the ClusterTrustBundle object must be - /// named with the signer name as a prefix (translating slashes to colons). - /// For example, for the signer name `example.com/foo`, valid - /// ClusterTrustBundle object names include `example.com:foo:abc` and - /// `example.com:foo:v1`. - /// - /// If signerName is empty, then the ClusterTrustBundle object's name must - /// not have such a prefix. - /// - /// List/watch requests for ClusterTrustBundles can filter on this field - /// using a `spec.signerName=NAME` field selector. - /// - /// +optional - #[prost(string, optional, tag = "1")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// trustBundle contains the individual X.509 trust anchors for this - /// bundle, as PEM bundle of PEM-wrapped, DER-formatted X.509 certificates. - /// - /// The data must consist only of PEM certificate blocks that parse as valid - /// X.509 certificates. Each certificate must include a basic constraints - /// extension with the CA bit set. The API server will reject objects that - /// contain duplicate certificates, or that use PEM block headers. - /// - /// Users of ClusterTrustBundles, including Kubelet, are free to reorder and - /// deduplicate certificate blocks in this file according to their own logic, - /// as well as to drop PEM block headers and inter-block data. - #[prost(string, optional, tag = "2")] - pub trust_bundle: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodCertificateRequest encodes a pod requesting a certificate from a given -/// signer. -/// -/// Kubelets use this API to implement podCertificate projected volumes -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodCertificateRequest { - /// metadata contains the object metadata. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the details about the certificate being requested. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status contains the issued certificate, and a standard set of conditions. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PodCertificateRequestList is a collection of PodCertificateRequest objects -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodCertificateRequestList { - /// metadata contains the list metadata. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a collection of PodCertificateRequest objects - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PodCertificateRequestSpec describes the certificate request. All fields are -/// immutable after creation. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodCertificateRequestSpec { - /// signerName indicates the requested signer. - /// - /// All signer names beginning with `kubernetes.io` are reserved for use by - /// the Kubernetes project. There is currently one well-known signer - /// documented by the Kubernetes project, - /// `kubernetes.io/kube-apiserver-client-pod`, which will issue client - /// certificates understood by kube-apiserver. It is currently - /// unimplemented. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// podName is the name of the pod into which the certificate will be mounted. - /// - /// +required - #[prost(string, optional, tag = "2")] - pub pod_name: ::core::option::Option<::prost::alloc::string::String>, - /// podUID is the UID of the pod into which the certificate will be mounted. - /// - /// +required - #[prost(string, optional, tag = "3")] - pub pod_uid: ::core::option::Option<::prost::alloc::string::String>, - /// serviceAccountName is the name of the service account the pod is running as. - /// - /// +required - #[prost(string, optional, tag = "4")] - pub service_account_name: ::core::option::Option<::prost::alloc::string::String>, - /// serviceAccountUID is the UID of the service account the pod is running as. - /// - /// +required - #[prost(string, optional, tag = "5")] - pub service_account_uid: ::core::option::Option<::prost::alloc::string::String>, - /// nodeName is the name of the node the pod is assigned to. - /// - /// +required - #[prost(string, optional, tag = "6")] - pub node_name: ::core::option::Option<::prost::alloc::string::String>, - /// nodeUID is the UID of the node the pod is assigned to. - /// - /// +required - #[prost(string, optional, tag = "7")] - pub node_uid: ::core::option::Option<::prost::alloc::string::String>, - /// maxExpirationSeconds is the maximum lifetime permitted for the - /// certificate. - /// - /// If omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver - /// will reject values shorter than 3600 (1 hour). The maximum allowable - /// value is 7862400 (91 days). - /// - /// The signer implementation is then free to issue a certificate with any - /// lifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600 - /// seconds (1 hour). This constraint is enforced by kube-apiserver. - /// `kubernetes.io` signers will never issue certificates with a lifetime - /// longer than 24 hours. - /// - /// +optional - /// +default=86400 - #[prost(int32, optional, tag = "8")] - pub max_expiration_seconds: ::core::option::Option, - /// pkixPublicKey is the PKIX-serialized public key the signer will issue the - /// certificate to. - /// - /// The key must be one of RSA3072, RSA4096, ECDSAP256, ECDSAP384, ECDSAP521, - /// or ED25519. Note that this list may be expanded in the future. - /// - /// Signer implementations do not need to support all key types supported by - /// kube-apiserver and kubelet. If a signer does not support the key type - /// used for a given PodCertificateRequest, it must deny the request by - /// setting a status.conditions entry with a type of "Denied" and a reason of - /// "UnsupportedKeyType". It may also suggest a key type that it does support - /// in the message field. - /// - /// +required - #[prost(bytes = "vec", optional, tag = "9")] - pub pkix_public_key: ::core::option::Option<::prost::alloc::vec::Vec>, - /// proofOfPossession proves that the requesting kubelet holds the private - /// key corresponding to pkixPublicKey. - /// - /// It is contructed by signing the ASCII bytes of the pod's UID using - /// `pkixPublicKey`. - /// - /// kube-apiserver validates the proof of possession during creation of the - /// PodCertificateRequest. - /// - /// If the key is an RSA key, then the signature is over the ASCII bytes of - /// the pod UID, using RSASSA-PSS from RFC 8017 (as implemented by the golang - /// function crypto/rsa.SignPSS with nil options). - /// - /// If the key is an ECDSA key, then the signature is as described by [SEC 1, - /// Version 2.0]() (as implemented by the - /// golang library function crypto/ecdsa.SignASN1) - /// - /// If the key is an ED25519 key, the the signature is as described by the - /// [ED25519 Specification]() (as implemented by - /// the golang library crypto/ed25519.Sign). - /// - /// +required - #[prost(bytes = "vec", optional, tag = "10")] - pub proof_of_possession: ::core::option::Option<::prost::alloc::vec::Vec>, -} -/// PodCertificateRequestStatus describes the status of the request, and holds -/// the certificate data if the request is issued. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodCertificateRequestStatus { - /// conditions applied to the request. - /// - /// The types "Issued", "Denied", and "Failed" have special handling. At - /// most one of these conditions may be present, and they must have status - /// "True". - /// - /// If the request is denied with `Reason=UnsupportedKeyType`, the signer may - /// suggest a key type that will work in the message field. - /// - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: - ::prost::alloc::vec::Vec, - /// certificateChain is populated with an issued certificate by the signer. - /// This field is set via the /status subresource. Once populated, this field - /// is immutable. - /// - /// If the certificate signing request is denied, a condition of type - /// "Denied" is added and this field remains empty. If the signer cannot - /// issue the certificate, a condition of type "Failed" is added and this - /// field remains empty. - /// - /// Validation requirements: - /// 1. certificateChain must consist of one or more PEM-formatted certificates. - /// 2. Each entry must be a valid PEM-wrapped, DER-encoded ASN.1 Certificate as - /// described in section 4 of RFC5280. - /// - /// If more than one block is present, and the definition of the requested - /// spec.signerName does not indicate otherwise, the first block is the - /// issued certificate, and subsequent blocks should be treated as - /// intermediate certificates and presented in TLS handshakes. When - /// projecting the chain into a pod volume, kubelet will drop any data - /// in-between the PEM blocks, as well as any PEM block headers. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub certificate_chain: ::core::option::Option<::prost::alloc::string::String>, - /// notBefore is the time at which the certificate becomes valid. The value - /// must be the same as the notBefore value in the leaf certificate in - /// certificateChain. This field is set via the /status subresource. Once - /// populated, it is immutable. The signer must set this field at the same - /// time it sets certificateChain. - /// - /// +optional - #[prost(message, optional, tag = "4")] - pub not_before: ::core::option::Option, - /// beginRefreshAt is the time at which the kubelet should begin trying to - /// refresh the certificate. This field is set via the /status subresource, - /// and must be set at the same time as certificateChain. Once populated, - /// this field is immutable. - /// - /// This field is only a hint. Kubelet may start refreshing before or after - /// this time if necessary. - /// - /// +optional - #[prost(message, optional, tag = "5")] - pub begin_refresh_at: - ::core::option::Option, - /// notAfter is the time at which the certificate expires. The value must be - /// the same as the notAfter value in the leaf certificate in - /// certificateChain. This field is set via the /status subresource. Once - /// populated, it is immutable. The signer must set this field at the same - /// time it sets certificateChain. - /// - /// +optional - #[prost(message, optional, tag = "6")] - pub not_after: ::core::option::Option, -} - -impl crate::Resource for ClusterTrustBundle { - const API_VERSION: &'static str = "certificates.k8s.io/v1alpha1"; - const GROUP: &'static str = "certificates.k8s.io"; - const VERSION: &'static str = "v1alpha1"; - const KIND: &'static str = "ClusterTrustBundle"; - const URL_PATH_SEGMENT: &'static str = "clustertrustbundles"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ClusterTrustBundle { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ClusterTrustBundle { - type Spec = crate::api::certificates::v1alpha1::ClusterTrustBundleSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for PodCertificateRequest { - const API_VERSION: &'static str = "certificates.k8s.io/v1alpha1"; - const GROUP: &'static str = "certificates.k8s.io"; - const VERSION: &'static str = "v1alpha1"; - const KIND: &'static str = "PodCertificateRequest"; - const URL_PATH_SEGMENT: &'static str = "podcertificaterequests"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for PodCertificateRequest { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for PodCertificateRequest { - type Spec = crate::api::certificates::v1alpha1::PodCertificateRequestSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for PodCertificateRequest { - type Status = crate::api::certificates::v1alpha1::PodCertificateRequestStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for PodCertificateRequest { - type Condition = crate::apimachinery::pkg::apis::meta::v1::Condition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/certificates/v1beta1/mod.rs b/k8s-pb/src/api/certificates/v1beta1/mod.rs deleted file mode 100644 index a0ce85d..0000000 --- a/k8s-pb/src/api/certificates/v1beta1/mod.rs +++ /dev/null @@ -1,289 +0,0 @@ -// This file is @generated by prost-build. -/// Describes a certificate signing request -/// +k8s:supportsSubresource=/status -/// +k8s:supportsSubresource=/approval -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequest { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the certificate request, and is immutable after creation. - /// Only the request, signerName, expirationSeconds, and usages fields can be set on creation. - /// Other fields are derived by Kubernetes and cannot be modified by users. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Derived information about the request. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CertificateSigningRequestCondition { - /// type of the condition. Known conditions include "Approved", "Denied", and "Failed". - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - /// Approved, Denied, and Failed conditions may not be "False" or "Unknown". - /// Defaults to "True". - /// If unset, should be treated as "True". - /// +optional - #[prost(string, optional, tag = "6")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// brief reason for the request state - /// +optional - #[prost(string, optional, tag = "2")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// human readable message with details about the request state - /// +optional - #[prost(string, optional, tag = "3")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// timestamp for the last update to this condition - /// +optional - #[prost(message, optional, tag = "4")] - pub last_update_time: - ::core::option::Option, - /// lastTransitionTime is the time the condition last transitioned from one status to another. - /// If unset, when a new condition type is added or an existing condition's status is changed, - /// the server defaults this to the current time. - /// +optional - #[prost(message, optional, tag = "5")] - pub last_transition_time: - ::core::option::Option, -} -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequestList { - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// CertificateSigningRequestSpec contains the certificate request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequestSpec { - /// Base64-encoded PKCS#10 CSR data - /// +listType=atomic - #[prost(bytes = "vec", optional, tag = "1")] - pub request: ::core::option::Option<::prost::alloc::vec::Vec>, - /// Requested signer for the request. It is a qualified name in the form: - /// `scope-hostname.io/name`. - /// If empty, it will be defaulted: - /// 1. If it's a kubelet client certificate, it is assigned - /// "kubernetes.io/kube-apiserver-client-kubelet". - /// 2. If it's a kubelet serving certificate, it is assigned - /// "kubernetes.io/kubelet-serving". - /// 3. Otherwise, it is assigned "kubernetes.io/legacy-unknown". - /// Distribution of trust for signers happens out of band. - /// You can select on this field using `spec.signerName`. - /// +optional - #[prost(string, optional, tag = "7")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// expirationSeconds is the requested duration of validity of the issued - /// certificate. The certificate signer may issue a certificate with a different - /// validity duration so a client must check the delta between the notBefore and - /// and notAfter fields in the issued certificate to determine the actual duration. - /// - /// The v1.22+ in-tree implementations of the well-known Kubernetes signers will - /// honor this field as long as the requested duration is not greater than the - /// maximum duration they will honor per the --cluster-signing-duration CLI - /// flag to the Kubernetes controller manager. - /// - /// Certificate signers may not honor this field for various reasons: - /// - /// 1. Old signer that is unaware of the field (such as the in-tree - /// implementations prior to v1.22) - /// 2. Signer whose configured maximum is shorter than the requested duration - /// 3. Signer whose configured minimum is longer than the requested duration - /// - /// The minimum valid value for expirationSeconds is 600, i.e. 10 minutes. - /// - /// +optional - #[prost(int32, optional, tag = "8")] - pub expiration_seconds: ::core::option::Option, - /// allowedUsages specifies a set of usage contexts the key will be - /// valid for. - /// See: - /// - /// - /// - /// Valid values are: - /// "signing", - /// "digital signature", - /// "content commitment", - /// "key encipherment", - /// "key agreement", - /// "data encipherment", - /// "cert sign", - /// "crl sign", - /// "encipher only", - /// "decipher only", - /// "any", - /// "server auth", - /// "client auth", - /// "code signing", - /// "email protection", - /// "s/mime", - /// "ipsec end system", - /// "ipsec tunnel", - /// "ipsec user", - /// "timestamping", - /// "ocsp signing", - /// "microsoft sgc", - /// "netscape sgc" - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub usages: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Information about the requesting user. - /// See user.Info interface for details. - /// +optional - #[prost(string, optional, tag = "2")] - pub username: ::core::option::Option<::prost::alloc::string::String>, - /// UID information about the requesting user. - /// See user.Info interface for details. - /// +optional - #[prost(string, optional, tag = "3")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// Group information about the requesting user. - /// See user.Info interface for details. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "4")] - pub groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Extra information about the requesting user. - /// See user.Info interface for details. - /// +optional - #[prost(btree_map = "string, message", tag = "6")] - pub extra: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ExtraValue>, -} -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CertificateSigningRequestStatus { - /// Conditions applied to the request, such as approval or denial. - /// +listType=map - /// +listMapKey=type - /// +optional - /// +k8s:listType=map - /// +k8s:listMapKey=type - /// +k8s:optional - /// +k8s:item(type: "Approved")=+k8s:zeroOrOneOfMember - /// +k8s:item(type: "Denied")=+k8s:zeroOrOneOfMember - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, - /// If request was approved, the controller will place the issued certificate here. - /// +listType=atomic - /// +optional - #[prost(bytes = "vec", optional, tag = "2")] - pub certificate: ::core::option::Option<::prost::alloc::vec::Vec>, -} -/// ClusterTrustBundle is a cluster-scoped container for X.509 trust anchors -/// (root certificates). -/// -/// ClusterTrustBundle objects are considered to be readable by any authenticated -/// user in the cluster, because they can be mounted by pods using the -/// `clusterTrustBundle` projection. All service accounts have read access to -/// ClusterTrustBundles by default. Users who only have namespace-level access -/// to a cluster can read ClusterTrustBundles by impersonating a serviceaccount -/// that they have access to. -/// -/// It can be optionally associated with a particular assigner, in which case it -/// contains one valid set of trust anchors for that signer. Signers may have -/// multiple associated ClusterTrustBundles; each is an independent set of trust -/// anchors for that signer. Admission control is used to enforce that only users -/// with permissions on the signer can create or modify the corresponding bundle. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterTrustBundle { - /// metadata contains the object metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the signer (if any) and trust anchors. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// ClusterTrustBundleList is a collection of ClusterTrustBundle objects -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterTrustBundleList { - /// metadata contains the list metadata. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a collection of ClusterTrustBundle objects - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ClusterTrustBundleSpec contains the signer and trust anchors. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ClusterTrustBundleSpec { - /// signerName indicates the associated signer, if any. - /// - /// In order to create or update a ClusterTrustBundle that sets signerName, - /// you must have the following cluster-scoped permission: - /// group=certificates.k8s.io resource=signers resourceName= - /// verb=attest. - /// - /// If signerName is not empty, then the ClusterTrustBundle object must be - /// named with the signer name as a prefix (translating slashes to colons). - /// For example, for the signer name `example.com/foo`, valid - /// ClusterTrustBundle object names include `example.com:foo:abc` and - /// `example.com:foo:v1`. - /// - /// If signerName is empty, then the ClusterTrustBundle object's name must - /// not have such a prefix. - /// - /// List/watch requests for ClusterTrustBundles can filter on this field - /// using a `spec.signerName=NAME` field selector. - /// - /// +optional - #[prost(string, optional, tag = "1")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// trustBundle contains the individual X.509 trust anchors for this - /// bundle, as PEM bundle of PEM-wrapped, DER-formatted X.509 certificates. - /// - /// The data must consist only of PEM certificate blocks that parse as valid - /// X.509 certificates. Each certificate must include a basic constraints - /// extension with the CA bit set. The API server will reject objects that - /// contain duplicate certificates, or that use PEM block headers. - /// - /// Users of ClusterTrustBundles, including Kubelet, are free to reorder and - /// deduplicate certificate blocks in this file according to their own logic, - /// as well as to drop PEM block headers and inter-block data. - #[prost(string, optional, tag = "2")] - pub trust_bundle: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExtraValue masks the value so protobuf can generate -/// +protobuf.nullable=true -/// +protobuf.options.(gogoproto.goproto_stringer)=false -/// -/// items, if empty, will result in an empty slice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExtraValue { - #[prost(string, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} - -impl crate::Resource for ClusterTrustBundle { - const API_VERSION: &'static str = "certificates.k8s.io/v1beta1"; - const GROUP: &'static str = "certificates.k8s.io"; - const VERSION: &'static str = "v1beta1"; - const KIND: &'static str = "ClusterTrustBundle"; - const URL_PATH_SEGMENT: &'static str = "clustertrustbundles"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ClusterTrustBundle { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ClusterTrustBundle { - type Spec = crate::api::certificates::v1beta1::ClusterTrustBundleSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} diff --git a/k8s-pb/src/api/coordination/mod.rs b/k8s-pb/src/api/coordination/mod.rs deleted file mode 100644 index be08129..0000000 --- a/k8s-pb/src/api/coordination/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1alpha2; -pub mod v1beta1; diff --git a/k8s-pb/src/api/coordination/v1/mod.rs b/k8s-pb/src/api/coordination/v1/mod.rs deleted file mode 100644 index 5a5f2fe..0000000 --- a/k8s-pb/src/api/coordination/v1/mod.rs +++ /dev/null @@ -1,98 +0,0 @@ -// This file is @generated by prost-build. -/// Lease defines a lease concept. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Lease { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the specification of the Lease. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// LeaseList is a list of Lease objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LeaseList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// LeaseSpec is a specification of a Lease. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LeaseSpec { - /// holderIdentity contains the identity of the holder of a current lease. - /// If Coordinated Leader Election is used, the holder identity must be - /// equal to the elected LeaseCandidate.metadata.name field. - /// +optional - #[prost(string, optional, tag = "1")] - pub holder_identity: ::core::option::Option<::prost::alloc::string::String>, - /// leaseDurationSeconds is a duration that candidates for a lease need - /// to wait to force acquire it. This is measured against the time of last - /// observed renewTime. - /// +optional - #[prost(int32, optional, tag = "2")] - pub lease_duration_seconds: ::core::option::Option, - /// acquireTime is a time when the current lease was acquired. - /// +optional - #[prost(message, optional, tag = "3")] - pub acquire_time: - ::core::option::Option, - /// renewTime is a time when the current holder of a lease has last - /// updated the lease. - /// +optional - #[prost(message, optional, tag = "4")] - pub renew_time: ::core::option::Option, - /// leaseTransitions is the number of transitions of a lease between - /// holders. - /// +optional - #[prost(int32, optional, tag = "5")] - pub lease_transitions: ::core::option::Option, - /// Strategy indicates the strategy for picking the leader for coordinated leader election. - /// If the field is not specified, there is no active coordination for this lease. - /// (Alpha) Using this field requires the CoordinatedLeaderElection feature gate to be enabled. - /// +featureGate=CoordinatedLeaderElection - /// +optional - #[prost(string, optional, tag = "6")] - pub strategy: ::core::option::Option<::prost::alloc::string::String>, - /// PreferredHolder signals to a lease holder that the lease has a - /// more optimal holder and should be given up. - /// This field can only be set if Strategy is also set. - /// +featureGate=CoordinatedLeaderElection - /// +optional - #[prost(string, optional, tag = "7")] - pub preferred_holder: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for Lease { - const API_VERSION: &'static str = "coordination.k8s.io/v1"; - const GROUP: &'static str = "coordination.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Lease"; - const URL_PATH_SEGMENT: &'static str = "leases"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Lease { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Lease { - type Spec = crate::api::coordination::v1::LeaseSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} diff --git a/k8s-pb/src/api/coordination/v1alpha2/mod.rs b/k8s-pb/src/api/coordination/v1alpha2/mod.rs deleted file mode 100644 index eb488fc..0000000 --- a/k8s-pb/src/api/coordination/v1alpha2/mod.rs +++ /dev/null @@ -1,98 +0,0 @@ -// This file is @generated by prost-build. -/// LeaseCandidate defines a candidate for a Lease object. -/// Candidates are created such that coordinated leader election will pick the best leader from the list of candidates. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LeaseCandidate { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the specification of the Lease. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// LeaseCandidateList is a list of Lease objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LeaseCandidateList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// LeaseCandidateSpec is a specification of a Lease. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LeaseCandidateSpec { - /// LeaseName is the name of the lease for which this candidate is contending. - /// This field is immutable. - /// +required - #[prost(string, optional, tag = "1")] - pub lease_name: ::core::option::Option<::prost::alloc::string::String>, - /// PingTime is the last time that the server has requested the LeaseCandidate - /// to renew. It is only done during leader election to check if any - /// LeaseCandidates have become ineligible. When PingTime is updated, the - /// LeaseCandidate will respond by updating RenewTime. - /// +optional - #[prost(message, optional, tag = "2")] - pub ping_time: ::core::option::Option, - /// RenewTime is the time that the LeaseCandidate was last updated. - /// Any time a Lease needs to do leader election, the PingTime field - /// is updated to signal to the LeaseCandidate that they should update - /// the RenewTime. - /// Old LeaseCandidate objects are also garbage collected if it has been hours - /// since the last renew. The PingTime field is updated regularly to prevent - /// garbage collection for still active LeaseCandidates. - /// +optional - #[prost(message, optional, tag = "3")] - pub renew_time: ::core::option::Option, - /// BinaryVersion is the binary version. It must be in a semver format without leading `v`. - /// This field is required. - /// +required - #[prost(string, optional, tag = "4")] - pub binary_version: ::core::option::Option<::prost::alloc::string::String>, - /// EmulationVersion is the emulation version. It must be in a semver format without leading `v`. - /// EmulationVersion must be less than or equal to BinaryVersion. - /// This field is required when strategy is "OldestEmulationVersion" - /// +optional - #[prost(string, optional, tag = "5")] - pub emulation_version: ::core::option::Option<::prost::alloc::string::String>, - /// Strategy is the strategy that coordinated leader election will use for picking the leader. - /// If multiple candidates for the same Lease return different strategies, the strategy provided - /// by the candidate with the latest BinaryVersion will be used. If there is still conflict, - /// this is a user error and coordinated leader election will not operate the Lease until resolved. - /// +required - #[prost(string, optional, tag = "6")] - pub strategy: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for LeaseCandidate { - const API_VERSION: &'static str = "coordination.k8s.io/v1alpha2"; - const GROUP: &'static str = "coordination.k8s.io"; - const VERSION: &'static str = "v1alpha2"; - const KIND: &'static str = "LeaseCandidate"; - const URL_PATH_SEGMENT: &'static str = "leasecandidates"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for LeaseCandidate { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for LeaseCandidate { - type Spec = crate::api::coordination::v1alpha2::LeaseCandidateSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} diff --git a/k8s-pb/src/api/coordination/v1beta1/mod.rs b/k8s-pb/src/api/coordination/v1beta1/mod.rs deleted file mode 100644 index 36d669c..0000000 --- a/k8s-pb/src/api/coordination/v1beta1/mod.rs +++ /dev/null @@ -1,168 +0,0 @@ -// This file is @generated by prost-build. -/// Lease defines a lease concept. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Lease { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the specification of the Lease. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// LeaseCandidate defines a candidate for a Lease object. -/// Candidates are created such that coordinated leader election will pick the best leader from the list of candidates. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LeaseCandidate { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec contains the specification of the Lease. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// LeaseCandidateList is a list of Lease objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LeaseCandidateList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// LeaseCandidateSpec is a specification of a Lease. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LeaseCandidateSpec { - /// LeaseName is the name of the lease for which this candidate is contending. - /// The limits on this field are the same as on Lease.name. Multiple lease candidates - /// may reference the same Lease.name. - /// This field is immutable. - /// +required - #[prost(string, optional, tag = "1")] - pub lease_name: ::core::option::Option<::prost::alloc::string::String>, - /// PingTime is the last time that the server has requested the LeaseCandidate - /// to renew. It is only done during leader election to check if any - /// LeaseCandidates have become ineligible. When PingTime is updated, the - /// LeaseCandidate will respond by updating RenewTime. - /// +optional - #[prost(message, optional, tag = "2")] - pub ping_time: ::core::option::Option, - /// RenewTime is the time that the LeaseCandidate was last updated. - /// Any time a Lease needs to do leader election, the PingTime field - /// is updated to signal to the LeaseCandidate that they should update - /// the RenewTime. - /// Old LeaseCandidate objects are also garbage collected if it has been hours - /// since the last renew. The PingTime field is updated regularly to prevent - /// garbage collection for still active LeaseCandidates. - /// +optional - #[prost(message, optional, tag = "3")] - pub renew_time: ::core::option::Option, - /// BinaryVersion is the binary version. It must be in a semver format without leading `v`. - /// This field is required. - /// +required - #[prost(string, optional, tag = "4")] - pub binary_version: ::core::option::Option<::prost::alloc::string::String>, - /// EmulationVersion is the emulation version. It must be in a semver format without leading `v`. - /// EmulationVersion must be less than or equal to BinaryVersion. - /// This field is required when strategy is "OldestEmulationVersion" - /// +optional - #[prost(string, optional, tag = "5")] - pub emulation_version: ::core::option::Option<::prost::alloc::string::String>, - /// Strategy is the strategy that coordinated leader election will use for picking the leader. - /// If multiple candidates for the same Lease return different strategies, the strategy provided - /// by the candidate with the latest BinaryVersion will be used. If there is still conflict, - /// this is a user error and coordinated leader election will not operate the Lease until resolved. - /// +required - #[prost(string, optional, tag = "6")] - pub strategy: ::core::option::Option<::prost::alloc::string::String>, -} -/// LeaseList is a list of Lease objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LeaseList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// LeaseSpec is a specification of a Lease. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LeaseSpec { - /// holderIdentity contains the identity of the holder of a current lease. - /// If Coordinated Leader Election is used, the holder identity must be - /// equal to the elected LeaseCandidate.metadata.name field. - /// +optional - #[prost(string, optional, tag = "1")] - pub holder_identity: ::core::option::Option<::prost::alloc::string::String>, - /// leaseDurationSeconds is a duration that candidates for a lease need - /// to wait to force acquire it. This is measure against time of last - /// observed renewTime. - /// +optional - #[prost(int32, optional, tag = "2")] - pub lease_duration_seconds: ::core::option::Option, - /// acquireTime is a time when the current lease was acquired. - /// +optional - #[prost(message, optional, tag = "3")] - pub acquire_time: - ::core::option::Option, - /// renewTime is a time when the current holder of a lease has last - /// updated the lease. - /// +optional - #[prost(message, optional, tag = "4")] - pub renew_time: ::core::option::Option, - /// leaseTransitions is the number of transitions of a lease between - /// holders. - /// +optional - #[prost(int32, optional, tag = "5")] - pub lease_transitions: ::core::option::Option, - /// Strategy indicates the strategy for picking the leader for coordinated leader election - /// (Alpha) Using this field requires the CoordinatedLeaderElection feature gate to be enabled. - /// +featureGate=CoordinatedLeaderElection - /// +optional - #[prost(string, optional, tag = "6")] - pub strategy: ::core::option::Option<::prost::alloc::string::String>, - /// PreferredHolder signals to a lease holder that the lease has a - /// more optimal holder and should be given up. - /// +featureGate=CoordinatedLeaderElection - /// +optional - #[prost(string, optional, tag = "7")] - pub preferred_holder: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for LeaseCandidate { - const API_VERSION: &'static str = "coordination.k8s.io/v1beta1"; - const GROUP: &'static str = "coordination.k8s.io"; - const VERSION: &'static str = "v1beta1"; - const KIND: &'static str = "LeaseCandidate"; - const URL_PATH_SEGMENT: &'static str = "leasecandidates"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for LeaseCandidate { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for LeaseCandidate { - type Spec = crate::api::coordination::v1beta1::LeaseCandidateSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} diff --git a/k8s-pb/src/api/core/mod.rs b/k8s-pb/src/api/core/mod.rs deleted file mode 100644 index a3a6d96..0000000 --- a/k8s-pb/src/api/core/mod.rs +++ /dev/null @@ -1 +0,0 @@ -pub mod v1; diff --git a/k8s-pb/src/api/core/v1/mod.rs b/k8s-pb/src/api/core/v1/mod.rs deleted file mode 100644 index b5ef4b7..0000000 --- a/k8s-pb/src/api/core/v1/mod.rs +++ /dev/null @@ -1,8021 +0,0 @@ -// This file is @generated by prost-build. -/// Represents a Persistent Disk resource in AWS. -/// -/// An AWS EBS disk must exist before mounting to a container. The disk -/// must also be in the same AWS zone as the kubelet. An AWS EBS disk -/// can only be mounted as read/write once. AWS EBS volumes support -/// ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AwsElasticBlockStoreVolumeSource { - /// volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). - /// More info: - #[prost(string, optional, tag = "1")] - pub volume_id: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type of the volume that you want to mount. - /// Tip: Ensure that the filesystem type is supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// partition is the partition in the volume that you want to mount. - /// If omitted, the default is to mount by volume name. - /// Examples: For volume /dev/sda1, you specify the partition as "1". - /// Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). - /// +optional - #[prost(int32, optional, tag = "3")] - pub partition: ::core::option::Option, - /// readOnly value true will force the readOnly setting in VolumeMounts. - /// More info: - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, -} -/// Affinity is a group of affinity scheduling rules. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Affinity { - /// Describes node affinity scheduling rules for the pod. - /// +optional - #[prost(message, optional, tag = "1")] - pub node_affinity: ::core::option::Option, - /// Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). - /// +optional - #[prost(message, optional, tag = "2")] - pub pod_affinity: ::core::option::Option, - /// Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). - /// +optional - #[prost(message, optional, tag = "3")] - pub pod_anti_affinity: ::core::option::Option, -} -/// AppArmorProfile defines a pod or container's AppArmor settings. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AppArmorProfile { - /// type indicates which kind of AppArmor profile will be applied. - /// Valid options are: - /// Localhost - a profile pre-loaded on the node. - /// RuntimeDefault - the container runtime's default profile. - /// Unconfined - no AppArmor enforcement. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// localhostProfile indicates a profile loaded on the node that should be used. - /// The profile must be preconfigured on the node to work. - /// Must match the loaded name of the profile. - /// Must be set if and only if type is "Localhost". - /// +optional - #[prost(string, optional, tag = "2")] - pub localhost_profile: ::core::option::Option<::prost::alloc::string::String>, -} -/// AttachedVolume describes a volume attached to a node -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AttachedVolume { - /// Name of the attached volume - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// DevicePath represents the device path where the volume should be available - #[prost(string, optional, tag = "2")] - pub device_path: ::core::option::Option<::prost::alloc::string::String>, -} -/// AvoidPods describes pods that should avoid this node. This is the value for a -/// Node annotation with key scheduler.alpha.kubernetes.io/preferAvoidPods and -/// will eventually become a field of NodeStatus. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AvoidPods { - /// Bounded-sized list of signatures of pods that should avoid this node, sorted - /// in timestamp order from oldest to newest. Size of the slice is unspecified. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub prefer_avoid_pods: ::prost::alloc::vec::Vec, -} -/// AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AzureDiskVolumeSource { - /// diskName is the Name of the data disk in the blob storage - #[prost(string, optional, tag = "1")] - pub disk_name: ::core::option::Option<::prost::alloc::string::String>, - /// diskURI is the URI of data disk in the blob storage - #[prost(string, optional, tag = "2")] - pub disk_uri: ::core::option::Option<::prost::alloc::string::String>, - /// cachingMode is the Host Caching mode: None, Read Only, Read Write. - /// +optional - /// +default=ref(AzureDataDiskCachingReadWrite) - #[prost(string, optional, tag = "3")] - pub caching_mode: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is Filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// +optional - /// +default="ext4" - #[prost(string, optional, tag = "4")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly Defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - /// +default=false - #[prost(bool, optional, tag = "5")] - pub read_only: ::core::option::Option, - /// kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared - /// +default=ref(AzureSharedBlobDisk) - #[prost(string, optional, tag = "6")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, -} -/// AzureFile represents an Azure File Service mount on the host and bind mount to the pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AzureFilePersistentVolumeSource { - /// secretName is the name of secret that contains Azure Storage Account Name and Key - #[prost(string, optional, tag = "1")] - pub secret_name: ::core::option::Option<::prost::alloc::string::String>, - /// shareName is the azure Share Name - #[prost(string, optional, tag = "2")] - pub share_name: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// secretNamespace is the namespace of the secret that contains Azure Storage Account Name and Key - /// default is the same as the Pod - /// +optional - #[prost(string, optional, tag = "4")] - pub secret_namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// AzureFile represents an Azure File Service mount on the host and bind mount to the pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct AzureFileVolumeSource { - /// secretName is the name of secret that contains Azure Storage Account Name and Key - #[prost(string, optional, tag = "1")] - pub secret_name: ::core::option::Option<::prost::alloc::string::String>, - /// shareName is the azure share Name - #[prost(string, optional, tag = "2")] - pub share_name: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, -} -/// Binding ties one object to another; for example, a pod is bound to a node by a scheduler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Binding { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The target object that you want to bind to the standard object. - #[prost(message, optional, tag = "2")] - pub target: ::core::option::Option, -} -/// Represents storage that is managed by an external CSI volume driver -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CSIPersistentVolumeSource { - /// driver is the name of the driver to use for this volume. - /// Required. - #[prost(string, optional, tag = "1")] - pub driver: ::core::option::Option<::prost::alloc::string::String>, - /// volumeHandle is the unique volume name returned by the CSI volume - /// plugin’s CreateVolume to refer to the volume on all subsequent calls. - /// Required. - #[prost(string, optional, tag = "2")] - pub volume_handle: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly value to pass to ControllerPublishVolumeRequest. - /// Defaults to false (read/write). - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// fsType to mount. Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". - /// +optional - #[prost(string, optional, tag = "4")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// volumeAttributes of the volume to publish. - /// +optional - #[prost(btree_map = "string, string", tag = "5")] - pub volume_attributes: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// controllerPublishSecretRef is a reference to the secret object containing - /// sensitive information to pass to the CSI driver to complete the CSI - /// ControllerPublishVolume and ControllerUnpublishVolume calls. - /// This field is optional, and may be empty if no secret is required. If the - /// secret object contains more than one secret, all secrets are passed. - /// +optional - #[prost(message, optional, tag = "6")] - pub controller_publish_secret_ref: ::core::option::Option, - /// nodeStageSecretRef is a reference to the secret object containing sensitive - /// information to pass to the CSI driver to complete the CSI NodeStageVolume - /// and NodeStageVolume and NodeUnstageVolume calls. - /// This field is optional, and may be empty if no secret is required. If the - /// secret object contains more than one secret, all secrets are passed. - /// +optional - #[prost(message, optional, tag = "7")] - pub node_stage_secret_ref: ::core::option::Option, - /// nodePublishSecretRef is a reference to the secret object containing - /// sensitive information to pass to the CSI driver to complete the CSI - /// NodePublishVolume and NodeUnpublishVolume calls. - /// This field is optional, and may be empty if no secret is required. If the - /// secret object contains more than one secret, all secrets are passed. - /// +optional - #[prost(message, optional, tag = "8")] - pub node_publish_secret_ref: ::core::option::Option, - /// controllerExpandSecretRef is a reference to the secret object containing - /// sensitive information to pass to the CSI driver to complete the CSI - /// ControllerExpandVolume call. - /// This field is optional, and may be empty if no secret is required. If the - /// secret object contains more than one secret, all secrets are passed. - /// +optional - #[prost(message, optional, tag = "9")] - pub controller_expand_secret_ref: ::core::option::Option, - /// nodeExpandSecretRef is a reference to the secret object containing - /// sensitive information to pass to the CSI driver to complete the CSI - /// NodeExpandVolume call. - /// This field is optional, may be omitted if no secret is required. If the - /// secret object contains more than one secret, all secrets are passed. - /// +optional - #[prost(message, optional, tag = "10")] - pub node_expand_secret_ref: ::core::option::Option, -} -/// Represents a source location of a volume to mount, managed by an external CSI driver -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CSIVolumeSource { - /// driver is the name of the CSI driver that handles this volume. - /// Consult with your admin for the correct name as registered in the cluster. - #[prost(string, optional, tag = "1")] - pub driver: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly specifies a read-only configuration for the volume. - /// Defaults to false (read/write). - /// +optional - #[prost(bool, optional, tag = "2")] - pub read_only: ::core::option::Option, - /// fsType to mount. Ex. "ext4", "xfs", "ntfs". - /// If not provided, the empty value is passed to the associated CSI driver - /// which will determine the default filesystem to apply. - /// +optional - #[prost(string, optional, tag = "3")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// volumeAttributes stores driver-specific properties that are passed to the CSI - /// driver. Consult your driver's documentation for supported values. - /// +optional - #[prost(btree_map = "string, string", tag = "4")] - pub volume_attributes: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// nodePublishSecretRef is a reference to the secret object containing - /// sensitive information to pass to the CSI driver to complete the CSI - /// NodePublishVolume and NodeUnpublishVolume calls. - /// This field is optional, and may be empty if no secret is required. If the - /// secret object contains more than one secret, all secret references are passed. - /// +optional - #[prost(message, optional, tag = "5")] - pub node_publish_secret_ref: ::core::option::Option, -} -/// Adds and removes POSIX capabilities from running containers. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Capabilities { - /// Added capabilities - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub add: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Removed capabilities - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub drop: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Represents a Ceph Filesystem mount that lasts the lifetime of a pod -/// Cephfs volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CephFsPersistentVolumeSource { - /// monitors is Required: Monitors is a collection of Ceph monitors - /// More info: - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub monitors: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// path is Optional: Used as the mounted root, rather than the full Ceph tree, default is / - /// +optional - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// user is Optional: User is the rados user name, default is admin - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret - /// More info: - /// +optional - #[prost(string, optional, tag = "4")] - pub secret_file: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. - /// More info: - /// +optional - #[prost(message, optional, tag = "5")] - pub secret_ref: ::core::option::Option, - /// readOnly is Optional: Defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// More info: - /// +optional - #[prost(bool, optional, tag = "6")] - pub read_only: ::core::option::Option, -} -/// Represents a Ceph Filesystem mount that lasts the lifetime of a pod -/// Cephfs volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CephFsVolumeSource { - /// monitors is Required: Monitors is a collection of Ceph monitors - /// More info: - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub monitors: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// path is Optional: Used as the mounted root, rather than the full Ceph tree, default is / - /// +optional - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// user is optional: User is the rados user name, default is admin - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret - /// More info: - /// +optional - #[prost(string, optional, tag = "4")] - pub secret_file: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. - /// More info: - /// +optional - #[prost(message, optional, tag = "5")] - pub secret_ref: ::core::option::Option, - /// readOnly is Optional: Defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// More info: - /// +optional - #[prost(bool, optional, tag = "6")] - pub read_only: ::core::option::Option, -} -/// Represents a cinder volume resource in Openstack. -/// A Cinder volume must exist before mounting to a container. -/// The volume must also be in the same region as the kubelet. -/// Cinder volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CinderPersistentVolumeSource { - /// volumeID used to identify the volume in cinder. - /// More info: - #[prost(string, optional, tag = "1")] - pub volume_id: ::core::option::Option<::prost::alloc::string::String>, - /// fsType Filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly is Optional: Defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// More info: - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// secretRef is Optional: points to a secret object containing parameters used to connect - /// to OpenStack. - /// +optional - #[prost(message, optional, tag = "4")] - pub secret_ref: ::core::option::Option, -} -/// Represents a cinder volume resource in Openstack. -/// A Cinder volume must exist before mounting to a container. -/// The volume must also be in the same region as the kubelet. -/// Cinder volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CinderVolumeSource { - /// volumeID used to identify the volume in cinder. - /// More info: - #[prost(string, optional, tag = "1")] - pub volume_id: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// More info: - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// secretRef is optional: points to a secret object containing parameters used to connect - /// to OpenStack. - /// +optional - #[prost(message, optional, tag = "4")] - pub secret_ref: ::core::option::Option, -} -/// ClientIPConfig represents the configurations of Client IP based session affinity. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ClientIpConfig { - /// timeoutSeconds specifies the seconds of ClientIP type session sticky time. - /// The value must be >0 && <=86400(for 1 day) if ServiceAffinity == "ClientIP". - /// Default value is 10800(for 3 hours). - /// +optional - #[prost(int32, optional, tag = "1")] - pub timeout_seconds: ::core::option::Option, -} -/// ClusterTrustBundleProjection describes how to select a set of -/// ClusterTrustBundle objects and project their contents into the pod -/// filesystem. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterTrustBundleProjection { - /// Select a single ClusterTrustBundle by object name. Mutually-exclusive - /// with signerName and labelSelector. - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Select all ClusterTrustBundles that match this signer name. - /// Mutually-exclusive with name. The contents of all selected - /// ClusterTrustBundles will be unified and deduplicated. - /// +optional - #[prost(string, optional, tag = "2")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// Select all ClusterTrustBundles that match this label selector. Only has - /// effect if signerName is set. Mutually-exclusive with name. If unset, - /// interpreted as "match nothing". If set but empty, interpreted as "match - /// everything". - /// +optional - #[prost(message, optional, tag = "3")] - pub label_selector: - ::core::option::Option, - /// If true, don't block pod startup if the referenced ClusterTrustBundle(s) - /// aren't available. If using name, then the named ClusterTrustBundle is - /// allowed not to exist. If using signerName, then the combination of - /// signerName and labelSelector is allowed to match zero - /// ClusterTrustBundles. - /// +optional - #[prost(bool, optional, tag = "5")] - pub optional: ::core::option::Option, - /// Relative path from the volume root to write the bundle. - #[prost(string, optional, tag = "4")] - pub path: ::core::option::Option<::prost::alloc::string::String>, -} -/// Information about the condition of a component. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ComponentCondition { - /// Type of condition for a component. - /// Valid value: "Healthy" - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition for a component. - /// Valid values for "Healthy": "True", "False", or "Unknown". - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Message about the condition for a component. - /// For example, information about a health check. - /// +optional - #[prost(string, optional, tag = "3")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// Condition error code for a component. - /// For example, a health check error code. - /// +optional - #[prost(string, optional, tag = "4")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// ComponentStatus (and ComponentStatusList) holds the cluster validation info. -/// Deprecated: This API is deprecated in v1.19+ -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ComponentStatus { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of component conditions observed - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "2")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// Status of all the conditions for the component as a list of ComponentStatus objects. -/// Deprecated: This API is deprecated in v1.19+ -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ComponentStatusList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ComponentStatus objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ConfigMap holds configuration data for pods to consume. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ConfigMap { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Immutable, if set to true, ensures that data stored in the ConfigMap cannot - /// be updated (only object metadata can be modified). - /// If not set to true, the field can be modified at any time. - /// Defaulted to nil. - /// +optional - #[prost(bool, optional, tag = "4")] - pub immutable: ::core::option::Option, - /// Data contains the configuration data. - /// Each key must consist of alphanumeric characters, '-', '_' or '.'. - /// Values with non-UTF-8 byte sequences must use the BinaryData field. - /// The keys stored in Data must not overlap with the keys in - /// the BinaryData field, this is enforced during validation process. - /// +optional - #[prost(btree_map = "string, string", tag = "2")] - pub data: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// BinaryData contains the binary data. - /// Each key must consist of alphanumeric characters, '-', '_' or '.'. - /// BinaryData can contain byte sequences that are not in the UTF-8 range. - /// The keys stored in BinaryData must not overlap with the ones in - /// the Data field, this is enforced during validation process. - /// Using this field will require 1.10+ apiserver and - /// kubelet. - /// +optional - #[prost(btree_map = "string, bytes", tag = "3")] - pub binary_data: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::vec::Vec>, -} -/// ConfigMapEnvSource selects a ConfigMap to populate the environment -/// variables with. -/// -/// The contents of the target ConfigMap's Data field will represent the -/// key-value pairs as environment variables. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ConfigMapEnvSource { - /// The ConfigMap to select from. - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// Specify whether the ConfigMap must be defined - /// +optional - #[prost(bool, optional, tag = "2")] - pub optional: ::core::option::Option, -} -/// Selects a key from a ConfigMap. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ConfigMapKeySelector { - /// The ConfigMap to select from. - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// The key to select. - #[prost(string, optional, tag = "2")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// Specify whether the ConfigMap or its key must be defined - /// +optional - #[prost(bool, optional, tag = "3")] - pub optional: ::core::option::Option, -} -/// ConfigMapList is a resource containing a list of ConfigMap objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ConfigMapList { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of ConfigMaps. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. -/// This API is deprecated since 1.22: -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ConfigMapNodeConfigSource { - /// Namespace is the metadata.namespace of the referenced ConfigMap. - /// This field is required in all cases. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the metadata.name of the referenced ConfigMap. - /// This field is required in all cases. - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// UID is the metadata.UID of the referenced ConfigMap. - /// This field is forbidden in Node.Spec, and required in Node.Status. - /// +optional - #[prost(string, optional, tag = "3")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. - /// This field is forbidden in Node.Spec, and required in Node.Status. - /// +optional - #[prost(string, optional, tag = "4")] - pub resource_version: ::core::option::Option<::prost::alloc::string::String>, - /// KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure - /// This field is required in all cases. - #[prost(string, optional, tag = "5")] - pub kubelet_config_key: ::core::option::Option<::prost::alloc::string::String>, -} -/// Adapts a ConfigMap into a projected volume. -/// -/// The contents of the target ConfigMap's Data field will be presented in a -/// projected volume as files using the keys in the Data field as the file names, -/// unless the items element is populated with specific mappings of keys to paths. -/// Note that this is identical to a configmap volume source without the default -/// mode. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ConfigMapProjection { - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// items if unspecified, each key-value pair in the Data field of the referenced - /// ConfigMap will be projected into the volume as a file whose name is the - /// key and content is the value. If specified, the listed keys will be - /// projected into the specified paths, and unlisted keys will not be - /// present. If a key is specified which is not present in the ConfigMap, - /// the volume setup will error unless it is marked optional. Paths must be - /// relative and may not contain the '..' path or start with '..'. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, - /// optional specify whether the ConfigMap or its keys must be defined - /// +optional - #[prost(bool, optional, tag = "4")] - pub optional: ::core::option::Option, -} -/// Adapts a ConfigMap into a volume. -/// -/// The contents of the target ConfigMap's Data field will be presented in a -/// volume as files using the keys in the Data field as the file names, unless -/// the items element is populated with specific mappings of keys to paths. -/// ConfigMap volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ConfigMapVolumeSource { - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// items if unspecified, each key-value pair in the Data field of the referenced - /// ConfigMap will be projected into the volume as a file whose name is the - /// key and content is the value. If specified, the listed keys will be - /// projected into the specified paths, and unlisted keys will not be - /// present. If a key is specified which is not present in the ConfigMap, - /// the volume setup will error unless it is marked optional. Paths must be - /// relative and may not contain the '..' path or start with '..'. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, - /// defaultMode is optional: mode bits used to set permissions on created files by default. - /// Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. - /// YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. - /// Defaults to 0644. - /// Directories within the path are not affected by this setting. - /// This might be in conflict with other options that affect the file - /// mode, like fsGroup, and the result can be other mode bits set. - /// +optional - #[prost(int32, optional, tag = "3")] - pub default_mode: ::core::option::Option, - /// optional specify whether the ConfigMap or its keys must be defined - /// +optional - #[prost(bool, optional, tag = "4")] - pub optional: ::core::option::Option, -} -/// A single application container that you want to run within a pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Container { - /// Name of the container specified as a DNS_LABEL. - /// Each container in a pod must have a unique name (DNS_LABEL). - /// Cannot be updated. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Container image name. - /// More info: - /// This field is optional to allow higher level config management to default or override - /// container images in workload controllers like Deployments and StatefulSets. - /// +optional - #[prost(string, optional, tag = "2")] - pub image: ::core::option::Option<::prost::alloc::string::String>, - /// Entrypoint array. Not executed within a shell. - /// The container image's ENTRYPOINT is used if this is not provided. - /// Variable references $(VAR_NAME) are expanded using the container's environment. If a variable - /// cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced - /// to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will - /// produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless - /// of whether the variable exists or not. Cannot be updated. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub command: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Arguments to the entrypoint. - /// The container image's CMD is used if this is not provided. - /// Variable references $(VAR_NAME) are expanded using the container's environment. If a variable - /// cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced - /// to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will - /// produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless - /// of whether the variable exists or not. Cannot be updated. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub args: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Container's working directory. - /// If not specified, the container runtime's default will be used, which - /// might be configured in the container image. - /// Cannot be updated. - /// +optional - #[prost(string, optional, tag = "5")] - pub working_dir: ::core::option::Option<::prost::alloc::string::String>, - /// List of ports to expose from the container. Not specifying a port here - /// DOES NOT prevent that port from being exposed. Any port which is - /// listening on the default "0.0.0.0" address inside a container will be - /// accessible from the network. - /// Modifying this array with strategic merge patch may corrupt the data. - /// For more information See - /// Cannot be updated. - /// +optional - /// +patchMergeKey=containerPort - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=containerPort - /// +listMapKey=protocol - #[prost(message, repeated, tag = "6")] - pub ports: ::prost::alloc::vec::Vec, - /// List of sources to populate environment variables in the container. - /// The keys defined within a source may consist of any printable ASCII characters except '='. - /// When a key exists in multiple - /// sources, the value associated with the last source will take precedence. - /// Values defined by an Env with a duplicate key will take precedence. - /// Cannot be updated. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "19")] - pub env_from: ::prost::alloc::vec::Vec, - /// List of environment variables to set in the container. - /// Cannot be updated. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "7")] - pub env: ::prost::alloc::vec::Vec, - /// Compute Resources required by this container. - /// Cannot be updated. - /// More info: - /// +optional - #[prost(message, optional, tag = "8")] - pub resources: ::core::option::Option, - /// Resources resize policy for the container. - /// +featureGate=InPlacePodVerticalScaling - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "23")] - pub resize_policy: ::prost::alloc::vec::Vec, - /// RestartPolicy defines the restart behavior of individual containers in a pod. - /// This overrides the pod-level restart policy. When this field is not specified, - /// the restart behavior is defined by the Pod's restart policy and the container type. - /// Additionally, setting the RestartPolicy as "Always" for the init container will - /// have the following effect: - /// this init container will be continually restarted on - /// exit until all regular containers have terminated. Once all regular - /// containers have completed, all init containers with restartPolicy "Always" - /// will be shut down. This lifecycle differs from normal init containers and - /// is often referred to as a "sidecar" container. Although this init - /// container still starts in the init container sequence, it does not wait - /// for the container to complete before proceeding to the next init - /// container. Instead, the next init container starts immediately after this - /// init container is started, or after any startupProbe has successfully - /// completed. - /// +featureGate=SidecarContainers - /// +optional - #[prost(string, optional, tag = "24")] - pub restart_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Represents a list of rules to be checked to determine if the - /// container should be restarted on exit. The rules are evaluated in - /// order. Once a rule matches a container exit condition, the remaining - /// rules are ignored. If no rule matches the container exit condition, - /// the Container-level restart policy determines the whether the container - /// is restarted or not. Constraints on the rules: - /// - At most 20 rules are allowed. - /// - Rules can have the same action. - /// - Identical rules are not forbidden in validations. - /// When rules are specified, container MUST set RestartPolicy explicitly - /// even it if matches the Pod's RestartPolicy. - /// +featureGate=ContainerRestartRules - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "25")] - pub restart_policy_rules: ::prost::alloc::vec::Vec, - /// Pod volumes to mount into the container's filesystem. - /// Cannot be updated. - /// +optional - /// +patchMergeKey=mountPath - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=mountPath - #[prost(message, repeated, tag = "9")] - pub volume_mounts: ::prost::alloc::vec::Vec, - /// volumeDevices is the list of block devices to be used by the container. - /// +patchMergeKey=devicePath - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=devicePath - /// +optional - #[prost(message, repeated, tag = "21")] - pub volume_devices: ::prost::alloc::vec::Vec, - /// Periodic probe of container liveness. - /// Container will be restarted if the probe fails. - /// Cannot be updated. - /// More info: - /// +optional - #[prost(message, optional, tag = "10")] - pub liveness_probe: ::core::option::Option, - /// Periodic probe of container service readiness. - /// Container will be removed from service endpoints if the probe fails. - /// Cannot be updated. - /// More info: - /// +optional - #[prost(message, optional, tag = "11")] - pub readiness_probe: ::core::option::Option, - /// StartupProbe indicates that the Pod has successfully initialized. - /// If specified, no other probes are executed until this completes successfully. - /// If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. - /// This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, - /// when it might take a long time to load data or warm a cache, than during steady-state operation. - /// This cannot be updated. - /// More info: - /// +optional - #[prost(message, optional, tag = "22")] - pub startup_probe: ::core::option::Option, - /// Actions that the management system should take in response to container lifecycle events. - /// Cannot be updated. - /// +optional - #[prost(message, optional, tag = "12")] - pub lifecycle: ::core::option::Option, - /// Optional: Path at which the file to which the container's termination message - /// will be written is mounted into the container's filesystem. - /// Message written is intended to be brief final status, such as an assertion failure message. - /// Will be truncated by the node if greater than 4096 bytes. The total message length across - /// all containers will be limited to 12kb. - /// Defaults to /dev/termination-log. - /// Cannot be updated. - /// +optional - #[prost(string, optional, tag = "13")] - pub termination_message_path: ::core::option::Option<::prost::alloc::string::String>, - /// Indicate how the termination message should be populated. File will use the contents of - /// terminationMessagePath to populate the container status message on both success and failure. - /// FallbackToLogsOnError will use the last chunk of container log output if the termination - /// message file is empty and the container exited with an error. - /// The log output is limited to 2048 bytes or 80 lines, whichever is smaller. - /// Defaults to File. - /// Cannot be updated. - /// +optional - #[prost(string, optional, tag = "20")] - pub termination_message_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Image pull policy. - /// One of Always, Never, IfNotPresent. - /// Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. - /// Cannot be updated. - /// More info: - /// +optional - #[prost(string, optional, tag = "14")] - pub image_pull_policy: ::core::option::Option<::prost::alloc::string::String>, - /// SecurityContext defines the security options the container should be run with. - /// If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. - /// More info: - /// +optional - #[prost(message, optional, tag = "15")] - pub security_context: ::core::option::Option, - /// Whether this container should allocate a buffer for stdin in the container runtime. If this - /// is not set, reads from stdin in the container will always result in EOF. - /// Default is false. - /// +optional - #[prost(bool, optional, tag = "16")] - pub stdin: ::core::option::Option, - /// Whether the container runtime should close the stdin channel after it has been opened by - /// a single attach. When stdin is true the stdin stream will remain open across multiple attach - /// sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the - /// first client attaches to stdin, and then remains open and accepts data until the client disconnects, - /// at which time stdin is closed and remains closed until the container is restarted. If this - /// flag is false, a container processes that reads from stdin will never receive an EOF. - /// Default is false - /// +optional - #[prost(bool, optional, tag = "17")] - pub stdin_once: ::core::option::Option, - /// Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. - /// Default is false. - /// +optional - #[prost(bool, optional, tag = "18")] - pub tty: ::core::option::Option, -} -/// ContainerExtendedResourceRequest has the mapping of container name, -/// extended resource name to the device request name. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerExtendedResourceRequest { - /// The name of the container requesting resources. - #[prost(string, optional, tag = "1")] - pub container_name: ::core::option::Option<::prost::alloc::string::String>, - /// The name of the extended resource in that container which gets backed by DRA. - #[prost(string, optional, tag = "2")] - pub resource_name: ::core::option::Option<::prost::alloc::string::String>, - /// The name of the request in the special ResourceClaim which corresponds to the extended resource. - #[prost(string, optional, tag = "3")] - pub request_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Describe a container image -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerImage { - /// Names by which this image is known. - /// e.g. \["kubernetes.example/hyperkube:v1.0.7", "cloud-vendor.registry.example/cloud-vendor/hyperkube:v1.0.7"\] - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// The size of the image in bytes. - /// +optional - #[prost(int64, optional, tag = "2")] - pub size_bytes: ::core::option::Option, -} -/// ContainerPort represents a network port in a single container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerPort { - /// If specified, this must be an IANA_SVC_NAME and unique within the pod. Each - /// named port in a pod must have a unique name. Name for the port that can be - /// referred to by services. - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Number of port to expose on the host. - /// If specified, this must be a valid port number, 0 < x < 65536. - /// If HostNetwork is specified, this must match ContainerPort. - /// Most containers do not need this. - /// +optional - #[prost(int32, optional, tag = "2")] - pub host_port: ::core::option::Option, - /// Number of port to expose on the pod's IP address. - /// This must be a valid port number, 0 < x < 65536. - #[prost(int32, optional, tag = "3")] - pub container_port: ::core::option::Option, - /// Protocol for port. Must be UDP, TCP, or SCTP. - /// Defaults to "TCP". - /// +optional - /// +default="TCP" - #[prost(string, optional, tag = "4")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// What host IP to bind the external port to. - /// +optional - #[prost(string, optional, tag = "5")] - pub host_ip: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerResizePolicy represents resource resize policy for the container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerResizePolicy { - /// Name of the resource to which this resource resize policy applies. - /// Supported values: cpu, memory. - #[prost(string, optional, tag = "1")] - pub resource_name: ::core::option::Option<::prost::alloc::string::String>, - /// Restart policy to apply when specified resource is resized. - /// If not specified, it defaults to NotRequired. - #[prost(string, optional, tag = "2")] - pub restart_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerRestartRule describes how a container exit is handled. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerRestartRule { - /// Specifies the action taken on a container exit if the requirements - /// are satisfied. The only possible value is "Restart" to restart the - /// container. - /// +required - #[prost(string, optional, tag = "1")] - pub action: ::core::option::Option<::prost::alloc::string::String>, - /// Represents the exit codes to check on container exits. - /// +optional - /// +oneOf=when - #[prost(message, optional, tag = "2")] - pub exit_codes: ::core::option::Option, -} -/// ContainerRestartRuleOnExitCodes describes the condition -/// for handling an exited container based on its exit codes. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerRestartRuleOnExitCodes { - /// Represents the relationship between the container exit code(s) and the - /// specified values. Possible values are: - /// - In: the requirement is satisfied if the container exit code is in the - /// set of specified values. - /// - NotIn: the requirement is satisfied if the container exit code is - /// not in the set of specified values. - /// +required - #[prost(string, optional, tag = "1")] - pub operator: ::core::option::Option<::prost::alloc::string::String>, - /// Specifies the set of values to check for container exit codes. - /// At most 255 elements are allowed. - /// +optional - /// +listType=set - #[prost(int32, repeated, packed = "false", tag = "2")] - pub values: ::prost::alloc::vec::Vec, -} -/// ContainerState holds a possible state of container. -/// Only one of its members may be specified. -/// If none of them is specified, the default one is ContainerStateWaiting. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerState { - /// Details about a waiting container - /// +optional - #[prost(message, optional, tag = "1")] - pub waiting: ::core::option::Option, - /// Details about a running container - /// +optional - #[prost(message, optional, tag = "2")] - pub running: ::core::option::Option, - /// Details about a terminated container - /// +optional - #[prost(message, optional, tag = "3")] - pub terminated: ::core::option::Option, -} -/// ContainerStateRunning is a running state of a container. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerStateRunning { - /// Time at which the container was last (re-)started - /// +optional - #[prost(message, optional, tag = "1")] - pub started_at: ::core::option::Option, -} -/// ContainerStateTerminated is a terminated state of a container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerStateTerminated { - /// Exit status from the last termination of the container - #[prost(int32, optional, tag = "1")] - pub exit_code: ::core::option::Option, - /// Signal from the last termination of the container - /// +optional - #[prost(int32, optional, tag = "2")] - pub signal: ::core::option::Option, - /// (brief) reason from the last termination of the container - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Message regarding the last termination of the container - /// +optional - #[prost(string, optional, tag = "4")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// Time at which previous execution of the container started - /// +optional - #[prost(message, optional, tag = "5")] - pub started_at: ::core::option::Option, - /// Time at which the container last terminated - /// +optional - #[prost(message, optional, tag = "6")] - pub finished_at: ::core::option::Option, - /// Container's ID in the format '://' - /// +optional - #[prost(string, optional, tag = "7")] - pub container_id: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerStateWaiting is a waiting state of a container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerStateWaiting { - /// (brief) reason the container is not yet running. - /// +optional - #[prost(string, optional, tag = "1")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Message regarding why the container is not yet running. - /// +optional - #[prost(string, optional, tag = "2")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerStatus contains details for the current status of this container. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ContainerStatus { - /// Name is a DNS_LABEL representing the unique name of the container. - /// Each container in a pod must have a unique name across all container types. - /// Cannot be updated. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// State holds details about the container's current condition. - /// +optional - #[prost(message, optional, tag = "2")] - pub state: ::core::option::Option, - /// LastTerminationState holds the last termination state of the container to - /// help debug container crashes and restarts. This field is not - /// populated if the container is still running and RestartCount is 0. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_state: ::core::option::Option, - /// Ready specifies whether the container is currently passing its readiness check. - /// The value will change as readiness probes keep executing. If no readiness - /// probes are specified, this field defaults to true once the container is - /// fully started (see Started field). - /// - /// The value is typically used to determine whether a container is ready to - /// accept traffic. - #[prost(bool, optional, tag = "4")] - pub ready: ::core::option::Option, - /// RestartCount holds the number of times the container has been restarted. - /// Kubelet makes an effort to always increment the value, but there - /// are cases when the state may be lost due to node restarts and then the value - /// may be reset to 0. The value is never negative. - #[prost(int32, optional, tag = "5")] - pub restart_count: ::core::option::Option, - /// Image is the name of container image that the container is running. - /// The container image may not match the image used in the PodSpec, - /// as it may have been resolved by the runtime. - /// More info: - #[prost(string, optional, tag = "6")] - pub image: ::core::option::Option<::prost::alloc::string::String>, - /// ImageID is the image ID of the container's image. The image ID may not - /// match the image ID of the image used in the PodSpec, as it may have been - /// resolved by the runtime. - #[prost(string, optional, tag = "7")] - pub image_id: ::core::option::Option<::prost::alloc::string::String>, - /// ContainerID is the ID of the container in the format '://'. - /// Where type is a container runtime identifier, returned from Version call of CRI API - /// (for example "containerd"). - /// +optional - #[prost(string, optional, tag = "8")] - pub container_id: ::core::option::Option<::prost::alloc::string::String>, - /// Started indicates whether the container has finished its postStart lifecycle hook - /// and passed its startup probe. - /// Initialized as false, becomes true after startupProbe is considered - /// successful. Resets to false when the container is restarted, or if kubelet - /// loses state temporarily. In both cases, startup probes will run again. - /// Is always true when no startupProbe is defined and container is running and - /// has passed the postStart lifecycle hook. The null value must be treated the - /// same as false. - /// +optional - #[prost(bool, optional, tag = "9")] - pub started: ::core::option::Option, - /// AllocatedResources represents the compute resources allocated for this container by the - /// node. Kubelet sets this value to Container.Resources.Requests upon successful pod admission - /// and after successfully admitting desired pod resize. - /// +featureGate=InPlacePodVerticalScalingAllocatedStatus - /// +optional - #[prost(btree_map = "string, message", tag = "10")] - pub allocated_resources: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Resources represents the compute resource requests and limits that have been successfully - /// enacted on the running container after it has been started or has been successfully resized. - /// +featureGate=InPlacePodVerticalScaling - /// +optional - #[prost(message, optional, tag = "11")] - pub resources: ::core::option::Option, - /// Status of volume mounts. - /// +optional - /// +patchMergeKey=mountPath - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=mountPath - /// +featureGate=RecursiveReadOnlyMounts - #[prost(message, repeated, tag = "12")] - pub volume_mounts: ::prost::alloc::vec::Vec, - /// User represents user identity information initially attached to the first process of the container - /// +featureGate=SupplementalGroupsPolicy - /// +optional - #[prost(message, optional, tag = "13")] - pub user: ::core::option::Option, - /// AllocatedResourcesStatus represents the status of various resources - /// allocated for this Pod. - /// +featureGate=ResourceHealthStatus - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "14")] - pub allocated_resources_status: ::prost::alloc::vec::Vec, - /// StopSignal reports the effective stop signal for this container - /// +featureGate=ContainerStopSignals - /// +optional - #[prost(string, optional, tag = "15")] - pub stop_signal: ::core::option::Option<::prost::alloc::string::String>, -} -/// ContainerUser represents user identity information -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ContainerUser { - /// Linux holds user identity information initially attached to the first process of the containers in Linux. - /// Note that the actual running identity can be changed if the process has enough privilege to do so. - /// +optional - #[prost(message, optional, tag = "1")] - pub linux: ::core::option::Option, -} -/// DaemonEndpoint contains information about a single Daemon endpoint. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonEndpoint { - /// Port number of the given endpoint. - #[prost(int32, optional, tag = "1")] - pub port: ::core::option::Option, -} -/// Represents downward API info for projecting into a projected volume. -/// Note that this is identical to a downwardAPI volume source without the default -/// mode. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DownwardAPIProjection { - /// Items is a list of DownwardAPIVolume file - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec, -} -/// DownwardAPIVolumeFile represents information to create the file containing the pod field -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DownwardAPIVolumeFile { - /// Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..' - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. - /// +optional - #[prost(message, optional, tag = "2")] - pub field_ref: ::core::option::Option, - /// Selects a resource of the container: only resources limits and requests - /// (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. - /// +optional - #[prost(message, optional, tag = "3")] - pub resource_field_ref: ::core::option::Option, - /// Optional: mode bits used to set permissions on this file, must be an octal value - /// between 0000 and 0777 or a decimal value between 0 and 511. - /// YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. - /// If not specified, the volume defaultMode will be used. - /// This might be in conflict with other options that affect the file - /// mode, like fsGroup, and the result can be other mode bits set. - /// +optional - #[prost(int32, optional, tag = "4")] - pub mode: ::core::option::Option, -} -/// DownwardAPIVolumeSource represents a volume containing downward API info. -/// Downward API volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DownwardAPIVolumeSource { - /// Items is a list of downward API volume file - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub items: ::prost::alloc::vec::Vec, - /// Optional: mode bits to use on created files by default. Must be a - /// Optional: mode bits used to set permissions on created files by default. - /// Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. - /// YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. - /// Defaults to 0644. - /// Directories within the path are not affected by this setting. - /// This might be in conflict with other options that affect the file - /// mode, like fsGroup, and the result can be other mode bits set. - /// +optional - #[prost(int32, optional, tag = "2")] - pub default_mode: ::core::option::Option, -} -/// Represents an empty directory for a pod. -/// Empty directory volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EmptyDirVolumeSource { - /// medium represents what type of storage medium should back this directory. - /// The default is "" which means to use the node's default medium. - /// Must be an empty string (default) or Memory. - /// More info: - /// +optional - #[prost(string, optional, tag = "1")] - pub medium: ::core::option::Option<::prost::alloc::string::String>, - /// sizeLimit is the total amount of local storage required for this EmptyDir volume. - /// The size limit is also applicable for memory medium. - /// The maximum usage on memory medium EmptyDir would be the minimum value between - /// the SizeLimit specified here and the sum of memory limits of all containers in a pod. - /// The default is nil which means that the limit is undefined. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub size_limit: ::core::option::Option, -} -/// EndpointAddress is a tuple that describes single IP address. -/// Deprecated: This API is deprecated in v1.33+. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EndpointAddress { - /// The IP of this endpoint. - /// May not be loopback (127.0.0.0/8 or ::1), link-local (169.254.0.0/16 or fe80::/10), - /// or link-local multicast (224.0.0.0/24 or ff02::/16). - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, - /// The Hostname of this endpoint - /// +optional - #[prost(string, optional, tag = "3")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// Optional: Node hosting this endpoint. This can be used to determine endpoints local to a node. - /// +optional - #[prost(string, optional, tag = "4")] - pub node_name: ::core::option::Option<::prost::alloc::string::String>, - /// Reference to object providing the endpoint. - /// +optional - #[prost(message, optional, tag = "2")] - pub target_ref: ::core::option::Option, -} -/// EndpointPort is a tuple that describes a single port. -/// Deprecated: This API is deprecated in v1.33+. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EndpointPort { - /// The name of this port. This must match the 'name' field in the - /// corresponding ServicePort. - /// Must be a DNS_LABEL. - /// Optional only if one port is defined. - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// The port number of the endpoint. - #[prost(int32, optional, tag = "2")] - pub port: ::core::option::Option, - /// The IP protocol for this port. - /// Must be UDP, TCP, or SCTP. - /// Default is TCP. - /// +optional - #[prost(string, optional, tag = "3")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// The application protocol for this port. - /// This is used as a hint for implementations to offer richer behavior for protocols that they understand. - /// This field follows standard Kubernetes label syntax. - /// Valid values are either: - /// - /// * Un-prefixed protocol names - reserved for IANA standard service names (as per - /// RFC-6335 and ). - /// - /// * Kubernetes-defined prefixed names: - /// * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in - /// * 'kubernetes.io/ws' - WebSocket over cleartext as described in - /// * 'kubernetes.io/wss' - WebSocket over TLS as described in - /// - /// * Other protocols should use implementation-defined prefixed names such as - /// mycompany.com/my-custom-protocol. - /// +optional - #[prost(string, optional, tag = "4")] - pub app_protocol: ::core::option::Option<::prost::alloc::string::String>, -} -/// EndpointSubset is a group of addresses with a common set of ports. The -/// expanded set of endpoints is the Cartesian product of Addresses x Ports. -/// For example, given: -/// -/// { -/// Addresses: \[{"ip": "10.10.1.1"}, {"ip": "10.10.2.2"}\], -/// Ports: \[{"name": "a", "port": 8675}, {"name": "b", "port": 309}\] -/// } -/// -/// The resulting set of endpoints can be viewed as: -/// -/// a: \[ 10.10.1.1:8675, 10.10.2.2:8675 \], -/// b: \[ 10.10.1.1:309, 10.10.2.2:309 \] -/// -/// Deprecated: This API is deprecated in v1.33+. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointSubset { - /// IP addresses which offer the related ports that are marked as ready. These endpoints - /// should be considered safe for load balancers and clients to utilize. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub addresses: ::prost::alloc::vec::Vec, - /// IP addresses which offer the related ports but are not currently marked as ready - /// because they have not yet finished starting, have recently failed a readiness check, - /// or have recently failed a liveness check. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub not_ready_addresses: ::prost::alloc::vec::Vec, - /// Port numbers available on the related IP addresses. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub ports: ::prost::alloc::vec::Vec, -} -/// Endpoints is a collection of endpoints that implement the actual service. Example: -/// -/// Name: "mysvc", -/// Subsets: [ -/// { -/// Addresses: \[{"ip": "10.10.1.1"}, {"ip": "10.10.2.2"}\], -/// Ports: \[{"name": "a", "port": 8675}, {"name": "b", "port": 309}\] -/// }, -/// { -/// Addresses: \[{"ip": "10.10.3.3"}\], -/// Ports: \[{"name": "a", "port": 93}, {"name": "b", "port": 76}\] -/// }, -/// ] -/// -/// Endpoints is a legacy API and does not contain information about all Service features. -/// Use discoveryv1.EndpointSlice for complete information about Service endpoints. -/// -/// Deprecated: This API is deprecated in v1.33+. Use discoveryv1.EndpointSlice. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Endpoints { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The set of all endpoints is the union of all subsets. Addresses are placed into - /// subsets according to the IPs they share. A single address with multiple ports, - /// some of which are ready and some of which are not (because they come from - /// different containers) will result in the address being displayed in different - /// subsets for the different ports. No address will appear in both Addresses and - /// NotReadyAddresses in the same subset. - /// Sets of addresses and ports that comprise a service. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subsets: ::prost::alloc::vec::Vec, -} -/// EndpointsList is a list of endpoints. -/// Deprecated: This API is deprecated in v1.33+. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointsList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of endpoints. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// EnvFromSource represents the source of a set of ConfigMaps or Secrets -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EnvFromSource { - /// Optional text to prepend to the name of each environment variable. - /// May consist of any printable ASCII characters except '='. - /// +optional - #[prost(string, optional, tag = "1")] - pub prefix: ::core::option::Option<::prost::alloc::string::String>, - /// The ConfigMap to select from - /// +optional - #[prost(message, optional, tag = "2")] - pub config_map_ref: ::core::option::Option, - /// The Secret to select from - /// +optional - #[prost(message, optional, tag = "3")] - pub secret_ref: ::core::option::Option, -} -/// EnvVar represents an environment variable present in a Container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EnvVar { - /// Name of the environment variable. - /// May consist of any printable ASCII characters except '='. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Variable references $(VAR_NAME) are expanded - /// using the previously defined environment variables in the container and - /// any service environment variables. If a variable cannot be resolved, - /// the reference in the input string will be unchanged. Double $$ are reduced - /// to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. - /// "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". - /// Escaped references will never be expanded, regardless of whether the variable - /// exists or not. - /// Defaults to "". - /// +optional - #[prost(string, optional, tag = "2")] - pub value: ::core::option::Option<::prost::alloc::string::String>, - /// Source for the environment variable's value. Cannot be used if value is not empty. - /// +optional - #[prost(message, optional, tag = "3")] - pub value_from: ::core::option::Option, -} -/// EnvVarSource represents a source for the value of an EnvVar. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EnvVarSource { - /// Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels\[''\]`, `metadata.annotations\[''\]`, - /// spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. - /// +optional - #[prost(message, optional, tag = "1")] - pub field_ref: ::core::option::Option, - /// Selects a resource of the container: only resources limits and requests - /// (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. - /// +optional - #[prost(message, optional, tag = "2")] - pub resource_field_ref: ::core::option::Option, - /// Selects a key of a ConfigMap. - /// +optional - #[prost(message, optional, tag = "3")] - pub config_map_key_ref: ::core::option::Option, - /// Selects a key of a secret in the pod's namespace - /// +optional - #[prost(message, optional, tag = "4")] - pub secret_key_ref: ::core::option::Option, - /// FileKeyRef selects a key of the env file. - /// Requires the EnvFiles feature gate to be enabled. - /// - /// +featureGate=EnvFiles - /// +optional - #[prost(message, optional, tag = "5")] - pub file_key_ref: ::core::option::Option, -} -/// An EphemeralContainer is a temporary container that you may add to an existing Pod for -/// user-initiated activities such as debugging. Ephemeral containers have no resource or -/// scheduling guarantees, and they will not be restarted when they exit or when a Pod is -/// removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the -/// Pod to exceed its resource allocation. -/// -/// To add an ephemeral container, use the ephemeralcontainers subresource of an existing -/// Pod. Ephemeral containers may not be removed or restarted. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EphemeralContainer { - /// Ephemeral containers have all of the fields of Container, plus additional fields - /// specific to ephemeral containers. Fields in common with Container are in the - /// following inlined struct so than an EphemeralContainer may easily be converted - /// to a Container. - #[prost(message, optional, tag = "1")] - pub ephemeral_container_common: ::core::option::Option, - /// If set, the name of the container from PodSpec that this ephemeral container targets. - /// The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. - /// If not set then the ephemeral container uses the namespaces configured in the Pod spec. - /// - /// The container runtime must implement support for this feature. If the runtime does not - /// support namespace targeting then the result of setting this field is undefined. - /// +optional - #[prost(string, optional, tag = "2")] - pub target_container_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// EphemeralContainerCommon is a copy of all fields in Container to be inlined in -/// EphemeralContainer. This separate type allows easy conversion from EphemeralContainer -/// to Container and allows separate documentation for the fields of EphemeralContainer. -/// When a new field is added to Container it must be added here as well. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EphemeralContainerCommon { - /// Name of the ephemeral container specified as a DNS_LABEL. - /// This name must be unique among all containers, init containers and ephemeral containers. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Container image name. - /// More info: - #[prost(string, optional, tag = "2")] - pub image: ::core::option::Option<::prost::alloc::string::String>, - /// Entrypoint array. Not executed within a shell. - /// The image's ENTRYPOINT is used if this is not provided. - /// Variable references $(VAR_NAME) are expanded using the container's environment. If a variable - /// cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced - /// to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will - /// produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless - /// of whether the variable exists or not. Cannot be updated. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub command: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Arguments to the entrypoint. - /// The image's CMD is used if this is not provided. - /// Variable references $(VAR_NAME) are expanded using the container's environment. If a variable - /// cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced - /// to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will - /// produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless - /// of whether the variable exists or not. Cannot be updated. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub args: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Container's working directory. - /// If not specified, the container runtime's default will be used, which - /// might be configured in the container image. - /// Cannot be updated. - /// +optional - #[prost(string, optional, tag = "5")] - pub working_dir: ::core::option::Option<::prost::alloc::string::String>, - /// Ports are not allowed for ephemeral containers. - /// +optional - /// +patchMergeKey=containerPort - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=containerPort - /// +listMapKey=protocol - #[prost(message, repeated, tag = "6")] - pub ports: ::prost::alloc::vec::Vec, - /// List of sources to populate environment variables in the container. - /// The keys defined within a source may consist of any printable ASCII characters except '='. - /// When a key exists in multiple - /// sources, the value associated with the last source will take precedence. - /// Values defined by an Env with a duplicate key will take precedence. - /// Cannot be updated. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "19")] - pub env_from: ::prost::alloc::vec::Vec, - /// List of environment variables to set in the container. - /// Cannot be updated. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "7")] - pub env: ::prost::alloc::vec::Vec, - /// Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources - /// already allocated to the pod. - /// +optional - #[prost(message, optional, tag = "8")] - pub resources: ::core::option::Option, - /// Resources resize policy for the container. - /// +featureGate=InPlacePodVerticalScaling - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "23")] - pub resize_policy: ::prost::alloc::vec::Vec, - /// Restart policy for the container to manage the restart behavior of each - /// container within a pod. - /// You cannot set this field on ephemeral containers. - /// +featureGate=SidecarContainers - /// +optional - #[prost(string, optional, tag = "24")] - pub restart_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Represents a list of rules to be checked to determine if the - /// container should be restarted on exit. You cannot set this field on - /// ephemeral containers. - /// +featureGate=ContainerRestartRules - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "25")] - pub restart_policy_rules: ::prost::alloc::vec::Vec, - /// Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. - /// Cannot be updated. - /// +optional - /// +patchMergeKey=mountPath - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=mountPath - #[prost(message, repeated, tag = "9")] - pub volume_mounts: ::prost::alloc::vec::Vec, - /// volumeDevices is the list of block devices to be used by the container. - /// +patchMergeKey=devicePath - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=devicePath - /// +optional - #[prost(message, repeated, tag = "21")] - pub volume_devices: ::prost::alloc::vec::Vec, - /// Probes are not allowed for ephemeral containers. - /// +optional - #[prost(message, optional, tag = "10")] - pub liveness_probe: ::core::option::Option, - /// Probes are not allowed for ephemeral containers. - /// +optional - #[prost(message, optional, tag = "11")] - pub readiness_probe: ::core::option::Option, - /// Probes are not allowed for ephemeral containers. - /// +optional - #[prost(message, optional, tag = "22")] - pub startup_probe: ::core::option::Option, - /// Lifecycle is not allowed for ephemeral containers. - /// +optional - #[prost(message, optional, tag = "12")] - pub lifecycle: ::core::option::Option, - /// Optional: Path at which the file to which the container's termination message - /// will be written is mounted into the container's filesystem. - /// Message written is intended to be brief final status, such as an assertion failure message. - /// Will be truncated by the node if greater than 4096 bytes. The total message length across - /// all containers will be limited to 12kb. - /// Defaults to /dev/termination-log. - /// Cannot be updated. - /// +optional - #[prost(string, optional, tag = "13")] - pub termination_message_path: ::core::option::Option<::prost::alloc::string::String>, - /// Indicate how the termination message should be populated. File will use the contents of - /// terminationMessagePath to populate the container status message on both success and failure. - /// FallbackToLogsOnError will use the last chunk of container log output if the termination - /// message file is empty and the container exited with an error. - /// The log output is limited to 2048 bytes or 80 lines, whichever is smaller. - /// Defaults to File. - /// Cannot be updated. - /// +optional - #[prost(string, optional, tag = "20")] - pub termination_message_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Image pull policy. - /// One of Always, Never, IfNotPresent. - /// Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. - /// Cannot be updated. - /// More info: - /// +optional - #[prost(string, optional, tag = "14")] - pub image_pull_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Optional: SecurityContext defines the security options the ephemeral container should be run with. - /// If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. - /// +optional - #[prost(message, optional, tag = "15")] - pub security_context: ::core::option::Option, - /// Whether this container should allocate a buffer for stdin in the container runtime. If this - /// is not set, reads from stdin in the container will always result in EOF. - /// Default is false. - /// +optional - #[prost(bool, optional, tag = "16")] - pub stdin: ::core::option::Option, - /// Whether the container runtime should close the stdin channel after it has been opened by - /// a single attach. When stdin is true the stdin stream will remain open across multiple attach - /// sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the - /// first client attaches to stdin, and then remains open and accepts data until the client disconnects, - /// at which time stdin is closed and remains closed until the container is restarted. If this - /// flag is false, a container processes that reads from stdin will never receive an EOF. - /// Default is false - /// +optional - #[prost(bool, optional, tag = "17")] - pub stdin_once: ::core::option::Option, - /// Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. - /// Default is false. - /// +optional - #[prost(bool, optional, tag = "18")] - pub tty: ::core::option::Option, -} -/// Represents an ephemeral volume that is handled by a normal storage driver. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EphemeralVolumeSource { - /// Will be used to create a stand-alone PVC to provision the volume. - /// The pod in which this EphemeralVolumeSource is embedded will be the - /// owner of the PVC, i.e. the PVC will be deleted together with the - /// pod. The name of the PVC will be `-` where - /// `` is the name from the `PodSpec.Volumes` array - /// entry. Pod validation will reject the pod if the concatenated name - /// is not valid for a PVC (for example, too long). - /// - /// An existing PVC with that name that is not owned by the pod - /// will *not* be used for the pod to avoid using an unrelated - /// volume by mistake. Starting the pod is then blocked until - /// the unrelated PVC is removed. If such a pre-created PVC is - /// meant to be used by the pod, the PVC has to updated with an - /// owner reference to the pod once the pod exists. Normally - /// this should not be necessary, but it may be useful when - /// manually reconstructing a broken cluster. - /// - /// This field is read-only and no changes will be made by Kubernetes - /// to the PVC after it has been created. - /// - /// Required, must not be nil. - #[prost(message, optional, tag = "1")] - pub volume_claim_template: ::core::option::Option, -} -/// Event is a report of an event somewhere in the cluster. Events -/// have a limited retention time and triggers and messages may evolve -/// with time. Event consumers should not rely on the timing of an event -/// with a given Reason reflecting a consistent underlying trigger, or the -/// continued existence of events with that Reason. Events should be -/// treated as informative, best-effort, supplemental data. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Event { - /// Standard object's metadata. - /// More info: - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The object that this event is about. - #[prost(message, optional, tag = "2")] - pub involved_object: ::core::option::Option, - /// This should be a short, machine understandable string that gives the reason - /// for the transition into the object's current status. - /// TODO: provide exact specification for format. - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human-readable description of the status of this operation. - /// TODO: decide on maximum length. - /// +optional - #[prost(string, optional, tag = "4")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// The component reporting this event. Should be a short machine understandable string. - /// +optional - #[prost(message, optional, tag = "5")] - pub source: ::core::option::Option, - /// The time at which the event was first recorded. (Time of server receipt is in TypeMeta.) - /// +optional - #[prost(message, optional, tag = "6")] - pub first_timestamp: ::core::option::Option, - /// The time at which the most recent occurrence of this event was recorded. - /// +optional - #[prost(message, optional, tag = "7")] - pub last_timestamp: ::core::option::Option, - /// The number of times this event has occurred. - /// +optional - #[prost(int32, optional, tag = "8")] - pub count: ::core::option::Option, - /// Type of this event (Normal, Warning), new types could be added in the future - /// +optional - #[prost(string, optional, tag = "9")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Time when this Event was first observed. - /// +optional - #[prost(message, optional, tag = "10")] - pub event_time: ::core::option::Option, - /// Data about the Event series this event represents or nil if it's a singleton Event. - /// +optional - #[prost(message, optional, tag = "11")] - pub series: ::core::option::Option, - /// What action was taken/failed regarding to the Regarding object. - /// +optional - #[prost(string, optional, tag = "12")] - pub action: ::core::option::Option<::prost::alloc::string::String>, - /// Optional secondary object for more complex actions. - /// +optional - #[prost(message, optional, tag = "13")] - pub related: ::core::option::Option, - /// Name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. - /// +optional - #[prost(string, optional, tag = "14")] - pub reporting_component: ::core::option::Option<::prost::alloc::string::String>, - /// ID of the controller instance, e.g. `kubelet-xyzf`. - /// +optional - #[prost(string, optional, tag = "15")] - pub reporting_instance: ::core::option::Option<::prost::alloc::string::String>, -} -/// EventList is a list of events. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EventList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of events - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// EventSeries contain information on series of events, i.e. thing that was/is happening -/// continuously for some time. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EventSeries { - /// Number of occurrences in this series up to the last heartbeat time - #[prost(int32, optional, tag = "1")] - pub count: ::core::option::Option, - /// Time of the last occurrence observed - #[prost(message, optional, tag = "2")] - pub last_observed_time: - ::core::option::Option, -} -/// EventSource contains information for an event. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EventSource { - /// Component from which the event is generated. - /// +optional - #[prost(string, optional, tag = "1")] - pub component: ::core::option::Option<::prost::alloc::string::String>, - /// Node name on which the event is generated. - /// +optional - #[prost(string, optional, tag = "2")] - pub host: ::core::option::Option<::prost::alloc::string::String>, -} -/// ExecAction describes a "run in container" action. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExecAction { - /// Command is the command line to execute inside the container, the working directory for the - /// command is root ('/') in the container's filesystem. The command is simply exec'd, it is - /// not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use - /// a shell, you need to explicitly call out to that shell. - /// Exit status of 0 is treated as live/healthy and non-zero is unhealthy. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub command: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Represents a Fibre Channel volume. -/// Fibre Channel volumes can only be mounted as read/write once. -/// Fibre Channel volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FcVolumeSource { - /// targetWWNs is Optional: FC target worldwide names (WWNs) - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub target_ww_ns: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// lun is Optional: FC target lun number - /// +optional - #[prost(int32, optional, tag = "2")] - pub lun: ::core::option::Option, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "3")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly is Optional: Defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, - /// wwids Optional: FC volume world wide identifiers (wwids) - /// Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub wwids: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// FileKeySelector selects a key of the env file. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FileKeySelector { - /// The name of the volume mount containing the env file. - /// +required - #[prost(string, optional, tag = "1")] - pub volume_name: ::core::option::Option<::prost::alloc::string::String>, - /// The path within the volume from which to select the file. - /// Must be relative and may not contain the '..' path or start with '..'. - /// +required - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// The key within the env file. An invalid key will prevent the pod from starting. - /// The keys defined within a source may consist of any printable ASCII characters except '='. - /// During Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters. - /// +required - #[prost(string, optional, tag = "3")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// Specify whether the file or its key must be defined. If the file or key - /// does not exist, then the env var is not published. - /// If optional is set to true and the specified key does not exist, - /// the environment variable will not be set in the Pod's containers. - /// - /// If optional is set to false and the specified key does not exist, - /// an error will be returned during Pod creation. - /// +optional - /// +default=false - #[prost(bool, optional, tag = "4")] - pub optional: ::core::option::Option, -} -/// FlexPersistentVolumeSource represents a generic persistent volume resource that is -/// provisioned/attached using an exec based plugin. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlexPersistentVolumeSource { - /// driver is the name of the driver to use for this volume. - #[prost(string, optional, tag = "1")] - pub driver: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the Filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script. - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef is Optional: SecretRef is reference to the secret object containing - /// sensitive information to pass to the plugin scripts. This may be - /// empty if no secret object is specified. If the secret object - /// contains more than one secret, all secrets are passed to the plugin - /// scripts. - /// +optional - #[prost(message, optional, tag = "3")] - pub secret_ref: ::core::option::Option, - /// readOnly is Optional: defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, - /// options is Optional: this field holds extra command options if any. - /// +optional - #[prost(btree_map = "string, string", tag = "5")] - pub options: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, -} -/// FlexVolume represents a generic volume resource that is -/// provisioned/attached using an exec based plugin. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlexVolumeSource { - /// driver is the name of the driver to use for this volume. - #[prost(string, optional, tag = "1")] - pub driver: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script. - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef is Optional: secretRef is reference to the secret object containing - /// sensitive information to pass to the plugin scripts. This may be - /// empty if no secret object is specified. If the secret object - /// contains more than one secret, all secrets are passed to the plugin - /// scripts. - /// +optional - #[prost(message, optional, tag = "3")] - pub secret_ref: ::core::option::Option, - /// readOnly is Optional: defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, - /// options is Optional: this field holds extra command options if any. - /// +optional - #[prost(btree_map = "string, string", tag = "5")] - pub options: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, -} -/// Represents a Flocker volume mounted by the Flocker agent. -/// One and only one of datasetName and datasetUUID should be set. -/// Flocker volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlockerVolumeSource { - /// datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker - /// should be considered as deprecated - /// +optional - #[prost(string, optional, tag = "1")] - pub dataset_name: ::core::option::Option<::prost::alloc::string::String>, - /// datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset - /// +optional - #[prost(string, optional, tag = "2")] - pub dataset_uuid: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents a Persistent Disk resource in Google Compute Engine. -/// -/// A GCE PD must exist before mounting to a container. The disk must -/// also be in the same GCE project and zone as the kubelet. A GCE PD -/// can only be mounted as read/write once or read-only many times. GCE -/// PDs support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GcePersistentDiskVolumeSource { - /// pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. - /// More info: - #[prost(string, optional, tag = "1")] - pub pd_name: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is filesystem type of the volume that you want to mount. - /// Tip: Ensure that the filesystem type is supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// partition is the partition in the volume that you want to mount. - /// If omitted, the default is to mount by volume name. - /// Examples: For volume /dev/sda1, you specify the partition as "1". - /// Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). - /// More info: - /// +optional - #[prost(int32, optional, tag = "3")] - pub partition: ::core::option::Option, - /// readOnly here will force the ReadOnly setting in VolumeMounts. - /// Defaults to false. - /// More info: - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, -} -/// GRPCAction specifies an action involving a GRPC service. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GrpcAction { - /// Port number of the gRPC service. Number must be in the range 1 to 65535. - #[prost(int32, optional, tag = "1")] - pub port: ::core::option::Option, - /// Service is the name of the service to place in the gRPC HealthCheckRequest - /// (see ). - /// - /// If this is not specified, the default behavior is defined by gRPC. - /// +optional - /// +default="" - #[prost(string, optional, tag = "2")] - pub service: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents a volume that is populated with the contents of a git repository. -/// Git repo volumes do not support ownership management. -/// Git repo volumes support SELinux relabeling. -/// -/// DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an -/// EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir -/// into the Pod's container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GitRepoVolumeSource { - /// repository is the URL - #[prost(string, optional, tag = "1")] - pub repository: ::core::option::Option<::prost::alloc::string::String>, - /// revision is the commit hash for the specified revision. - /// +optional - #[prost(string, optional, tag = "2")] - pub revision: ::core::option::Option<::prost::alloc::string::String>, - /// directory is the target directory name. - /// Must not contain or start with '..'. If '.' is supplied, the volume directory will be the - /// git repository. Otherwise, if specified, the volume will contain the git repository in - /// the subdirectory with the given name. - /// +optional - #[prost(string, optional, tag = "3")] - pub directory: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents a Glusterfs mount that lasts the lifetime of a pod. -/// Glusterfs volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GlusterfsPersistentVolumeSource { - /// endpoints is the endpoint name that details Glusterfs topology. - /// More info: - #[prost(string, optional, tag = "1")] - pub endpoints: ::core::option::Option<::prost::alloc::string::String>, - /// path is the Glusterfs volume path. - /// More info: - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly here will force the Glusterfs volume to be mounted with read-only permissions. - /// Defaults to false. - /// More info: - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// endpointsNamespace is the namespace that contains Glusterfs endpoint. - /// If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. - /// More info: - /// +optional - #[prost(string, optional, tag = "4")] - pub endpoints_namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents a Glusterfs mount that lasts the lifetime of a pod. -/// Glusterfs volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GlusterfsVolumeSource { - /// endpoints is the endpoint name that details Glusterfs topology. - #[prost(string, optional, tag = "1")] - pub endpoints: ::core::option::Option<::prost::alloc::string::String>, - /// path is the Glusterfs volume path. - /// More info: - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly here will force the Glusterfs volume to be mounted with read-only permissions. - /// Defaults to false. - /// More info: - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, -} -/// HTTPGetAction describes an action based on HTTP Get requests. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HttpGetAction { - /// Path to access on the HTTP server. - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// Name or number of the port to access on the container. - /// Number must be in the range 1 to 65535. - /// Name must be an IANA_SVC_NAME. - #[prost(message, optional, tag = "2")] - pub port: ::core::option::Option, - /// Host name to connect to, defaults to the pod IP. You probably want to set - /// "Host" in httpHeaders instead. - /// +optional - #[prost(string, optional, tag = "3")] - pub host: ::core::option::Option<::prost::alloc::string::String>, - /// Scheme to use for connecting to the host. - /// Defaults to HTTP. - /// +optional - #[prost(string, optional, tag = "4")] - pub scheme: ::core::option::Option<::prost::alloc::string::String>, - /// Custom headers to set in the request. HTTP allows repeated headers. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "5")] - pub http_headers: ::prost::alloc::vec::Vec, -} -/// HTTPHeader describes a custom header to be used in HTTP probes -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HttpHeader { - /// The header field name. - /// This will be canonicalized upon output, so case-variant names will be understood as the same header. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// The header field value - #[prost(string, optional, tag = "2")] - pub value: ::core::option::Option<::prost::alloc::string::String>, -} -/// HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the -/// pod's hosts file. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HostAlias { - /// IP address of the host file entry. - /// +required - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, - /// Hostnames for the above IP address. - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub hostnames: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// HostIP represents a single IP address allocated to the host. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HostIp { - /// IP is the IP address assigned to the host - /// +required - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents a host path mapped into a pod. -/// Host path volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HostPathVolumeSource { - /// path of the directory on the host. - /// If the path is a symlink, it will follow the link to the real path. - /// More info: - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// type for HostPath Volume - /// Defaults to "" - /// More info: - /// +optional - #[prost(string, optional, tag = "2")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, -} -/// ISCSIPersistentVolumeSource represents an ISCSI disk. -/// ISCSI volumes can only be mounted as read/write once. -/// ISCSI volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IscsiPersistentVolumeSource { - /// targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port - /// is other than default (typically TCP ports 860 and 3260). - #[prost(string, optional, tag = "1")] - pub target_portal: ::core::option::Option<::prost::alloc::string::String>, - /// iqn is Target iSCSI Qualified Name. - #[prost(string, optional, tag = "2")] - pub iqn: ::core::option::Option<::prost::alloc::string::String>, - /// lun is iSCSI Target Lun number. - #[prost(int32, optional, tag = "3")] - pub lun: ::core::option::Option, - /// iscsiInterface is the interface Name that uses an iSCSI transport. - /// Defaults to 'default' (tcp). - /// +optional - /// +default="default" - #[prost(string, optional, tag = "4")] - pub iscsi_interface: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type of the volume that you want to mount. - /// Tip: Ensure that the filesystem type is supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "5")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly here will force the ReadOnly setting in VolumeMounts. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "6")] - pub read_only: ::core::option::Option, - /// portals is the iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port - /// is other than default (typically TCP ports 860 and 3260). - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "7")] - pub portals: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication - /// +optional - #[prost(bool, optional, tag = "8")] - pub chap_auth_discovery: ::core::option::Option, - /// chapAuthSession defines whether support iSCSI Session CHAP authentication - /// +optional - #[prost(bool, optional, tag = "11")] - pub chap_auth_session: ::core::option::Option, - /// secretRef is the CHAP Secret for iSCSI target and initiator authentication - /// +optional - #[prost(message, optional, tag = "10")] - pub secret_ref: ::core::option::Option, - /// initiatorName is the custom iSCSI Initiator Name. - /// If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface - /// : will be created for the connection. - /// +optional - #[prost(string, optional, tag = "12")] - pub initiator_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents an ISCSI disk. -/// ISCSI volumes can only be mounted as read/write once. -/// ISCSI volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IscsiVolumeSource { - /// targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port - /// is other than default (typically TCP ports 860 and 3260). - #[prost(string, optional, tag = "1")] - pub target_portal: ::core::option::Option<::prost::alloc::string::String>, - /// iqn is the target iSCSI Qualified Name. - #[prost(string, optional, tag = "2")] - pub iqn: ::core::option::Option<::prost::alloc::string::String>, - /// lun represents iSCSI Target Lun number. - #[prost(int32, optional, tag = "3")] - pub lun: ::core::option::Option, - /// iscsiInterface is the interface Name that uses an iSCSI transport. - /// Defaults to 'default' (tcp). - /// +optional - /// +default="default" - #[prost(string, optional, tag = "4")] - pub iscsi_interface: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type of the volume that you want to mount. - /// Tip: Ensure that the filesystem type is supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "5")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly here will force the ReadOnly setting in VolumeMounts. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "6")] - pub read_only: ::core::option::Option, - /// portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port - /// is other than default (typically TCP ports 860 and 3260). - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "7")] - pub portals: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication - /// +optional - #[prost(bool, optional, tag = "8")] - pub chap_auth_discovery: ::core::option::Option, - /// chapAuthSession defines whether support iSCSI Session CHAP authentication - /// +optional - #[prost(bool, optional, tag = "11")] - pub chap_auth_session: ::core::option::Option, - /// secretRef is the CHAP Secret for iSCSI target and initiator authentication - /// +optional - #[prost(message, optional, tag = "10")] - pub secret_ref: ::core::option::Option, - /// initiatorName is the custom iSCSI Initiator Name. - /// If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface - /// : will be created for the connection. - /// +optional - #[prost(string, optional, tag = "12")] - pub initiator_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// ImageVolumeSource represents a image volume resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ImageVolumeSource { - /// Required: Image or artifact reference to be used. - /// Behaves in the same way as pod.spec.containers\[*\].image. - /// Pull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets. - /// More info: - /// This field is optional to allow higher level config management to default or override - /// container images in workload controllers like Deployments and StatefulSets. - /// +optional - #[prost(string, optional, tag = "1")] - pub reference: ::core::option::Option<::prost::alloc::string::String>, - /// Policy for pulling OCI objects. Possible values are: - /// Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails. - /// Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present. - /// IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails. - /// Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. - /// +optional - #[prost(string, optional, tag = "2")] - pub pull_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// Maps a string key to a path within a volume. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct KeyToPath { - /// key is the key to project. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// path is the relative path of the file to map the key to. - /// May not be an absolute path. - /// May not contain the path element '..'. - /// May not start with the string '..'. - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// mode is Optional: mode bits used to set permissions on this file. - /// Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. - /// YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. - /// If not specified, the volume defaultMode will be used. - /// This might be in conflict with other options that affect the file - /// mode, like fsGroup, and the result can be other mode bits set. - /// +optional - #[prost(int32, optional, tag = "3")] - pub mode: ::core::option::Option, -} -/// Lifecycle describes actions that the management system should take in response to container lifecycle -/// events. For the PostStart and PreStop lifecycle handlers, management of the container blocks -/// until the action is complete, unless the container process fails, in which case the handler is aborted. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Lifecycle { - /// PostStart is called immediately after a container is created. If the handler fails, - /// the container is terminated and restarted according to its restart policy. - /// Other management of the container blocks until the hook completes. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub post_start: ::core::option::Option, - /// PreStop is called immediately before a container is terminated due to an - /// API request or management event such as liveness/startup probe failure, - /// preemption, resource contention, etc. The handler is not called if the - /// container crashes or exits. The Pod's termination grace period countdown begins before the - /// PreStop hook is executed. Regardless of the outcome of the handler, the - /// container will eventually terminate within the Pod's termination grace - /// period (unless delayed by finalizers). Other management of the container blocks until the hook completes - /// or until the termination grace period is reached. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub pre_stop: ::core::option::Option, - /// StopSignal defines which signal will be sent to a container when it is being stopped. - /// If not specified, the default is defined by the container runtime in use. - /// StopSignal can only be set for Pods with a non-empty .spec.os.name - /// +optional - #[prost(string, optional, tag = "3")] - pub stop_signal: ::core::option::Option<::prost::alloc::string::String>, -} -/// LifecycleHandler defines a specific action that should be taken in a lifecycle -/// hook. One and only one of the fields, except TCPSocket must be specified. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LifecycleHandler { - /// Exec specifies a command to execute in the container. - /// +optional - #[prost(message, optional, tag = "1")] - pub exec: ::core::option::Option, - /// HTTPGet specifies an HTTP GET request to perform. - /// +optional - #[prost(message, optional, tag = "2")] - pub http_get: ::core::option::Option, - /// Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept - /// for backward compatibility. There is no validation of this field and - /// lifecycle hooks will fail at runtime when it is specified. - /// +optional - #[prost(message, optional, tag = "3")] - pub tcp_socket: ::core::option::Option, - /// Sleep represents a duration that the container should sleep. - /// +featureGate=PodLifecycleSleepAction - /// +optional - #[prost(message, optional, tag = "4")] - pub sleep: ::core::option::Option, -} -/// LimitRange sets resource usage limits for each kind of resource in a Namespace. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LimitRange { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the limits enforced. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// LimitRangeItem defines a min/max usage limit for any resource that matches on kind. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LimitRangeItem { - /// Type of resource that this limit applies to. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Max usage constraints on this kind by resource name. - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub max: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Min usage constraints on this kind by resource name. - /// +optional - #[prost(btree_map = "string, message", tag = "3")] - pub min: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Default resource requirement limit value by resource name if resource limit is omitted. - /// +optional - #[prost(btree_map = "string, message", tag = "4")] - pub default: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// DefaultRequest is the default resource requirement request value by resource name if resource request is omitted. - /// +optional - #[prost(btree_map = "string, message", tag = "5")] - pub default_request: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// MaxLimitRequestRatio if specified, the named resource must have a request and limit that are both non-zero where limit divided by request is less than or equal to the enumerated value; this represents the max burst for the named resource. - /// +optional - #[prost(btree_map = "string, message", tag = "6")] - pub max_limit_request_ratio: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// LimitRangeList is a list of LimitRange items. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LimitRangeList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of LimitRange objects. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// LimitRangeSpec defines a min/max usage limit for resources that match on kind. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LimitRangeSpec { - /// Limits is the list of LimitRangeItem objects that are enforced. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub limits: ::prost::alloc::vec::Vec, -} -/// LinuxContainerUser represents user identity information in Linux containers -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LinuxContainerUser { - /// UID is the primary uid initially attached to the first process in the container - #[prost(int64, optional, tag = "1")] - pub uid: ::core::option::Option, - /// GID is the primary gid initially attached to the first process in the container - #[prost(int64, optional, tag = "2")] - pub gid: ::core::option::Option, - /// SupplementalGroups are the supplemental groups initially attached to the first process in the container - /// +optional - /// +listType=atomic - #[prost(int64, repeated, packed = "false", tag = "3")] - pub supplemental_groups: ::prost::alloc::vec::Vec, -} -/// List holds a list of objects, which may not be known by the server. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct List { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of objects - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// LoadBalancerIngress represents the status of a load-balancer ingress point: -/// traffic intended for the service should be sent to an ingress point. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LoadBalancerIngress { - /// IP is set for load-balancer ingress points that are IP based - /// (typically GCE or OpenStack load-balancers) - /// +optional - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, - /// Hostname is set for load-balancer ingress points that are DNS based - /// (typically AWS load-balancers) - /// +optional - #[prost(string, optional, tag = "2")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// IPMode specifies how the load-balancer IP behaves, and may only be specified when the ip field is specified. - /// Setting this to "VIP" indicates that traffic is delivered to the node with - /// the destination set to the load-balancer's IP and port. - /// Setting this to "Proxy" indicates that traffic is delivered to the node or pod with - /// the destination set to the node's IP and node port or the pod's IP and port. - /// Service implementations may use this information to adjust traffic routing. - /// +optional - #[prost(string, optional, tag = "3")] - pub ip_mode: ::core::option::Option<::prost::alloc::string::String>, - /// Ports is a list of records of service ports - /// If used, every port defined in the service should have an entry in it - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub ports: ::prost::alloc::vec::Vec, -} -/// LoadBalancerStatus represents the status of a load-balancer. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct LoadBalancerStatus { - /// Ingress is a list containing ingress points for the load-balancer. - /// Traffic intended for the service should be sent to these ingress points. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ingress: ::prost::alloc::vec::Vec, -} -/// LocalObjectReference contains enough information to let you locate the -/// referenced object inside the same namespace. -/// --- -/// New uses of this type are discouraged because of difficulty describing its usage when embedded in APIs. -/// 1. Invalid usage help. It is impossible to add specific help for individual usage. In most embedded usages, there are particular -/// restrictions like, "must refer only to types A and B" or "UID not honored" or "name must be restricted". -/// Those cannot be well described when embedded. -/// 2. Inconsistent validation. Because the usages are different, the validation rules are different by usage, which makes it hard for users to predict what will happen. -/// 3. We cannot easily change it. Because this type is embedded in many locations, updates to this type -/// will affect numerous schemas. Don't make new APIs embed an underspecified API type they do not control. -/// -/// Instead of using this type, create a locally provided and used type that is well-focused on your reference. -/// For example, ServiceReferences for admission registration: . -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LocalObjectReference { - /// Name of the referent. - /// This field is effectively required, but due to backwards compatibility is - /// allowed to be empty. Instances of this type with an empty value here are - /// almost certainly wrong. - /// More info: - /// +optional - /// +default="" - /// +kubebuilder:default="" - /// TODO: Drop `kubebuilder:default` when controller-gen doesn't need it - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Local represents directly-attached storage with node affinity -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LocalVolumeSource { - /// path of the full path to the volume on the node. - /// It can be either a directory or block device (disk, partition, ...). - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// It applies only when the Path is a block device. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". The default value is to auto-select a filesystem if unspecified. - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, -} -/// ModifyVolumeStatus represents the status object of ControllerModifyVolume operation -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ModifyVolumeStatus { - /// targetVolumeAttributesClassName is the name of the VolumeAttributesClass the PVC currently being reconciled - #[prost(string, optional, tag = "1")] - pub target_volume_attributes_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// status is the status of the ControllerModifyVolume operation. It can be in any of following states: - /// - Pending - /// Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as - /// the specified VolumeAttributesClass not existing. - /// - InProgress - /// InProgress indicates that the volume is being modified. - /// - Infeasible - /// Infeasible indicates that the request has been rejected as invalid by the CSI driver. To - /// resolve the error, a valid VolumeAttributesClass needs to be specified. - /// Note: New statuses can be added in the future. Consumers should check for unknown statuses and fail appropriately. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents an NFS mount that lasts the lifetime of a pod. -/// NFS volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NfsVolumeSource { - /// server is the hostname or IP address of the NFS server. - /// More info: - #[prost(string, optional, tag = "1")] - pub server: ::core::option::Option<::prost::alloc::string::String>, - /// path that is exported by the NFS server. - /// More info: - #[prost(string, optional, tag = "2")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly here will force the NFS export to be mounted with read-only permissions. - /// Defaults to false. - /// More info: - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, -} -/// Namespace provides a scope for Names. -/// Use of multiple namespaces is optional. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Namespace { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the behavior of the Namespace. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status describes the current status of a Namespace. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// NamespaceCondition contains details about state of namespace. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NamespaceCondition { - /// Type of namespace controller condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_transition_time: - ::core::option::Option, - /// Unique, one-word, CamelCase reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Human-readable message indicating details about last transition. - /// +optional - #[prost(string, optional, tag = "6")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// NamespaceList is a list of Namespaces. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NamespaceList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of Namespace objects in the list. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// NamespaceSpec describes the attributes on a Namespace. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NamespaceSpec { - /// Finalizers is an opaque list of values that must be empty to permanently remove object from storage. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub finalizers: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// NamespaceStatus is information about the current status of a Namespace. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NamespaceStatus { - /// Phase is the current lifecycle phase of the namespace. - /// More info: - /// +optional - #[prost(string, optional, tag = "1")] - pub phase: ::core::option::Option<::prost::alloc::string::String>, - /// Represents the latest available observations of a namespace's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "2")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// Node is a worker node in Kubernetes. -/// Each node will have a unique identifier in the cache (i.e. in etcd). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Node { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the behavior of a node. - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the node. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// NodeAddress contains information for the node's address. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeAddress { - /// Node address type, one of Hostname, ExternalIP or InternalIP. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// The node address. - #[prost(string, optional, tag = "2")] - pub address: ::core::option::Option<::prost::alloc::string::String>, -} -/// Node affinity is a group of node affinity scheduling rules. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NodeAffinity { - /// If the affinity requirements specified by this field are not met at - /// scheduling time, the pod will not be scheduled onto the node. - /// If the affinity requirements specified by this field cease to be met - /// at some point during pod execution (e.g. due to an update), the system - /// may or may not try to eventually evict the pod from its node. - /// +optional - #[prost(message, optional, tag = "1")] - pub required_during_scheduling_ignored_during_execution: ::core::option::Option, - /// The scheduler will prefer to schedule pods to nodes that satisfy - /// the affinity expressions specified by this field, but it may choose - /// a node that violates one or more of the expressions. The node that is - /// most preferred is the one with the greatest sum of weights, i.e. - /// for each node that meets all of the scheduling requirements (resource - /// request, requiredDuringScheduling affinity expressions, etc.), - /// compute a sum by iterating through the elements of this field and adding - /// "weight" to the sum if the node matches the corresponding matchExpressions; the - /// node(s) with the highest sum are the most preferred. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub preferred_during_scheduling_ignored_during_execution: - ::prost::alloc::vec::Vec, -} -/// NodeCondition contains condition information for a node. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeCondition { - /// Type of node condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time we got an update on a given condition. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_heartbeat_time: - ::core::option::Option, - /// Last time the condition transit from one status to another. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_transition_time: - ::core::option::Option, - /// (brief) reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Human readable message indicating details about last transition. - /// +optional - #[prost(string, optional, tag = "6")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. -/// This API is deprecated since 1.22 -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeConfigSource { - /// ConfigMap is a reference to a Node's ConfigMap - #[prost(message, optional, tag = "2")] - pub config_map: ::core::option::Option, -} -/// NodeConfigStatus describes the status of the config assigned by Node.Spec.ConfigSource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeConfigStatus { - /// Assigned reports the checkpointed config the node will try to use. - /// When Node.Spec.ConfigSource is updated, the node checkpoints the associated - /// config payload to local disk, along with a record indicating intended - /// config. The node refers to this record to choose its config checkpoint, and - /// reports this record in Assigned. Assigned only updates in the status after - /// the record has been checkpointed to disk. When the Kubelet is restarted, - /// it tries to make the Assigned config the Active config by loading and - /// validating the checkpointed payload identified by Assigned. - /// +optional - #[prost(message, optional, tag = "1")] - pub assigned: ::core::option::Option, - /// Active reports the checkpointed config the node is actively using. - /// Active will represent either the current version of the Assigned config, - /// or the current LastKnownGood config, depending on whether attempting to use the - /// Assigned config results in an error. - /// +optional - #[prost(message, optional, tag = "2")] - pub active: ::core::option::Option, - /// LastKnownGood reports the checkpointed config the node will fall back to - /// when it encounters an error attempting to use the Assigned config. - /// The Assigned config becomes the LastKnownGood config when the node determines - /// that the Assigned config is stable and correct. - /// This is currently implemented as a 10-minute soak period starting when the local - /// record of Assigned config is updated. If the Assigned config is Active at the end - /// of this period, it becomes the LastKnownGood. Note that if Spec.ConfigSource is - /// reset to nil (use local defaults), the LastKnownGood is also immediately reset to nil, - /// because the local default config is always assumed good. - /// You should not make assumptions about the node's method of determining config stability - /// and correctness, as this may change or become configurable in the future. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_known_good: ::core::option::Option, - /// Error describes any problems reconciling the Spec.ConfigSource to the Active config. - /// Errors may occur, for example, attempting to checkpoint Spec.ConfigSource to the local Assigned - /// record, attempting to checkpoint the payload associated with Spec.ConfigSource, attempting - /// to load or validate the Assigned config, etc. - /// Errors may occur at different points while syncing config. Earlier errors (e.g. download or - /// checkpointing errors) will not result in a rollback to LastKnownGood, and may resolve across - /// Kubelet retries. Later errors (e.g. loading or validating a checkpointed config) will result in - /// a rollback to LastKnownGood. In the latter case, it is usually possible to resolve the error - /// by fixing the config assigned in Spec.ConfigSource. - /// You can find additional information for debugging by searching the error message in the Kubelet log. - /// Error is a human-readable description of the error state; machines can check whether or not Error - /// is empty, but should not rely on the stability of the Error text across Kubelet versions. - /// +optional - #[prost(string, optional, tag = "4")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// NodeDaemonEndpoints lists ports opened by daemons running on the Node. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeDaemonEndpoints { - /// Endpoint on which Kubelet is listening. - /// +optional - #[prost(message, optional, tag = "1")] - pub kubelet_endpoint: ::core::option::Option, -} -/// NodeFeatures describes the set of features implemented by the CRI implementation. -/// The features contained in the NodeFeatures should depend only on the cri implementation -/// independent of runtime handlers. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeFeatures { - /// SupplementalGroupsPolicy is set to true if the runtime supports SupplementalGroupsPolicy and ContainerUser. - /// +optional - #[prost(bool, optional, tag = "1")] - pub supplemental_groups_policy: ::core::option::Option, -} -/// NodeList is the whole list of all Nodes which have been registered with master. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NodeList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of nodes - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// NodeProxyOptions is the query options to a Node's proxy call. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeProxyOptions { - /// Path is the URL path to use for the current proxy request to node. - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, -} -/// NodeRuntimeHandler is a set of runtime handler information. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeRuntimeHandler { - /// Runtime handler name. - /// Empty for the default runtime handler. - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Supported features. - /// +optional - #[prost(message, optional, tag = "2")] - pub features: ::core::option::Option, -} -/// NodeRuntimeHandlerFeatures is a set of features implemented by the runtime handler. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeRuntimeHandlerFeatures { - /// RecursiveReadOnlyMounts is set to true if the runtime handler supports RecursiveReadOnlyMounts. - /// +featureGate=RecursiveReadOnlyMounts - /// +optional - #[prost(bool, optional, tag = "1")] - pub recursive_read_only_mounts: ::core::option::Option, - /// UserNamespaces is set to true if the runtime handler supports UserNamespaces, including for volumes. - /// +featureGate=UserNamespacesSupport - /// +optional - #[prost(bool, optional, tag = "2")] - pub user_namespaces: ::core::option::Option, -} -/// A node selector represents the union of the results of one or more label queries -/// over a set of nodes; that is, it represents the OR of the selectors represented -/// by the node selector terms. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NodeSelector { - /// Required. A list of node selector terms. The terms are ORed. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub node_selector_terms: ::prost::alloc::vec::Vec, -} -/// A node selector requirement is a selector that contains values, a key, and an operator -/// that relates the key and values. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeSelectorRequirement { - /// The label key that the selector applies to. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// Represents a key's relationship to a set of values. - /// Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt. - #[prost(string, optional, tag = "2")] - pub operator: ::core::option::Option<::prost::alloc::string::String>, - /// An array of string values. If the operator is In or NotIn, - /// the values array must be non-empty. If the operator is Exists or DoesNotExist, - /// the values array must be empty. If the operator is Gt or Lt, the values - /// array must have a single element, which will be interpreted as an integer. - /// This array is replaced during a strategic merge patch. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub values: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// A null or empty node selector term matches no objects. The requirements of -/// them are ANDed. -/// The TopologySelectorTerm type implements a subset of the NodeSelectorTerm. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NodeSelectorTerm { - /// A list of node selector requirements by node's labels. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub match_expressions: ::prost::alloc::vec::Vec, - /// A list of node selector requirements by node's fields. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub match_fields: ::prost::alloc::vec::Vec, -} -/// NodeSpec describes the attributes that a node is created with. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NodeSpec { - /// PodCIDR represents the pod IP range assigned to the node. - /// +optional - #[prost(string, optional, tag = "1")] - pub pod_cidr: ::core::option::Option<::prost::alloc::string::String>, - /// podCIDRs represents the IP ranges assigned to the node for usage by Pods on that node. If this - /// field is specified, the 0th entry must match the podCIDR field. It may contain at most 1 value for - /// each of IPv4 and IPv6. - /// +optional - /// +patchStrategy=merge - /// +listType=set - #[prost(string, repeated, tag = "7")] - pub pod_cid_rs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ID of the node assigned by the cloud provider in the format: :// - /// +optional - #[prost(string, optional, tag = "3")] - pub provider_id: ::core::option::Option<::prost::alloc::string::String>, - /// Unschedulable controls node schedulability of new pods. By default, node is schedulable. - /// More info: - /// +optional - #[prost(bool, optional, tag = "4")] - pub unschedulable: ::core::option::Option, - /// If specified, the node's taints. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "5")] - pub taints: ::prost::alloc::vec::Vec, - /// Deprecated: Previously used to specify the source of the node's configuration for the DynamicKubeletConfig feature. This feature is removed. - /// +optional - #[prost(message, optional, tag = "6")] - pub config_source: ::core::option::Option, - /// Deprecated. Not all kubelets will set this field. Remove field after 1.13. - /// see: - /// +optional - #[prost(string, optional, tag = "2")] - pub external_id: ::core::option::Option<::prost::alloc::string::String>, -} -/// NodeStatus is information about the current status of a node. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NodeStatus { - /// Capacity represents the total resources of a node. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub capacity: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Allocatable represents the resources of a node that are available for scheduling. - /// Defaults to Capacity. - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub allocatable: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// NodePhase is the recently observed lifecycle phase of the node. - /// More info: - /// The field is never populated, and now is deprecated. - /// +optional - #[prost(string, optional, tag = "3")] - pub phase: ::core::option::Option<::prost::alloc::string::String>, - /// Conditions is an array of current observed node conditions. - /// More info: - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "4")] - pub conditions: ::prost::alloc::vec::Vec, - /// List of addresses reachable to the node. - /// Queried from cloud provider, if available. - /// More info: - /// Note: This field is declared as mergeable, but the merge key is not sufficiently - /// unique, which can cause data corruption when it is merged. Callers should instead - /// use a full-replacement patch. See for an example. - /// Consumers should assume that addresses can change during the - /// lifetime of a Node. However, there are some exceptions where this may not - /// be possible, such as Pods that inherit a Node's address in its own status or - /// consumers of the downward API (status.hostIP). - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "5")] - pub addresses: ::prost::alloc::vec::Vec, - /// Endpoints of daemons running on the Node. - /// +optional - #[prost(message, optional, tag = "6")] - pub daemon_endpoints: ::core::option::Option, - /// Set of ids/uuids to uniquely identify the node. - /// More info: - /// +optional - #[prost(message, optional, tag = "7")] - pub node_info: ::core::option::Option, - /// List of container images on this node - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "8")] - pub images: ::prost::alloc::vec::Vec, - /// List of attachable volumes in use (mounted) by the node. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "9")] - pub volumes_in_use: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// List of volumes that are attached to the node. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "10")] - pub volumes_attached: ::prost::alloc::vec::Vec, - /// Status of the config assigned to the node via the dynamic Kubelet config feature. - /// +optional - #[prost(message, optional, tag = "11")] - pub config: ::core::option::Option, - /// The available runtime handlers. - /// +featureGate=RecursiveReadOnlyMounts - /// +featureGate=UserNamespacesSupport - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "12")] - pub runtime_handlers: ::prost::alloc::vec::Vec, - /// Features describes the set of features implemented by the CRI implementation. - /// +featureGate=SupplementalGroupsPolicy - /// +optional - #[prost(message, optional, tag = "13")] - pub features: ::core::option::Option, -} -/// NodeSwapStatus represents swap memory information. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeSwapStatus { - /// Total amount of swap memory in bytes. - /// +optional - #[prost(int64, optional, tag = "1")] - pub capacity: ::core::option::Option, -} -/// NodeSystemInfo is a set of ids/uuids to uniquely identify the node. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NodeSystemInfo { - /// MachineID reported by the node. For unique machine identification - /// in the cluster this field is preferred. Learn more from man(5) - /// machine-id: - #[prost(string, optional, tag = "1")] - pub machine_id: ::core::option::Option<::prost::alloc::string::String>, - /// SystemUUID reported by the node. For unique machine identification - /// MachineID is preferred. This field is specific to Red Hat hosts - /// - #[prost(string, optional, tag = "2")] - pub system_uuid: ::core::option::Option<::prost::alloc::string::String>, - /// Boot ID reported by the node. - #[prost(string, optional, tag = "3")] - pub boot_id: ::core::option::Option<::prost::alloc::string::String>, - /// Kernel Version reported by the node from 'uname -r' (e.g. 3.16.0-0.bpo.4-amd64). - #[prost(string, optional, tag = "4")] - pub kernel_version: ::core::option::Option<::prost::alloc::string::String>, - /// OS Image reported by the node from /etc/os-release (e.g. Debian GNU/Linux 7 (wheezy)). - #[prost(string, optional, tag = "5")] - pub os_image: ::core::option::Option<::prost::alloc::string::String>, - /// ContainerRuntime Version reported by the node through runtime remote API (e.g. containerd://1.4.2). - #[prost(string, optional, tag = "6")] - pub container_runtime_version: ::core::option::Option<::prost::alloc::string::String>, - /// Kubelet Version reported by the node. - #[prost(string, optional, tag = "7")] - pub kubelet_version: ::core::option::Option<::prost::alloc::string::String>, - /// Deprecated: KubeProxy Version reported by the node. - #[prost(string, optional, tag = "8")] - pub kube_proxy_version: ::core::option::Option<::prost::alloc::string::String>, - /// The Operating System reported by the node - #[prost(string, optional, tag = "9")] - pub operating_system: ::core::option::Option<::prost::alloc::string::String>, - /// The Architecture reported by the node - #[prost(string, optional, tag = "10")] - pub architecture: ::core::option::Option<::prost::alloc::string::String>, - /// Swap Info reported by the node. - #[prost(message, optional, tag = "11")] - pub swap: ::core::option::Option, -} -/// ObjectFieldSelector selects an APIVersioned field of an object. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ObjectFieldSelector { - /// Version of the schema the FieldPath is written in terms of, defaults to "v1". - /// +optional - #[prost(string, optional, tag = "1")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Path of the field to select in the specified API version. - #[prost(string, optional, tag = "2")] - pub field_path: ::core::option::Option<::prost::alloc::string::String>, -} -/// ObjectReference contains enough information to let you inspect or modify the referred object. -/// --- -/// New uses of this type are discouraged because of difficulty describing its usage when embedded in APIs. -/// 1. Ignored fields. It includes many fields which are not generally honored. For instance, ResourceVersion and FieldPath are both very rarely valid in actual usage. -/// 2. Invalid usage help. It is impossible to add specific help for individual usage. In most embedded usages, there are particular -/// restrictions like, "must refer only to types A and B" or "UID not honored" or "name must be restricted". -/// Those cannot be well described when embedded. -/// 3. Inconsistent validation. Because the usages are different, the validation rules are different by usage, which makes it hard for users to predict what will happen. -/// 4. The fields are both imprecise and overly precise. Kind is not a precise mapping to a URL. This can produce ambiguity -/// during interpretation and require a REST mapping. In most cases, the dependency is on the group,resource tuple -/// and the version of the actual struct is irrelevant. -/// 5. We cannot easily change it. Because this type is embedded in many locations, updates to this type -/// will affect numerous schemas. Don't make new APIs embed an underspecified API type they do not control. -/// -/// Instead of using this type, create a locally provided and used type that is well-focused on your reference. -/// For example, ServiceReferences for admission registration: . -/// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ObjectReference { - /// Kind of the referent. - /// More info: - /// +optional - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace of the referent. - /// More info: - /// +optional - #[prost(string, optional, tag = "2")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Name of the referent. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// UID of the referent. - /// More info: - /// +optional - #[prost(string, optional, tag = "4")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, - /// API version of the referent. - /// +optional - #[prost(string, optional, tag = "5")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Specific resourceVersion to which this reference is made, if any. - /// More info: - /// +optional - #[prost(string, optional, tag = "6")] - pub resource_version: ::core::option::Option<::prost::alloc::string::String>, - /// If referring to a piece of an object instead of an entire object, this string - /// should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers\[2\]. - /// For example, if the object reference is to a container within a pod, this would take on a value like: - /// "spec.containers{name}" (where "name" refers to the name of the container that triggered - /// the event) or if no container name is specified "spec.containers\[2\]" (container with - /// index 2 in this pod). This syntax is chosen only to have some well-defined way of - /// referencing a part of an object. - /// TODO: this design is not final and this field is subject to change in the future. - /// +optional - #[prost(string, optional, tag = "7")] - pub field_path: ::core::option::Option<::prost::alloc::string::String>, -} -/// PersistentVolume (PV) is a storage resource provisioned by an administrator. -/// It is analogous to a node. -/// More info: -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolume { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec defines a specification of a persistent volume owned by the cluster. - /// Provisioned by an administrator. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status represents the current information/status for the persistent volume. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PersistentVolumeClaim is a user's request for and claim to a persistent volume -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeClaim { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec defines the desired characteristics of a volume requested by a pod author. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status represents the current information/status of a persistent volume claim. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PersistentVolumeClaimCondition contains details about state of pvc -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PersistentVolumeClaimCondition { - /// Type is the type of the condition. - /// More info: - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status is the status of the condition. - /// Can be True, False, Unknown. - /// More info: )%2C%20required - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// lastProbeTime is the time we probed the condition. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_probe_time: ::core::option::Option, - /// lastTransitionTime is the time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_transition_time: - ::core::option::Option, - /// reason is a unique, this should be a short, machine understandable string that gives the reason - /// for condition's last transition. If it reports "Resizing" that means the underlying - /// persistent volume is being resized. - /// +optional - #[prost(string, optional, tag = "5")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// message is the human-readable message indicating details about last transition. - /// +optional - #[prost(string, optional, tag = "6")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// PersistentVolumeClaimList is a list of PersistentVolumeClaim items. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeClaimList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of persistent volume claims. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PersistentVolumeClaimSpec describes the common attributes of storage devices -/// and allows a Source for provider-specific attributes -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeClaimSpec { - /// accessModes contains the desired access modes the volume should have. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub access_modes: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// selector is a label query over volumes to consider for binding. - /// +optional - #[prost(message, optional, tag = "4")] - pub selector: - ::core::option::Option, - /// resources represents the minimum resources the volume should have. - /// If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements - /// that are lower than previous value but must still be higher than capacity recorded in the - /// status field of the claim. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub resources: ::core::option::Option, - /// volumeName is the binding reference to the PersistentVolume backing this claim. - /// +optional - #[prost(string, optional, tag = "3")] - pub volume_name: ::core::option::Option<::prost::alloc::string::String>, - /// storageClassName is the name of the StorageClass required by the claim. - /// More info: - /// +optional - #[prost(string, optional, tag = "5")] - pub storage_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// volumeMode defines what type of volume is required by the claim. - /// Value of Filesystem is implied when not included in claim spec. - /// +optional - #[prost(string, optional, tag = "6")] - pub volume_mode: ::core::option::Option<::prost::alloc::string::String>, - /// dataSource field can be used to specify either: - /// * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) - /// * An existing PVC (PersistentVolumeClaim) - /// If the provisioner or an external controller can support the specified data source, - /// it will create a new volume based on the contents of the specified data source. - /// When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, - /// and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. - /// If the namespace is specified, then dataSourceRef will not be copied to dataSource. - /// +optional - #[prost(message, optional, tag = "7")] - pub data_source: ::core::option::Option, - /// dataSourceRef specifies the object from which to populate the volume with data, if a non-empty - /// volume is desired. This may be any object from a non-empty API group (non - /// core object) or a PersistentVolumeClaim object. - /// When this field is specified, volume binding will only succeed if the type of - /// the specified object matches some installed volume populator or dynamic - /// provisioner. - /// This field will replace the functionality of the dataSource field and as such - /// if both fields are non-empty, they must have the same value. For backwards - /// compatibility, when namespace isn't specified in dataSourceRef, - /// both fields (dataSource and dataSourceRef) will be set to the same - /// value automatically if one of them is empty and the other is non-empty. - /// When namespace is specified in dataSourceRef, - /// dataSource isn't set to the same value and must be empty. - /// There are three important differences between dataSource and dataSourceRef: - /// * While dataSource only allows two specific types of objects, dataSourceRef - /// allows any non-core object, as well as PersistentVolumeClaim objects. - /// * While dataSource ignores disallowed values (dropping them), dataSourceRef - /// preserves all values, and generates an error if a disallowed value is - /// specified. - /// * While dataSource only allows local objects, dataSourceRef allows objects - /// in any namespaces. - /// (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. - /// (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. - /// +optional - #[prost(message, optional, tag = "8")] - pub data_source_ref: ::core::option::Option, - /// volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. - /// If specified, the CSI driver will create or update the volume with the attributes defined - /// in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, - /// it can be changed after the claim is created. An empty string or nil value indicates that no - /// VolumeAttributesClass will be applied to the claim. If the claim enters an Infeasible error state, - /// this field can be reset to its previous value (including nil) to cancel the modification. - /// If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be - /// set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource - /// exists. - /// More info: - /// +featureGate=VolumeAttributesClass - /// +optional - #[prost(string, optional, tag = "9")] - pub volume_attributes_class_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PersistentVolumeClaimStatus is the current status of a persistent volume claim. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeClaimStatus { - /// phase represents the current phase of PersistentVolumeClaim. - /// +optional - #[prost(string, optional, tag = "1")] - pub phase: ::core::option::Option<::prost::alloc::string::String>, - /// accessModes contains the actual access modes the volume backing the PVC has. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub access_modes: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// capacity represents the actual resources of the underlying volume. - /// +optional - #[prost(btree_map = "string, message", tag = "3")] - pub capacity: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// conditions is the current Condition of persistent volume claim. If underlying persistent volume is being - /// resized then the Condition will be set to 'Resizing'. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "4")] - pub conditions: ::prost::alloc::vec::Vec, - /// allocatedResources tracks the resources allocated to a PVC including its capacity. - /// Key names follow standard Kubernetes label syntax. Valid values are either: - /// * Un-prefixed keys: - /// - storage - the capacity of the volume. - /// * Custom resources must use implementation-defined prefixed names such as "example.com/my-custom-resource" - /// Apart from above values - keys that are unprefixed or have kubernetes.io prefix are considered - /// reserved and hence may not be used. - /// - /// Capacity reported here may be larger than the actual capacity when a volume expansion operation - /// is requested. - /// For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. - /// If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. - /// If a volume expansion capacity request is lowered, allocatedResources is only - /// lowered if there are no expansion operations in progress and if the actual volume capacity - /// is equal or lower than the requested capacity. - /// - /// A controller that receives PVC update with previously unknown resourceName - /// should ignore the update for the purpose it was designed. For example - a controller that - /// only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid - /// resources associated with PVC. - /// - /// This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature. - /// +featureGate=RecoverVolumeExpansionFailure - /// +optional - #[prost(btree_map = "string, message", tag = "5")] - pub allocated_resources: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// allocatedResourceStatuses stores status of resource being resized for the given PVC. - /// Key names follow standard Kubernetes label syntax. Valid values are either: - /// * Un-prefixed keys: - /// - storage - the capacity of the volume. - /// * Custom resources must use implementation-defined prefixed names such as "example.com/my-custom-resource" - /// Apart from above values - keys that are unprefixed or have kubernetes.io prefix are considered - /// reserved and hence may not be used. - /// - /// ClaimResourceStatus can be in any of following states: - /// - ControllerResizeInProgress: - /// State set when resize controller starts resizing the volume in control-plane. - /// - ControllerResizeFailed: - /// State set when resize has failed in resize controller with a terminal error. - /// - NodeResizePending: - /// State set when resize controller has finished resizing the volume but further resizing of - /// volume is needed on the node. - /// - NodeResizeInProgress: - /// State set when kubelet starts resizing the volume. - /// - NodeResizeFailed: - /// State set when resizing has failed in kubelet with a terminal error. Transient errors don't set - /// NodeResizeFailed. - /// For example: if expanding a PVC for more capacity - this field can be one of the following states: - /// - pvc.status.allocatedResourceStatus\['storage'\] = "ControllerResizeInProgress" - /// - pvc.status.allocatedResourceStatus\['storage'\] = "ControllerResizeFailed" - /// - pvc.status.allocatedResourceStatus\['storage'\] = "NodeResizePending" - /// - pvc.status.allocatedResourceStatus\['storage'\] = "NodeResizeInProgress" - /// - pvc.status.allocatedResourceStatus\['storage'\] = "NodeResizeFailed" - /// When this field is not set, it means that no resize operation is in progress for the given PVC. - /// - /// A controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus - /// should ignore the update for the purpose it was designed. For example - a controller that - /// only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid - /// resources associated with PVC. - /// - /// This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature. - /// +featureGate=RecoverVolumeExpansionFailure - /// +mapType=granular - /// +optional - #[prost(btree_map = "string, string", tag = "7")] - pub allocated_resource_statuses: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// currentVolumeAttributesClassName is the current name of the VolumeAttributesClass the PVC is using. - /// When unset, there is no VolumeAttributeClass applied to this PersistentVolumeClaim - /// +featureGate=VolumeAttributesClass - /// +optional - #[prost(string, optional, tag = "8")] - pub current_volume_attributes_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// ModifyVolumeStatus represents the status object of ControllerModifyVolume operation. - /// When this is unset, there is no ModifyVolume operation being attempted. - /// +featureGate=VolumeAttributesClass - /// +optional - #[prost(message, optional, tag = "9")] - pub modify_volume_status: ::core::option::Option, -} -/// PersistentVolumeClaimTemplate is used to produce -/// PersistentVolumeClaim objects as part of an EphemeralVolumeSource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeClaimTemplate { - /// May contain labels and annotations that will be copied into the PVC - /// when creating it. No other fields are allowed and will be rejected during - /// validation. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The specification for the PersistentVolumeClaim. The entire content is - /// copied unchanged into the PVC that gets created from this - /// template. The same fields as in a PersistentVolumeClaim - /// are also valid here. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. -/// This volume finds the bound PV and mounts that volume for the pod. A -/// PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another -/// type of volume that is owned by someone else (the system). -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PersistentVolumeClaimVolumeSource { - /// claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. - /// More info: - #[prost(string, optional, tag = "1")] - pub claim_name: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly Will force the ReadOnly setting in VolumeMounts. - /// Default false. - /// +optional - #[prost(bool, optional, tag = "2")] - pub read_only: ::core::option::Option, -} -/// PersistentVolumeList is a list of PersistentVolume items. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of persistent volumes. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PersistentVolumeSource is similar to VolumeSource but meant for the -/// administrator who creates PVs. Exactly one of its members must be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeSource { - /// gcePersistentDisk represents a GCE Disk resource that is attached to a - /// kubelet's host machine and then exposed to the pod. Provisioned by an admin. - /// Deprecated: GCEPersistentDisk is deprecated. All operations for the in-tree - /// gcePersistentDisk type are redirected to the pd.csi.storage.gke.io CSI driver. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub gce_persistent_disk: ::core::option::Option, - /// awsElasticBlockStore represents an AWS Disk resource that is attached to a - /// kubelet's host machine and then exposed to the pod. - /// Deprecated: AWSElasticBlockStore is deprecated. All operations for the in-tree - /// awsElasticBlockStore type are redirected to the ebs.csi.aws.com CSI driver. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub aws_elastic_block_store: ::core::option::Option, - /// hostPath represents a directory on the host. - /// Provisioned by a developer or tester. - /// This is useful for single-node development and testing only! - /// On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub host_path: ::core::option::Option, - /// glusterfs represents a Glusterfs volume that is attached to a host and - /// exposed to the pod. Provisioned by an admin. - /// Deprecated: Glusterfs is deprecated and the in-tree glusterfs type is no longer supported. - /// More info: - /// +optional - #[prost(message, optional, tag = "4")] - pub glusterfs: ::core::option::Option, - /// nfs represents an NFS mount on the host. Provisioned by an admin. - /// More info: - /// +optional - #[prost(message, optional, tag = "5")] - pub nfs: ::core::option::Option, - /// rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. - /// Deprecated: RBD is deprecated and the in-tree rbd type is no longer supported. - /// More info: - /// +optional - #[prost(message, optional, tag = "6")] - pub rbd: ::core::option::Option, - /// iscsi represents an ISCSI Disk resource that is attached to a - /// kubelet's host machine and then exposed to the pod. Provisioned by an admin. - /// +optional - #[prost(message, optional, tag = "7")] - pub iscsi: ::core::option::Option, - /// cinder represents a cinder volume attached and mounted on kubelets host machine. - /// Deprecated: Cinder is deprecated. All operations for the in-tree cinder type - /// are redirected to the cinder.csi.openstack.org CSI driver. - /// More info: - /// +optional - #[prost(message, optional, tag = "8")] - pub cinder: ::core::option::Option, - /// cephFS represents a Ceph FS mount on the host that shares a pod's lifetime. - /// Deprecated: CephFS is deprecated and the in-tree cephfs type is no longer supported. - /// +optional - #[prost(message, optional, tag = "9")] - pub cephfs: ::core::option::Option, - /// fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. - /// +optional - #[prost(message, optional, tag = "10")] - pub fc: ::core::option::Option, - /// flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running. - /// Deprecated: Flocker is deprecated and the in-tree flocker type is no longer supported. - /// +optional - #[prost(message, optional, tag = "11")] - pub flocker: ::core::option::Option, - /// flexVolume represents a generic volume resource that is - /// provisioned/attached using an exec based plugin. - /// Deprecated: FlexVolume is deprecated. Consider using a CSIDriver instead. - /// +optional - #[prost(message, optional, tag = "12")] - pub flex_volume: ::core::option::Option, - /// azureFile represents an Azure File Service mount on the host and bind mount to the pod. - /// Deprecated: AzureFile is deprecated. All operations for the in-tree azureFile type - /// are redirected to the file.csi.azure.com CSI driver. - /// +optional - #[prost(message, optional, tag = "13")] - pub azure_file: ::core::option::Option, - /// vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine. - /// Deprecated: VsphereVolume is deprecated. All operations for the in-tree vsphereVolume type - /// are redirected to the csi.vsphere.vmware.com CSI driver. - /// +optional - #[prost(message, optional, tag = "14")] - pub vsphere_volume: ::core::option::Option, - /// quobyte represents a Quobyte mount on the host that shares a pod's lifetime. - /// Deprecated: Quobyte is deprecated and the in-tree quobyte type is no longer supported. - /// +optional - #[prost(message, optional, tag = "15")] - pub quobyte: ::core::option::Option, - /// azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. - /// Deprecated: AzureDisk is deprecated. All operations for the in-tree azureDisk type - /// are redirected to the disk.csi.azure.com CSI driver. - /// +optional - #[prost(message, optional, tag = "16")] - pub azure_disk: ::core::option::Option, - /// photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine. - /// Deprecated: PhotonPersistentDisk is deprecated and the in-tree photonPersistentDisk type is no longer supported. - #[prost(message, optional, tag = "17")] - pub photon_persistent_disk: ::core::option::Option, - /// portworxVolume represents a portworx volume attached and mounted on kubelets host machine. - /// Deprecated: PortworxVolume is deprecated. All operations for the in-tree portworxVolume type - /// are redirected to the pxd.portworx.com CSI driver when the CSIMigrationPortworx feature-gate - /// is on. - /// +optional - #[prost(message, optional, tag = "18")] - pub portworx_volume: ::core::option::Option, - /// scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. - /// Deprecated: ScaleIO is deprecated and the in-tree scaleIO type is no longer supported. - /// +optional - #[prost(message, optional, tag = "19")] - pub scale_io: ::core::option::Option, - /// local represents directly-attached storage with node affinity - /// +optional - #[prost(message, optional, tag = "20")] - pub local: ::core::option::Option, - /// storageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod. - /// Deprecated: StorageOS is deprecated and the in-tree storageos type is no longer supported. - /// More info: - /// +optional - #[prost(message, optional, tag = "21")] - pub storageos: ::core::option::Option, - /// csi represents storage that is handled by an external CSI driver. - /// +optional - #[prost(message, optional, tag = "22")] - pub csi: ::core::option::Option, -} -/// PersistentVolumeSpec is the specification of a persistent volume. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PersistentVolumeSpec { - /// capacity is the description of the persistent volume's resources and capacity. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub capacity: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// persistentVolumeSource is the actual volume backing the persistent volume. - #[prost(message, optional, tag = "2")] - pub persistent_volume_source: ::core::option::Option, - /// accessModes contains all ways the volume can be mounted. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub access_modes: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// claimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. - /// Expected to be non-nil when bound. - /// claim.VolumeName is the authoritative bind between PV and PVC. - /// More info: - /// +optional - /// +structType=granular - #[prost(message, optional, tag = "4")] - pub claim_ref: ::core::option::Option, - /// persistentVolumeReclaimPolicy defines what happens to a persistent volume when released from its claim. - /// Valid options are Retain (default for manually created PersistentVolumes), Delete (default - /// for dynamically provisioned PersistentVolumes), and Recycle (deprecated). - /// Recycle must be supported by the volume plugin underlying this PersistentVolume. - /// More info: - /// +optional - #[prost(string, optional, tag = "5")] - pub persistent_volume_reclaim_policy: ::core::option::Option<::prost::alloc::string::String>, - /// storageClassName is the name of StorageClass to which this persistent volume belongs. Empty value - /// means that this volume does not belong to any StorageClass. - /// +optional - #[prost(string, optional, tag = "6")] - pub storage_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// mountOptions is the list of mount options, e.g. \["ro", "soft"\]. Not validated - mount will - /// simply fail if one is invalid. - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "7")] - pub mount_options: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// volumeMode defines if a volume is intended to be used with a formatted filesystem - /// or to remain in raw block state. Value of Filesystem is implied when not included in spec. - /// +optional - #[prost(string, optional, tag = "8")] - pub volume_mode: ::core::option::Option<::prost::alloc::string::String>, - /// nodeAffinity defines constraints that limit what nodes this volume can be accessed from. - /// This field influences the scheduling of pods that use this volume. - /// +optional - #[prost(message, optional, tag = "9")] - pub node_affinity: ::core::option::Option, - /// Name of VolumeAttributesClass to which this persistent volume belongs. Empty value - /// is not allowed. When this field is not set, it indicates that this volume does not belong to any - /// VolumeAttributesClass. This field is mutable and can be changed by the CSI driver - /// after a volume has been updated successfully to a new class. - /// For an unbound PersistentVolume, the volumeAttributesClassName will be matched with unbound - /// PersistentVolumeClaims during the binding process. - /// +featureGate=VolumeAttributesClass - /// +optional - #[prost(string, optional, tag = "10")] - pub volume_attributes_class_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PersistentVolumeStatus is the current status of a persistent volume. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PersistentVolumeStatus { - /// phase indicates if a volume is available, bound to a claim, or released by a claim. - /// More info: - /// +optional - #[prost(string, optional, tag = "1")] - pub phase: ::core::option::Option<::prost::alloc::string::String>, - /// message is a human-readable message indicating details about why the volume is in this state. - /// +optional - #[prost(string, optional, tag = "2")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// reason is a brief CamelCase string that describes any failure and is meant - /// for machine parsing and tidy display in the CLI. - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// lastPhaseTransitionTime is the time the phase transitioned from one to another - /// and automatically resets to current time everytime a volume phase transitions. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_phase_transition_time: - ::core::option::Option, -} -/// Represents a Photon Controller persistent disk resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PhotonPersistentDiskVolumeSource { - /// pdID is the ID that identifies Photon Controller persistent disk - #[prost(string, optional, tag = "1")] - pub pd_id: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, -} -/// Pod is a collection of containers that can run on a host. This resource is created -/// by clients and scheduled onto hosts. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Pod { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the pod. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the pod. - /// This data may not be up to date. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// Pod affinity is a group of inter pod affinity scheduling rules. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodAffinity { - /// If the affinity requirements specified by this field are not met at - /// scheduling time, the pod will not be scheduled onto the node. - /// If the affinity requirements specified by this field cease to be met - /// at some point during pod execution (e.g. due to a pod label update), the - /// system may or may not try to eventually evict the pod from its node. - /// When there are multiple elements, the lists of nodes corresponding to each - /// podAffinityTerm are intersected, i.e. all terms must be satisfied. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub required_during_scheduling_ignored_during_execution: ::prost::alloc::vec::Vec, - /// The scheduler will prefer to schedule pods to nodes that satisfy - /// the affinity expressions specified by this field, but it may choose - /// a node that violates one or more of the expressions. The node that is - /// most preferred is the one with the greatest sum of weights, i.e. - /// for each node that meets all of the scheduling requirements (resource - /// request, requiredDuringScheduling affinity expressions, etc.), - /// compute a sum by iterating through the elements of this field and adding - /// "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the - /// node(s) with the highest sum are the most preferred. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub preferred_during_scheduling_ignored_during_execution: - ::prost::alloc::vec::Vec, -} -/// Defines a set of pods (namely those matching the labelSelector -/// relative to the given namespace(s)) that this pod should be -/// co-located (affinity) or not co-located (anti-affinity) with, -/// where co-located is defined as running on a node whose value of -/// the label with key matches that of any node on which -/// a pod of the set of pods is running -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodAffinityTerm { - /// A label query over a set of resources, in this case pods. - /// If it's null, this PodAffinityTerm matches with no Pods. - /// +optional - #[prost(message, optional, tag = "1")] - pub label_selector: - ::core::option::Option, - /// namespaces specifies a static list of namespace names that the term applies to. - /// The term is applied to the union of the namespaces listed in this field - /// and the ones selected by namespaceSelector. - /// null or empty namespaces list and null namespaceSelector means "this pod's namespace". - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub namespaces: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching - /// the labelSelector in the specified namespaces, where co-located is defined as running on a node - /// whose value of the label with key topologyKey matches that of any node on which any of the - /// selected pods is running. - /// Empty topologyKey is not allowed. - #[prost(string, optional, tag = "3")] - pub topology_key: ::core::option::Option<::prost::alloc::string::String>, - /// A label query over the set of namespaces that the term applies to. - /// The term is applied to the union of the namespaces selected by this field - /// and the ones listed in the namespaces field. - /// null selector and null or empty namespaces list means "this pod's namespace". - /// An empty selector ({}) matches all namespaces. - /// +optional - #[prost(message, optional, tag = "4")] - pub namespace_selector: - ::core::option::Option, - /// MatchLabelKeys is a set of pod label keys to select which pods will - /// be taken into consideration. The keys are used to lookup values from the - /// incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)` - /// to select the group of existing pods which pods will be taken into consideration - /// for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming - /// pod labels will be ignored. The default value is empty. - /// The same key is forbidden to exist in both matchLabelKeys and labelSelector. - /// Also, matchLabelKeys cannot be set when labelSelector isn't set. - /// - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "5")] - pub match_label_keys: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// MismatchLabelKeys is a set of pod label keys to select which pods will - /// be taken into consideration. The keys are used to lookup values from the - /// incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)` - /// to select the group of existing pods which pods will be taken into consideration - /// for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming - /// pod labels will be ignored. The default value is empty. - /// The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. - /// Also, mismatchLabelKeys cannot be set when labelSelector isn't set. - /// - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "6")] - pub mismatch_label_keys: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Pod anti affinity is a group of inter pod anti affinity scheduling rules. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodAntiAffinity { - /// If the anti-affinity requirements specified by this field are not met at - /// scheduling time, the pod will not be scheduled onto the node. - /// If the anti-affinity requirements specified by this field cease to be met - /// at some point during pod execution (e.g. due to a pod label update), the - /// system may or may not try to eventually evict the pod from its node. - /// When there are multiple elements, the lists of nodes corresponding to each - /// podAffinityTerm are intersected, i.e. all terms must be satisfied. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub required_during_scheduling_ignored_during_execution: ::prost::alloc::vec::Vec, - /// The scheduler will prefer to schedule pods to nodes that satisfy - /// the anti-affinity expressions specified by this field, but it may choose - /// a node that violates one or more of the expressions. The node that is - /// most preferred is the one with the greatest sum of weights, i.e. - /// for each node that meets all of the scheduling requirements (resource - /// request, requiredDuringScheduling anti-affinity expressions, etc.), - /// compute a sum by iterating through the elements of this field and subtracting - /// "weight" from the sum if the node has pods which matches the corresponding podAffinityTerm; the - /// node(s) with the highest sum are the most preferred. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub preferred_during_scheduling_ignored_during_execution: - ::prost::alloc::vec::Vec, -} -/// PodAttachOptions is the query options to a Pod's remote attach call. -/// --- -/// TODO: merge w/ PodExecOptions below for stdin, stdout, etc -/// and also when we cut V2, we should export a "StreamOptions" or somesuch that contains Stdin, Stdout, Stder and TTY -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodAttachOptions { - /// Stdin if true, redirects the standard input stream of the pod for this call. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "1")] - pub stdin: ::core::option::Option, - /// Stdout if true indicates that stdout is to be redirected for the attach call. - /// Defaults to true. - /// +optional - #[prost(bool, optional, tag = "2")] - pub stdout: ::core::option::Option, - /// Stderr if true indicates that stderr is to be redirected for the attach call. - /// Defaults to true. - /// +optional - #[prost(bool, optional, tag = "3")] - pub stderr: ::core::option::Option, - /// TTY if true indicates that a tty will be allocated for the attach call. - /// This is passed through the container runtime so the tty - /// is allocated on the worker node by the container runtime. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "4")] - pub tty: ::core::option::Option, - /// The container in which to execute the command. - /// Defaults to only container if there is only one container in the pod. - /// +optional - #[prost(string, optional, tag = "5")] - pub container: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodCertificateProjection provides a private key and X.509 certificate in the -/// pod filesystem. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodCertificateProjection { - /// Kubelet's generated CSRs will be addressed to this signer. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub signer_name: ::core::option::Option<::prost::alloc::string::String>, - /// The type of keypair Kubelet will generate for the pod. - /// - /// Valid values are "RSA3072", "RSA4096", "ECDSAP256", "ECDSAP384", - /// "ECDSAP521", and "ED25519". - /// - /// +required - #[prost(string, optional, tag = "2")] - pub key_type: ::core::option::Option<::prost::alloc::string::String>, - /// maxExpirationSeconds is the maximum lifetime permitted for the - /// certificate. - /// - /// Kubelet copies this value verbatim into the PodCertificateRequests it - /// generates for this projection. - /// - /// If omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver - /// will reject values shorter than 3600 (1 hour). The maximum allowable - /// value is 7862400 (91 days). - /// - /// The signer implementation is then free to issue a certificate with any - /// lifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600 - /// seconds (1 hour). This constraint is enforced by kube-apiserver. - /// `kubernetes.io` signers will never issue certificates with a lifetime - /// longer than 24 hours. - /// - /// +optional - #[prost(int32, optional, tag = "3")] - pub max_expiration_seconds: ::core::option::Option, - /// Write the credential bundle at this path in the projected volume. - /// - /// The credential bundle is a single file that contains multiple PEM blocks. - /// The first PEM block is a PRIVATE KEY block, containing a PKCS#8 private - /// key. - /// - /// The remaining blocks are CERTIFICATE blocks, containing the issued - /// certificate chain from the signer (leaf and any intermediates). - /// - /// Using credentialBundlePath lets your Pod's application code make a single - /// atomic read that retrieves a consistent key and certificate chain. If you - /// project them to separate files, your application code will need to - /// additionally check that the leaf certificate was issued to the key. - /// - /// +optional - #[prost(string, optional, tag = "4")] - pub credential_bundle_path: ::core::option::Option<::prost::alloc::string::String>, - /// Write the key at this path in the projected volume. - /// - /// Most applications should use credentialBundlePath. When using keyPath - /// and certificateChainPath, your application needs to check that the key - /// and leaf certificate are consistent, because it is possible to read the - /// files mid-rotation. - /// - /// +optional - #[prost(string, optional, tag = "5")] - pub key_path: ::core::option::Option<::prost::alloc::string::String>, - /// Write the certificate chain at this path in the projected volume. - /// - /// Most applications should use credentialBundlePath. When using keyPath - /// and certificateChainPath, your application needs to check that the key - /// and leaf certificate are consistent, because it is possible to read the - /// files mid-rotation. - /// - /// +optional - #[prost(string, optional, tag = "6")] - pub certificate_chain_path: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodCondition contains details for the current condition of this pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodCondition { - /// Type is the type of the condition. - /// More info: - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// If set, this represents the .metadata.generation that the pod condition was set based upon. - /// This is an alpha field. Enable PodObservedGenerationTracking to be able to use this field. - /// +featureGate=PodObservedGenerationTracking - /// +optional - #[prost(int64, optional, tag = "7")] - pub observed_generation: ::core::option::Option, - /// Status is the status of the condition. - /// Can be True, False, Unknown. - /// More info: - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time we probed the condition. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_probe_time: ::core::option::Option, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "4")] - pub last_transition_time: - ::core::option::Option, - /// Unique, one-word, CamelCase reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Human-readable message indicating details about last transition. - /// +optional - #[prost(string, optional, tag = "6")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodDNSConfig defines the DNS parameters of a pod in addition to -/// those generated from DNSPolicy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDnsConfig { - /// A list of DNS name server IP addresses. - /// This will be appended to the base nameservers generated from DNSPolicy. - /// Duplicated nameservers will be removed. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub nameservers: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// A list of DNS search domains for host-name lookup. - /// This will be appended to the base search paths generated from DNSPolicy. - /// Duplicated search paths will be removed. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub searches: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// A list of DNS resolver options. - /// This will be merged with the base options generated from DNSPolicy. - /// Duplicated entries will be removed. Resolution options given in Options - /// will override those that appear in the base DNSPolicy. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub options: ::prost::alloc::vec::Vec, -} -/// PodDNSConfigOption defines DNS resolver options of a pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodDnsConfigOption { - /// Name is this DNS resolver option's name. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Value is this DNS resolver option's value. - /// +optional - #[prost(string, optional, tag = "2")] - pub value: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodExecOptions is the query options to a Pod's remote exec call. -/// --- -/// TODO: This is largely identical to PodAttachOptions above, make sure they stay in sync and see about merging -/// and also when we cut V2, we should export a "StreamOptions" or somesuch that contains Stdin, Stdout, Stder and TTY -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodExecOptions { - /// Redirect the standard input stream of the pod for this call. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "1")] - pub stdin: ::core::option::Option, - /// Redirect the standard output stream of the pod for this call. - /// +optional - #[prost(bool, optional, tag = "2")] - pub stdout: ::core::option::Option, - /// Redirect the standard error stream of the pod for this call. - /// +optional - #[prost(bool, optional, tag = "3")] - pub stderr: ::core::option::Option, - /// TTY if true indicates that a tty will be allocated for the exec call. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "4")] - pub tty: ::core::option::Option, - /// Container in which to execute the command. - /// Defaults to only container if there is only one container in the pod. - /// +optional - #[prost(string, optional, tag = "5")] - pub container: ::core::option::Option<::prost::alloc::string::String>, - /// Command is the remote command to execute. argv array. Not executed within a shell. - /// +listType=atomic - #[prost(string, repeated, tag = "6")] - pub command: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// PodExtendedResourceClaimStatus is stored in the PodStatus for the extended -/// resource requests backed by DRA. It stores the generated name for -/// the corresponding special ResourceClaim created by the scheduler. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodExtendedResourceClaimStatus { - /// RequestMappings identifies the mapping of to device request - /// in the generated ResourceClaim. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub request_mappings: ::prost::alloc::vec::Vec, - /// ResourceClaimName is the name of the ResourceClaim that was - /// generated for the Pod in the namespace of the Pod. - #[prost(string, optional, tag = "2")] - pub resource_claim_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodIP represents a single IP address allocated to the pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodIp { - /// IP is the IP address assigned to the pod - /// +required - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodList is a list of Pods. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of pods. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PodLogOptions is the query options for a Pod's logs REST call. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodLogOptions { - /// The container for which to stream logs. Defaults to only container if there is one container in the pod. - /// +optional - #[prost(string, optional, tag = "1")] - pub container: ::core::option::Option<::prost::alloc::string::String>, - /// Follow the log stream of the pod. Defaults to false. - /// +optional - #[prost(bool, optional, tag = "2")] - pub follow: ::core::option::Option, - /// Return previous terminated container logs. Defaults to false. - /// +optional - #[prost(bool, optional, tag = "3")] - pub previous: ::core::option::Option, - /// A relative time in seconds before the current time from which to show logs. If this value - /// precedes the time a pod was started, only logs since the pod start will be returned. - /// If this value is in the future, no logs will be returned. - /// Only one of sinceSeconds or sinceTime may be specified. - /// +optional - #[prost(int64, optional, tag = "4")] - pub since_seconds: ::core::option::Option, - /// An RFC3339 timestamp from which to show logs. If this value - /// precedes the time a pod was started, only logs since the pod start will be returned. - /// If this value is in the future, no logs will be returned. - /// Only one of sinceSeconds or sinceTime may be specified. - /// +optional - #[prost(message, optional, tag = "5")] - pub since_time: ::core::option::Option, - /// If true, add an RFC3339 or RFC3339Nano timestamp at the beginning of every line - /// of log output. Defaults to false. - /// +optional - #[prost(bool, optional, tag = "6")] - pub timestamps: ::core::option::Option, - /// If set, the number of lines from the end of the logs to show. If not specified, - /// logs are shown from the creation of the container or sinceSeconds or sinceTime. - /// Note that when "TailLines" is specified, "Stream" can only be set to nil or "All". - /// +optional - #[prost(int64, optional, tag = "7")] - pub tail_lines: ::core::option::Option, - /// If set, the number of bytes to read from the server before terminating the - /// log output. This may not display a complete final line of logging, and may return - /// slightly more or slightly less than the specified limit. - /// +optional - #[prost(int64, optional, tag = "8")] - pub limit_bytes: ::core::option::Option, - /// insecureSkipTLSVerifyBackend indicates that the apiserver should not confirm the validity of the - /// serving certificate of the backend it is connecting to. This will make the HTTPS connection between the apiserver - /// and the backend insecure. This means the apiserver cannot verify the log data it is receiving came from the real - /// kubelet. If the kubelet is configured to verify the apiserver's TLS credentials, it does not mean the - /// connection to the real kubelet is vulnerable to a man in the middle attack (e.g. an attacker could not intercept - /// the actual log data coming from the real kubelet). - /// +optional - #[prost(bool, optional, tag = "9")] - pub insecure_skip_tls_verify_backend: ::core::option::Option, - /// Specify which container log stream to return to the client. - /// Acceptable values are "All", "Stdout" and "Stderr". If not specified, "All" is used, and both stdout and stderr - /// are returned interleaved. - /// Note that when "TailLines" is specified, "Stream" can only be set to nil or "All". - /// +featureGate=PodLogsQuerySplitStreams - /// +optional - #[prost(string, optional, tag = "10")] - pub stream: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodOS defines the OS parameters of a pod. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodOs { - /// Name is the name of the operating system. The currently supported values are linux and windows. - /// Additional value may be defined in future and can be one of: - /// - /// Clients should expect to handle additional values and treat unrecognized values in this field as os: null - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodPortForwardOptions is the query options to a Pod's port forward call -/// when using WebSockets. -/// The `port` query parameter must specify the port or -/// ports (comma separated) to forward over. -/// Port forwarding over SPDY does not use these options. It requires the port -/// to be passed in the `port` header as part of request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodPortForwardOptions { - /// List of ports to forward - /// Required when using WebSockets - /// +optional - /// +listType=atomic - #[prost(int32, repeated, packed = "false", tag = "1")] - pub ports: ::prost::alloc::vec::Vec, -} -/// PodProxyOptions is the query options to a Pod's proxy call. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodProxyOptions { - /// Path is the URL path to use for the current proxy request to pod. - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodReadinessGate contains the reference to a pod condition -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodReadinessGate { - /// ConditionType refers to a condition in the pod's condition list with matching type. - #[prost(string, optional, tag = "1")] - pub condition_type: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodResourceClaim references exactly one ResourceClaim, either directly -/// or by naming a ResourceClaimTemplate which is then turned into a ResourceClaim -/// for the pod. -/// -/// It adds a name to it that uniquely identifies the ResourceClaim inside the Pod. -/// Containers that need access to the ResourceClaim reference it with this name. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodResourceClaim { - /// Name uniquely identifies this resource claim inside the pod. - /// This must be a DNS_LABEL. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// ResourceClaimName is the name of a ResourceClaim object in the same - /// namespace as this pod. - /// - /// Exactly one of ResourceClaimName and ResourceClaimTemplateName must - /// be set. - #[prost(string, optional, tag = "3")] - pub resource_claim_name: ::core::option::Option<::prost::alloc::string::String>, - /// ResourceClaimTemplateName is the name of a ResourceClaimTemplate - /// object in the same namespace as this pod. - /// - /// The template will be used to create a new ResourceClaim, which will - /// be bound to this pod. When this pod is deleted, the ResourceClaim - /// will also be deleted. The pod name and resource name, along with a - /// generated component, will be used to form a unique name for the - /// ResourceClaim, which will be recorded in pod.status.resourceClaimStatuses. - /// - /// This field is immutable and no changes will be made to the - /// corresponding ResourceClaim by the control plane after creating the - /// ResourceClaim. - /// - /// Exactly one of ResourceClaimName and ResourceClaimTemplateName must - /// be set. - #[prost(string, optional, tag = "4")] - pub resource_claim_template_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodResourceClaimStatus is stored in the PodStatus for each PodResourceClaim -/// which references a ResourceClaimTemplate. It stores the generated name for -/// the corresponding ResourceClaim. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodResourceClaimStatus { - /// Name uniquely identifies this resource claim inside the pod. - /// This must match the name of an entry in pod.spec.resourceClaims, - /// which implies that the string must be a DNS_LABEL. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// ResourceClaimName is the name of the ResourceClaim that was - /// generated for the Pod in the namespace of the Pod. If this is - /// unset, then generating a ResourceClaim was not necessary. The - /// pod.spec.resourceClaims entry can be ignored in this case. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub resource_claim_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodSchedulingGate is associated to a Pod to guard its scheduling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodSchedulingGate { - /// Name of the scheduling gate. - /// Each scheduling gate must have a unique name field. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodSecurityContext holds pod-level security attributes and common container settings. -/// Some fields are also present in container.securityContext. Field values of -/// container.securityContext take precedence over field values of PodSecurityContext. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodSecurityContext { - /// The SELinux context to be applied to all containers. - /// If unspecified, the container runtime will allocate a random SELinux context for each - /// container. May also be set in SecurityContext. If set in - /// both SecurityContext and PodSecurityContext, the value specified in SecurityContext - /// takes precedence for that container. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "1")] - pub se_linux_options: ::core::option::Option, - /// The Windows specific settings applied to all containers. - /// If unspecified, the options within a container's SecurityContext will be used. - /// If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. - /// Note that this field cannot be set when spec.os.name is linux. - /// +optional - #[prost(message, optional, tag = "8")] - pub windows_options: ::core::option::Option, - /// The UID to run the entrypoint of the container process. - /// Defaults to user specified in image metadata if unspecified. - /// May also be set in SecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence - /// for that container. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(int64, optional, tag = "2")] - pub run_as_user: ::core::option::Option, - /// The GID to run the entrypoint of the container process. - /// Uses runtime default if unset. - /// May also be set in SecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence - /// for that container. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(int64, optional, tag = "6")] - pub run_as_group: ::core::option::Option, - /// Indicates that the container must run as a non-root user. - /// If true, the Kubelet will validate the image at runtime to ensure that it - /// does not run as UID 0 (root) and fail to start the container if it does. - /// If unset or false, no such validation will be performed. - /// May also be set in SecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence. - /// +optional - #[prost(bool, optional, tag = "3")] - pub run_as_non_root: ::core::option::Option, - /// A list of groups applied to the first process run in each container, in - /// addition to the container's primary GID and fsGroup (if specified). If - /// the SupplementalGroupsPolicy feature is enabled, the - /// supplementalGroupsPolicy field determines whether these are in addition - /// to or instead of any group memberships defined in the container image. - /// If unspecified, no additional groups are added, though group memberships - /// defined in the container image may still be used, depending on the - /// supplementalGroupsPolicy field. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - /// +listType=atomic - #[prost(int64, repeated, packed = "false", tag = "4")] - pub supplemental_groups: ::prost::alloc::vec::Vec, - /// Defines how supplemental groups of the first container processes are calculated. - /// Valid values are "Merge" and "Strict". If not specified, "Merge" is used. - /// (Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled - /// and the container runtime must implement support for this feature. - /// Note that this field cannot be set when spec.os.name is windows. - /// TODO: update the default value to "Merge" when spec.os.name is not windows in v1.34 - /// +featureGate=SupplementalGroupsPolicy - /// +optional - #[prost(string, optional, tag = "12")] - pub supplemental_groups_policy: ::core::option::Option<::prost::alloc::string::String>, - /// A special supplemental group that applies to all containers in a pod. - /// Some volume types allow the Kubelet to change the ownership of that volume - /// to be owned by the pod: - /// - /// 1. The owning GID will be the FSGroup - /// 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) - /// 3. The permission bits are OR'd with rw-rw---- - /// - /// If unset, the Kubelet will not modify the ownership and permissions of any volume. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(int64, optional, tag = "5")] - pub fs_group: ::core::option::Option, - /// Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported - /// sysctls (by the container runtime) might fail to launch. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "7")] - pub sysctls: ::prost::alloc::vec::Vec, - /// fsGroupChangePolicy defines behavior of changing ownership and permission of the volume - /// before being exposed inside Pod. This field will only apply to - /// volume types which support fsGroup based ownership(and permissions). - /// It will have no effect on ephemeral volume types such as: secret, configmaps - /// and emptydir. - /// Valid values are "OnRootMismatch" and "Always". If not specified, "Always" is used. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(string, optional, tag = "9")] - pub fs_group_change_policy: ::core::option::Option<::prost::alloc::string::String>, - /// The seccomp options to use by the containers in this pod. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "10")] - pub seccomp_profile: ::core::option::Option, - /// appArmorProfile is the AppArmor options to use by the containers in this pod. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "11")] - pub app_armor_profile: ::core::option::Option, - /// seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod. - /// It has no effect on nodes that do not support SELinux or to volumes does not support SELinux. - /// Valid values are "MountOption" and "Recursive". - /// - /// "Recursive" means relabeling of all files on all Pod volumes by the container runtime. - /// This may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node. - /// - /// "MountOption" mounts all eligible Pod volumes with `-o context` mount option. - /// This requires all Pods that share the same volume to use the same SELinux label. - /// It is not possible to share the same volume among privileged and unprivileged Pods. - /// Eligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes - /// whose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their - /// CSIDriver instance. Other volumes are always re-labelled recursively. - /// "MountOption" value is allowed only when SELinuxMount feature gate is enabled. - /// - /// If not specified and SELinuxMount feature gate is enabled, "MountOption" is used. - /// If not specified and SELinuxMount feature gate is disabled, "MountOption" is used for ReadWriteOncePod volumes - /// and "Recursive" for all other volumes. - /// - /// This field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers. - /// - /// All Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state. - /// Note that this field cannot be set when spec.os.name is windows. - /// +featureGate=SELinuxChangePolicy - /// +optional - #[prost(string, optional, tag = "13")] - pub se_linux_change_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// Describes the class of pods that should avoid this node. -/// Exactly one field should be set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PodSignature { - /// Reference to controller whose pods should avoid this node. - /// +optional - #[prost(message, optional, tag = "1")] - pub pod_controller: - ::core::option::Option, -} -/// PodSpec is a description of a pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodSpec { - /// List of volumes that can be mounted by containers belonging to the pod. - /// More info: - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge,retainKeys - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "1")] - pub volumes: ::prost::alloc::vec::Vec, - /// List of initialization containers belonging to the pod. - /// Init containers are executed in order prior to containers being started. If any - /// init container fails, the pod is considered to have failed and is handled according - /// to its restartPolicy. The name for an init container or normal container must be - /// unique among all containers. - /// Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. - /// The resourceRequirements of an init container are taken into account during scheduling - /// by finding the highest request/limit for each resource type, and then using the max of - /// that value or the sum of the normal containers. Limits are applied to init containers - /// in a similar fashion. - /// Init containers cannot currently be added or removed. - /// Cannot be updated. - /// More info: - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "20")] - pub init_containers: ::prost::alloc::vec::Vec, - /// List of containers belonging to the pod. - /// Containers cannot currently be added or removed. - /// There must be at least one container in a Pod. - /// Cannot be updated. - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "2")] - pub containers: ::prost::alloc::vec::Vec, - /// List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing - /// pod to perform user-initiated actions such as debugging. This list cannot be specified when - /// creating a pod, and it cannot be modified by updating the pod spec. In order to add an - /// ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource. - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "34")] - pub ephemeral_containers: ::prost::alloc::vec::Vec, - /// Restart policy for all containers within the pod. - /// One of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted. - /// Default to Always. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub restart_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. - /// Value must be non-negative integer. The value zero indicates stop immediately via - /// the kill signal (no opportunity to shut down). - /// If this value is nil, the default grace period will be used instead. - /// The grace period is the duration in seconds after the processes running in the pod are sent - /// a termination signal and the time when the processes are forcibly halted with a kill signal. - /// Set this value longer than the expected cleanup time for your process. - /// Defaults to 30 seconds. - /// +optional - #[prost(int64, optional, tag = "4")] - pub termination_grace_period_seconds: ::core::option::Option, - /// Optional duration in seconds the pod may be active on the node relative to - /// StartTime before the system will actively try to mark it failed and kill associated containers. - /// Value must be a positive integer. - /// +optional - #[prost(int64, optional, tag = "5")] - pub active_deadline_seconds: ::core::option::Option, - /// Set DNS policy for the pod. - /// Defaults to "ClusterFirst". - /// Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. - /// DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. - /// To have DNS options set along with hostNetwork, you have to specify DNS policy - /// explicitly to 'ClusterFirstWithHostNet'. - /// +optional - #[prost(string, optional, tag = "6")] - pub dns_policy: ::core::option::Option<::prost::alloc::string::String>, - /// NodeSelector is a selector which must be true for the pod to fit on a node. - /// Selector which must match a node's labels for the pod to be scheduled on that node. - /// More info: - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "7")] - pub node_selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// ServiceAccountName is the name of the ServiceAccount to use to run this pod. - /// More info: - /// +optional - #[prost(string, optional, tag = "8")] - pub service_account_name: ::core::option::Option<::prost::alloc::string::String>, - /// DeprecatedServiceAccount is a deprecated alias for ServiceAccountName. - /// Deprecated: Use serviceAccountName instead. - /// +k8s:conversion-gen=false - /// +optional - #[prost(string, optional, tag = "9")] - pub service_account: ::core::option::Option<::prost::alloc::string::String>, - /// AutomountServiceAccountToken indicates whether a service account token should be automatically mounted. - /// +optional - #[prost(bool, optional, tag = "21")] - pub automount_service_account_token: ::core::option::Option, - /// NodeName indicates in which node this pod is scheduled. - /// If empty, this pod is a candidate for scheduling by the scheduler defined in schedulerName. - /// Once this field is set, the kubelet for this node becomes responsible for the lifecycle of this pod. - /// This field should not be used to express a desire for the pod to be scheduled on a specific node. - /// - /// +optional - #[prost(string, optional, tag = "10")] - pub node_name: ::core::option::Option<::prost::alloc::string::String>, - /// Host networking requested for this pod. Use the host's network namespace. - /// When using HostNetwork you should specify ports so the scheduler is aware. - /// When `hostNetwork` is true, specified `hostPort` fields in port definitions must match `containerPort`, - /// and unspecified `hostPort` fields in port definitions are defaulted to match `containerPort`. - /// Default to false. - /// +k8s:conversion-gen=false - /// +optional - #[prost(bool, optional, tag = "11")] - pub host_network: ::core::option::Option, - /// Use the host's pid namespace. - /// Optional: Default to false. - /// +k8s:conversion-gen=false - /// +optional - #[prost(bool, optional, tag = "12")] - pub host_pid: ::core::option::Option, - /// Use the host's ipc namespace. - /// Optional: Default to false. - /// +k8s:conversion-gen=false - /// +optional - #[prost(bool, optional, tag = "13")] - pub host_ipc: ::core::option::Option, - /// Share a single process namespace between all of the containers in a pod. - /// When this is set containers will be able to view and signal processes from other containers - /// in the same pod, and the first process in each container will not be assigned PID 1. - /// HostPID and ShareProcessNamespace cannot both be set. - /// Optional: Default to false. - /// +k8s:conversion-gen=false - /// +optional - #[prost(bool, optional, tag = "27")] - pub share_process_namespace: ::core::option::Option, - /// SecurityContext holds pod-level security attributes and common container settings. - /// Optional: Defaults to empty. See type description for default values of each field. - /// +optional - #[prost(message, optional, tag = "14")] - pub security_context: ::core::option::Option, - /// ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. - /// If specified, these secrets will be passed to individual puller implementations for them to use. - /// More info: - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "15")] - pub image_pull_secrets: ::prost::alloc::vec::Vec, - /// Specifies the hostname of the Pod - /// If not specified, the pod's hostname will be set to a system-defined value. - /// +optional - #[prost(string, optional, tag = "16")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// If specified, the fully qualified Pod hostname will be "...svc.". - /// If not specified, the pod will not have a domainname at all. - /// +optional - #[prost(string, optional, tag = "17")] - pub subdomain: ::core::option::Option<::prost::alloc::string::String>, - /// If specified, the pod's scheduling constraints - /// +optional - #[prost(message, optional, tag = "18")] - pub affinity: ::core::option::Option, - /// If specified, the pod will be dispatched by specified scheduler. - /// If not specified, the pod will be dispatched by default scheduler. - /// +optional - #[prost(string, optional, tag = "19")] - pub scheduler_name: ::core::option::Option<::prost::alloc::string::String>, - /// If specified, the pod's tolerations. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "22")] - pub tolerations: ::prost::alloc::vec::Vec, - /// HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts - /// file if specified. - /// +optional - /// +patchMergeKey=ip - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=ip - #[prost(message, repeated, tag = "23")] - pub host_aliases: ::prost::alloc::vec::Vec, - /// If specified, indicates the pod's priority. "system-node-critical" and - /// "system-cluster-critical" are two special keywords which indicate the - /// highest priorities with the former being the highest priority. Any other - /// name must be defined by creating a PriorityClass object with that name. - /// If not specified, the pod priority will be default or zero if there is no - /// default. - /// +optional - #[prost(string, optional, tag = "24")] - pub priority_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// The priority value. Various system components use this field to find the - /// priority of the pod. When Priority Admission Controller is enabled, it - /// prevents users from setting this field. The admission controller populates - /// this field from PriorityClassName. - /// The higher the value, the higher the priority. - /// +optional - #[prost(int32, optional, tag = "25")] - pub priority: ::core::option::Option, - /// Specifies the DNS parameters of a pod. - /// Parameters specified here will be merged to the generated DNS - /// configuration based on DNSPolicy. - /// +optional - #[prost(message, optional, tag = "26")] - pub dns_config: ::core::option::Option, - /// If specified, all readiness gates will be evaluated for pod readiness. - /// A pod is ready when all its containers are ready AND - /// all conditions specified in the readiness gates have status equal to "True" - /// More info: - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "28")] - pub readiness_gates: ::prost::alloc::vec::Vec, - /// RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used - /// to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. - /// If unset or empty, the "legacy" RuntimeClass will be used, which is an implicit class with an - /// empty definition that uses the default runtime handler. - /// More info: - /// +optional - #[prost(string, optional, tag = "29")] - pub runtime_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// EnableServiceLinks indicates whether information about services should be injected into pod's - /// environment variables, matching the syntax of Docker links. - /// Optional: Defaults to true. - /// +optional - #[prost(bool, optional, tag = "30")] - pub enable_service_links: ::core::option::Option, - /// PreemptionPolicy is the Policy for preempting pods with lower priority. - /// One of Never, PreemptLowerPriority. - /// Defaults to PreemptLowerPriority if unset. - /// +optional - #[prost(string, optional, tag = "31")] - pub preemption_policy: ::core::option::Option<::prost::alloc::string::String>, - /// Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. - /// This field will be autopopulated at admission time by the RuntimeClass admission controller. If - /// the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. - /// The RuntimeClass admission controller will reject Pod create requests which have the overhead already - /// set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value - /// defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "32")] - pub overhead: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// TopologySpreadConstraints describes how a group of pods ought to spread across topology - /// domains. Scheduler will schedule pods in a way which abides by the constraints. - /// All topologySpreadConstraints are ANDed. - /// +optional - /// +patchMergeKey=topologyKey - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=topologyKey - /// +listMapKey=whenUnsatisfiable - #[prost(message, repeated, tag = "33")] - pub topology_spread_constraints: ::prost::alloc::vec::Vec, - /// If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default). - /// In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). - /// In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters to FQDN. - /// If a pod does not have FQDN, this has no effect. - /// Default to false. - /// +optional - #[prost(bool, optional, tag = "35")] - pub set_hostname_as_fqdn: ::core::option::Option, - /// Specifies the OS of the containers in the pod. - /// Some pod and container fields are restricted if this is set. - /// - /// If the OS field is set to linux, the following fields must be unset: - /// -securityContext.windowsOptions - /// - /// If the OS field is set to windows, following fields must be unset: - /// - spec.hostPID - /// - spec.hostIPC - /// - spec.hostUsers - /// - spec.resources - /// - spec.securityContext.appArmorProfile - /// - spec.securityContext.seLinuxOptions - /// - spec.securityContext.seccompProfile - /// - spec.securityContext.fsGroup - /// - spec.securityContext.fsGroupChangePolicy - /// - spec.securityContext.sysctls - /// - spec.shareProcessNamespace - /// - spec.securityContext.runAsUser - /// - spec.securityContext.runAsGroup - /// - spec.securityContext.supplementalGroups - /// - spec.securityContext.supplementalGroupsPolicy - /// - spec.containers\[*\].securityContext.appArmorProfile - /// - spec.containers\[*\].securityContext.seLinuxOptions - /// - spec.containers\[*\].securityContext.seccompProfile - /// - spec.containers\[*\].securityContext.capabilities - /// - spec.containers\[*\].securityContext.readOnlyRootFilesystem - /// - spec.containers\[*\].securityContext.privileged - /// - spec.containers\[*\].securityContext.allowPrivilegeEscalation - /// - spec.containers\[*\].securityContext.procMount - /// - spec.containers\[*\].securityContext.runAsUser - /// - spec.containers\[*\].securityContext.runAsGroup - /// +optional - #[prost(message, optional, tag = "36")] - pub os: ::core::option::Option, - /// Use the host's user namespace. - /// Optional: Default to true. - /// If set to true or not present, the pod will be run in the host user namespace, useful - /// for when the pod needs a feature only available to the host user namespace, such as - /// loading a kernel module with CAP_SYS_MODULE. - /// When set to false, a new userns is created for the pod. Setting false is useful for - /// mitigating container breakout vulnerabilities even allowing users to run their - /// containers as root without actually having root privileges on the host. - /// This field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature. - /// +k8s:conversion-gen=false - /// +optional - #[prost(bool, optional, tag = "37")] - pub host_users: ::core::option::Option, - /// SchedulingGates is an opaque list of values that if specified will block scheduling the pod. - /// If schedulingGates is not empty, the pod will stay in the SchedulingGated state and the - /// scheduler will not attempt to schedule the pod. - /// - /// SchedulingGates can only be set at pod creation time, and be removed only afterwards. - /// - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - /// +optional - #[prost(message, repeated, tag = "38")] - pub scheduling_gates: ::prost::alloc::vec::Vec, - /// ResourceClaims defines which ResourceClaims must be allocated - /// and reserved before the Pod is allowed to start. The resources - /// will be made available to those containers which consume them - /// by name. - /// - /// This is an alpha field and requires enabling the - /// DynamicResourceAllocation feature gate. - /// - /// This field is immutable. - /// - /// +patchMergeKey=name - /// +patchStrategy=merge,retainKeys - /// +listType=map - /// +listMapKey=name - /// +featureGate=DynamicResourceAllocation - /// +optional - #[prost(message, repeated, tag = "39")] - pub resource_claims: ::prost::alloc::vec::Vec, - /// Resources is the total amount of CPU and Memory resources required by all - /// containers in the pod. It supports specifying Requests and Limits for - /// "cpu", "memory" and "hugepages-" resource names only. ResourceClaims are not supported. - /// - /// This field enables fine-grained control over resource allocation for the - /// entire pod, allowing resource sharing among containers in a pod. - /// TODO: For beta graduation, expand this comment with a detailed explanation. - /// - /// This is an alpha field and requires enabling the PodLevelResources feature - /// gate. - /// - /// +featureGate=PodLevelResources - /// +optional - #[prost(message, optional, tag = "40")] - pub resources: ::core::option::Option, - /// HostnameOverride specifies an explicit override for the pod's hostname as perceived by the pod. - /// This field only specifies the pod's hostname and does not affect its DNS records. - /// When this field is set to a non-empty string: - /// - It takes precedence over the values set in `hostname` and `subdomain`. - /// - The Pod's hostname will be set to this value. - /// - `setHostnameAsFQDN` must be nil or set to false. - /// - `hostNetwork` must be set to false. - /// - /// This field must be a valid DNS subdomain as defined in RFC 1123 and contain at most 64 characters. - /// Requires the HostnameOverride feature gate to be enabled. - /// - /// +featureGate=HostnameOverride - /// +optional - #[prost(string, optional, tag = "41")] - pub hostname_override: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodStatus represents information about the status of a pod. Status may trail the actual -/// state of a system, especially if the node that hosts the pod cannot contact the control -/// plane. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodStatus { - /// If set, this represents the .metadata.generation that the pod status was set based upon. - /// This is an alpha field. Enable PodObservedGenerationTracking to be able to use this field. - /// +featureGate=PodObservedGenerationTracking - /// +optional - #[prost(int64, optional, tag = "17")] - pub observed_generation: ::core::option::Option, - /// The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. - /// The conditions array, the reason and message fields, and the individual container status - /// arrays contain more detail about the pod's status. - /// There are five possible phase values: - /// - /// Pending: The pod has been accepted by the Kubernetes system, but one or more of the - /// container images has not been created. This includes time before being scheduled as - /// well as time spent downloading images over the network, which could take a while. - /// Running: The pod has been bound to a node, and all of the containers have been created. - /// At least one container is still running, or is in the process of starting or restarting. - /// Succeeded: All containers in the pod have terminated in success, and will not be restarted. - /// Failed: All containers in the pod have terminated, and at least one container has - /// terminated in failure. The container either exited with non-zero status or was terminated - /// by the system. - /// Unknown: For some reason the state of the pod could not be obtained, typically due to an - /// error in communicating with the host of the pod. - /// - /// More info: - /// +optional - #[prost(string, optional, tag = "1")] - pub phase: ::core::option::Option<::prost::alloc::string::String>, - /// Current service state of pod. - /// More info: - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "2")] - pub conditions: ::prost::alloc::vec::Vec, - /// A human readable message indicating details about why the pod is in this condition. - /// +optional - #[prost(string, optional, tag = "3")] - pub message: ::core::option::Option<::prost::alloc::string::String>, - /// A brief CamelCase message indicating details about why the pod is in this state. - /// e.g. 'Evicted' - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// nominatedNodeName is set only when this pod preempts other pods on the node, but it cannot be - /// scheduled right away as preemption victims receive their graceful termination periods. - /// This field does not guarantee that the pod will be scheduled on this node. Scheduler may decide - /// to place the pod elsewhere if other nodes become available sooner. Scheduler may also decide to - /// give the resources on this node to a higher priority pod that is created after preemption. - /// As a result, this field may be different than PodSpec.nodeName when the pod is - /// scheduled. - /// +optional - #[prost(string, optional, tag = "11")] - pub nominated_node_name: ::core::option::Option<::prost::alloc::string::String>, - /// hostIP holds the IP address of the host to which the pod is assigned. Empty if the pod has not started yet. - /// A pod can be assigned to a node that has a problem in kubelet which in turns mean that HostIP will - /// not be updated even if there is a node is assigned to pod - /// +optional - #[prost(string, optional, tag = "5")] - pub host_ip: ::core::option::Option<::prost::alloc::string::String>, - /// hostIPs holds the IP addresses allocated to the host. If this field is specified, the first entry must - /// match the hostIP field. This list is empty if the pod has not started yet. - /// A pod can be assigned to a node that has a problem in kubelet which in turns means that HostIPs will - /// not be updated even if there is a node is assigned to this pod. - /// +optional - /// +patchStrategy=merge - /// +patchMergeKey=ip - /// +listType=atomic - #[prost(message, repeated, tag = "16")] - pub host_ips: ::prost::alloc::vec::Vec, - /// podIP address allocated to the pod. Routable at least within the cluster. - /// Empty if not yet allocated. - /// +optional - #[prost(string, optional, tag = "6")] - pub pod_ip: ::core::option::Option<::prost::alloc::string::String>, - /// podIPs holds the IP addresses allocated to the pod. If this field is specified, the 0th entry must - /// match the podIP field. Pods may be allocated at most 1 value for each of IPv4 and IPv6. This list - /// is empty if no IPs have been allocated yet. - /// +optional - /// +patchStrategy=merge - /// +patchMergeKey=ip - /// +listType=map - /// +listMapKey=ip - #[prost(message, repeated, tag = "12")] - pub pod_ips: ::prost::alloc::vec::Vec, - /// RFC 3339 date and time at which the object was acknowledged by the Kubelet. - /// This is before the Kubelet pulled the container image(s) for the pod. - /// +optional - #[prost(message, optional, tag = "7")] - pub start_time: ::core::option::Option, - /// Statuses of init containers in this pod. The most recent successful non-restartable - /// init container will have ready = true, the most recently started container will have - /// startTime set. - /// Each init container in the pod should have at most one status in this list, - /// and all statuses should be for containers in the pod. - /// However this is not enforced. - /// If a status for a non-existent container is present in the list, or the list has duplicate names, - /// the behavior of various Kubernetes components is not defined and those statuses might be - /// ignored. - /// More info: - /// +listType=atomic - #[prost(message, repeated, tag = "10")] - pub init_container_statuses: ::prost::alloc::vec::Vec, - /// Statuses of containers in this pod. - /// Each container in the pod should have at most one status in this list, - /// and all statuses should be for containers in the pod. - /// However this is not enforced. - /// If a status for a non-existent container is present in the list, or the list has duplicate names, - /// the behavior of various Kubernetes components is not defined and those statuses might be - /// ignored. - /// More info: - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "8")] - pub container_statuses: ::prost::alloc::vec::Vec, - /// The Quality of Service (QOS) classification assigned to the pod based on resource requirements - /// See PodQOSClass type for available QOS classes - /// More info: - /// +optional - #[prost(string, optional, tag = "9")] - pub qos_class: ::core::option::Option<::prost::alloc::string::String>, - /// Statuses for any ephemeral containers that have run in this pod. - /// Each ephemeral container in the pod should have at most one status in this list, - /// and all statuses should be for containers in the pod. - /// However this is not enforced. - /// If a status for a non-existent container is present in the list, or the list has duplicate names, - /// the behavior of various Kubernetes components is not defined and those statuses might be - /// ignored. - /// More info: - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "13")] - pub ephemeral_container_statuses: ::prost::alloc::vec::Vec, - /// Status of resources resize desired for pod's containers. - /// It is empty if no resources resize is pending. - /// Any changes to container resources will automatically set this to "Proposed" - /// Deprecated: Resize status is moved to two pod conditions PodResizePending and PodResizeInProgress. - /// PodResizePending will track states where the spec has been resized, but the Kubelet has not yet allocated the resources. - /// PodResizeInProgress will track in-progress resizes, and should be present whenever allocated resources != acknowledged resources. - /// +featureGate=InPlacePodVerticalScaling - /// +optional - #[prost(string, optional, tag = "14")] - pub resize: ::core::option::Option<::prost::alloc::string::String>, - /// Status of resource claims. - /// +patchMergeKey=name - /// +patchStrategy=merge,retainKeys - /// +listType=map - /// +listMapKey=name - /// +featureGate=DynamicResourceAllocation - /// +optional - #[prost(message, repeated, tag = "15")] - pub resource_claim_statuses: ::prost::alloc::vec::Vec, - /// Status of extended resource claim backed by DRA. - /// +featureGate=DRAExtendedResource - /// +optional - #[prost(message, optional, tag = "18")] - pub extended_resource_claim_status: ::core::option::Option, -} -/// PodStatusResult is a wrapper for PodStatus returned by kubelet that can be encode/decoded -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodStatusResult { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Most recently observed status of the pod. - /// This data may not be up to date. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub status: ::core::option::Option, -} -/// PodTemplate describes a template for creating copies of a predefined pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodTemplate { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Template defines the pods that will be created from this pod template. - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub template: ::core::option::Option, -} -/// PodTemplateList is a list of PodTemplates. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodTemplateList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of pod templates - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PodTemplateSpec describes the data a pod should have when created from a template -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodTemplateSpec { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the pod. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// PortStatus represents the error condition of a service port -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PortStatus { - /// Port is the port number of the service port of which status is recorded here - #[prost(int32, optional, tag = "1")] - pub port: ::core::option::Option, - /// Protocol is the protocol of the service port of which status is recorded here - /// The supported values are: "TCP", "UDP", "SCTP" - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// Error is to record the problem with the service port - /// The format of the error shall comply with the following rules: - /// - built-in error values shall be specified in this file and those shall use - /// CamelCase names - /// - cloud provider specific error values must have names that comply with the - /// format foo.example.com/CamelCase. - /// --- - /// The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) - /// +optional - /// +kubebuilder:validation:Required - /// +kubebuilder:validation:Pattern=`^([a-z0-9](\[-a-z0-9\]*[a-z0-9])?(\.[a-z0-9](\[-a-z0-9\]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\])$` - /// +kubebuilder:validation:MaxLength=316 - #[prost(string, optional, tag = "3")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// PortworxVolumeSource represents a Portworx volume resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PortworxVolumeSource { - /// volumeID uniquely identifies a Portworx volume - #[prost(string, optional, tag = "1")] - pub volume_id: ::core::option::Option<::prost::alloc::string::String>, - /// fSType represents the filesystem type to mount - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified. - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, -} -/// Preconditions must be fulfilled before an operation (update, delete, etc.) is carried out. -/// +k8s:openapi-gen=false -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Preconditions { - /// Specifies the target UID. - /// +optional - #[prost(string, optional, tag = "1")] - pub uid: ::core::option::Option<::prost::alloc::string::String>, -} -/// Describes a class of pods that should avoid this node. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PreferAvoidPodsEntry { - /// The class of pods. - #[prost(message, optional, tag = "1")] - pub pod_signature: ::core::option::Option, - /// Time at which this entry was added to the list. - /// +optional - #[prost(message, optional, tag = "2")] - pub eviction_time: ::core::option::Option, - /// (brief) reason why this entry was added to the list. - /// +optional - #[prost(string, optional, tag = "3")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// Human readable message indicating why this entry was added to the list. - /// +optional - #[prost(string, optional, tag = "4")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// An empty preferred scheduling term matches all objects with implicit weight 0 -/// (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op). -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PreferredSchedulingTerm { - /// Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100. - #[prost(int32, optional, tag = "1")] - pub weight: ::core::option::Option, - /// A node selector term, associated with the corresponding weight. - #[prost(message, optional, tag = "2")] - pub preference: ::core::option::Option, -} -/// Probe describes a health check to be performed against a container to determine whether it is -/// alive or ready to receive traffic. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Probe { - /// The action taken to determine the health of a container - #[prost(message, optional, tag = "1")] - pub handler: ::core::option::Option, - /// Number of seconds after the container has started before liveness probes are initiated. - /// More info: - /// +optional - #[prost(int32, optional, tag = "2")] - pub initial_delay_seconds: ::core::option::Option, - /// Number of seconds after which the probe times out. - /// Defaults to 1 second. Minimum value is 1. - /// More info: - /// +optional - #[prost(int32, optional, tag = "3")] - pub timeout_seconds: ::core::option::Option, - /// How often (in seconds) to perform the probe. - /// Default to 10 seconds. Minimum value is 1. - /// +optional - #[prost(int32, optional, tag = "4")] - pub period_seconds: ::core::option::Option, - /// Minimum consecutive successes for the probe to be considered successful after having failed. - /// Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1. - /// +optional - #[prost(int32, optional, tag = "5")] - pub success_threshold: ::core::option::Option, - /// Minimum consecutive failures for the probe to be considered failed after having succeeded. - /// Defaults to 3. Minimum value is 1. - /// +optional - #[prost(int32, optional, tag = "6")] - pub failure_threshold: ::core::option::Option, - /// Optional duration in seconds the pod needs to terminate gracefully upon probe failure. - /// The grace period is the duration in seconds after the processes running in the pod are sent - /// a termination signal and the time when the processes are forcibly halted with a kill signal. - /// Set this value longer than the expected cleanup time for your process. - /// If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this - /// value overrides the value provided by the pod spec. - /// Value must be non-negative integer. The value zero indicates stop immediately via - /// the kill signal (no opportunity to shut down). - /// This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate. - /// Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset. - /// +optional - #[prost(int64, optional, tag = "7")] - pub termination_grace_period_seconds: ::core::option::Option, -} -/// ProbeHandler defines a specific action that should be taken in a probe. -/// One and only one of the fields must be specified. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ProbeHandler { - /// Exec specifies a command to execute in the container. - /// +optional - #[prost(message, optional, tag = "1")] - pub exec: ::core::option::Option, - /// HTTPGet specifies an HTTP GET request to perform. - /// +optional - #[prost(message, optional, tag = "2")] - pub http_get: ::core::option::Option, - /// TCPSocket specifies a connection to a TCP port. - /// +optional - #[prost(message, optional, tag = "3")] - pub tcp_socket: ::core::option::Option, - /// GRPC specifies a GRPC HealthCheckRequest. - /// +optional - #[prost(message, optional, tag = "4")] - pub grpc: ::core::option::Option, -} -/// Represents a projected volume source -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ProjectedVolumeSource { - /// sources is the list of volume projections. Each entry in this list - /// handles one source. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub sources: ::prost::alloc::vec::Vec, - /// defaultMode are the mode bits used to set permissions on created files by default. - /// Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. - /// YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. - /// Directories within the path are not affected by this setting. - /// This might be in conflict with other options that affect the file - /// mode, like fsGroup, and the result can be other mode bits set. - /// +optional - #[prost(int32, optional, tag = "2")] - pub default_mode: ::core::option::Option, -} -/// Represents a Quobyte mount that lasts the lifetime of a pod. -/// Quobyte volumes do not support ownership management or SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct QuobyteVolumeSource { - /// registry represents a single or multiple Quobyte Registry services - /// specified as a string as host:port pair (multiple entries are separated with commas) - /// which acts as the central registry for volumes - #[prost(string, optional, tag = "1")] - pub registry: ::core::option::Option<::prost::alloc::string::String>, - /// volume is a string that references an already created Quobyte volume by name. - #[prost(string, optional, tag = "2")] - pub volume: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly here will force the Quobyte volume to be mounted with read-only permissions. - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// user to map volume access to - /// Defaults to serivceaccount user - /// +optional - #[prost(string, optional, tag = "4")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// group to map volume access to - /// Default is no group - /// +optional - #[prost(string, optional, tag = "5")] - pub group: ::core::option::Option<::prost::alloc::string::String>, - /// tenant owning the given Quobyte volume in the Backend - /// Used with dynamically provisioned Quobyte volumes, value is set by the plugin - /// +optional - #[prost(string, optional, tag = "6")] - pub tenant: ::core::option::Option<::prost::alloc::string::String>, -} -/// Represents a Rados Block Device mount that lasts the lifetime of a pod. -/// RBD volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RbdPersistentVolumeSource { - /// monitors is a collection of Ceph monitors. - /// More info: - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub monitors: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// image is the rados image name. - /// More info: - #[prost(string, optional, tag = "2")] - pub image: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type of the volume that you want to mount. - /// Tip: Ensure that the filesystem type is supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "3")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// pool is the rados pool name. - /// Default is rbd. - /// More info: - /// +optional - /// +default="rbd" - #[prost(string, optional, tag = "4")] - pub pool: ::core::option::Option<::prost::alloc::string::String>, - /// user is the rados user name. - /// Default is admin. - /// More info: - /// +optional - /// +default="admin" - #[prost(string, optional, tag = "5")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// keyring is the path to key ring for RBDUser. - /// Default is /etc/ceph/keyring. - /// More info: - /// +optional - /// +default="/etc/ceph/keyring" - #[prost(string, optional, tag = "6")] - pub keyring: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef is name of the authentication secret for RBDUser. If provided - /// overrides keyring. - /// Default is nil. - /// More info: - /// +optional - #[prost(message, optional, tag = "7")] - pub secret_ref: ::core::option::Option, - /// readOnly here will force the ReadOnly setting in VolumeMounts. - /// Defaults to false. - /// More info: - /// +optional - #[prost(bool, optional, tag = "8")] - pub read_only: ::core::option::Option, -} -/// Represents a Rados Block Device mount that lasts the lifetime of a pod. -/// RBD volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RbdVolumeSource { - /// monitors is a collection of Ceph monitors. - /// More info: - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub monitors: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// image is the rados image name. - /// More info: - #[prost(string, optional, tag = "2")] - pub image: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type of the volume that you want to mount. - /// Tip: Ensure that the filesystem type is supported by the host operating system. - /// Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// More info: - /// TODO: how do we prevent errors in the filesystem from compromising the machine - /// +optional - #[prost(string, optional, tag = "3")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// pool is the rados pool name. - /// Default is rbd. - /// More info: - /// +optional - /// +default="rbd" - #[prost(string, optional, tag = "4")] - pub pool: ::core::option::Option<::prost::alloc::string::String>, - /// user is the rados user name. - /// Default is admin. - /// More info: - /// +optional - /// +default="admin" - #[prost(string, optional, tag = "5")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// keyring is the path to key ring for RBDUser. - /// Default is /etc/ceph/keyring. - /// More info: - /// +optional - /// +default="/etc/ceph/keyring" - #[prost(string, optional, tag = "6")] - pub keyring: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef is name of the authentication secret for RBDUser. If provided - /// overrides keyring. - /// Default is nil. - /// More info: - /// +optional - #[prost(message, optional, tag = "7")] - pub secret_ref: ::core::option::Option, - /// readOnly here will force the ReadOnly setting in VolumeMounts. - /// Defaults to false. - /// More info: - /// +optional - #[prost(bool, optional, tag = "8")] - pub read_only: ::core::option::Option, -} -/// RangeAllocation is not a public type. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RangeAllocation { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Range is string that identifies the range represented by 'data'. - #[prost(string, optional, tag = "2")] - pub range: ::core::option::Option<::prost::alloc::string::String>, - /// Data is a bit array containing all allocated addresses in the previous segment. - #[prost(bytes = "vec", optional, tag = "3")] - pub data: ::core::option::Option<::prost::alloc::vec::Vec>, -} -/// ReplicationController represents the configuration of a replication controller. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicationController { - /// If the Labels of a ReplicationController are empty, they are defaulted to - /// be the same as the Pod(s) that the replication controller manages. - /// Standard object's metadata. More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the specification of the desired behavior of the replication controller. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the most recently observed status of the replication controller. - /// This data may be out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ReplicationControllerCondition describes the state of a replication controller at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ReplicationControllerCondition { - /// Type of replication controller condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// ReplicationControllerList is a collection of replication controllers. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicationControllerList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of replication controllers. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ReplicationControllerSpec is the specification of a replication controller. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicationControllerSpec { - /// Replicas is the number of desired replicas. - /// This is a pointer to distinguish between explicit zero and unspecified. - /// Defaults to 1. - /// More info: - /// +optional - /// +k8s:optional - /// +default=1 - /// +k8s:minimum=0 - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - /// +k8s:optional - /// +default=0 - /// +k8s:minimum=0 - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// Selector is a label query over pods that should match the Replicas count. - /// If Selector is empty, it is defaulted to the labels present on the Pod template. - /// Label keys and values that must match in order to be controlled by this replication - /// controller, if empty defaulted to labels on Pod template. - /// More info: - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "2")] - pub selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// Template is the object that describes the pod that will be created if - /// insufficient replicas are detected. This takes precedence over a TemplateRef. - /// The only allowed template.spec.restartPolicy value is "Always". - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, -} -/// ReplicationControllerStatus represents the current status of a replication -/// controller. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicationControllerStatus { - /// Replicas is the most recently observed number of replicas. - /// More info: - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// The number of pods that have labels matching the labels of the pod template of the replication controller. - /// +optional - #[prost(int32, optional, tag = "2")] - pub fully_labeled_replicas: ::core::option::Option, - /// The number of ready replicas for this replication controller. - /// +optional - #[prost(int32, optional, tag = "4")] - pub ready_replicas: ::core::option::Option, - /// The number of available replicas (ready for at least minReadySeconds) for this replication controller. - /// +optional - #[prost(int32, optional, tag = "5")] - pub available_replicas: ::core::option::Option, - /// ObservedGeneration reflects the generation of the most recently observed replication controller. - /// +optional - #[prost(int64, optional, tag = "3")] - pub observed_generation: ::core::option::Option, - /// Represents the latest available observations of a replication controller's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// ResourceClaim references one entry in PodSpec.ResourceClaims. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceClaim { - /// Name must match the name of one entry in pod.spec.resourceClaims of - /// the Pod where this field is used. It makes that resource available - /// inside a container. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Request is the name chosen for a request in the referenced claim. - /// If empty, everything from the claim is made available, otherwise - /// only the result of this request. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub request: ::core::option::Option<::prost::alloc::string::String>, -} -/// ResourceFieldSelector represents container resources (cpu, memory) and their output format -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceFieldSelector { - /// Container name: required for volumes, optional for env vars - /// +optional - #[prost(string, optional, tag = "1")] - pub container_name: ::core::option::Option<::prost::alloc::string::String>, - /// Required: resource to select - #[prost(string, optional, tag = "2")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// Specifies the output format of the exposed resources, defaults to "1" - /// +optional - #[prost(message, optional, tag = "3")] - pub divisor: ::core::option::Option, -} -/// ResourceHealth represents the health of a resource. It has the latest device health information. -/// This is a part of KEP -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourceHealth { - /// ResourceID is the unique identifier of the resource. See the ResourceID type for more information. - #[prost(string, optional, tag = "1")] - pub resource_id: ::core::option::Option<::prost::alloc::string::String>, - /// Health of the resource. - /// can be one of: - /// - Healthy: operates as normal - /// - Unhealthy: reported unhealthy. We consider this a temporary health issue - /// since we do not have a mechanism today to distinguish - /// temporary and permanent issues. - /// - Unknown: The status cannot be determined. - /// For example, Device Plugin got unregistered and hasn't been re-registered since. - /// - /// In future we may want to introduce the PermanentlyUnhealthy Status. - #[prost(string, optional, tag = "2")] - pub health: ::core::option::Option<::prost::alloc::string::String>, -} -/// ResourceQuota sets aggregate quota restrictions enforced per namespace -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceQuota { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the desired quota. - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status defines the actual enforced quota and its current usage. - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ResourceQuotaList is a list of ResourceQuota items. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceQuotaList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ResourceQuota objects. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ResourceQuotaSpec defines the desired hard limits to enforce for Quota. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceQuotaSpec { - /// hard is the set of desired hard limits for each named resource. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub hard: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// A collection of filters that must match each object tracked by a quota. - /// If not specified, the quota matches all objects. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub scopes: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota - /// but expressed using ScopeSelectorOperator in combination with possible values. - /// For a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched. - /// +optional - #[prost(message, optional, tag = "3")] - pub scope_selector: ::core::option::Option, -} -/// ResourceQuotaStatus defines the enforced hard limits and observed use. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceQuotaStatus { - /// Hard is the set of enforced hard limits for each named resource. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub hard: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Used is the current observed total usage of the resource in the namespace. - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub used: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// ResourceRequirements describes the compute resource requirements. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceRequirements { - /// Limits describes the maximum amount of compute resources allowed. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub limits: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Requests describes the minimum amount of compute resources required. - /// If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, - /// otherwise to an implementation-defined value. Requests cannot exceed Limits. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub requests: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Claims lists the names of resources, defined in spec.resourceClaims, - /// that are used by this container. - /// - /// This field depends on the - /// DynamicResourceAllocation feature gate. - /// - /// This field is immutable. It can only be set for containers. - /// - /// +listType=map - /// +listMapKey=name - /// +featureGate=DynamicResourceAllocation - /// +optional - #[prost(message, repeated, tag = "3")] - pub claims: ::prost::alloc::vec::Vec, -} -/// ResourceStatus represents the status of a single resource allocated to a Pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ResourceStatus { - /// Name of the resource. Must be unique within the pod and in case of non-DRA resource, match one of the resources from the pod spec. - /// For DRA resources, the value must be "claim:/". - /// When this status is reported about a container, the "claim_name" and "request" must match one of the claims of this container. - /// +required - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// List of unique resources health. Each element in the list contains an unique resource ID and its health. - /// At a minimum, for the lifetime of a Pod, resource ID must uniquely identify the resource allocated to the Pod on the Node. - /// If other Pod on the same Node reports the status with the same resource ID, it must be the same resource they share. - /// See ResourceID type definition for a specific format it has in various use cases. - /// +listType=map - /// +listMapKey=resourceID - #[prost(message, repeated, tag = "2")] - pub resources: ::prost::alloc::vec::Vec, -} -/// SELinuxOptions are the labels to be applied to the container -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SeLinuxOptions { - /// User is a SELinux user label that applies to the container. - /// +optional - #[prost(string, optional, tag = "1")] - pub user: ::core::option::Option<::prost::alloc::string::String>, - /// Role is a SELinux role label that applies to the container. - /// +optional - #[prost(string, optional, tag = "2")] - pub role: ::core::option::Option<::prost::alloc::string::String>, - /// Type is a SELinux type label that applies to the container. - /// +optional - #[prost(string, optional, tag = "3")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Level is SELinux level label that applies to the container. - /// +optional - #[prost(string, optional, tag = "4")] - pub level: ::core::option::Option<::prost::alloc::string::String>, -} -/// ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleIoPersistentVolumeSource { - /// gateway is the host address of the ScaleIO API Gateway. - #[prost(string, optional, tag = "1")] - pub gateway: ::core::option::Option<::prost::alloc::string::String>, - /// system is the name of the storage system as configured in ScaleIO. - #[prost(string, optional, tag = "2")] - pub system: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef references to the secret for ScaleIO user and other - /// sensitive information. If this is not provided, Login operation will fail. - #[prost(message, optional, tag = "3")] - pub secret_ref: ::core::option::Option, - /// sslEnabled is the flag to enable/disable SSL communication with Gateway, default false - /// +optional - #[prost(bool, optional, tag = "4")] - pub ssl_enabled: ::core::option::Option, - /// protectionDomain is the name of the ScaleIO Protection Domain for the configured storage. - /// +optional - #[prost(string, optional, tag = "5")] - pub protection_domain: ::core::option::Option<::prost::alloc::string::String>, - /// storagePool is the ScaleIO Storage Pool associated with the protection domain. - /// +optional - #[prost(string, optional, tag = "6")] - pub storage_pool: ::core::option::Option<::prost::alloc::string::String>, - /// storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. - /// Default is ThinProvisioned. - /// +optional - /// +default="ThinProvisioned" - #[prost(string, optional, tag = "7")] - pub storage_mode: ::core::option::Option<::prost::alloc::string::String>, - /// volumeName is the name of a volume already created in the ScaleIO system - /// that is associated with this volume source. - #[prost(string, optional, tag = "8")] - pub volume_name: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". - /// Default is "xfs" - /// +optional - /// +default="xfs" - #[prost(string, optional, tag = "9")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "10")] - pub read_only: ::core::option::Option, -} -/// ScaleIOVolumeSource represents a persistent ScaleIO volume -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleIoVolumeSource { - /// gateway is the host address of the ScaleIO API Gateway. - #[prost(string, optional, tag = "1")] - pub gateway: ::core::option::Option<::prost::alloc::string::String>, - /// system is the name of the storage system as configured in ScaleIO. - #[prost(string, optional, tag = "2")] - pub system: ::core::option::Option<::prost::alloc::string::String>, - /// secretRef references to the secret for ScaleIO user and other - /// sensitive information. If this is not provided, Login operation will fail. - #[prost(message, optional, tag = "3")] - pub secret_ref: ::core::option::Option, - /// sslEnabled Flag enable/disable SSL communication with Gateway, default false - /// +optional - #[prost(bool, optional, tag = "4")] - pub ssl_enabled: ::core::option::Option, - /// protectionDomain is the name of the ScaleIO Protection Domain for the configured storage. - /// +optional - #[prost(string, optional, tag = "5")] - pub protection_domain: ::core::option::Option<::prost::alloc::string::String>, - /// storagePool is the ScaleIO Storage Pool associated with the protection domain. - /// +optional - #[prost(string, optional, tag = "6")] - pub storage_pool: ::core::option::Option<::prost::alloc::string::String>, - /// storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. - /// Default is ThinProvisioned. - /// +optional - /// +default="ThinProvisioned" - #[prost(string, optional, tag = "7")] - pub storage_mode: ::core::option::Option<::prost::alloc::string::String>, - /// volumeName is the name of a volume already created in the ScaleIO system - /// that is associated with this volume source. - #[prost(string, optional, tag = "8")] - pub volume_name: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". - /// Default is "xfs". - /// +optional - /// +default="xfs" - #[prost(string, optional, tag = "9")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly Defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "10")] - pub read_only: ::core::option::Option, -} -/// A scope selector represents the AND of the selectors represented -/// by the scoped-resource selector requirements. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ScopeSelector { - /// A list of scope selector requirements by scope of the resources. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub match_expressions: ::prost::alloc::vec::Vec, -} -/// A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator -/// that relates the scope name and values. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScopedResourceSelectorRequirement { - /// The name of the scope that the selector applies to. - #[prost(string, optional, tag = "1")] - pub scope_name: ::core::option::Option<::prost::alloc::string::String>, - /// Represents a scope's relationship to a set of values. - /// Valid operators are In, NotIn, Exists, DoesNotExist. - #[prost(string, optional, tag = "2")] - pub operator: ::core::option::Option<::prost::alloc::string::String>, - /// An array of string values. If the operator is In or NotIn, - /// the values array must be non-empty. If the operator is Exists or DoesNotExist, - /// the values array must be empty. - /// This array is replaced during a strategic merge patch. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub values: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// SeccompProfile defines a pod/container's seccomp profile settings. -/// Only one profile source may be set. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SeccompProfile { - /// type indicates which kind of seccomp profile will be applied. - /// Valid options are: - /// - /// Localhost - a profile defined in a file on the node should be used. - /// RuntimeDefault - the container runtime default profile should be used. - /// Unconfined - no profile should be applied. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// localhostProfile indicates a profile defined in a file on the node should be used. - /// The profile must be preconfigured on the node to work. - /// Must be a descending path, relative to the kubelet's configured seccomp profile location. - /// Must be set if type is "Localhost". Must NOT be set for any other type. - /// +optional - #[prost(string, optional, tag = "2")] - pub localhost_profile: ::core::option::Option<::prost::alloc::string::String>, -} -/// Secret holds secret data of a certain type. The total bytes of the values in -/// the Data field must be less than MaxSecretSize bytes. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Secret { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Immutable, if set to true, ensures that data stored in the Secret cannot - /// be updated (only object metadata can be modified). - /// If not set to true, the field can be modified at any time. - /// Defaulted to nil. - /// +optional - #[prost(bool, optional, tag = "5")] - pub immutable: ::core::option::Option, - /// Data contains the secret data. Each key must consist of alphanumeric - /// characters, '-', '_' or '.'. The serialized form of the secret data is a - /// base64 encoded string, representing the arbitrary (possibly non-string) - /// data value here. Described in - /// +optional - #[prost(btree_map = "string, bytes", tag = "2")] - pub data: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::vec::Vec>, - /// stringData allows specifying non-binary secret data in string form. - /// It is provided as a write-only input field for convenience. - /// All keys and values are merged into the data field on write, overwriting any existing values. - /// The stringData field is never output when reading from the API. - /// +k8s:conversion-gen=false - /// +optional - #[prost(btree_map = "string, string", tag = "4")] - pub string_data: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// Used to facilitate programmatic handling of secret data. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, -} -/// SecretEnvSource selects a Secret to populate the environment -/// variables with. -/// -/// The contents of the target Secret's Data field will represent the -/// key-value pairs as environment variables. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SecretEnvSource { - /// The Secret to select from. - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// Specify whether the Secret must be defined - /// +optional - #[prost(bool, optional, tag = "2")] - pub optional: ::core::option::Option, -} -/// SecretKeySelector selects a key of a Secret. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SecretKeySelector { - /// The name of the secret in the pod's namespace to select from. - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// The key of the secret to select from. Must be a valid secret key. - #[prost(string, optional, tag = "2")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// Specify whether the Secret or its key must be defined - /// +optional - #[prost(bool, optional, tag = "3")] - pub optional: ::core::option::Option, -} -/// SecretList is a list of Secret. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SecretList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of secret objects. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// Adapts a secret into a projected volume. -/// -/// The contents of the target Secret's Data field will be presented in a -/// projected volume as files using the keys in the Data field as the file names. -/// Note that this is identical to a secret volume source without the default -/// mode. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SecretProjection { - #[prost(message, optional, tag = "1")] - pub local_object_reference: ::core::option::Option, - /// items if unspecified, each key-value pair in the Data field of the referenced - /// Secret will be projected into the volume as a file whose name is the - /// key and content is the value. If specified, the listed keys will be - /// projected into the specified paths, and unlisted keys will not be - /// present. If a key is specified which is not present in the Secret, - /// the volume setup will error unless it is marked optional. Paths must be - /// relative and may not contain the '..' path or start with '..'. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, - /// optional field specify whether the Secret or its key must be defined - /// +optional - #[prost(bool, optional, tag = "4")] - pub optional: ::core::option::Option, -} -/// SecretReference represents a Secret Reference. It has enough information to retrieve secret -/// in any namespace -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SecretReference { - /// name is unique within a namespace to reference a secret resource. - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// namespace defines the space within which the secret name must be unique. - /// +optional - #[prost(string, optional, tag = "2")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// Adapts a Secret into a volume. -/// -/// The contents of the target Secret's Data field will be presented in a volume -/// as files using the keys in the Data field as the file names. -/// Secret volumes support ownership management and SELinux relabeling. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct SecretVolumeSource { - /// secretName is the name of the secret in the pod's namespace to use. - /// More info: - /// +optional - #[prost(string, optional, tag = "1")] - pub secret_name: ::core::option::Option<::prost::alloc::string::String>, - /// items If unspecified, each key-value pair in the Data field of the referenced - /// Secret will be projected into the volume as a file whose name is the - /// key and content is the value. If specified, the listed keys will be - /// projected into the specified paths, and unlisted keys will not be - /// present. If a key is specified which is not present in the Secret, - /// the volume setup will error unless it is marked optional. Paths must be - /// relative and may not contain the '..' path or start with '..'. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, - /// defaultMode is Optional: mode bits used to set permissions on created files by default. - /// Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. - /// YAML accepts both octal and decimal values, JSON requires decimal values - /// for mode bits. Defaults to 0644. - /// Directories within the path are not affected by this setting. - /// This might be in conflict with other options that affect the file - /// mode, like fsGroup, and the result can be other mode bits set. - /// +optional - #[prost(int32, optional, tag = "3")] - pub default_mode: ::core::option::Option, - /// optional field specify whether the Secret or its keys must be defined - /// +optional - #[prost(bool, optional, tag = "4")] - pub optional: ::core::option::Option, -} -/// SecurityContext holds security configuration that will be applied to a container. -/// Some fields are present in both SecurityContext and PodSecurityContext. When both -/// are set, the values in SecurityContext take precedence. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SecurityContext { - /// The capabilities to add/drop when running containers. - /// Defaults to the default set of capabilities granted by the container runtime. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "1")] - pub capabilities: ::core::option::Option, - /// Run container in privileged mode. - /// Processes in privileged containers are essentially equivalent to root on the host. - /// Defaults to false. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(bool, optional, tag = "2")] - pub privileged: ::core::option::Option, - /// The SELinux context to be applied to the container. - /// If unspecified, the container runtime will allocate a random SELinux context for each - /// container. May also be set in PodSecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "3")] - pub se_linux_options: ::core::option::Option, - /// The Windows specific settings applied to all containers. - /// If unspecified, the options from the PodSecurityContext will be used. - /// If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. - /// Note that this field cannot be set when spec.os.name is linux. - /// +optional - #[prost(message, optional, tag = "10")] - pub windows_options: ::core::option::Option, - /// The UID to run the entrypoint of the container process. - /// Defaults to user specified in image metadata if unspecified. - /// May also be set in PodSecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(int64, optional, tag = "4")] - pub run_as_user: ::core::option::Option, - /// The GID to run the entrypoint of the container process. - /// Uses runtime default if unset. - /// May also be set in PodSecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(int64, optional, tag = "8")] - pub run_as_group: ::core::option::Option, - /// Indicates that the container must run as a non-root user. - /// If true, the Kubelet will validate the image at runtime to ensure that it - /// does not run as UID 0 (root) and fail to start the container if it does. - /// If unset or false, no such validation will be performed. - /// May also be set in PodSecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence. - /// +optional - #[prost(bool, optional, tag = "5")] - pub run_as_non_root: ::core::option::Option, - /// Whether this container has a read-only root filesystem. - /// Default is false. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(bool, optional, tag = "6")] - pub read_only_root_filesystem: ::core::option::Option, - /// AllowPrivilegeEscalation controls whether a process can gain more - /// privileges than its parent process. This bool directly controls if - /// the no_new_privs flag will be set on the container process. - /// AllowPrivilegeEscalation is true always when the container is: - /// 1) run as Privileged - /// 2) has CAP_SYS_ADMIN - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(bool, optional, tag = "7")] - pub allow_privilege_escalation: ::core::option::Option, - /// procMount denotes the type of proc mount to use for the containers. - /// The default value is Default which uses the container runtime defaults for - /// readonly paths and masked paths. - /// This requires the ProcMountType feature flag to be enabled. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(string, optional, tag = "9")] - pub proc_mount: ::core::option::Option<::prost::alloc::string::String>, - /// The seccomp options to use by this container. If seccomp options are - /// provided at both the pod & container level, the container options - /// override the pod options. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "11")] - pub seccomp_profile: ::core::option::Option, - /// appArmorProfile is the AppArmor options to use by this container. If set, this profile - /// overrides the pod's appArmorProfile. - /// Note that this field cannot be set when spec.os.name is windows. - /// +optional - #[prost(message, optional, tag = "12")] - pub app_armor_profile: ::core::option::Option, -} -/// SerializedReference is a reference to serialized object. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SerializedReference { - /// The reference to an object in the system. - /// +optional - #[prost(message, optional, tag = "1")] - pub reference: ::core::option::Option, -} -/// Service is a named abstraction of software service (for example, mysql) consisting of local port -/// (for example 3306) that the proxy listens on, and the selector that determines which pods -/// will answer requests sent through the proxy. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Service { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the behavior of a service. - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the service. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ServiceAccount binds together: -/// * a name, understood by users, and perhaps by peripheral systems, for an identity -/// * a principal that can be authenticated and authorized -/// * a set of secrets -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceAccount { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use. - /// Pods are only limited to this list if this service account has a "kubernetes.io/enforce-mountable-secrets" annotation set to "true". - /// The "kubernetes.io/enforce-mountable-secrets" annotation is deprecated since v1.32. - /// Prefer separate namespaces to isolate access to mounted secrets. - /// This field should not be used to find auto-generated service account token secrets for use outside of pods. - /// Instead, tokens can be requested directly using the TokenRequest API, or service account token secrets can be manually created. - /// More info: - /// +optional - /// +patchMergeKey=name - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=name - #[prost(message, repeated, tag = "2")] - pub secrets: ::prost::alloc::vec::Vec, - /// ImagePullSecrets is a list of references to secrets in the same namespace to use for pulling any images - /// in pods that reference this ServiceAccount. ImagePullSecrets are distinct from Secrets because Secrets - /// can be mounted in the pod, but ImagePullSecrets are only accessed by the kubelet. - /// More info: - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub image_pull_secrets: ::prost::alloc::vec::Vec, - /// AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted. - /// Can be overridden at the pod level. - /// +optional - #[prost(bool, optional, tag = "4")] - pub automount_service_account_token: ::core::option::Option, -} -/// ServiceAccountList is a list of ServiceAccount objects -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceAccountList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ServiceAccounts. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ServiceAccountTokenProjection represents a projected service account token -/// volume. This projection can be used to insert a service account token into -/// the pods runtime filesystem for use against APIs (Kubernetes API Server or -/// otherwise). -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceAccountTokenProjection { - /// audience is the intended audience of the token. A recipient of a token - /// must identify itself with an identifier specified in the audience of the - /// token, and otherwise should reject the token. The audience defaults to the - /// identifier of the apiserver. - /// +optional - #[prost(string, optional, tag = "1")] - pub audience: ::core::option::Option<::prost::alloc::string::String>, - /// expirationSeconds is the requested duration of validity of the service - /// account token. As the token approaches expiration, the kubelet volume - /// plugin will proactively rotate the service account token. The kubelet will - /// start trying to rotate the token if the token is older than 80 percent of - /// its time to live or if the token is older than 24 hours.Defaults to 1 hour - /// and must be at least 10 minutes. - /// +optional - #[prost(int64, optional, tag = "2")] - pub expiration_seconds: ::core::option::Option, - /// path is the path relative to the mount point of the file to project the - /// token into. - #[prost(string, optional, tag = "3")] - pub path: ::core::option::Option<::prost::alloc::string::String>, -} -/// ServiceList holds a list of services. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of services - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ServicePort contains information on service's port. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServicePort { - /// The name of this port within the service. This must be a DNS_LABEL. - /// All ports within a ServiceSpec must have unique names. When considering - /// the endpoints for a Service, this must match the 'name' field in the - /// EndpointPort. - /// Optional if only one ServicePort is defined on this service. - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// The IP protocol for this port. Supports "TCP", "UDP", and "SCTP". - /// Default is TCP. - /// +default="TCP" - /// +optional - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// The application protocol for this port. - /// This is used as a hint for implementations to offer richer behavior for protocols that they understand. - /// This field follows standard Kubernetes label syntax. - /// Valid values are either: - /// - /// * Un-prefixed protocol names - reserved for IANA standard service names (as per - /// RFC-6335 and ). - /// - /// * Kubernetes-defined prefixed names: - /// * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in - /// * 'kubernetes.io/ws' - WebSocket over cleartext as described in - /// * 'kubernetes.io/wss' - WebSocket over TLS as described in - /// - /// * Other protocols should use implementation-defined prefixed names such as - /// mycompany.com/my-custom-protocol. - /// +optional - #[prost(string, optional, tag = "6")] - pub app_protocol: ::core::option::Option<::prost::alloc::string::String>, - /// The port that will be exposed by this service. - #[prost(int32, optional, tag = "3")] - pub port: ::core::option::Option, - /// Number or name of the port to access on the pods targeted by the service. - /// Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME. - /// If this is a string, it will be looked up as a named port in the - /// target Pod's container ports. If this is not specified, the value - /// of the 'port' field is used (an identity map). - /// This field is ignored for services with clusterIP=None, and should be - /// omitted or set equal to the 'port' field. - /// More info: - /// +optional - #[prost(message, optional, tag = "4")] - pub target_port: - ::core::option::Option, - /// The port on each node on which this service is exposed when type is - /// NodePort or LoadBalancer. Usually assigned by the system. If a value is - /// specified, in-range, and not in use it will be used, otherwise the - /// operation will fail. If not specified, a port will be allocated if this - /// Service requires one. If this field is specified when creating a - /// Service which does not need it, creation will fail. This field will be - /// wiped when updating a Service to no longer need it (e.g. changing type - /// from NodePort to ClusterIP). - /// More info: - /// +optional - #[prost(int32, optional, tag = "5")] - pub node_port: ::core::option::Option, -} -/// ServiceProxyOptions is the query options to a Service's proxy call. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceProxyOptions { - /// Path is the part of URLs that include service endpoints, suffixes, - /// and parameters to use for the current proxy request to service. - /// For example, the whole request URL is - /// - /// Path is _search?q=user:kimchy. - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, -} -/// ServiceSpec describes the attributes that a user creates on a service. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceSpec { - /// The list of ports that are exposed by this service. - /// More info: - /// +patchMergeKey=port - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=port - /// +listMapKey=protocol - #[prost(message, repeated, tag = "1")] - pub ports: ::prost::alloc::vec::Vec, - /// Route service traffic to pods with label keys and values matching this - /// selector. If empty or not present, the service is assumed to have an - /// external process managing its endpoints, which Kubernetes will not - /// modify. Only applies to types ClusterIP, NodePort, and LoadBalancer. - /// Ignored if type is ExternalName. - /// More info: - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "2")] - pub selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// clusterIP is the IP address of the service and is usually assigned - /// randomly. If an address is specified manually, is in-range (as per - /// system configuration), and is not in use, it will be allocated to the - /// service; otherwise creation of the service will fail. This field may not - /// be changed through updates unless the type field is also being changed - /// to ExternalName (which requires this field to be blank) or the type - /// field is being changed from ExternalName (in which case this field may - /// optionally be specified, as describe above). Valid values are "None", - /// empty string (""), or a valid IP address. Setting this to "None" makes a - /// "headless service" (no virtual IP), which is useful when direct endpoint - /// connections are preferred and proxying is not required. Only applies to - /// types ClusterIP, NodePort, and LoadBalancer. If this field is specified - /// when creating a Service of type ExternalName, creation will fail. This - /// field will be wiped when updating a Service to type ExternalName. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub cluster_ip: ::core::option::Option<::prost::alloc::string::String>, - /// ClusterIPs is a list of IP addresses assigned to this service, and are - /// usually assigned randomly. If an address is specified manually, is - /// in-range (as per system configuration), and is not in use, it will be - /// allocated to the service; otherwise creation of the service will fail. - /// This field may not be changed through updates unless the type field is - /// also being changed to ExternalName (which requires this field to be - /// empty) or the type field is being changed from ExternalName (in which - /// case this field may optionally be specified, as describe above). Valid - /// values are "None", empty string (""), or a valid IP address. Setting - /// this to "None" makes a "headless service" (no virtual IP), which is - /// useful when direct endpoint connections are preferred and proxying is - /// not required. Only applies to types ClusterIP, NodePort, and - /// LoadBalancer. If this field is specified when creating a Service of type - /// ExternalName, creation will fail. This field will be wiped when updating - /// a Service to type ExternalName. If this field is not specified, it will - /// be initialized from the clusterIP field. If this field is specified, - /// clients must ensure that clusterIPs\[0\] and clusterIP have the same - /// value. - /// - /// This field may hold a maximum of two entries (dual-stack IPs, in either order). - /// These IPs must correspond to the values of the ipFamilies field. Both - /// clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. - /// More info: - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "18")] - pub cluster_ips: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// type determines how the Service is exposed. Defaults to ClusterIP. Valid - /// options are ExternalName, ClusterIP, NodePort, and LoadBalancer. - /// "ClusterIP" allocates a cluster-internal IP address for load-balancing - /// to endpoints. Endpoints are determined by the selector or if that is not - /// specified, by manual construction of an Endpoints object or - /// EndpointSlice objects. If clusterIP is "None", no virtual IP is - /// allocated and the endpoints are published as a set of endpoints rather - /// than a virtual IP. - /// "NodePort" builds on ClusterIP and allocates a port on every node which - /// routes to the same endpoints as the clusterIP. - /// "LoadBalancer" builds on NodePort and creates an external load-balancer - /// (if supported in the current cloud) which routes to the same endpoints - /// as the clusterIP. - /// "ExternalName" aliases this service to the specified externalName. - /// Several other fields do not apply to ExternalName services. - /// More info: - /// +optional - #[prost(string, optional, tag = "4")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// externalIPs is a list of IP addresses for which nodes in the cluster - /// will also accept traffic for this service. These IPs are not managed by - /// Kubernetes. The user is responsible for ensuring that traffic arrives - /// at a node with this IP. A common example is external load-balancers - /// that are not part of the Kubernetes system. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub external_ips: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Supports "ClientIP" and "None". Used to maintain session affinity. - /// Enable client IP based session affinity. - /// Must be ClientIP or None. - /// Defaults to None. - /// More info: - /// +optional - #[prost(string, optional, tag = "7")] - pub session_affinity: ::core::option::Option<::prost::alloc::string::String>, - /// Only applies to Service Type: LoadBalancer. - /// This feature depends on whether the underlying cloud-provider supports specifying - /// the loadBalancerIP when a load balancer is created. - /// This field will be ignored if the cloud-provider does not support the feature. - /// Deprecated: This field was under-specified and its meaning varies across implementations. - /// Using it is non-portable and it may not support dual-stack. - /// Users are encouraged to use implementation-specific annotations when available. - /// +optional - #[prost(string, optional, tag = "8")] - pub load_balancer_ip: ::core::option::Option<::prost::alloc::string::String>, - /// If specified and supported by the platform, this will restrict traffic through the cloud-provider - /// load-balancer will be restricted to the specified client IPs. This field will be ignored if the - /// cloud-provider does not support the feature." - /// More info: - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "9")] - pub load_balancer_source_ranges: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// externalName is the external reference that discovery mechanisms will - /// return as an alias for this service (e.g. a DNS CNAME record). No - /// proxying will be involved. Must be a lowercase RFC-1123 hostname - /// () and requires `type` to be "ExternalName". - /// +optional - #[prost(string, optional, tag = "10")] - pub external_name: ::core::option::Option<::prost::alloc::string::String>, - /// externalTrafficPolicy describes how nodes distribute service traffic they - /// receive on one of the Service's "externally-facing" addresses (NodePorts, - /// ExternalIPs, and LoadBalancer IPs). If set to "Local", the proxy will configure - /// the service in a way that assumes that external load balancers will take care - /// of balancing the service traffic between nodes, and so each node will deliver - /// traffic only to the node-local endpoints of the service, without masquerading - /// the client source IP. (Traffic mistakenly sent to a node with no endpoints will - /// be dropped.) The default value, "Cluster", uses the standard behavior of - /// routing to all endpoints evenly (possibly modified by topology and other - /// features). Note that traffic sent to an External IP or LoadBalancer IP from - /// within the cluster will always get "Cluster" semantics, but clients sending to - /// a NodePort from within the cluster may need to take traffic policy into account - /// when picking a node. - /// +optional - #[prost(string, optional, tag = "11")] - pub external_traffic_policy: ::core::option::Option<::prost::alloc::string::String>, - /// healthCheckNodePort specifies the healthcheck nodePort for the service. - /// This only applies when type is set to LoadBalancer and - /// externalTrafficPolicy is set to Local. If a value is specified, is - /// in-range, and is not in use, it will be used. If not specified, a value - /// will be automatically allocated. External systems (e.g. load-balancers) - /// can use this port to determine if a given node holds endpoints for this - /// service or not. If this field is specified when creating a Service - /// which does not need it, creation will fail. This field will be wiped - /// when updating a Service to no longer need it (e.g. changing type). - /// This field cannot be updated once set. - /// +optional - #[prost(int32, optional, tag = "12")] - pub health_check_node_port: ::core::option::Option, - /// publishNotReadyAddresses indicates that any agent which deals with endpoints for this - /// Service should disregard any indications of ready/not-ready. - /// The primary use case for setting this field is for a StatefulSet's Headless Service to - /// propagate SRV DNS records for its Pods for the purpose of peer discovery. - /// The Kubernetes controllers that generate Endpoints and EndpointSlice resources for - /// Services interpret this to mean that all endpoints are considered "ready" even if the - /// Pods themselves are not. Agents which consume only Kubernetes generated endpoints - /// through the Endpoints or EndpointSlice resources can safely assume this behavior. - /// +optional - #[prost(bool, optional, tag = "13")] - pub publish_not_ready_addresses: ::core::option::Option, - /// sessionAffinityConfig contains the configurations of session affinity. - /// +optional - #[prost(message, optional, tag = "14")] - pub session_affinity_config: ::core::option::Option, - /// IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this - /// service. This field is usually assigned automatically based on cluster - /// configuration and the ipFamilyPolicy field. If this field is specified - /// manually, the requested family is available in the cluster, - /// and ipFamilyPolicy allows it, it will be used; otherwise creation of - /// the service will fail. This field is conditionally mutable: it allows - /// for adding or removing a secondary IP family, but it does not allow - /// changing the primary IP family of the Service. Valid values are "IPv4" - /// and "IPv6". This field only applies to Services of types ClusterIP, - /// NodePort, and LoadBalancer, and does apply to "headless" services. - /// This field will be wiped when updating a Service to type ExternalName. - /// - /// This field may hold a maximum of two entries (dual-stack families, in - /// either order). These families must correspond to the values of the - /// clusterIPs field, if specified. Both clusterIPs and ipFamilies are - /// governed by the ipFamilyPolicy field. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "19")] - pub ip_families: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// IPFamilyPolicy represents the dual-stack-ness requested or required by - /// this Service. If there is no value provided, then this field will be set - /// to SingleStack. Services can be "SingleStack" (a single IP family), - /// "PreferDualStack" (two IP families on dual-stack configured clusters or - /// a single IP family on single-stack clusters), or "RequireDualStack" - /// (two IP families on dual-stack configured clusters, otherwise fail). The - /// ipFamilies and clusterIPs fields depend on the value of this field. This - /// field will be wiped when updating a service to type ExternalName. - /// +optional - #[prost(string, optional, tag = "17")] - pub ip_family_policy: ::core::option::Option<::prost::alloc::string::String>, - /// allocateLoadBalancerNodePorts defines if NodePorts will be automatically - /// allocated for services with type LoadBalancer. Default is "true". It - /// may be set to "false" if the cluster load-balancer does not rely on - /// NodePorts. If the caller requests specific NodePorts (by specifying a - /// value), those requests will be respected, regardless of this field. - /// This field may only be set for services with type LoadBalancer and will - /// be cleared if the type is changed to any other type. - /// +optional - #[prost(bool, optional, tag = "20")] - pub allocate_load_balancer_node_ports: ::core::option::Option, - /// loadBalancerClass is the class of the load balancer implementation this Service belongs to. - /// If specified, the value of this field must be a label-style identifier, with an optional prefix, - /// e.g. "internal-vip" or "example.com/internal-vip". Unprefixed names are reserved for end-users. - /// This field can only be set when the Service type is 'LoadBalancer'. If not set, the default load - /// balancer implementation is used, today this is typically done through the cloud provider integration, - /// but should apply for any default implementation. If set, it is assumed that a load balancer - /// implementation is watching for Services with a matching class. Any default load balancer - /// implementation (e.g. cloud providers) should ignore Services that set this field. - /// This field can only be set when creating or updating a Service to type 'LoadBalancer'. - /// Once set, it can not be changed. This field will be wiped when a service is updated to a non 'LoadBalancer' type. - /// +optional - #[prost(string, optional, tag = "21")] - pub load_balancer_class: ::core::option::Option<::prost::alloc::string::String>, - /// InternalTrafficPolicy describes how nodes distribute service traffic they - /// receive on the ClusterIP. If set to "Local", the proxy will assume that pods - /// only want to talk to endpoints of the service on the same node as the pod, - /// dropping the traffic if there are no local endpoints. The default value, - /// "Cluster", uses the standard behavior of routing to all endpoints evenly - /// (possibly modified by topology and other features). - /// +optional - #[prost(string, optional, tag = "22")] - pub internal_traffic_policy: ::core::option::Option<::prost::alloc::string::String>, - /// TrafficDistribution offers a way to express preferences for how traffic - /// is distributed to Service endpoints. Implementations can use this field - /// as a hint, but are not required to guarantee strict adherence. If the - /// field is not set, the implementation will apply its default routing - /// strategy. If set to "PreferClose", implementations should prioritize - /// endpoints that are in the same zone. - /// +featureGate=ServiceTrafficDistribution - /// +optional - #[prost(string, optional, tag = "23")] - pub traffic_distribution: ::core::option::Option<::prost::alloc::string::String>, -} -/// ServiceStatus represents the current status of a service. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceStatus { - /// LoadBalancer contains the current status of the load-balancer, - /// if one is present. - /// +optional - #[prost(message, optional, tag = "1")] - pub load_balancer: ::core::option::Option, - /// Current service state - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "2")] - pub conditions: - ::prost::alloc::vec::Vec, -} -/// SessionAffinityConfig represents the configurations of session affinity. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SessionAffinityConfig { - /// clientIP contains the configurations of Client IP based session affinity. - /// +optional - #[prost(message, optional, tag = "1")] - pub client_ip: ::core::option::Option, -} -/// SleepAction describes a "sleep" action. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct SleepAction { - /// Seconds is the number of seconds to sleep. - #[prost(int64, optional, tag = "1")] - pub seconds: ::core::option::Option, -} -/// Represents a StorageOS persistent volume resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StorageOsPersistentVolumeSource { - /// volumeName is the human-readable name of the StorageOS volume. Volume - /// names are only unique within a namespace. - #[prost(string, optional, tag = "1")] - pub volume_name: ::core::option::Option<::prost::alloc::string::String>, - /// volumeNamespace specifies the scope of the volume within StorageOS. If no - /// namespace is specified then the Pod's namespace will be used. This allows the - /// Kubernetes name scoping to be mirrored within StorageOS for tighter integration. - /// Set VolumeName to any name to override the default behaviour. - /// Set to "default" if you are not using namespaces within StorageOS. - /// Namespaces that do not pre-exist within StorageOS will be created. - /// +optional - #[prost(string, optional, tag = "2")] - pub volume_namespace: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// +optional - #[prost(string, optional, tag = "3")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, - /// secretRef specifies the secret to use for obtaining the StorageOS API - /// credentials. If not specified, default values will be attempted. - /// +optional - #[prost(message, optional, tag = "5")] - pub secret_ref: ::core::option::Option, -} -/// Represents a StorageOS persistent volume resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct StorageOsVolumeSource { - /// volumeName is the human-readable name of the StorageOS volume. Volume - /// names are only unique within a namespace. - #[prost(string, optional, tag = "1")] - pub volume_name: ::core::option::Option<::prost::alloc::string::String>, - /// volumeNamespace specifies the scope of the volume within StorageOS. If no - /// namespace is specified then the Pod's namespace will be used. This allows the - /// Kubernetes name scoping to be mirrored within StorageOS for tighter integration. - /// Set VolumeName to any name to override the default behaviour. - /// Set to "default" if you are not using namespaces within StorageOS. - /// Namespaces that do not pre-exist within StorageOS will be created. - /// +optional - #[prost(string, optional, tag = "2")] - pub volume_namespace: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is the filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// +optional - #[prost(string, optional, tag = "3")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// readOnly defaults to false (read/write). ReadOnly here will force - /// the ReadOnly setting in VolumeMounts. - /// +optional - #[prost(bool, optional, tag = "4")] - pub read_only: ::core::option::Option, - /// secretRef specifies the secret to use for obtaining the StorageOS API - /// credentials. If not specified, default values will be attempted. - /// +optional - #[prost(message, optional, tag = "5")] - pub secret_ref: ::core::option::Option, -} -/// Sysctl defines a kernel parameter to be set -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Sysctl { - /// Name of a property to set - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Value of a property to set - #[prost(string, optional, tag = "2")] - pub value: ::core::option::Option<::prost::alloc::string::String>, -} -/// TCPSocketAction describes an action based on opening a socket -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TcpSocketAction { - /// Number or name of the port to access on the container. - /// Number must be in the range 1 to 65535. - /// Name must be an IANA_SVC_NAME. - #[prost(message, optional, tag = "1")] - pub port: ::core::option::Option, - /// Optional: Host name to connect to, defaults to the pod IP. - /// +optional - #[prost(string, optional, tag = "2")] - pub host: ::core::option::Option<::prost::alloc::string::String>, -} -/// The node this Taint is attached to has the "effect" on -/// any pod that does not tolerate the Taint. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Taint { - /// Required. The taint key to be applied to a node. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// The taint value corresponding to the taint key. - /// +optional - #[prost(string, optional, tag = "2")] - pub value: ::core::option::Option<::prost::alloc::string::String>, - /// Required. The effect of the taint on pods - /// that do not tolerate the taint. - /// Valid effects are NoSchedule, PreferNoSchedule and NoExecute. - #[prost(string, optional, tag = "3")] - pub effect: ::core::option::Option<::prost::alloc::string::String>, - /// TimeAdded represents the time at which the taint was added. - /// +optional - #[prost(message, optional, tag = "4")] - pub time_added: ::core::option::Option, -} -/// The pod this Toleration is attached to tolerates any taint that matches -/// the triple using the matching operator . -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Toleration { - /// Key is the taint key that the toleration applies to. Empty means match all taint keys. - /// If the key is empty, operator must be Exists; this combination means to match all values and all keys. - /// +optional - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// Operator represents a key's relationship to the value. - /// Valid operators are Exists and Equal. Defaults to Equal. - /// Exists is equivalent to wildcard for value, so that a pod can - /// tolerate all taints of a particular category. - /// +optional - #[prost(string, optional, tag = "2")] - pub operator: ::core::option::Option<::prost::alloc::string::String>, - /// Value is the taint value the toleration matches to. - /// If the operator is Exists, the value should be empty, otherwise just a regular string. - /// +optional - #[prost(string, optional, tag = "3")] - pub value: ::core::option::Option<::prost::alloc::string::String>, - /// Effect indicates the taint effect to match. Empty means match all taint effects. - /// When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. - /// +optional - #[prost(string, optional, tag = "4")] - pub effect: ::core::option::Option<::prost::alloc::string::String>, - /// TolerationSeconds represents the period of time the toleration (which must be - /// of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, - /// it is not set, which means tolerate the taint forever (do not evict). Zero and - /// negative values will be treated as 0 (evict immediately) by the system. - /// +optional - #[prost(int64, optional, tag = "5")] - pub toleration_seconds: ::core::option::Option, -} -/// A topology selector requirement is a selector that matches given label. -/// This is an alpha feature and may change in the future. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TopologySelectorLabelRequirement { - /// The label key that the selector applies to. - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// An array of string values. One value must match the label to be selected. - /// Each entry in Values is ORed. - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub values: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// A topology selector term represents the result of label queries. -/// A null or empty topology selector term matches no objects. -/// The requirements of them are ANDed. -/// It provides a subset of functionality as NodeSelectorTerm. -/// This is an alpha feature and may change in the future. -/// +structType=atomic -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TopologySelectorTerm { - /// A list of topology selector requirements by labels. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub match_label_expressions: ::prost::alloc::vec::Vec, -} -/// TopologySpreadConstraint specifies how to spread matching pods among the given topology. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct TopologySpreadConstraint { - /// MaxSkew describes the degree to which pods may be unevenly distributed. - /// When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference - /// between the number of matching pods in the target topology and the global minimum. - /// The global minimum is the minimum number of matching pods in an eligible domain - /// or zero if the number of eligible domains is less than MinDomains. - /// For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same - /// labelSelector spread as 2/2/1: - /// In this case, the global minimum is 1. - /// +-------+-------+-------+ - /// | zone1 | zone2 | zone3 | - /// +-------+-------+-------+ - /// | P P | P P | P | - /// +-------+-------+-------+ - /// - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; - /// scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) - /// violate MaxSkew(1). - /// - if MaxSkew is 2, incoming pod can be scheduled onto any zone. - /// When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence - /// to topologies that satisfy it. - /// It's a required field. Default value is 1 and 0 is not allowed. - #[prost(int32, optional, tag = "1")] - pub max_skew: ::core::option::Option, - /// TopologyKey is the key of node labels. Nodes that have a label with this key - /// and identical values are considered to be in the same topology. - /// We consider each as a "bucket", and try to put balanced number - /// of pods into each bucket. - /// We define a domain as a particular instance of a topology. - /// Also, we define an eligible domain as a domain whose nodes meet the requirements of - /// nodeAffinityPolicy and nodeTaintsPolicy. - /// e.g. If TopologyKey is "kubernetes.io/hostname", each Node is a domain of that topology. - /// And, if TopologyKey is "topology.kubernetes.io/zone", each zone is a domain of that topology. - /// It's a required field. - #[prost(string, optional, tag = "2")] - pub topology_key: ::core::option::Option<::prost::alloc::string::String>, - /// WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy - /// the spread constraint. - /// - DoNotSchedule (default) tells the scheduler not to schedule it. - /// - ScheduleAnyway tells the scheduler to schedule the pod in any location, - /// but giving higher precedence to topologies that would help reduce the - /// skew. - /// A constraint is considered "Unsatisfiable" for an incoming pod - /// if and only if every possible node assignment for that pod would violate - /// "MaxSkew" on some topology. - /// For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same - /// labelSelector spread as 3/1/1: - /// +-------+-------+-------+ - /// | zone1 | zone2 | zone3 | - /// +-------+-------+-------+ - /// | P P P | P | P | - /// +-------+-------+-------+ - /// If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled - /// to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies - /// MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler - /// won't make it *more* imbalanced. - /// It's a required field. - #[prost(string, optional, tag = "3")] - pub when_unsatisfiable: ::core::option::Option<::prost::alloc::string::String>, - /// LabelSelector is used to find matching pods. - /// Pods that match this label selector are counted to determine the number of pods - /// in their corresponding topology domain. - /// +optional - #[prost(message, optional, tag = "4")] - pub label_selector: - ::core::option::Option, - /// MinDomains indicates a minimum number of eligible domains. - /// When the number of eligible domains with matching topology keys is less than minDomains, - /// Pod Topology Spread treats "global minimum" as 0, and then the calculation of Skew is performed. - /// And when the number of eligible domains with matching topology keys equals or greater than minDomains, - /// this value has no effect on scheduling. - /// As a result, when the number of eligible domains is less than minDomains, - /// scheduler won't schedule more than maxSkew Pods to those domains. - /// If value is nil, the constraint behaves as if MinDomains is equal to 1. - /// Valid values are integers greater than 0. - /// When value is not nil, WhenUnsatisfiable must be DoNotSchedule. - /// - /// For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same - /// labelSelector spread as 2/2/2: - /// +-------+-------+-------+ - /// | zone1 | zone2 | zone3 | - /// +-------+-------+-------+ - /// | P P | P P | P P | - /// +-------+-------+-------+ - /// The number of domains is less than 5(MinDomains), so "global minimum" is treated as 0. - /// In this situation, new pod with the same labelSelector cannot be scheduled, - /// because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, - /// it will violate MaxSkew. - /// +optional - #[prost(int32, optional, tag = "5")] - pub min_domains: ::core::option::Option, - /// NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector - /// when calculating pod topology spread skew. Options are: - /// - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - /// - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. - /// - /// If this value is nil, the behavior is equivalent to the Honor policy. - /// +optional - #[prost(string, optional, tag = "6")] - pub node_affinity_policy: ::core::option::Option<::prost::alloc::string::String>, - /// NodeTaintsPolicy indicates how we will treat node taints when calculating - /// pod topology spread skew. Options are: - /// - Honor: nodes without taints, along with tainted nodes for which the incoming pod - /// has a toleration, are included. - /// - Ignore: node taints are ignored. All nodes are included. - /// - /// If this value is nil, the behavior is equivalent to the Ignore policy. - /// +optional - #[prost(string, optional, tag = "7")] - pub node_taints_policy: ::core::option::Option<::prost::alloc::string::String>, - /// MatchLabelKeys is a set of pod label keys to select the pods over which - /// spreading will be calculated. The keys are used to lookup values from the - /// incoming pod labels, those key-value labels are ANDed with labelSelector - /// to select the group of existing pods over which spreading will be calculated - /// for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. - /// MatchLabelKeys cannot be set when LabelSelector isn't set. - /// Keys that don't exist in the incoming pod labels will - /// be ignored. A null or empty list means only match against labelSelector. - /// - /// This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default). - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "8")] - pub match_label_keys: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// TypedLocalObjectReference contains enough information to let you locate the -/// typed referenced object inside the same namespace. -/// --- -/// New uses of this type are discouraged because of difficulty describing its usage when embedded in APIs. -/// 1. Invalid usage help. It is impossible to add specific help for individual usage. In most embedded usages, there are particular -/// restrictions like, "must refer only to types A and B" or "UID not honored" or "name must be restricted". -/// Those cannot be well described when embedded. -/// 2. Inconsistent validation. Because the usages are different, the validation rules are different by usage, which makes it hard for users to predict what will happen. -/// 3. The fields are both imprecise and overly precise. Kind is not a precise mapping to a URL. This can produce ambiguity -/// during interpretation and require a REST mapping. In most cases, the dependency is on the group,resource tuple -/// and the version of the actual struct is irrelevant. -/// 4. We cannot easily change it. Because this type is embedded in many locations, updates to this type -/// will affect numerous schemas. Don't make new APIs embed an underspecified API type they do not control. -/// -/// Instead of using this type, create a locally provided and used type that is well-focused on your reference. -/// For example, ServiceReferences for admission registration: . -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TypedLocalObjectReference { - /// APIGroup is the group for the resource being referenced. - /// If APIGroup is not specified, the specified Kind must be in the core API group. - /// For any other third-party types, APIGroup is required. - /// +optional - #[prost(string, optional, tag = "1")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the type of resource being referenced - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of resource being referenced - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// TypedObjectReference contains enough information to let you locate the typed referenced object -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct TypedObjectReference { - /// APIGroup is the group for the resource being referenced. - /// If APIGroup is not specified, the specified Kind must be in the core API group. - /// For any other third-party types, APIGroup is required. - /// +optional - #[prost(string, optional, tag = "1")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the type of resource being referenced - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of resource being referenced - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace is the namespace of resource being referenced - /// Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. - /// (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled. - /// +featureGate=CrossNamespaceVolumeDataSource - /// +optional - #[prost(string, optional, tag = "4")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// Volume represents a named volume in a pod that may be accessed by any container in the pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Volume { - /// name of the volume. - /// Must be a DNS_LABEL and unique within the pod. - /// More info: - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// volumeSource represents the location and type of the mounted volume. - /// If not specified, the Volume is implied to be an EmptyDir. - /// This implied behavior is deprecated and will be removed in a future version. - #[prost(message, optional, tag = "2")] - pub volume_source: ::core::option::Option, -} -/// volumeDevice describes a mapping of a raw block device within a container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct VolumeDevice { - /// name must match the name of a persistentVolumeClaim in the pod - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// devicePath is the path inside of the container that the device will be mapped to. - #[prost(string, optional, tag = "2")] - pub device_path: ::core::option::Option<::prost::alloc::string::String>, -} -/// VolumeMount describes a mounting of a Volume within a container. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct VolumeMount { - /// This must match the Name of a Volume. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Mounted read-only if true, read-write otherwise (false or unspecified). - /// Defaults to false. - /// +optional - #[prost(bool, optional, tag = "2")] - pub read_only: ::core::option::Option, - /// RecursiveReadOnly specifies whether read-only mounts should be handled - /// recursively. - /// - /// If ReadOnly is false, this field has no meaning and must be unspecified. - /// - /// If ReadOnly is true, and this field is set to Disabled, the mount is not made - /// recursively read-only. If this field is set to IfPossible, the mount is made - /// recursively read-only, if it is supported by the container runtime. If this - /// field is set to Enabled, the mount is made recursively read-only if it is - /// supported by the container runtime, otherwise the pod will not be started and - /// an error will be generated to indicate the reason. - /// - /// If this field is set to IfPossible or Enabled, MountPropagation must be set to - /// None (or be unspecified, which defaults to None). - /// - /// If this field is not specified, it is treated as an equivalent of Disabled. - /// - /// +featureGate=RecursiveReadOnlyMounts - /// +optional - #[prost(string, optional, tag = "7")] - pub recursive_read_only: ::core::option::Option<::prost::alloc::string::String>, - /// Path within the container at which the volume should be mounted. Must - /// not contain ':'. - #[prost(string, optional, tag = "3")] - pub mount_path: ::core::option::Option<::prost::alloc::string::String>, - /// Path within the volume from which the container's volume should be mounted. - /// Defaults to "" (volume's root). - /// +optional - #[prost(string, optional, tag = "4")] - pub sub_path: ::core::option::Option<::prost::alloc::string::String>, - /// mountPropagation determines how mounts are propagated from the host - /// to container and the other way around. - /// When not set, MountPropagationNone is used. - /// This field is beta in 1.10. - /// When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified - /// (which defaults to None). - /// +optional - #[prost(string, optional, tag = "5")] - pub mount_propagation: ::core::option::Option<::prost::alloc::string::String>, - /// Expanded path within the volume from which the container's volume should be mounted. - /// Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. - /// Defaults to "" (volume's root). - /// SubPathExpr and SubPath are mutually exclusive. - /// +optional - #[prost(string, optional, tag = "6")] - pub sub_path_expr: ::core::option::Option<::prost::alloc::string::String>, -} -/// VolumeMountStatus shows status of volume mounts. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct VolumeMountStatus { - /// Name corresponds to the name of the original VolumeMount. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// MountPath corresponds to the original VolumeMount. - #[prost(string, optional, tag = "2")] - pub mount_path: ::core::option::Option<::prost::alloc::string::String>, - /// ReadOnly corresponds to the original VolumeMount. - /// +optional - #[prost(bool, optional, tag = "3")] - pub read_only: ::core::option::Option, - /// RecursiveReadOnly must be set to Disabled, Enabled, or unspecified (for non-readonly mounts). - /// An IfPossible value in the original VolumeMount must be translated to Disabled or Enabled, - /// depending on the mount result. - /// +featureGate=RecursiveReadOnlyMounts - /// +optional - #[prost(string, optional, tag = "4")] - pub recursive_read_only: ::core::option::Option<::prost::alloc::string::String>, -} -/// VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct VolumeNodeAffinity { - /// required specifies hard node constraints that must be met. - #[prost(message, optional, tag = "1")] - pub required: ::core::option::Option, -} -/// Projection that may be projected along with other supported volume types. -/// Exactly one of these fields must be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct VolumeProjection { - /// secret information about the secret data to project - /// +optional - #[prost(message, optional, tag = "1")] - pub secret: ::core::option::Option, - /// downwardAPI information about the downwardAPI data to project - /// +optional - #[prost(message, optional, tag = "2")] - pub downward_api: ::core::option::Option, - /// configMap information about the configMap data to project - /// +optional - #[prost(message, optional, tag = "3")] - pub config_map: ::core::option::Option, - /// serviceAccountToken is information about the serviceAccountToken data to project - /// +optional - #[prost(message, optional, tag = "4")] - pub service_account_token: ::core::option::Option, - /// ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field - /// of ClusterTrustBundle objects in an auto-updating file. - /// - /// Alpha, gated by the ClusterTrustBundleProjection feature gate. - /// - /// ClusterTrustBundle objects can either be selected by name, or by the - /// combination of signer name and a label selector. - /// - /// Kubelet performs aggressive normalization of the PEM contents written - /// into the pod filesystem. Esoteric PEM features such as inter-block - /// comments and block headers are stripped. Certificates are deduplicated. - /// The ordering of certificates within the file is arbitrary, and Kubelet - /// may change the order over time. - /// - /// +featureGate=ClusterTrustBundleProjection - /// +optional - #[prost(message, optional, tag = "5")] - pub cluster_trust_bundle: ::core::option::Option, - /// Projects an auto-rotating credential bundle (private key and certificate - /// chain) that the pod can use either as a TLS client or server. - /// - /// Kubelet generates a private key and uses it to send a - /// PodCertificateRequest to the named signer. Once the signer approves the - /// request and issues a certificate chain, Kubelet writes the key and - /// certificate chain to the pod filesystem. The pod does not start until - /// certificates have been issued for each podCertificate projected volume - /// source in its spec. - /// - /// Kubelet will begin trying to rotate the certificate at the time indicated - /// by the signer using the PodCertificateRequest.Status.BeginRefreshAt - /// timestamp. - /// - /// Kubelet can write a single file, indicated by the credentialBundlePath - /// field, or separate files, indicated by the keyPath and - /// certificateChainPath fields. - /// - /// The credential bundle is a single file in PEM format. The first PEM - /// entry is the private key (in PKCS#8 format), and the remaining PEM - /// entries are the certificate chain issued by the signer (typically, - /// signers will return their certificate chain in leaf-to-root order). - /// - /// Prefer using the credential bundle format, since your application code - /// can read it atomically. If you use keyPath and certificateChainPath, - /// your application must make two separate file reads. If these coincide - /// with a certificate rotation, it is possible that the private key and leaf - /// certificate you read may not correspond to each other. Your application - /// will need to check for this condition, and re-read until they are - /// consistent. - /// - /// The named signer controls chooses the format of the certificate it - /// issues; consult the signer implementation's documentation to learn how to - /// use the certificates it issues. - /// - /// +featureGate=PodCertificateProjection +optional - #[prost(message, optional, tag = "6")] - pub pod_certificate: ::core::option::Option, -} -/// VolumeResourceRequirements describes the storage resource requirements for a volume. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct VolumeResourceRequirements { - /// Limits describes the maximum amount of compute resources allowed. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub limits: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, - /// Requests describes the minimum amount of compute resources required. - /// If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, - /// otherwise to an implementation-defined value. Requests cannot exceed Limits. - /// More info: - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub requests: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// Represents the source of a volume to mount. -/// Only one of its members may be specified. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct VolumeSource { - /// hostPath represents a pre-existing file or directory on the host - /// machine that is directly exposed to the container. This is generally - /// used for system agents or other privileged things that are allowed - /// to see the host machine. Most containers will NOT need this. - /// More info: - /// --- - /// TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not - /// mount host directories as read/write. - /// +optional - #[prost(message, optional, tag = "1")] - pub host_path: ::core::option::Option, - /// emptyDir represents a temporary directory that shares a pod's lifetime. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub empty_dir: ::core::option::Option, - /// gcePersistentDisk represents a GCE Disk resource that is attached to a - /// kubelet's host machine and then exposed to the pod. - /// Deprecated: GCEPersistentDisk is deprecated. All operations for the in-tree - /// gcePersistentDisk type are redirected to the pd.csi.storage.gke.io CSI driver. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub gce_persistent_disk: ::core::option::Option, - /// awsElasticBlockStore represents an AWS Disk resource that is attached to a - /// kubelet's host machine and then exposed to the pod. - /// Deprecated: AWSElasticBlockStore is deprecated. All operations for the in-tree - /// awsElasticBlockStore type are redirected to the ebs.csi.aws.com CSI driver. - /// More info: - /// +optional - #[prost(message, optional, tag = "4")] - pub aws_elastic_block_store: ::core::option::Option, - /// gitRepo represents a git repository at a particular revision. - /// Deprecated: GitRepo is deprecated. To provision a container with a git repo, mount an - /// EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir - /// into the Pod's container. - /// +optional - #[prost(message, optional, tag = "5")] - pub git_repo: ::core::option::Option, - /// secret represents a secret that should populate this volume. - /// More info: - /// +optional - #[prost(message, optional, tag = "6")] - pub secret: ::core::option::Option, - /// nfs represents an NFS mount on the host that shares a pod's lifetime - /// More info: - /// +optional - #[prost(message, optional, tag = "7")] - pub nfs: ::core::option::Option, - /// iscsi represents an ISCSI Disk resource that is attached to a - /// kubelet's host machine and then exposed to the pod. - /// More info: - /// +optional - #[prost(message, optional, tag = "8")] - pub iscsi: ::core::option::Option, - /// glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. - /// Deprecated: Glusterfs is deprecated and the in-tree glusterfs type is no longer supported. - /// +optional - #[prost(message, optional, tag = "9")] - pub glusterfs: ::core::option::Option, - /// persistentVolumeClaimVolumeSource represents a reference to a - /// PersistentVolumeClaim in the same namespace. - /// More info: - /// +optional - #[prost(message, optional, tag = "10")] - pub persistent_volume_claim: ::core::option::Option, - /// rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. - /// Deprecated: RBD is deprecated and the in-tree rbd type is no longer supported. - /// +optional - #[prost(message, optional, tag = "11")] - pub rbd: ::core::option::Option, - /// flexVolume represents a generic volume resource that is - /// provisioned/attached using an exec based plugin. - /// Deprecated: FlexVolume is deprecated. Consider using a CSIDriver instead. - /// +optional - #[prost(message, optional, tag = "12")] - pub flex_volume: ::core::option::Option, - /// cinder represents a cinder volume attached and mounted on kubelets host machine. - /// Deprecated: Cinder is deprecated. All operations for the in-tree cinder type - /// are redirected to the cinder.csi.openstack.org CSI driver. - /// More info: - /// +optional - #[prost(message, optional, tag = "13")] - pub cinder: ::core::option::Option, - /// cephFS represents a Ceph FS mount on the host that shares a pod's lifetime. - /// Deprecated: CephFS is deprecated and the in-tree cephfs type is no longer supported. - /// +optional - #[prost(message, optional, tag = "14")] - pub cephfs: ::core::option::Option, - /// flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running. - /// Deprecated: Flocker is deprecated and the in-tree flocker type is no longer supported. - /// +optional - #[prost(message, optional, tag = "15")] - pub flocker: ::core::option::Option, - /// downwardAPI represents downward API about the pod that should populate this volume - /// +optional - #[prost(message, optional, tag = "16")] - pub downward_api: ::core::option::Option, - /// fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. - /// +optional - #[prost(message, optional, tag = "17")] - pub fc: ::core::option::Option, - /// azureFile represents an Azure File Service mount on the host and bind mount to the pod. - /// Deprecated: AzureFile is deprecated. All operations for the in-tree azureFile type - /// are redirected to the file.csi.azure.com CSI driver. - /// +optional - #[prost(message, optional, tag = "18")] - pub azure_file: ::core::option::Option, - /// configMap represents a configMap that should populate this volume - /// +optional - #[prost(message, optional, tag = "19")] - pub config_map: ::core::option::Option, - /// vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine. - /// Deprecated: VsphereVolume is deprecated. All operations for the in-tree vsphereVolume type - /// are redirected to the csi.vsphere.vmware.com CSI driver. - /// +optional - #[prost(message, optional, tag = "20")] - pub vsphere_volume: ::core::option::Option, - /// quobyte represents a Quobyte mount on the host that shares a pod's lifetime. - /// Deprecated: Quobyte is deprecated and the in-tree quobyte type is no longer supported. - /// +optional - #[prost(message, optional, tag = "21")] - pub quobyte: ::core::option::Option, - /// azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. - /// Deprecated: AzureDisk is deprecated. All operations for the in-tree azureDisk type - /// are redirected to the disk.csi.azure.com CSI driver. - /// +optional - #[prost(message, optional, tag = "22")] - pub azure_disk: ::core::option::Option, - /// photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine. - /// Deprecated: PhotonPersistentDisk is deprecated and the in-tree photonPersistentDisk type is no longer supported. - #[prost(message, optional, tag = "23")] - pub photon_persistent_disk: ::core::option::Option, - /// projected items for all in one resources secrets, configmaps, and downward API - #[prost(message, optional, tag = "26")] - pub projected: ::core::option::Option, - /// portworxVolume represents a portworx volume attached and mounted on kubelets host machine. - /// Deprecated: PortworxVolume is deprecated. All operations for the in-tree portworxVolume type - /// are redirected to the pxd.portworx.com CSI driver when the CSIMigrationPortworx feature-gate - /// is on. - /// +optional - #[prost(message, optional, tag = "24")] - pub portworx_volume: ::core::option::Option, - /// scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. - /// Deprecated: ScaleIO is deprecated and the in-tree scaleIO type is no longer supported. - /// +optional - #[prost(message, optional, tag = "25")] - pub scale_io: ::core::option::Option, - /// storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. - /// Deprecated: StorageOS is deprecated and the in-tree storageos type is no longer supported. - /// +optional - #[prost(message, optional, tag = "27")] - pub storageos: ::core::option::Option, - /// csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers. - /// +optional - #[prost(message, optional, tag = "28")] - pub csi: ::core::option::Option, - /// ephemeral represents a volume that is handled by a cluster storage driver. - /// The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, - /// and deleted when the pod is removed. - /// - /// Use this if: - /// a) the volume is only needed while the pod runs, - /// b) features of normal volumes like restoring from snapshot or capacity - /// tracking are needed, - /// c) the storage driver is specified through a storage class, and - /// d) the storage driver supports dynamic volume provisioning through - /// a PersistentVolumeClaim (see EphemeralVolumeSource for more - /// information on the connection between this volume type - /// and PersistentVolumeClaim). - /// - /// Use PersistentVolumeClaim or one of the vendor-specific - /// APIs for volumes that persist for longer than the lifecycle - /// of an individual pod. - /// - /// Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to - /// be used that way - see the documentation of the driver for - /// more information. - /// - /// A pod can use both types of ephemeral volumes and - /// persistent volumes at the same time. - /// - /// +optional - #[prost(message, optional, tag = "29")] - pub ephemeral: ::core::option::Option, - /// image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine. - /// The volume is resolved at pod startup depending on which PullPolicy value is provided: - /// - /// - Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails. - /// - Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present. - /// - IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails. - /// - /// The volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation. - /// A failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message. - /// The types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field. - /// The OCI object gets mounted in a single directory (spec.containers\[*\].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images. - /// The volume will be mounted read-only (ro) and non-executable files (noexec). - /// Sub path mounts for containers are not supported (spec.containers\[*\].volumeMounts.subpath) before 1.33. - /// The field spec.securityContext.fsGroupChangePolicy has no effect on this volume type. - /// +featureGate=ImageVolume - /// +optional - #[prost(message, optional, tag = "30")] - pub image: ::core::option::Option, -} -/// Represents a vSphere volume resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct VsphereVirtualDiskVolumeSource { - /// volumePath is the path that identifies vSphere volume vmdk - #[prost(string, optional, tag = "1")] - pub volume_path: ::core::option::Option<::prost::alloc::string::String>, - /// fsType is filesystem type to mount. - /// Must be a filesystem type supported by the host operating system. - /// Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. - /// +optional - #[prost(string, optional, tag = "2")] - pub fs_type: ::core::option::Option<::prost::alloc::string::String>, - /// storagePolicyName is the storage Policy Based Management (SPBM) profile name. - /// +optional - #[prost(string, optional, tag = "3")] - pub storage_policy_name: ::core::option::Option<::prost::alloc::string::String>, - /// storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName. - /// +optional - #[prost(string, optional, tag = "4")] - pub storage_policy_id: ::core::option::Option<::prost::alloc::string::String>, -} -/// The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s) -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct WeightedPodAffinityTerm { - /// weight associated with matching the corresponding podAffinityTerm, - /// in the range 1-100. - #[prost(int32, optional, tag = "1")] - pub weight: ::core::option::Option, - /// Required. A pod affinity term, associated with the corresponding weight. - #[prost(message, optional, tag = "2")] - pub pod_affinity_term: ::core::option::Option, -} -/// WindowsSecurityContextOptions contain Windows-specific options and credentials. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct WindowsSecurityContextOptions { - /// GMSACredentialSpecName is the name of the GMSA credential spec to use. - /// +optional - #[prost(string, optional, tag = "1")] - pub gmsa_credential_spec_name: ::core::option::Option<::prost::alloc::string::String>, - /// GMSACredentialSpec is where the GMSA admission webhook - /// () inlines the contents of the - /// GMSA credential spec named by the GMSACredentialSpecName field. - /// +optional - #[prost(string, optional, tag = "2")] - pub gmsa_credential_spec: ::core::option::Option<::prost::alloc::string::String>, - /// The UserName in Windows to run the entrypoint of the container process. - /// Defaults to the user specified in image metadata if unspecified. - /// May also be set in PodSecurityContext. If set in both SecurityContext and - /// PodSecurityContext, the value specified in SecurityContext takes precedence. - /// +optional - #[prost(string, optional, tag = "3")] - pub run_as_user_name: ::core::option::Option<::prost::alloc::string::String>, - /// HostProcess determines if a container should be run as a 'Host Process' container. - /// All of a Pod's containers must have the same effective HostProcess value - /// (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers). - /// In addition, if HostProcess is true then HostNetwork must also be set to true. - /// +optional - #[prost(bool, optional, tag = "4")] - pub host_process: ::core::option::Option, -} - -impl crate::Resource for Binding { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Binding"; - const URL_PATH_SEGMENT: &'static str = "bindings"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Binding { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for ComponentStatus { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ComponentStatus"; - const URL_PATH_SEGMENT: &'static str = "componentstatuses"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ComponentStatus { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for ConfigMap { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ConfigMap"; - const URL_PATH_SEGMENT: &'static str = "configmaps"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for ConfigMap { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for Endpoints { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Endpoints"; - const URL_PATH_SEGMENT: &'static str = "endpoints"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Endpoints { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for Event { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Event"; - const URL_PATH_SEGMENT: &'static str = "events"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Event { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for LimitRange { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "LimitRange"; - const URL_PATH_SEGMENT: &'static str = "limitranges"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for LimitRange { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for LimitRange { - type Spec = crate::api::core::v1::LimitRangeSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for Namespace { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Namespace"; - const URL_PATH_SEGMENT: &'static str = "namespaces"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for Namespace { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Namespace { - type Spec = crate::api::core::v1::NamespaceSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Namespace { - type Status = crate::api::core::v1::NamespaceStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for Namespace { - type Condition = crate::api::core::v1::NamespaceCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for Node { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Node"; - const URL_PATH_SEGMENT: &'static str = "nodes"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for Node { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Node { - type Spec = crate::api::core::v1::NodeSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Node { - type Status = crate::api::core::v1::NodeStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for Node { - type Condition = crate::api::core::v1::NodeCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for PersistentVolume { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "PersistentVolume"; - const URL_PATH_SEGMENT: &'static str = "persistentvolumes"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for PersistentVolume { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for PersistentVolume { - type Spec = crate::api::core::v1::PersistentVolumeSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for PersistentVolume { - type Status = crate::api::core::v1::PersistentVolumeStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for PersistentVolumeClaim { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "PersistentVolumeClaim"; - const URL_PATH_SEGMENT: &'static str = "persistentvolumeclaims"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for PersistentVolumeClaim { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for PersistentVolumeClaim { - type Spec = crate::api::core::v1::PersistentVolumeClaimSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for PersistentVolumeClaim { - type Status = crate::api::core::v1::PersistentVolumeClaimStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for PersistentVolumeClaim { - type Condition = crate::api::core::v1::PersistentVolumeClaimCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for Pod { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Pod"; - const URL_PATH_SEGMENT: &'static str = "pods"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Pod { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Pod { - type Spec = crate::api::core::v1::PodSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Pod { - type Status = crate::api::core::v1::PodStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for Pod { - type Condition = crate::api::core::v1::PodCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for PodTemplate { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "PodTemplate"; - const URL_PATH_SEGMENT: &'static str = "podtemplates"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for PodTemplate { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for ReplicationController { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ReplicationController"; - const URL_PATH_SEGMENT: &'static str = "replicationcontrollers"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for ReplicationController { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ReplicationController { - type Spec = crate::api::core::v1::ReplicationControllerSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for ReplicationController { - type Status = crate::api::core::v1::ReplicationControllerStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for ReplicationController { - type Condition = crate::api::core::v1::ReplicationControllerCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for ResourceQuota { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ResourceQuota"; - const URL_PATH_SEGMENT: &'static str = "resourcequotas"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for ResourceQuota { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ResourceQuota { - type Spec = crate::api::core::v1::ResourceQuotaSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for ResourceQuota { - type Status = crate::api::core::v1::ResourceQuotaStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for Secret { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Secret"; - const URL_PATH_SEGMENT: &'static str = "secrets"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Secret { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for Service { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Service"; - const URL_PATH_SEGMENT: &'static str = "services"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Service { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Service { - type Spec = crate::api::core::v1::ServiceSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Service { - type Status = crate::api::core::v1::ServiceStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for Service { - type Condition = crate::apimachinery::pkg::apis::meta::v1::Condition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for ServiceAccount { - const API_VERSION: &'static str = "v1"; - const GROUP: &'static str = ""; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ServiceAccount"; - const URL_PATH_SEGMENT: &'static str = "serviceaccounts"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for ServiceAccount { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} diff --git a/k8s-pb/src/api/discovery/mod.rs b/k8s-pb/src/api/discovery/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/discovery/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/discovery/v1/mod.rs b/k8s-pb/src/api/discovery/v1/mod.rs deleted file mode 100644 index 1efbc28..0000000 --- a/k8s-pb/src/api/discovery/v1/mod.rs +++ /dev/null @@ -1,222 +0,0 @@ -// This file is @generated by prost-build. -/// Endpoint represents a single logical "backend" implementing a service. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Endpoint { - /// addresses of this endpoint. For EndpointSlices of addressType "IPv4" or "IPv6", - /// the values are IP addresses in canonical form. The syntax and semantics of - /// other addressType values are not defined. This must contain at least one - /// address but no more than 100. EndpointSlices generated by the EndpointSlice - /// controller will always have exactly 1 address. No semantics are defined for - /// additional addresses beyond the first, and kube-proxy does not look at them. - /// +listType=set - #[prost(string, repeated, tag = "1")] - pub addresses: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// conditions contains information about the current status of the endpoint. - #[prost(message, optional, tag = "2")] - pub conditions: ::core::option::Option, - /// hostname of this endpoint. This field may be used by consumers of - /// endpoints to distinguish endpoints from each other (e.g. in DNS names). - /// Multiple endpoints which use the same hostname should be considered - /// fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS - /// Label (RFC 1123) validation. - /// +optional - #[prost(string, optional, tag = "3")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// targetRef is a reference to a Kubernetes object that represents this - /// endpoint. - /// +optional - #[prost(message, optional, tag = "4")] - pub target_ref: ::core::option::Option, - /// deprecatedTopology contains topology information part of the v1beta1 - /// API. This field is deprecated, and will be removed when the v1beta1 - /// API is removed (no sooner than kubernetes v1.24). While this field can - /// hold values, it is not writable through the v1 API, and any attempts to - /// write to it will be silently ignored. Topology information can be found - /// in the zone and nodeName fields instead. - /// +optional - #[prost(btree_map = "string, string", tag = "5")] - pub deprecated_topology: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// nodeName represents the name of the Node hosting this endpoint. This can - /// be used to determine endpoints local to a Node. - /// +optional - #[prost(string, optional, tag = "6")] - pub node_name: ::core::option::Option<::prost::alloc::string::String>, - /// zone is the name of the Zone this endpoint exists in. - /// +optional - #[prost(string, optional, tag = "7")] - pub zone: ::core::option::Option<::prost::alloc::string::String>, - /// hints contains information associated with how an endpoint should be - /// consumed. - /// +optional - #[prost(message, optional, tag = "8")] - pub hints: ::core::option::Option, -} -/// EndpointConditions represents the current condition of an endpoint. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EndpointConditions { - /// ready indicates that this endpoint is ready to receive traffic, - /// according to whatever system is managing the endpoint. A nil value - /// should be interpreted as "true". In general, an endpoint should be - /// marked ready if it is serving and not terminating, though this can - /// be overridden in some cases, such as when the associated Service has - /// set the publishNotReadyAddresses flag. - /// +optional - #[prost(bool, optional, tag = "1")] - pub ready: ::core::option::Option, - /// serving indicates that this endpoint is able to receive traffic, - /// according to whatever system is managing the endpoint. For endpoints - /// backed by pods, the EndpointSlice controller will mark the endpoint - /// as serving if the pod's Ready condition is True. A nil value should be - /// interpreted as "true". - /// +optional - #[prost(bool, optional, tag = "2")] - pub serving: ::core::option::Option, - /// terminating indicates that this endpoint is terminating. A nil value - /// should be interpreted as "false". - /// +optional - #[prost(bool, optional, tag = "3")] - pub terminating: ::core::option::Option, -} -/// EndpointHints provides hints describing how an endpoint should be consumed. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointHints { - /// forZones indicates the zone(s) this endpoint should be consumed by when - /// using topology aware routing. May contain a maximum of 8 entries. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub for_zones: ::prost::alloc::vec::Vec, - /// forNodes indicates the node(s) this endpoint should be consumed by when - /// using topology aware routing. May contain a maximum of 8 entries. - /// This is an Alpha feature and is only used when the PreferSameTrafficDistribution - /// feature gate is enabled. - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub for_nodes: ::prost::alloc::vec::Vec, -} -/// EndpointPort represents a Port used by an EndpointSlice -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EndpointPort { - /// name represents the name of this port. All ports in an EndpointSlice must have a unique name. - /// If the EndpointSlice is derived from a Kubernetes service, this corresponds to the Service.ports\[\].name. - /// Name must either be an empty string or pass DNS_LABEL validation: - /// * must be no more than 63 characters long. - /// * must consist of lower case alphanumeric characters or '-'. - /// * must start and end with an alphanumeric character. - /// Default is empty string. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// protocol represents the IP protocol for this port. - /// Must be UDP, TCP, or SCTP. - /// Default is TCP. - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// port represents the port number of the endpoint. - /// If the EndpointSlice is derived from a Kubernetes service, this must be set - /// to the service's target port. EndpointSlices used for other purposes may have - /// a nil port. - #[prost(int32, optional, tag = "3")] - pub port: ::core::option::Option, - /// The application protocol for this port. - /// This is used as a hint for implementations to offer richer behavior for protocols that they understand. - /// This field follows standard Kubernetes label syntax. - /// Valid values are either: - /// - /// * Un-prefixed protocol names - reserved for IANA standard service names (as per - /// RFC-6335 and ). - /// - /// * Kubernetes-defined prefixed names: - /// * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in - /// * 'kubernetes.io/ws' - WebSocket over cleartext as described in - /// * 'kubernetes.io/wss' - WebSocket over TLS as described in - /// - /// * Other protocols should use implementation-defined prefixed names such as - /// mycompany.com/my-custom-protocol. - /// +optional - #[prost(string, optional, tag = "4")] - pub app_protocol: ::core::option::Option<::prost::alloc::string::String>, -} -/// EndpointSlice represents a set of service endpoints. Most EndpointSlices are created by -/// the EndpointSlice controller to represent the Pods selected by Service objects. For a -/// given service there may be multiple EndpointSlice objects which must be joined to -/// produce the full set of endpoints; you can find all of the slices for a given service -/// by listing EndpointSlices in the service's namespace whose `kubernetes.io/service-name` -/// label contains the service's name. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointSlice { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// addressType specifies the type of address carried by this EndpointSlice. - /// All addresses in this slice must be the same type. This field is - /// immutable after creation. The following address types are currently - /// supported: - /// * IPv4: Represents an IPv4 Address. - /// * IPv6: Represents an IPv6 Address. - /// * FQDN: Represents a Fully Qualified Domain Name. (Deprecated) - /// The EndpointSlice controller only generates, and kube-proxy only processes, - /// slices of addressType "IPv4" and "IPv6". No semantics are defined for - /// the "FQDN" type. - #[prost(string, optional, tag = "4")] - pub address_type: ::core::option::Option<::prost::alloc::string::String>, - /// endpoints is a list of unique endpoints in this slice. Each slice may - /// include a maximum of 1000 endpoints. - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub endpoints: ::prost::alloc::vec::Vec, - /// ports specifies the list of network ports exposed by each endpoint in - /// this slice. Each port must have a unique name. Each slice may include a - /// maximum of 100 ports. - /// Services always have at least 1 port, so EndpointSlices generated by the - /// EndpointSlice controller will likewise always have at least 1 port. - /// EndpointSlices used for other purposes may have an empty ports list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub ports: ::prost::alloc::vec::Vec, -} -/// EndpointSliceList represents a list of endpoint slices -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointSliceList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of endpoint slices - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ForNode provides information about which nodes should consume this endpoint. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ForNode { - /// name represents the name of the node. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// ForZone provides information about which zones should consume this endpoint. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ForZone { - /// name represents the name of the zone. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for EndpointSlice { - const API_VERSION: &'static str = "discovery.k8s.io/v1"; - const GROUP: &'static str = "discovery.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "EndpointSlice"; - const URL_PATH_SEGMENT: &'static str = "endpointslices"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for EndpointSlice { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} diff --git a/k8s-pb/src/api/discovery/v1beta1/mod.rs b/k8s-pb/src/api/discovery/v1beta1/mod.rs deleted file mode 100644 index 41a65d0..0000000 --- a/k8s-pb/src/api/discovery/v1beta1/mod.rs +++ /dev/null @@ -1,189 +0,0 @@ -// This file is @generated by prost-build. -/// Endpoint represents a single logical "backend" implementing a service. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Endpoint { - /// addresses of this endpoint. The contents of this field are interpreted - /// according to the corresponding EndpointSlice addressType field. Consumers - /// must handle different types of addresses in the context of their own - /// capabilities. This must contain at least one address but no more than - /// 100. These are all assumed to be fungible and clients may choose to only - /// use the first element. Refer to: - /// +listType=set - #[prost(string, repeated, tag = "1")] - pub addresses: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// conditions contains information about the current status of the endpoint. - #[prost(message, optional, tag = "2")] - pub conditions: ::core::option::Option, - /// hostname of this endpoint. This field may be used by consumers of - /// endpoints to distinguish endpoints from each other (e.g. in DNS names). - /// Multiple endpoints which use the same hostname should be considered - /// fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS - /// Label (RFC 1123) validation. - /// +optional - #[prost(string, optional, tag = "3")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// targetRef is a reference to a Kubernetes object that represents this - /// endpoint. - /// +optional - #[prost(message, optional, tag = "4")] - pub target_ref: ::core::option::Option, - /// topology contains arbitrary topology information associated with the - /// endpoint. These key/value pairs must conform with the label format. - /// - /// Topology may include a maximum of 16 key/value pairs. This includes, but - /// is not limited to the following well known keys: - /// * kubernetes.io/hostname: the value indicates the hostname of the node - /// where the endpoint is located. This should match the corresponding - /// node label. - /// * topology.kubernetes.io/zone: the value indicates the zone where the - /// endpoint is located. This should match the corresponding node label. - /// * topology.kubernetes.io/region: the value indicates the region where the - /// endpoint is located. This should match the corresponding node label. - /// This field is deprecated and will be removed in future api versions. - /// +optional - #[prost(btree_map = "string, string", tag = "5")] - pub topology: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// nodeName represents the name of the Node hosting this endpoint. This can - /// be used to determine endpoints local to a Node. - /// +optional - #[prost(string, optional, tag = "6")] - pub node_name: ::core::option::Option<::prost::alloc::string::String>, - /// hints contains information associated with how an endpoint should be - /// consumed. - /// +featureGate=TopologyAwareHints - /// +optional - #[prost(message, optional, tag = "7")] - pub hints: ::core::option::Option, -} -/// EndpointConditions represents the current condition of an endpoint. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EndpointConditions { - /// ready indicates that this endpoint is prepared to receive traffic, - /// according to whatever system is managing the endpoint. A nil value - /// indicates an unknown state. In most cases consumers should interpret this - /// unknown state as ready. For compatibility reasons, ready should never be - /// "true" for terminating endpoints. - /// +optional - #[prost(bool, optional, tag = "1")] - pub ready: ::core::option::Option, - /// serving is identical to ready except that it is set regardless of the - /// terminating state of endpoints. This condition should be set to true for - /// a ready endpoint that is terminating. If nil, consumers should defer to - /// the ready condition. - /// +optional - #[prost(bool, optional, tag = "2")] - pub serving: ::core::option::Option, - /// terminating indicates that this endpoint is terminating. A nil value - /// indicates an unknown state. Consumers should interpret this unknown state - /// to mean that the endpoint is not terminating. - /// +optional - #[prost(bool, optional, tag = "3")] - pub terminating: ::core::option::Option, -} -/// EndpointHints provides hints describing how an endpoint should be consumed. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointHints { - /// forZones indicates the zone(s) this endpoint should be consumed by to - /// enable topology aware routing. May contain a maximum of 8 entries. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub for_zones: ::prost::alloc::vec::Vec, - /// forNodes indicates the node(s) this endpoint should be consumed by when - /// using topology aware routing. May contain a maximum of 8 entries. - /// This is an Alpha feature and is only used when the PreferSameTrafficDistribution - /// feature gate is enabled. - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub for_nodes: ::prost::alloc::vec::Vec, -} -/// EndpointPort represents a Port used by an EndpointSlice -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EndpointPort { - /// name represents the name of this port. All ports in an EndpointSlice must have a unique name. - /// If the EndpointSlice is derived from a Kubernetes service, this corresponds to the Service.ports\[\].name. - /// Name must either be an empty string or pass DNS_LABEL validation: - /// * must be no more than 63 characters long. - /// * must consist of lower case alphanumeric characters or '-'. - /// * must start and end with an alphanumeric character. - /// Default is empty string. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// protocol represents the IP protocol for this port. - /// Must be UDP, TCP, or SCTP. - /// Default is TCP. - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// port represents the port number of the endpoint. - /// If this is not specified, ports are not restricted and must be - /// interpreted in the context of the specific consumer. - #[prost(int32, optional, tag = "3")] - pub port: ::core::option::Option, - /// appProtocol represents the application protocol for this port. - /// This field follows standard Kubernetes label syntax. - /// Un-prefixed names are reserved for IANA standard service names (as per - /// RFC-6335 and ). - /// Non-standard protocols should use prefixed names such as - /// mycompany.com/my-custom-protocol. - /// +optional - #[prost(string, optional, tag = "4")] - pub app_protocol: ::core::option::Option<::prost::alloc::string::String>, -} -/// EndpointSlice represents a subset of the endpoints that implement a service. -/// For a given service there may be multiple EndpointSlice objects, selected by -/// labels, which must be joined to produce the full set of endpoints. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointSlice { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// addressType specifies the type of address carried by this EndpointSlice. - /// All addresses in this slice must be the same type. This field is - /// immutable after creation. The following address types are currently - /// supported: - /// * IPv4: Represents an IPv4 Address. - /// * IPv6: Represents an IPv6 Address. - /// * FQDN: Represents a Fully Qualified Domain Name. - #[prost(string, optional, tag = "4")] - pub address_type: ::core::option::Option<::prost::alloc::string::String>, - /// endpoints is a list of unique endpoints in this slice. Each slice may - /// include a maximum of 1000 endpoints. - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub endpoints: ::prost::alloc::vec::Vec, - /// ports specifies the list of network ports exposed by each endpoint in - /// this slice. Each port must have a unique name. When ports is empty, it - /// indicates that there are no defined ports. When a port is defined with a - /// nil port value, it indicates "all ports". Each slice may include a - /// maximum of 100 ports. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub ports: ::prost::alloc::vec::Vec, -} -/// EndpointSliceList represents a list of endpoint slices -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EndpointSliceList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of endpoint slices - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ForNode provides information about which nodes should consume this endpoint. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ForNode { - /// name represents the name of the node. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// ForZone provides information about which zones should consume this endpoint. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ForZone { - /// name represents the name of the zone. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/events/mod.rs b/k8s-pb/src/api/events/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/events/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/events/v1/mod.rs b/k8s-pb/src/api/events/v1/mod.rs deleted file mode 100644 index f9192f3..0000000 --- a/k8s-pb/src/api/events/v1/mod.rs +++ /dev/null @@ -1,122 +0,0 @@ -// This file is @generated by prost-build. -/// Event is a report of an event somewhere in the cluster. It generally denotes some state change in the system. -/// Events have a limited retention time and triggers and messages may evolve -/// with time. Event consumers should not rely on the timing of an event -/// with a given Reason reflecting a consistent underlying trigger, or the -/// continued existence of events with that Reason. Events should be -/// treated as informative, best-effort, supplemental data. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Event { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// eventTime is the time when this Event was first observed. It is required. - #[prost(message, optional, tag = "2")] - pub event_time: ::core::option::Option, - /// series is data about the Event series this event represents or nil if it's a singleton Event. - /// +optional - #[prost(message, optional, tag = "3")] - pub series: ::core::option::Option, - /// reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. - /// This field cannot be empty for new Events. - #[prost(string, optional, tag = "4")] - pub reporting_controller: ::core::option::Option<::prost::alloc::string::String>, - /// reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. - /// This field cannot be empty for new Events and it can have at most 128 characters. - #[prost(string, optional, tag = "5")] - pub reporting_instance: ::core::option::Option<::prost::alloc::string::String>, - /// action is what action was taken/failed regarding to the regarding object. It is machine-readable. - /// This field cannot be empty for new Events and it can have at most 128 characters. - #[prost(string, optional, tag = "6")] - pub action: ::core::option::Option<::prost::alloc::string::String>, - /// reason is why the action was taken. It is human-readable. - /// This field cannot be empty for new Events and it can have at most 128 characters. - #[prost(string, optional, tag = "7")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// regarding contains the object this Event is about. In most cases it's an Object reporting controller - /// implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because - /// it acts on some changes in a ReplicaSet object. - /// +optional - #[prost(message, optional, tag = "8")] - pub regarding: ::core::option::Option, - /// related is the optional secondary object for more complex actions. E.g. when regarding object triggers - /// a creation or deletion of related object. - /// +optional - #[prost(message, optional, tag = "9")] - pub related: ::core::option::Option, - /// note is a human-readable description of the status of this operation. - /// Maximal length of the note is 1kB, but libraries should be prepared to - /// handle values up to 64kB. - /// +optional - #[prost(string, optional, tag = "10")] - pub note: ::core::option::Option<::prost::alloc::string::String>, - /// type is the type of this event (Normal, Warning), new types could be added in the future. - /// It is machine-readable. - /// This field cannot be empty for new Events. - #[prost(string, optional, tag = "11")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(message, optional, tag = "12")] - pub deprecated_source: ::core::option::Option, - /// deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(message, optional, tag = "13")] - pub deprecated_first_timestamp: - ::core::option::Option, - /// deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(message, optional, tag = "14")] - pub deprecated_last_timestamp: - ::core::option::Option, - /// deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(int32, optional, tag = "15")] - pub deprecated_count: ::core::option::Option, -} -/// EventList is a list of Event objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EventList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// EventSeries contain information on series of events, i.e. thing that was/is happening -/// continuously for some time. How often to update the EventSeries is up to the event reporters. -/// The default event reporter in "k8s.io/client-go/tools/events/event_broadcaster.go" shows -/// how this struct is updated on heartbeats and can guide customized reporter implementations. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EventSeries { - /// count is the number of occurrences in this series up to the last heartbeat time. - #[prost(int32, optional, tag = "1")] - pub count: ::core::option::Option, - /// lastObservedTime is the time when last Event from the series was seen before last heartbeat. - #[prost(message, optional, tag = "2")] - pub last_observed_time: - ::core::option::Option, -} - -impl crate::Resource for Event { - const API_VERSION: &'static str = "events.k8s.io/v1"; - const GROUP: &'static str = "events.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Event"; - const URL_PATH_SEGMENT: &'static str = "events"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Event { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} diff --git a/k8s-pb/src/api/events/v1beta1/mod.rs b/k8s-pb/src/api/events/v1beta1/mod.rs deleted file mode 100644 index 1c5f1a0..0000000 --- a/k8s-pb/src/api/events/v1beta1/mod.rs +++ /dev/null @@ -1,106 +0,0 @@ -// This file is @generated by prost-build. -/// Event is a report of an event somewhere in the cluster. It generally denotes some state change in the system. -/// Events have a limited retention time and triggers and messages may evolve -/// with time. Event consumers should not rely on the timing of an event -/// with a given Reason reflecting a consistent underlying trigger, or the -/// continued existence of events with that Reason. Events should be -/// treated as informative, best-effort, supplemental data. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Event { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// eventTime is the time when this Event was first observed. It is required. - #[prost(message, optional, tag = "2")] - pub event_time: ::core::option::Option, - /// series is data about the Event series this event represents or nil if it's a singleton Event. - /// +optional - #[prost(message, optional, tag = "3")] - pub series: ::core::option::Option, - /// reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. - /// This field cannot be empty for new Events. - /// +optional - #[prost(string, optional, tag = "4")] - pub reporting_controller: ::core::option::Option<::prost::alloc::string::String>, - /// reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. - /// This field cannot be empty for new Events and it can have at most 128 characters. - /// +optional - #[prost(string, optional, tag = "5")] - pub reporting_instance: ::core::option::Option<::prost::alloc::string::String>, - /// action is what action was taken/failed regarding to the regarding object. It is machine-readable. - /// This field can have at most 128 characters. - /// +optional - #[prost(string, optional, tag = "6")] - pub action: ::core::option::Option<::prost::alloc::string::String>, - /// reason is why the action was taken. It is human-readable. - /// This field can have at most 128 characters. - /// +optional - #[prost(string, optional, tag = "7")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// regarding contains the object this Event is about. In most cases it's an Object reporting controller - /// implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because - /// it acts on some changes in a ReplicaSet object. - /// +optional - #[prost(message, optional, tag = "8")] - pub regarding: ::core::option::Option, - /// related is the optional secondary object for more complex actions. E.g. when regarding object triggers - /// a creation or deletion of related object. - /// +optional - #[prost(message, optional, tag = "9")] - pub related: ::core::option::Option, - /// note is a human-readable description of the status of this operation. - /// Maximal length of the note is 1kB, but libraries should be prepared to - /// handle values up to 64kB. - /// +optional - #[prost(string, optional, tag = "10")] - pub note: ::core::option::Option<::prost::alloc::string::String>, - /// type is the type of this event (Normal, Warning), new types could be added in the future. - /// It is machine-readable. - /// +optional - #[prost(string, optional, tag = "11")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(message, optional, tag = "12")] - pub deprecated_source: ::core::option::Option, - /// deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(message, optional, tag = "13")] - pub deprecated_first_timestamp: - ::core::option::Option, - /// deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(message, optional, tag = "14")] - pub deprecated_last_timestamp: - ::core::option::Option, - /// deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type. - /// +optional - #[prost(int32, optional, tag = "15")] - pub deprecated_count: ::core::option::Option, -} -/// EventList is a list of Event objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct EventList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// EventSeries contain information on series of events, i.e. thing that was/is happening -/// continuously for some time. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct EventSeries { - /// count is the number of occurrences in this series up to the last heartbeat time. - #[prost(int32, optional, tag = "1")] - pub count: ::core::option::Option, - /// lastObservedTime is the time when last Event from the series was seen before last heartbeat. - #[prost(message, optional, tag = "2")] - pub last_observed_time: - ::core::option::Option, -} diff --git a/k8s-pb/src/api/extensions/mod.rs b/k8s-pb/src/api/extensions/mod.rs deleted file mode 100644 index 9f64fc8..0000000 --- a/k8s-pb/src/api/extensions/mod.rs +++ /dev/null @@ -1 +0,0 @@ -pub mod v1beta1; diff --git a/k8s-pb/src/api/extensions/v1beta1/mod.rs b/k8s-pb/src/api/extensions/v1beta1/mod.rs deleted file mode 100644 index 79b94e9..0000000 --- a/k8s-pb/src/api/extensions/v1beta1/mod.rs +++ /dev/null @@ -1,1096 +0,0 @@ -// This file is @generated by prost-build. -/// DEPRECATED - This group version of DaemonSet is deprecated by apps/v1beta2/DaemonSet. See the release notes for -/// more information. -/// DaemonSet represents the configuration of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSet { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// The desired behavior of this daemon set. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// The current status of this daemon set. This data may be - /// out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DaemonSetCondition describes the state of a DaemonSet at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonSetCondition { - /// Type of DaemonSet condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// Last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DaemonSetList is a collection of daemon sets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// A list of daemon sets. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DaemonSetSpec is the specification of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetSpec { - /// A label query over pods that are managed by the daemon set. - /// Must match in order to be controlled. - /// If empty, defaulted to labels on Pod template. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub selector: - ::core::option::Option, - /// An object that describes the pod that will be created. - /// The DaemonSet will create exactly one copy of this pod on every node - /// that matches the template's node selector (or on every node if no node - /// selector is specified). - /// More info: - #[prost(message, optional, tag = "2")] - pub template: ::core::option::Option, - /// An update strategy to replace existing DaemonSet pods with new pods. - /// +optional - #[prost(message, optional, tag = "3")] - pub update_strategy: ::core::option::Option, - /// The minimum number of seconds for which a newly created DaemonSet pod should - /// be ready without any of its container crashing, for it to be considered - /// available. Defaults to 0 (pod will be considered available as soon as it - /// is ready). - /// +optional - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// DEPRECATED. - /// A sequence number representing a specific generation of the template. - /// Populated by the system. It can be set only during the creation. - /// +optional - #[prost(int64, optional, tag = "5")] - pub template_generation: ::core::option::Option, - /// The number of old history to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// Defaults to 10. - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, -} -/// DaemonSetStatus represents the current status of a daemon set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DaemonSetStatus { - /// The number of nodes that are running at least 1 - /// daemon pod and are supposed to run the daemon pod. - /// More info: - #[prost(int32, optional, tag = "1")] - pub current_number_scheduled: ::core::option::Option, - /// The number of nodes that are running the daemon pod, but are - /// not supposed to run the daemon pod. - /// More info: - #[prost(int32, optional, tag = "2")] - pub number_misscheduled: ::core::option::Option, - /// The total number of nodes that should be running the daemon - /// pod (including nodes correctly running the daemon pod). - /// More info: - #[prost(int32, optional, tag = "3")] - pub desired_number_scheduled: ::core::option::Option, - /// The number of nodes that should be running the daemon pod and have one - /// or more of the daemon pod running and ready. - #[prost(int32, optional, tag = "4")] - pub number_ready: ::core::option::Option, - /// The most recent generation observed by the daemon set controller. - /// +optional - #[prost(int64, optional, tag = "5")] - pub observed_generation: ::core::option::Option, - /// The total number of nodes that are running updated daemon pod - /// +optional - #[prost(int32, optional, tag = "6")] - pub updated_number_scheduled: ::core::option::Option, - /// The number of nodes that should be running the - /// daemon pod and have one or more of the daemon pod running and - /// available (ready for at least spec.minReadySeconds) - /// +optional - #[prost(int32, optional, tag = "7")] - pub number_available: ::core::option::Option, - /// The number of nodes that should be running the - /// daemon pod and have none of the daemon pod running and available - /// (ready for at least spec.minReadySeconds) - /// +optional - #[prost(int32, optional, tag = "8")] - pub number_unavailable: ::core::option::Option, - /// Count of hash collisions for the DaemonSet. The DaemonSet controller - /// uses this field as a collision avoidance mechanism when it needs to - /// create the name for the newest ControllerRevision. - /// +optional - #[prost(int32, optional, tag = "9")] - pub collision_count: ::core::option::Option, - /// Represents the latest available observations of a DaemonSet's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "10")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// DaemonSetUpdateStrategy indicates the strategy that the DaemonSet -/// controller will use to perform updates. It includes any additional parameters -/// necessary to perform the update for the indicated strategy. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DaemonSetUpdateStrategy { - /// Type of daemon set update. Can be "RollingUpdate" or "OnDelete". - /// Default is OnDelete. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if type = "RollingUpdate". - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. Same as Deployment `strategy.rollingUpdate`. - /// See - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// DEPRECATED - This group version of Deployment is deprecated by apps/v1beta2/Deployment. See the release notes for -/// more information. -/// Deployment enables declarative updates for Pods and ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Deployment { - /// Standard object metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the Deployment. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the Deployment. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// DeploymentCondition describes the state of a deployment at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentCondition { - /// Type of deployment condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time this condition was updated. - #[prost(message, optional, tag = "6")] - pub last_update_time: - ::core::option::Option, - /// Last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "7")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeploymentList is a list of Deployments. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of Deployments. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DEPRECATED. -/// DeploymentRollback stores the information required to rollback a deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentRollback { - /// Required: This must match the Name of a deployment. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// The annotations to be updated to a deployment - /// +optional - #[prost(btree_map = "string, string", tag = "2")] - pub updated_annotations: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// The config of this deployment rollback. - #[prost(message, optional, tag = "3")] - pub rollback_to: ::core::option::Option, -} -/// DeploymentSpec is the specification of the desired behavior of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentSpec { - /// Number of desired pods. This is a pointer to distinguish between explicit - /// zero and not specified. Defaults to 1. - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Label selector for pods. Existing ReplicaSets whose pods are - /// selected by this will be the ones affected by this deployment. - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template describes the pods that will be created. - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, - /// The deployment strategy to use to replace existing pods with new ones. - /// +optional - /// +patchStrategy=retainKeys - #[prost(message, optional, tag = "4")] - pub strategy: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "5")] - pub min_ready_seconds: ::core::option::Option, - /// The number of old ReplicaSets to retain to allow rollback. - /// This is a pointer to distinguish between explicit zero and not specified. - /// This is set to the max value of int32 (i.e. 2147483647) by default, which - /// means "retaining all old ReplicaSets". - /// +optional - #[prost(int32, optional, tag = "6")] - pub revision_history_limit: ::core::option::Option, - /// Indicates that the deployment is paused and will not be processed by the - /// deployment controller. - /// +optional - #[prost(bool, optional, tag = "7")] - pub paused: ::core::option::Option, - /// DEPRECATED. - /// The config this deployment is rolling back to. Will be cleared after rollback is done. - /// +optional - #[prost(message, optional, tag = "8")] - pub rollback_to: ::core::option::Option, - /// The maximum time in seconds for a deployment to make progress before it - /// is considered to be failed. The deployment controller will continue to - /// process failed deployments and a condition with a ProgressDeadlineExceeded - /// reason will be surfaced in the deployment status. Note that progress will - /// not be estimated during the time a deployment is paused. This is set to - /// the max value of int32 (i.e. 2147483647) by default, which means "no deadline". - /// +optional - #[prost(int32, optional, tag = "9")] - pub progress_deadline_seconds: ::core::option::Option, -} -/// DeploymentStatus is the most recently observed status of the Deployment. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeploymentStatus { - /// The generation observed by the deployment controller. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment (their labels match the selector). - /// +optional - #[prost(int32, optional, tag = "2")] - pub replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this deployment that have the desired template spec. - /// +optional - #[prost(int32, optional, tag = "3")] - pub updated_replicas: ::core::option::Option, - /// Total number of non-terminating pods targeted by this Deployment with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "7")] - pub ready_replicas: ::core::option::Option, - /// Total number of available non-terminating pods (ready for at least minReadySeconds) targeted by this deployment. - /// +optional - #[prost(int32, optional, tag = "4")] - pub available_replicas: ::core::option::Option, - /// Total number of unavailable pods targeted by this deployment. This is the total number of - /// pods that are still required for the deployment to have 100% available capacity. They may - /// either be pods that are running but not yet available or pods that still have not been created. - /// +optional - #[prost(int32, optional, tag = "5")] - pub unavailable_replicas: ::core::option::Option, - /// Total number of terminating pods targeted by this deployment. Terminating pods have a non-null - /// .metadata.deletionTimestamp and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "9")] - pub terminating_replicas: ::core::option::Option, - /// Represents the latest available observations of a deployment's current state. - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, - /// Count of hash collisions for the Deployment. The Deployment controller uses this - /// field as a collision avoidance mechanism when it needs to create the name for the - /// newest ReplicaSet. - /// +optional - #[prost(int32, optional, tag = "8")] - pub collision_count: ::core::option::Option, -} -/// DeploymentStrategy describes how to replace existing pods with new ones. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeploymentStrategy { - /// Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate. - /// +optional - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Rolling update config params. Present only if DeploymentStrategyType = - /// RollingUpdate. - /// --- - /// TODO: Update this to follow our convention for oneOf, whatever we decide it - /// to be. - /// +optional - #[prost(message, optional, tag = "2")] - pub rolling_update: ::core::option::Option, -} -/// HTTPIngressPath associates a path with a backend. Incoming urls matching the -/// path are forwarded to the backend. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HttpIngressPath { - /// Path is matched against the path of an incoming request. Currently it can - /// contain characters disallowed from the conventional "path" part of a URL - /// as defined by RFC 3986. Paths must begin with a '/'. When unspecified, - /// all paths from incoming requests are matched. - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// PathType determines the interpretation of the Path matching. PathType can - /// be one of the following values: - /// * Exact: Matches the URL path exactly. - /// * Prefix: Matches based on a URL path prefix split by '/'. Matching is - /// done on a path element by element basis. A path element refers is the - /// list of labels in the path split by the '/' separator. A request is a - /// match for path p if every p is an element-wise prefix of p of the - /// request path. Note that if the last element of the path is a substring - /// of the last element in request path, it is not a match (e.g. /foo/bar - /// matches /foo/bar/baz, but does not match /foo/barbaz). - /// * ImplementationSpecific: Interpretation of the Path matching is up to - /// the IngressClass. Implementations can treat this as a separate PathType - /// or treat it identically to Prefix or Exact path types. - /// Implementations are required to support all path types. - /// Defaults to ImplementationSpecific. - #[prost(string, optional, tag = "3")] - pub path_type: ::core::option::Option<::prost::alloc::string::String>, - /// Backend defines the referenced service endpoint to which the traffic - /// will be forwarded to. - #[prost(message, optional, tag = "2")] - pub backend: ::core::option::Option, -} -/// HTTPIngressRuleValue is a list of http selectors pointing to backends. -/// In the example: /?> -> backend where -/// where parts of the url correspond to RFC 3986, this resource will be used -/// to match against everything after the last '/' and before the first '?' -/// or '#'. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HttpIngressRuleValue { - /// A collection of paths that map requests to backends. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub paths: ::prost::alloc::vec::Vec, -} -/// DEPRECATED 1.9 - This group version of IPBlock is deprecated by networking/v1/IPBlock. -/// IPBlock describes a particular CIDR (Ex. "192.168.1.0/24","2001:db8::/64") that is allowed -/// to the pods matched by a NetworkPolicySpec's podSelector. The except entry describes CIDRs -/// that should not be included within this rule. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IpBlock { - /// CIDR is a string representing the IP Block - /// Valid examples are "192.168.1.0/24" or "2001:db8::/64" - #[prost(string, optional, tag = "1")] - pub cidr: ::core::option::Option<::prost::alloc::string::String>, - /// Except is a slice of CIDRs that should not be included within an IP Block - /// Valid examples are "192.168.1.0/24" or "2001:db8::/64" - /// Except values will be rejected if they are outside the CIDR range - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub except: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Ingress is a collection of rules that allow inbound connections to reach the -/// endpoints defined by a backend. An Ingress can be configured to give services -/// externally-reachable urls, load balance traffic, terminate SSL, offer name -/// based virtual hosting etc. -/// DEPRECATED - This group version of Ingress is deprecated by networking.k8s.io/v1beta1 Ingress. See the release notes for more information. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Ingress { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec is the desired state of the Ingress. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the current state of the Ingress. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// IngressBackend describes all endpoints for a given service and port. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressBackend { - /// Specifies the name of the referenced service. - /// +optional - #[prost(string, optional, tag = "1")] - pub service_name: ::core::option::Option<::prost::alloc::string::String>, - /// Specifies the port of the referenced service. - /// +optional - #[prost(message, optional, tag = "2")] - pub service_port: - ::core::option::Option, - /// Resource is an ObjectRef to another Kubernetes resource in the namespace - /// of the Ingress object. If resource is specified, serviceName and servicePort - /// must not be specified. - /// +optional - #[prost(message, optional, tag = "3")] - pub resource: ::core::option::Option, -} -/// IngressList is a collection of Ingress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of Ingress. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IngressLoadBalancerIngress represents the status of a load-balancer ingress point. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressLoadBalancerIngress { - /// IP is set for load-balancer ingress points that are IP based. - /// +optional - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, - /// Hostname is set for load-balancer ingress points that are DNS based. - /// +optional - #[prost(string, optional, tag = "2")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// Ports provides information about the ports exposed by this LoadBalancer. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub ports: ::prost::alloc::vec::Vec, -} -/// LoadBalancerStatus represents the status of a load-balancer. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressLoadBalancerStatus { - /// Ingress is a list containing ingress points for the load-balancer. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ingress: ::prost::alloc::vec::Vec, -} -/// IngressPortStatus represents the error condition of a service port -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressPortStatus { - /// Port is the port number of the ingress port. - #[prost(int32, optional, tag = "1")] - pub port: ::core::option::Option, - /// Protocol is the protocol of the ingress port. - /// The supported values are: "TCP", "UDP", "SCTP" - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// Error is to record the problem with the service port - /// The format of the error shall comply with the following rules: - /// - built-in error values shall be specified in this file and those shall use - /// CamelCase names - /// - cloud provider specific error values must have names that comply with the - /// format foo.example.com/CamelCase. - /// --- - /// The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) - /// +optional - /// +kubebuilder:validation:Required - /// +kubebuilder:validation:Pattern=`^([a-z0-9](\[-a-z0-9\]*[a-z0-9])?(\.[a-z0-9](\[-a-z0-9\]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\])$` - /// +kubebuilder:validation:MaxLength=316 - #[prost(string, optional, tag = "3")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// IngressRule represents the rules mapping the paths under a specified host to -/// the related backend services. Incoming requests are first evaluated for a host -/// match, then routed to the backend associated with the matching IngressRuleValue. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressRule { - /// Host is the fully qualified domain name of a network host, as defined by RFC 3986. - /// Note the following deviations from the "host" part of the - /// URI as defined in RFC 3986: - /// 1. IPs are not allowed. Currently an IngressRuleValue can only apply to - /// the IP in the Spec of the parent Ingress. - /// 2. The `:` delimiter is not respected because ports are not allowed. - /// Currently the port of an Ingress is implicitly :80 for http and - /// :443 for https. - /// Both these may change in the future. - /// Incoming requests are matched against the host before the - /// IngressRuleValue. If the host is unspecified, the Ingress routes all - /// traffic based on the specified IngressRuleValue. - /// - /// Host can be "precise" which is a domain name without the terminating dot of - /// a network host (e.g. "foo.bar.com") or "wildcard", which is a domain name - /// prefixed with a single wildcard label (e.g. "*.foo.com"). - /// The wildcard character '*' must appear by itself as the first DNS label and - /// matches only a single label. You cannot have a wildcard label by itself (e.g. Host == "*"). - /// Requests will be matched against the Host field in the following way: - /// 1. If Host is precise, the request matches this rule if the http host header is equal to Host. - /// 2. If Host is a wildcard, then the request matches this rule if the http host header - /// is to equal to the suffix (removing the first label) of the wildcard rule. - /// +optional - #[prost(string, optional, tag = "1")] - pub host: ::core::option::Option<::prost::alloc::string::String>, - /// IngressRuleValue represents a rule to route requests for this IngressRule. - /// If unspecified, the rule defaults to a http catch-all. Whether that sends - /// just traffic matching the host to the default backend or all traffic to the - /// default backend, is left to the controller fulfilling the Ingress. Http is - /// currently the only supported IngressRuleValue. - /// +optional - #[prost(message, optional, tag = "2")] - pub ingress_rule_value: ::core::option::Option, -} -/// IngressRuleValue represents a rule to apply against incoming requests. If the -/// rule is satisfied, the request is routed to the specified backend. Currently -/// mixing different types of rules in a single Ingress is disallowed, so exactly -/// one of the following must be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressRuleValue { - /// http is a list of http selectors pointing to backends. - /// A path is matched against the path of an incoming request. Currently it can - /// contain characters disallowed from the conventional "path" part of a URL - /// as defined by RFC 3986. Paths must begin with a '/'. - /// A backend defines the referenced service endpoint to which the traffic - /// will be forwarded to. - #[prost(message, optional, tag = "1")] - pub http: ::core::option::Option, -} -/// IngressSpec describes the Ingress the user wishes to exist. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressSpec { - /// IngressClassName is the name of the IngressClass cluster resource. The - /// associated IngressClass defines which controller will implement the - /// resource. This replaces the deprecated `kubernetes.io/ingress.class` - /// annotation. For backwards compatibility, when that annotation is set, it - /// must be given precedence over this field. The controller may emit a - /// warning if the field and annotation have different values. - /// Implementations of this API should ignore Ingresses without a class - /// specified. An IngressClass resource may be marked as default, which can - /// be used to set a default value for this field. For more information, - /// refer to the IngressClass documentation. - /// +optional - #[prost(string, optional, tag = "4")] - pub ingress_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// A default backend capable of servicing requests that don't match any - /// rule. At least one of 'backend' or 'rules' must be specified. This field - /// is optional to allow the loadbalancer controller or defaulting logic to - /// specify a global default. - /// +optional - #[prost(message, optional, tag = "1")] - pub backend: ::core::option::Option, - /// TLS configuration. Currently the Ingress only supports a single TLS - /// port, 443. If multiple members of this list specify different hosts, they - /// will be multiplexed on the same port according to the hostname specified - /// through the SNI TLS extension, if the ingress controller fulfilling the - /// ingress supports SNI. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub tls: ::prost::alloc::vec::Vec, - /// A list of host rules used to configure the Ingress. If unspecified, or - /// no rule matches, all traffic is sent to the default backend. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, -} -/// IngressStatus describe the current state of the Ingress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressStatus { - /// LoadBalancer contains the current status of the load-balancer. - /// +optional - #[prost(message, optional, tag = "1")] - pub load_balancer: ::core::option::Option, -} -/// IngressTLS describes the transport layer security associated with an Ingress. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressTls { - /// Hosts are a list of hosts included in the TLS certificate. The values in - /// this list must match the name/s used in the tlsSecret. Defaults to the - /// wildcard host setting for the loadbalancer controller fulfilling this - /// Ingress, if left unspecified. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub hosts: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// SecretName is the name of the secret used to terminate SSL traffic on 443. - /// Field is left optional to allow SSL routing based on SNI hostname alone. - /// If the SNI host in a listener conflicts with the "Host" header field used - /// by an IngressRule, the SNI host is used for termination and value of the - /// Host header is used for routing. - /// +optional - #[prost(string, optional, tag = "2")] - pub secret_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicy is deprecated by networking/v1/NetworkPolicy. -/// NetworkPolicy describes what network traffic is allowed for a set of Pods -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicy { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior for this NetworkPolicy. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicyEgressRule is deprecated by networking/v1/NetworkPolicyEgressRule. -/// NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods -/// matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and to. -/// This type is beta-level in 1.8 -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyEgressRule { - /// List of destination ports for outgoing traffic. - /// Each item in this list is combined using a logical OR. If this field is - /// empty or missing, this rule matches all ports (traffic not restricted by port). - /// If this field is present and contains at least one item, then this rule allows - /// traffic only if the traffic matches at least one port in the list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ports: ::prost::alloc::vec::Vec, - /// List of destinations for outgoing traffic of pods selected for this rule. - /// Items in this list are combined using a logical OR operation. If this field is - /// empty or missing, this rule matches all destinations (traffic not restricted by - /// destination). If this field is present and contains at least one item, this rule - /// allows traffic only if the traffic matches at least one item in the to list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub to: ::prost::alloc::vec::Vec, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicyIngressRule is deprecated by networking/v1/NetworkPolicyIngressRule. -/// This NetworkPolicyIngressRule matches traffic if and only if the traffic matches both ports AND from. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyIngressRule { - /// List of ports which should be made accessible on the pods selected for this rule. - /// Each item in this list is combined using a logical OR. - /// If this field is empty or missing, this rule matches all ports (traffic not restricted by port). - /// If this field is present and contains at least one item, then this rule allows traffic - /// only if the traffic matches at least one port in the list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ports: ::prost::alloc::vec::Vec, - /// List of sources which should be able to access the pods selected for this rule. - /// Items in this list are combined using a logical OR operation. - /// If this field is empty or missing, this rule matches all sources (traffic not restricted by source). - /// If this field is present and contains at least one item, this rule allows traffic only if the - /// traffic matches at least one item in the from list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub from: ::prost::alloc::vec::Vec, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicyList is deprecated by networking/v1/NetworkPolicyList. -/// Network Policy List is a list of NetworkPolicy objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicyPeer is deprecated by networking/v1/NetworkPolicyPeer. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyPeer { - /// This is a label selector which selects Pods. This field follows standard label - /// selector semantics; if present but empty, it selects all pods. - /// - /// If NamespaceSelector is also set, then the NetworkPolicyPeer as a whole selects - /// the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. - /// Otherwise it selects the Pods matching PodSelector in the policy's own Namespace. - /// +optional - #[prost(message, optional, tag = "1")] - pub pod_selector: - ::core::option::Option, - /// Selects Namespaces using cluster-scoped labels. This field follows standard label - /// selector semantics; if present but empty, it selects all namespaces. - /// - /// If PodSelector is also set, then the NetworkPolicyPeer as a whole selects - /// the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. - /// Otherwise it selects all Pods in the Namespaces selected by NamespaceSelector. - /// +optional - #[prost(message, optional, tag = "2")] - pub namespace_selector: - ::core::option::Option, - /// IPBlock defines policy on a particular IPBlock. If this field is set then - /// neither of the other fields can be. - /// +optional - #[prost(message, optional, tag = "3")] - pub ip_block: ::core::option::Option, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicyPort is deprecated by networking/v1/NetworkPolicyPort. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NetworkPolicyPort { - /// Optional. The protocol (TCP, UDP, or SCTP) which traffic must match. - /// If not specified, this field defaults to TCP. - /// +optional - #[prost(string, optional, tag = "1")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// The port on the given protocol. This can either be a numerical or named - /// port on a pod. If this field is not provided, this matches all port names and - /// numbers. - /// If present, only traffic on the specified protocol AND port will be matched. - /// +optional - #[prost(message, optional, tag = "2")] - pub port: ::core::option::Option, - /// If set, indicates that the range of ports from port to endPort, inclusive, - /// should be allowed by the policy. This field cannot be defined if the port field - /// is not defined or if the port field is defined as a named (string) port. - /// The endPort must be equal or greater than port. - /// +optional - #[prost(int32, optional, tag = "3")] - pub end_port: ::core::option::Option, -} -/// DEPRECATED 1.9 - This group version of NetworkPolicySpec is deprecated by networking/v1/NetworkPolicySpec. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicySpec { - /// Selects the pods to which this NetworkPolicy object applies. The array of ingress rules - /// is applied to any pods selected by this field. Multiple network policies can select the - /// same set of pods. In this case, the ingress rules for each are combined additively. - /// This field is NOT optional and follows standard label selector semantics. - /// An empty podSelector matches all pods in this namespace. - #[prost(message, optional, tag = "1")] - pub pod_selector: - ::core::option::Option, - /// List of ingress rules to be applied to the selected pods. - /// Traffic is allowed to a pod if there are no NetworkPolicies selecting the pod - /// OR if the traffic source is the pod's local node, - /// OR if the traffic matches at least one ingress rule across all of the NetworkPolicy - /// objects whose podSelector matches the pod. - /// If this field is empty then this NetworkPolicy does not allow any traffic - /// (and serves solely to ensure that the pods it selects are isolated by default). - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub ingress: ::prost::alloc::vec::Vec, - /// List of egress rules to be applied to the selected pods. Outgoing traffic is - /// allowed if there are no NetworkPolicies selecting the pod (and cluster policy - /// otherwise allows the traffic), OR if the traffic matches at least one egress rule - /// across all of the NetworkPolicy objects whose podSelector matches the pod. If - /// this field is empty then this NetworkPolicy limits all outgoing traffic (and serves - /// solely to ensure that the pods it selects are isolated by default). - /// This field is beta-level in 1.8 - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub egress: ::prost::alloc::vec::Vec, - /// List of rule types that the NetworkPolicy relates to. - /// Valid options are \["Ingress"\], \["Egress"\], or \["Ingress", "Egress"\]. - /// If this field is not specified, it will default based on the existence of Ingress or Egress rules; - /// policies that contain an Egress section are assumed to affect Egress, and all policies - /// (whether or not they contain an Ingress section) are assumed to affect Ingress. - /// If you want to write an egress-only policy, you must explicitly specify policyTypes \[ "Egress" \]. - /// Likewise, if you want to write a policy that specifies that no egress is allowed, - /// you must specify a policyTypes value that include "Egress" (since such a policy would not include - /// an Egress section and would otherwise default to just \[ "Ingress" \]). - /// This field is beta-level in 1.8 - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub policy_types: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// DEPRECATED - This group version of ReplicaSet is deprecated by apps/v1beta2/ReplicaSet. See the release notes for -/// more information. -/// ReplicaSet ensures that a specified number of pod replicas are running at any given time. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSet { - /// If the Labels of a ReplicaSet are empty, they are defaulted to - /// be the same as the Pod(s) that the ReplicaSet manages. - /// Standard object's metadata. More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines the specification of the desired behavior of the ReplicaSet. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is the most recently observed status of the ReplicaSet. - /// This data may be out of date by some window of time. - /// Populated by the system. - /// Read-only. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ReplicaSetCondition describes the state of a replica set at a certain point. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ReplicaSetCondition { - /// Type of replica set condition. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// Status of the condition, one of True, False, Unknown. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// The last time the condition transitioned from one status to another. - /// +optional - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// The reason for the condition's last transition. - /// +optional - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// A human readable message indicating details about the transition. - /// +optional - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// ReplicaSetList is a collection of ReplicaSets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// List of ReplicaSets. - /// More info: - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ReplicaSetSpec is the specification of a ReplicaSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetSpec { - /// Replicas is the number of desired pods. - /// This is a pointer to distinguish between explicit zero and unspecified. - /// Defaults to 1. - /// More info: - /// +optional - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// Minimum number of seconds for which a newly created pod should be ready - /// without any of its container crashing, for it to be considered available. - /// Defaults to 0 (pod will be considered available as soon as it is ready) - /// +optional - #[prost(int32, optional, tag = "4")] - pub min_ready_seconds: ::core::option::Option, - /// Selector is a label query over pods that should match the replica count. - /// If the selector is empty, it is defaulted to the labels present on the pod template. - /// Label keys and values that must match in order to be controlled by this replica set. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// Template is the object that describes the pod that will be created if - /// insufficient replicas are detected. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub template: ::core::option::Option, -} -/// ReplicaSetStatus represents the current status of a ReplicaSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ReplicaSetStatus { - /// Replicas is the most recently observed number of non-terminating pods. - /// More info: - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// The number of non-terminating pods that have labels matching the labels of the pod template of the replicaset. - /// +optional - #[prost(int32, optional, tag = "2")] - pub fully_labeled_replicas: ::core::option::Option, - /// The number of non-terminating pods targeted by this ReplicaSet with a Ready Condition. - /// +optional - #[prost(int32, optional, tag = "4")] - pub ready_replicas: ::core::option::Option, - /// The number of available non-terminating pods (ready for at least minReadySeconds) for this replica set. - /// +optional - #[prost(int32, optional, tag = "5")] - pub available_replicas: ::core::option::Option, - /// The number of terminating pods for this replica set. Terminating pods have a non-null .metadata.deletionTimestamp - /// and have not yet reached the Failed or Succeeded .status.phase. - /// - /// This is an alpha field. Enable DeploymentReplicaSetTerminatingReplicas to be able to use this field. - /// +optional - #[prost(int32, optional, tag = "7")] - pub terminating_replicas: ::core::option::Option, - /// ObservedGeneration reflects the generation of the most recently observed ReplicaSet. - /// +optional - #[prost(int64, optional, tag = "3")] - pub observed_generation: ::core::option::Option, - /// Represents the latest available observations of a replica set's current state. - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "6")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// DEPRECATED. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollbackConfig { - /// The revision to rollback to. If set to 0, rollback to the last revision. - /// +optional - #[prost(int64, optional, tag = "1")] - pub revision: ::core::option::Option, -} -/// Spec to control the desired behavior of daemon set rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDaemonSet { - /// The maximum number of DaemonSet pods that can be unavailable during the - /// update. Value can be an absolute number (ex: 5) or a percentage of total - /// number of DaemonSet pods at the start of the update (ex: 10%). Absolute - /// number is calculated from percentage by rounding up. - /// This cannot be 0 if MaxSurge is 0 - /// Default value is 1. - /// Example: when this is set to 30%, at most 30% of the total number of nodes - /// that should be running the daemon pod (i.e. status.desiredNumberScheduled) - /// can have their pods stopped for an update at any given time. The update - /// starts by stopping at most 30% of those DaemonSet pods and then brings - /// up new DaemonSet pods in their place. Once the new pods are available, - /// it then proceeds onto other DaemonSet pods, thus ensuring that at least - /// 70% of original number of DaemonSet pods are available at all times during - /// the update. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of nodes with an existing available DaemonSet pod that - /// can have an updated DaemonSet pod during during an update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up to a minimum of 1. - /// Default value is 0. - /// Example: when this is set to 30%, at most 30% of the total number of nodes - /// that should be running the daemon pod (i.e. status.desiredNumberScheduled) - /// can have their a new pod created before the old pod is marked as deleted. - /// The update starts by launching new pods on 30% of nodes. Once an updated - /// pod is available (Ready for at least minReadySeconds) the old DaemonSet pod - /// on that node is marked deleted. If the old pod becomes unavailable for any - /// reason (Ready transitions to false, is evicted, or is drained) an updated - /// pod is immediately created on that node without considering surge limits. - /// Allowing surge implies the possibility that the resources consumed by the - /// daemonset on any given node can double if the readiness check fails, and - /// so resource intensive daemonsets should take into account that they may - /// cause evictions during disruption. - /// This is an alpha field and requires enabling DaemonSetUpdateSurge feature gate. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// Spec to control the desired behavior of rolling update. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RollingUpdateDeployment { - /// The maximum number of pods that can be unavailable during the update. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// Absolute number is calculated from percentage by rounding down. - /// This can not be 0 if MaxSurge is 0. - /// By default, a fixed value of 1 is used. - /// Example: when this is set to 30%, the old RC can be scaled down to 70% of desired pods - /// immediately when the rolling update starts. Once new pods are ready, old RC - /// can be scaled down further, followed by scaling up the new RC, ensuring - /// that the total number of pods available at all times during the update is at - /// least 70% of desired pods. - /// +optional - #[prost(message, optional, tag = "1")] - pub max_unavailable: - ::core::option::Option, - /// The maximum number of pods that can be scheduled above the desired number of - /// pods. - /// Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). - /// This can not be 0 if MaxUnavailable is 0. - /// Absolute number is calculated from percentage by rounding up. - /// By default, a value of 1 is used. - /// Example: when this is set to 30%, the new RC can be scaled up immediately when - /// the rolling update starts, such that the total number of old and new pods do not exceed - /// 130% of desired pods. Once old pods have been killed, - /// new RC can be scaled up further, ensuring that total number of pods running - /// at any time during the update is at most 130% of desired pods. - /// +optional - #[prost(message, optional, tag = "2")] - pub max_surge: ::core::option::Option, -} -/// represents a scaling request for a resource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scale { - /// Standard object metadata; More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// defines the behavior of the scale. More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// current status of the scale. More info: Read-only. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// describes the attributes of a scale subresource -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ScaleSpec { - /// desired number of instances for the scaled object. - /// +optional - /// +k8s:optional - /// +default=0 - /// +k8s:minimum=0 - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, -} -/// represents the current status of a scale subresource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ScaleStatus { - /// actual number of observed instances of the scaled object. - #[prost(int32, optional, tag = "1")] - pub replicas: ::core::option::Option, - /// selector is a label query over pods that should match the replicas count. More info: - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "2")] - pub selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// label selector for pods that should match the replicas count. This is a serializated - /// version of both map-based and more expressive set-based selectors. This is done to - /// avoid introspection in the clients. The string will be in the same format as the - /// query-param syntax. If the target type only supports map-based selectors, both this - /// field and map-based selector field are populated. - /// More info: - /// +optional - #[prost(string, optional, tag = "3")] - pub target_selector: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/flowcontrol/mod.rs b/k8s-pb/src/api/flowcontrol/mod.rs deleted file mode 100644 index 8dce744..0000000 --- a/k8s-pb/src/api/flowcontrol/mod.rs +++ /dev/null @@ -1,4 +0,0 @@ -pub mod v1; -pub mod v1beta1; -pub mod v1beta2; -pub mod v1beta3; diff --git a/k8s-pb/src/api/flowcontrol/v1/mod.rs b/k8s-pb/src/api/flowcontrol/v1/mod.rs deleted file mode 100644 index 3fd3708..0000000 --- a/k8s-pb/src/api/flowcontrol/v1/mod.rs +++ /dev/null @@ -1,606 +0,0 @@ -// This file is @generated by prost-build. -/// ExemptPriorityLevelConfiguration describes the configurable aspects -/// of the handling of exempt requests. -/// In the mandatory exempt configuration object the values in the fields -/// here can be modified by authorized users, unlike the rest of the `spec`. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExemptPriorityLevelConfiguration { - /// `nominalConcurrencyShares` (NCS) contributes to the computation of the - /// NominalConcurrencyLimit (NominalCL) of this level. - /// This is the number of execution seats nominally reserved for this priority level. - /// This DOES NOT limit the dispatching from this priority level - /// but affects the other priority levels through the borrowing mechanism. - /// The server's concurrency limit (ServerCL) is divided among all the - /// priority levels in proportion to their NCS values: - /// - /// NominalCL(i) = ceil( ServerCL * NCS(i) / sum_ncs ) - /// sum_ncs = sum\[priority level k\] NCS(k) - /// - /// Bigger numbers mean a larger nominal concurrency limit, - /// at the expense of every other priority level. - /// This field has a default value of zero. - /// +optional - #[prost(int32, optional, tag = "1")] - pub nominal_concurrency_shares: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. This value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "2")] - pub lendable_percent: ::core::option::Option, -} -/// FlowDistinguisherMethod specifies the method of a flow distinguisher. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowDistinguisherMethod { - /// `type` is the type of flow distinguisher method - /// The supported types are "ByUser" and "ByNamespace". - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with -/// similar attributes and is identified by a pair of strings: the name of the FlowSchema and a "flow distinguisher". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchema { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// FlowSchemaCondition describes conditions for a FlowSchema. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowSchemaCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchemaList is a list of FlowSchema objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaList { - /// `metadata` is the standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of FlowSchemas. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// FlowSchemaSpec describes how the FlowSchema's specification looks like. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaSpec { - /// `priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot - /// be resolved, the FlowSchema will be ignored and marked as invalid in its status. - /// Required. - #[prost(message, optional, tag = "1")] - pub priority_level_configuration: ::core::option::Option, - /// `matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen - /// FlowSchema is among those with the numerically lowest (which we take to be logically highest) - /// MatchingPrecedence. Each MatchingPrecedence value must be ranged in \[1,10000\]. - /// Note that if the precedence is not specified, it will be set to 1000 as default. - /// +optional - #[prost(int32, optional, tag = "2")] - pub matching_precedence: ::core::option::Option, - /// `distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. - /// `nil` specifies that the distinguisher is disabled and thus will always be the empty string. - /// +optional - #[prost(message, optional, tag = "3")] - pub distinguisher_method: ::core::option::Option, - /// `rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if - /// at least one member of rules matches the request. - /// if it is an empty slice, there will be no requests matching the FlowSchema. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub rules: ::prost::alloc::vec::Vec, -} -/// FlowSchemaStatus represents the current state of a FlowSchema. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaStatus { - /// `conditions` is a list of the current states of FlowSchema. - /// +listType=map - /// +listMapKey=type - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// GroupSubject holds detailed information for group-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GroupSubject { - /// name is the user group that matches, or "*" to match all user groups. - /// See for some - /// well-known group names. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// LimitResponse defines how to handle requests that can not be executed right now. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitResponse { - /// `type` is "Queue" or "Reject". - /// "Queue" means that requests that can not be executed upon arrival - /// are held in a queue until they can be executed or a queuing limit - /// is reached. - /// "Reject" means that requests that can not be executed upon arrival - /// are rejected. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `queuing` holds the configuration parameters for queuing. - /// This field may be non-empty only if `type` is `"Queue"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub queuing: ::core::option::Option, -} -/// LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. -/// It addresses two issues: -/// - How are requests for this priority level limited? -/// - What should be done with requests that exceed the limit? -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitedPriorityLevelConfiguration { - /// `nominalConcurrencyShares` (NCS) contributes to the computation of the - /// NominalConcurrencyLimit (NominalCL) of this level. - /// This is the number of execution seats available at this priority level. - /// This is used both for requests dispatched from this priority level - /// as well as requests dispatched from other priority levels - /// borrowing seats from this level. - /// The server's concurrency limit (ServerCL) is divided among the - /// Limited priority levels in proportion to their NCS values: - /// - /// NominalCL(i) = ceil( ServerCL * NCS(i) / sum_ncs ) - /// sum_ncs = sum\[priority level k\] NCS(k) - /// - /// Bigger numbers mean a larger nominal concurrency limit, - /// at the expense of every other priority level. - /// - /// If not specified, this field defaults to a value of 30. - /// - /// Setting this field to zero supports the construction of a - /// "jail" for this priority level that is used to hold some request(s) - /// - /// +optional - #[prost(int32, optional, tag = "1")] - pub nominal_concurrency_shares: ::core::option::Option, - /// `limitResponse` indicates what to do with requests that can not be executed right now - #[prost(message, optional, tag = "2")] - pub limit_response: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. The value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "3")] - pub lendable_percent: ::core::option::Option, - /// `borrowingLimitPercent`, if present, configures a limit on how many - /// seats this priority level can borrow from other priority levels. - /// The limit is known as this level's BorrowingConcurrencyLimit - /// (BorrowingCL) and is a limit on the total number of seats that this - /// level may borrow at any one time. - /// This field holds the ratio of that limit to the level's nominal - /// concurrency limit. When this field is non-nil, it must hold a - /// non-negative integer and the limit is calculated as follows. - /// - /// BorrowingCL(i) = round( NominalCL(i) * borrowingLimitPercent(i)/100.0 ) - /// - /// The value of this field can be more than 100, implying that this - /// priority level can borrow a number of seats that is greater than - /// its own nominal concurrency limit (NominalCL). - /// When this field is left `nil`, the limit is effectively infinite. - /// +optional - #[prost(int32, optional, tag = "4")] - pub borrowing_limit_percent: ::core::option::Option, -} -/// NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the -/// target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member -/// of verbs matches the request and (b) at least one member of nonResourceURLs matches the request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs. If it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. - /// For example: - /// - "/healthz" is legal - /// - "/hea*" is illegal - /// - "/hea" is legal but matches nothing - /// - "/hea/*" also matches nothing - /// - "/healthz/*" matches all per-component health checks. - /// "*" matches all non-resource urls. if it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "6")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject -/// making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches -/// a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member -/// of resourceRules or nonResourceRules matches the request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PolicyRulesWithSubjects { - /// subjects is the list of normal user, serviceaccount, or group that this rule cares about. - /// There must be at least one member in this slice. - /// A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. - /// +listType=atomic - /// Required. - #[prost(message, repeated, tag = "1")] - pub subjects: ::prost::alloc::vec::Vec, - /// `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the - /// target resource. - /// At least one of `resourceRules` and `nonResourceRules` has to be non-empty. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "2")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// `nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb - /// and the target non-resource URL. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub non_resource_rules: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfiguration represents the configuration of a priority level. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfiguration { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PriorityLevelConfigurationCondition defines the condition of priority level. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationList { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of request-priorities. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfigurationReference contains information that points to the "request-priority" being used. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationReference { - /// `name` is the name of the priority level configuration being referenced - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationSpec specifies the configuration of a priority level. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationSpec { - /// `type` indicates whether this priority level is subject to - /// limitation on request execution. A value of `"Exempt"` means - /// that requests of this priority level are not subject to a limit - /// (and thus are never queued) and do not detract from the - /// capacity made available to other priority levels. A value of - /// `"Limited"` means that (a) requests of this priority level - /// _are_ subject to limits and (b) some of the server's limited - /// capacity is made available exclusively to this priority level. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `limited` specifies how requests are handled for a Limited priority level. - /// This field must be non-empty if and only if `type` is `"Limited"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub limited: ::core::option::Option, - /// `exempt` specifies how requests are handled for an exempt priority level. - /// This field MUST be empty if `type` is `"Limited"`. - /// This field MAY be non-empty if `type` is `"Exempt"`. - /// If empty and `type` is `"Exempt"` then the default values - /// for `ExemptPriorityLevelConfiguration` apply. - /// +optional - #[prost(message, optional, tag = "3")] - pub exempt: ::core::option::Option, -} -/// PriorityLevelConfigurationStatus represents the current state of a "request-priority". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationStatus { - /// `conditions` is the current state of "request-priority". - /// +listType=map - /// +listMapKey=type - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// QueuingConfiguration holds the configuration parameters for queuing -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct QueuingConfiguration { - /// `queues` is the number of queues for this priority level. The - /// queues exist independently at each apiserver. The value must be - /// positive. Setting it to 1 effectively precludes - /// shufflesharding and thus makes the distinguisher method of - /// associated flow schemas irrelevant. This field has a default - /// value of 64. - /// +optional - #[prost(int32, optional, tag = "1")] - pub queues: ::core::option::Option, - /// `handSize` is a small positive number that configures the - /// shuffle sharding of requests into queues. When enqueuing a request - /// at this priority level the request's flow identifier (a string - /// pair) is hashed and the hash value is used to shuffle the list - /// of queues and deal a hand of the size specified here. The - /// request is put into one of the shortest queues in that hand. - /// `handSize` must be no larger than `queues`, and should be - /// significantly smaller (so that a few heavy flows do not - /// saturate most of the queues). See the user-facing - /// documentation for more extensive guidance on setting this - /// field. This field has a default value of 8. - /// +optional - #[prost(int32, optional, tag = "2")] - pub hand_size: ::core::option::Option, - /// `queueLengthLimit` is the maximum number of requests allowed to - /// be waiting in a given queue of this priority level at a time; - /// excess requests are rejected. This value must be positive. If - /// not specified, it will be defaulted to 50. - /// +optional - #[prost(int32, optional, tag = "3")] - pub queue_length_limit: ::core::option::Option, -} -/// ResourcePolicyRule is a predicate that matches some resource -/// requests, testing the request's verb and the target resource. A -/// ResourcePolicyRule matches a resource request if and only if: (a) -/// at least one member of verbs matches the request, (b) at least one -/// member of apiGroups matches the request, (c) at least one member of -/// resources matches the request, and (d) either (d1) the request does -/// not specify a namespace (i.e., `Namespace==""`) and clusterScope is -/// true or (d2) the request specifies a namespace and least one member -/// of namespaces matches the request's namespace. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `apiGroups` is a list of matching API groups and may not be empty. - /// "*" matches all API groups and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `resources` is a list of matching resources (i.e., lowercase - /// and plural) with, if desired, subresource. For example, [ - /// "services", "nodes/status" ]. This list may not be empty. - /// "*" matches all resources and, if present, must be the only entry. - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `clusterScope` indicates whether to match requests that do not - /// specify a namespace (which happens either because the resource - /// is not namespaced or the request targets all namespaces). - /// If this field is omitted or false then the `namespaces` field - /// must contain a non-empty list. - /// +optional - #[prost(bool, optional, tag = "4")] - pub cluster_scope: ::core::option::Option, - /// `namespaces` is a list of target namespaces that restricts - /// matches. A request that specifies a target namespace matches - /// only if either (a) this list contains that target namespace or - /// (b) this list contains "*". Note that "*" matches any - /// specified namespace but does not match a request that _does - /// not specify_ a namespace (see the `clusterScope` field for - /// that). - /// This list may be empty, but only if `clusterScope` is true. - /// +optional - /// +listType=set - #[prost(string, repeated, tag = "5")] - pub namespaces: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ServiceAccountSubject holds detailed information for service-account-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceAccountSubject { - /// `namespace` is the namespace of matching ServiceAccount objects. - /// Required. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// `name` is the name of matching ServiceAccount objects, or "*" to match regardless of name. - /// Required. - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject matches the originator of a request, as identified by the request authentication system. There are three -/// ways of matching an originator; by user, group, or service account. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// `kind` indicates which one of the other fields is non-empty. - /// Required - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// `user` matches based on username. - /// +optional - #[prost(message, optional, tag = "2")] - pub user: ::core::option::Option, - /// `group` matches based on user group name. - /// +optional - #[prost(message, optional, tag = "3")] - pub group: ::core::option::Option, - /// `serviceAccount` matches ServiceAccounts. - /// +optional - #[prost(message, optional, tag = "4")] - pub service_account: ::core::option::Option, -} -/// UserSubject holds detailed information for user-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct UserSubject { - /// `name` is the username that matches, or "*" to match all usernames. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for FlowSchema { - const API_VERSION: &'static str = "flowcontrol.apiserver.k8s.io/v1"; - const GROUP: &'static str = "flowcontrol.apiserver.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "FlowSchema"; - const URL_PATH_SEGMENT: &'static str = "flowschemas"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for FlowSchema { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for FlowSchema { - type Spec = crate::api::flowcontrol::v1::FlowSchemaSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for FlowSchema { - type Status = crate::api::flowcontrol::v1::FlowSchemaStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for FlowSchema { - type Condition = crate::api::flowcontrol::v1::FlowSchemaCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} - -impl crate::Resource for PriorityLevelConfiguration { - const API_VERSION: &'static str = "flowcontrol.apiserver.k8s.io/v1"; - const GROUP: &'static str = "flowcontrol.apiserver.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "PriorityLevelConfiguration"; - const URL_PATH_SEGMENT: &'static str = "prioritylevelconfigurations"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for PriorityLevelConfiguration { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for PriorityLevelConfiguration { - type Spec = crate::api::flowcontrol::v1::PriorityLevelConfigurationSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for PriorityLevelConfiguration { - type Status = crate::api::flowcontrol::v1::PriorityLevelConfigurationStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for PriorityLevelConfiguration { - type Condition = crate::api::flowcontrol::v1::PriorityLevelConfigurationCondition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/flowcontrol/v1beta1/mod.rs b/k8s-pb/src/api/flowcontrol/v1beta1/mod.rs deleted file mode 100644 index 25862f9..0000000 --- a/k8s-pb/src/api/flowcontrol/v1beta1/mod.rs +++ /dev/null @@ -1,507 +0,0 @@ -// This file is @generated by prost-build. -/// ExemptPriorityLevelConfiguration describes the configurable aspects -/// of the handling of exempt requests. -/// In the mandatory exempt configuration object the values in the fields -/// here can be modified by authorized users, unlike the rest of the `spec`. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExemptPriorityLevelConfiguration { - /// `nominalConcurrencyShares` (NCS) contributes to the computation of the - /// NominalConcurrencyLimit (NominalCL) of this level. - /// This is the number of execution seats nominally reserved for this priority level. - /// This DOES NOT limit the dispatching from this priority level - /// but affects the other priority levels through the borrowing mechanism. - /// The server's concurrency limit (ServerCL) is divided among all the - /// priority levels in proportion to their NCS values: - /// - /// NominalCL(i) = ceil( ServerCL * NCS(i) / sum_ncs ) - /// sum_ncs = sum\[priority level k\] NCS(k) - /// - /// Bigger numbers mean a larger nominal concurrency limit, - /// at the expense of every other priority level. - /// This field has a default value of zero. - /// +optional - #[prost(int32, optional, tag = "1")] - pub nominal_concurrency_shares: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. This value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "2")] - pub lendable_percent: ::core::option::Option, -} -/// FlowDistinguisherMethod specifies the method of a flow distinguisher. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowDistinguisherMethod { - /// `type` is the type of flow distinguisher method - /// The supported types are "ByUser" and "ByNamespace". - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with -/// similar attributes and is identified by a pair of strings: the name of the FlowSchema and a "flow distinguisher". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchema { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// FlowSchemaCondition describes conditions for a FlowSchema. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowSchemaCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchemaList is a list of FlowSchema objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaList { - /// `metadata` is the standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of FlowSchemas. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// FlowSchemaSpec describes how the FlowSchema's specification looks like. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaSpec { - /// `priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot - /// be resolved, the FlowSchema will be ignored and marked as invalid in its status. - /// Required. - #[prost(message, optional, tag = "1")] - pub priority_level_configuration: ::core::option::Option, - /// `matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen - /// FlowSchema is among those with the numerically lowest (which we take to be logically highest) - /// MatchingPrecedence. Each MatchingPrecedence value must be ranged in \[1,10000\]. - /// Note that if the precedence is not specified, it will be set to 1000 as default. - /// +optional - #[prost(int32, optional, tag = "2")] - pub matching_precedence: ::core::option::Option, - /// `distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. - /// `nil` specifies that the distinguisher is disabled and thus will always be the empty string. - /// +optional - #[prost(message, optional, tag = "3")] - pub distinguisher_method: ::core::option::Option, - /// `rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if - /// at least one member of rules matches the request. - /// if it is an empty slice, there will be no requests matching the FlowSchema. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub rules: ::prost::alloc::vec::Vec, -} -/// FlowSchemaStatus represents the current state of a FlowSchema. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaStatus { - /// `conditions` is a list of the current states of FlowSchema. - /// +listType=map - /// +listMapKey=type - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// GroupSubject holds detailed information for group-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GroupSubject { - /// name is the user group that matches, or "*" to match all user groups. - /// See for some - /// well-known group names. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// LimitResponse defines how to handle requests that can not be executed right now. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitResponse { - /// `type` is "Queue" or "Reject". - /// "Queue" means that requests that can not be executed upon arrival - /// are held in a queue until they can be executed or a queuing limit - /// is reached. - /// "Reject" means that requests that can not be executed upon arrival - /// are rejected. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `queuing` holds the configuration parameters for queuing. - /// This field may be non-empty only if `type` is `"Queue"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub queuing: ::core::option::Option, -} -/// LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. -/// It addresses two issues: -/// - How are requests for this priority level limited? -/// - What should be done with requests that exceed the limit? -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitedPriorityLevelConfiguration { - /// `assuredConcurrencyShares` (ACS) configures the execution - /// limit, which is a limit on the number of requests of this - /// priority level that may be executing at a given time. ACS must - /// be a positive number. The server's concurrency limit (SCL) is - /// divided among the concurrency-controlled priority levels in - /// proportion to their assured concurrency shares. This produces - /// the assured concurrency value (ACV) --- the number of requests - /// that may be executing at a time --- for each such priority - /// level: - /// - /// ACV(l) = ceil( SCL * ACS(l) / ( sum\[priority levels k\] ACS(k) ) ) - /// - /// bigger numbers of ACS mean more reserved concurrent requests (at the - /// expense of every other PL). - /// This field has a default value of 30. - /// +optional - #[prost(int32, optional, tag = "1")] - pub assured_concurrency_shares: ::core::option::Option, - /// `limitResponse` indicates what to do with requests that can not be executed right now - #[prost(message, optional, tag = "2")] - pub limit_response: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. The value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "3")] - pub lendable_percent: ::core::option::Option, - /// `borrowingLimitPercent`, if present, configures a limit on how many - /// seats this priority level can borrow from other priority levels. - /// The limit is known as this level's BorrowingConcurrencyLimit - /// (BorrowingCL) and is a limit on the total number of seats that this - /// level may borrow at any one time. - /// This field holds the ratio of that limit to the level's nominal - /// concurrency limit. When this field is non-nil, it must hold a - /// non-negative integer and the limit is calculated as follows. - /// - /// BorrowingCL(i) = round( NominalCL(i) * borrowingLimitPercent(i)/100.0 ) - /// - /// The value of this field can be more than 100, implying that this - /// priority level can borrow a number of seats that is greater than - /// its own nominal concurrency limit (NominalCL). - /// When this field is left `nil`, the limit is effectively infinite. - /// +optional - #[prost(int32, optional, tag = "4")] - pub borrowing_limit_percent: ::core::option::Option, -} -/// NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the -/// target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member -/// of verbs matches the request and (b) at least one member of nonResourceURLs matches the request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs. If it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. - /// For example: - /// - "/healthz" is legal - /// - "/hea*" is illegal - /// - "/hea" is legal but matches nothing - /// - "/hea/*" also matches nothing - /// - "/healthz/*" matches all per-component health checks. - /// "*" matches all non-resource urls. if it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "6")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject -/// making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches -/// a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member -/// of resourceRules or nonResourceRules matches the request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PolicyRulesWithSubjects { - /// subjects is the list of normal user, serviceaccount, or group that this rule cares about. - /// There must be at least one member in this slice. - /// A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. - /// +listType=atomic - /// Required. - #[prost(message, repeated, tag = "1")] - pub subjects: ::prost::alloc::vec::Vec, - /// `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the - /// target resource. - /// At least one of `resourceRules` and `nonResourceRules` has to be non-empty. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "2")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// `nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb - /// and the target non-resource URL. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub non_resource_rules: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfiguration represents the configuration of a priority level. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfiguration { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PriorityLevelConfigurationCondition defines the condition of priority level. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationList { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of request-priorities. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfigurationReference contains information that points to the "request-priority" being used. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationReference { - /// `name` is the name of the priority level configuration being referenced - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationSpec specifies the configuration of a priority level. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationSpec { - /// `type` indicates whether this priority level is subject to - /// limitation on request execution. A value of `"Exempt"` means - /// that requests of this priority level are not subject to a limit - /// (and thus are never queued) and do not detract from the - /// capacity made available to other priority levels. A value of - /// `"Limited"` means that (a) requests of this priority level - /// _are_ subject to limits and (b) some of the server's limited - /// capacity is made available exclusively to this priority level. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `limited` specifies how requests are handled for a Limited priority level. - /// This field must be non-empty if and only if `type` is `"Limited"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub limited: ::core::option::Option, - /// `exempt` specifies how requests are handled for an exempt priority level. - /// This field MUST be empty if `type` is `"Limited"`. - /// This field MAY be non-empty if `type` is `"Exempt"`. - /// If empty and `type` is `"Exempt"` then the default values - /// for `ExemptPriorityLevelConfiguration` apply. - /// +optional - #[prost(message, optional, tag = "3")] - pub exempt: ::core::option::Option, -} -/// PriorityLevelConfigurationStatus represents the current state of a "request-priority". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationStatus { - /// `conditions` is the current state of "request-priority". - /// +listType=map - /// +listMapKey=type - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// QueuingConfiguration holds the configuration parameters for queuing -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct QueuingConfiguration { - /// `queues` is the number of queues for this priority level. The - /// queues exist independently at each apiserver. The value must be - /// positive. Setting it to 1 effectively precludes - /// shufflesharding and thus makes the distinguisher method of - /// associated flow schemas irrelevant. This field has a default - /// value of 64. - /// +optional - #[prost(int32, optional, tag = "1")] - pub queues: ::core::option::Option, - /// `handSize` is a small positive number that configures the - /// shuffle sharding of requests into queues. When enqueuing a request - /// at this priority level the request's flow identifier (a string - /// pair) is hashed and the hash value is used to shuffle the list - /// of queues and deal a hand of the size specified here. The - /// request is put into one of the shortest queues in that hand. - /// `handSize` must be no larger than `queues`, and should be - /// significantly smaller (so that a few heavy flows do not - /// saturate most of the queues). See the user-facing - /// documentation for more extensive guidance on setting this - /// field. This field has a default value of 8. - /// +optional - #[prost(int32, optional, tag = "2")] - pub hand_size: ::core::option::Option, - /// `queueLengthLimit` is the maximum number of requests allowed to - /// be waiting in a given queue of this priority level at a time; - /// excess requests are rejected. This value must be positive. If - /// not specified, it will be defaulted to 50. - /// +optional - #[prost(int32, optional, tag = "3")] - pub queue_length_limit: ::core::option::Option, -} -/// ResourcePolicyRule is a predicate that matches some resource -/// requests, testing the request's verb and the target resource. A -/// ResourcePolicyRule matches a resource request if and only if: (a) -/// at least one member of verbs matches the request, (b) at least one -/// member of apiGroups matches the request, (c) at least one member of -/// resources matches the request, and (d) either (d1) the request does -/// not specify a namespace (i.e., `Namespace==""`) and clusterScope is -/// true or (d2) the request specifies a namespace and least one member -/// of namespaces matches the request's namespace. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `apiGroups` is a list of matching API groups and may not be empty. - /// "*" matches all API groups and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `resources` is a list of matching resources (i.e., lowercase - /// and plural) with, if desired, subresource. For example, [ - /// "services", "nodes/status" ]. This list may not be empty. - /// "*" matches all resources and, if present, must be the only entry. - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `clusterScope` indicates whether to match requests that do not - /// specify a namespace (which happens either because the resource - /// is not namespaced or the request targets all namespaces). - /// If this field is omitted or false then the `namespaces` field - /// must contain a non-empty list. - /// +optional - #[prost(bool, optional, tag = "4")] - pub cluster_scope: ::core::option::Option, - /// `namespaces` is a list of target namespaces that restricts - /// matches. A request that specifies a target namespace matches - /// only if either (a) this list contains that target namespace or - /// (b) this list contains "*". Note that "*" matches any - /// specified namespace but does not match a request that _does - /// not specify_ a namespace (see the `clusterScope` field for - /// that). - /// This list may be empty, but only if `clusterScope` is true. - /// +optional - /// +listType=set - #[prost(string, repeated, tag = "5")] - pub namespaces: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ServiceAccountSubject holds detailed information for service-account-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceAccountSubject { - /// `namespace` is the namespace of matching ServiceAccount objects. - /// Required. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// `name` is the name of matching ServiceAccount objects, or "*" to match regardless of name. - /// Required. - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject matches the originator of a request, as identified by the request authentication system. There are three -/// ways of matching an originator; by user, group, or service account. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// `kind` indicates which one of the other fields is non-empty. - /// Required - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// `user` matches based on username. - /// +optional - #[prost(message, optional, tag = "2")] - pub user: ::core::option::Option, - /// `group` matches based on user group name. - /// +optional - #[prost(message, optional, tag = "3")] - pub group: ::core::option::Option, - /// `serviceAccount` matches ServiceAccounts. - /// +optional - #[prost(message, optional, tag = "4")] - pub service_account: ::core::option::Option, -} -/// UserSubject holds detailed information for user-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct UserSubject { - /// `name` is the username that matches, or "*" to match all usernames. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/flowcontrol/v1beta2/mod.rs b/k8s-pb/src/api/flowcontrol/v1beta2/mod.rs deleted file mode 100644 index 25862f9..0000000 --- a/k8s-pb/src/api/flowcontrol/v1beta2/mod.rs +++ /dev/null @@ -1,507 +0,0 @@ -// This file is @generated by prost-build. -/// ExemptPriorityLevelConfiguration describes the configurable aspects -/// of the handling of exempt requests. -/// In the mandatory exempt configuration object the values in the fields -/// here can be modified by authorized users, unlike the rest of the `spec`. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExemptPriorityLevelConfiguration { - /// `nominalConcurrencyShares` (NCS) contributes to the computation of the - /// NominalConcurrencyLimit (NominalCL) of this level. - /// This is the number of execution seats nominally reserved for this priority level. - /// This DOES NOT limit the dispatching from this priority level - /// but affects the other priority levels through the borrowing mechanism. - /// The server's concurrency limit (ServerCL) is divided among all the - /// priority levels in proportion to their NCS values: - /// - /// NominalCL(i) = ceil( ServerCL * NCS(i) / sum_ncs ) - /// sum_ncs = sum\[priority level k\] NCS(k) - /// - /// Bigger numbers mean a larger nominal concurrency limit, - /// at the expense of every other priority level. - /// This field has a default value of zero. - /// +optional - #[prost(int32, optional, tag = "1")] - pub nominal_concurrency_shares: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. This value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "2")] - pub lendable_percent: ::core::option::Option, -} -/// FlowDistinguisherMethod specifies the method of a flow distinguisher. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowDistinguisherMethod { - /// `type` is the type of flow distinguisher method - /// The supported types are "ByUser" and "ByNamespace". - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with -/// similar attributes and is identified by a pair of strings: the name of the FlowSchema and a "flow distinguisher". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchema { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// FlowSchemaCondition describes conditions for a FlowSchema. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowSchemaCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchemaList is a list of FlowSchema objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaList { - /// `metadata` is the standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of FlowSchemas. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// FlowSchemaSpec describes how the FlowSchema's specification looks like. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaSpec { - /// `priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot - /// be resolved, the FlowSchema will be ignored and marked as invalid in its status. - /// Required. - #[prost(message, optional, tag = "1")] - pub priority_level_configuration: ::core::option::Option, - /// `matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen - /// FlowSchema is among those with the numerically lowest (which we take to be logically highest) - /// MatchingPrecedence. Each MatchingPrecedence value must be ranged in \[1,10000\]. - /// Note that if the precedence is not specified, it will be set to 1000 as default. - /// +optional - #[prost(int32, optional, tag = "2")] - pub matching_precedence: ::core::option::Option, - /// `distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. - /// `nil` specifies that the distinguisher is disabled and thus will always be the empty string. - /// +optional - #[prost(message, optional, tag = "3")] - pub distinguisher_method: ::core::option::Option, - /// `rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if - /// at least one member of rules matches the request. - /// if it is an empty slice, there will be no requests matching the FlowSchema. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub rules: ::prost::alloc::vec::Vec, -} -/// FlowSchemaStatus represents the current state of a FlowSchema. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaStatus { - /// `conditions` is a list of the current states of FlowSchema. - /// +listType=map - /// +listMapKey=type - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// GroupSubject holds detailed information for group-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GroupSubject { - /// name is the user group that matches, or "*" to match all user groups. - /// See for some - /// well-known group names. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// LimitResponse defines how to handle requests that can not be executed right now. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitResponse { - /// `type` is "Queue" or "Reject". - /// "Queue" means that requests that can not be executed upon arrival - /// are held in a queue until they can be executed or a queuing limit - /// is reached. - /// "Reject" means that requests that can not be executed upon arrival - /// are rejected. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `queuing` holds the configuration parameters for queuing. - /// This field may be non-empty only if `type` is `"Queue"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub queuing: ::core::option::Option, -} -/// LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. -/// It addresses two issues: -/// - How are requests for this priority level limited? -/// - What should be done with requests that exceed the limit? -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitedPriorityLevelConfiguration { - /// `assuredConcurrencyShares` (ACS) configures the execution - /// limit, which is a limit on the number of requests of this - /// priority level that may be executing at a given time. ACS must - /// be a positive number. The server's concurrency limit (SCL) is - /// divided among the concurrency-controlled priority levels in - /// proportion to their assured concurrency shares. This produces - /// the assured concurrency value (ACV) --- the number of requests - /// that may be executing at a time --- for each such priority - /// level: - /// - /// ACV(l) = ceil( SCL * ACS(l) / ( sum\[priority levels k\] ACS(k) ) ) - /// - /// bigger numbers of ACS mean more reserved concurrent requests (at the - /// expense of every other PL). - /// This field has a default value of 30. - /// +optional - #[prost(int32, optional, tag = "1")] - pub assured_concurrency_shares: ::core::option::Option, - /// `limitResponse` indicates what to do with requests that can not be executed right now - #[prost(message, optional, tag = "2")] - pub limit_response: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. The value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "3")] - pub lendable_percent: ::core::option::Option, - /// `borrowingLimitPercent`, if present, configures a limit on how many - /// seats this priority level can borrow from other priority levels. - /// The limit is known as this level's BorrowingConcurrencyLimit - /// (BorrowingCL) and is a limit on the total number of seats that this - /// level may borrow at any one time. - /// This field holds the ratio of that limit to the level's nominal - /// concurrency limit. When this field is non-nil, it must hold a - /// non-negative integer and the limit is calculated as follows. - /// - /// BorrowingCL(i) = round( NominalCL(i) * borrowingLimitPercent(i)/100.0 ) - /// - /// The value of this field can be more than 100, implying that this - /// priority level can borrow a number of seats that is greater than - /// its own nominal concurrency limit (NominalCL). - /// When this field is left `nil`, the limit is effectively infinite. - /// +optional - #[prost(int32, optional, tag = "4")] - pub borrowing_limit_percent: ::core::option::Option, -} -/// NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the -/// target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member -/// of verbs matches the request and (b) at least one member of nonResourceURLs matches the request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs. If it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. - /// For example: - /// - "/healthz" is legal - /// - "/hea*" is illegal - /// - "/hea" is legal but matches nothing - /// - "/hea/*" also matches nothing - /// - "/healthz/*" matches all per-component health checks. - /// "*" matches all non-resource urls. if it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "6")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject -/// making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches -/// a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member -/// of resourceRules or nonResourceRules matches the request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PolicyRulesWithSubjects { - /// subjects is the list of normal user, serviceaccount, or group that this rule cares about. - /// There must be at least one member in this slice. - /// A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. - /// +listType=atomic - /// Required. - #[prost(message, repeated, tag = "1")] - pub subjects: ::prost::alloc::vec::Vec, - /// `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the - /// target resource. - /// At least one of `resourceRules` and `nonResourceRules` has to be non-empty. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "2")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// `nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb - /// and the target non-resource URL. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub non_resource_rules: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfiguration represents the configuration of a priority level. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfiguration { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PriorityLevelConfigurationCondition defines the condition of priority level. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationList { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of request-priorities. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfigurationReference contains information that points to the "request-priority" being used. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationReference { - /// `name` is the name of the priority level configuration being referenced - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationSpec specifies the configuration of a priority level. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationSpec { - /// `type` indicates whether this priority level is subject to - /// limitation on request execution. A value of `"Exempt"` means - /// that requests of this priority level are not subject to a limit - /// (and thus are never queued) and do not detract from the - /// capacity made available to other priority levels. A value of - /// `"Limited"` means that (a) requests of this priority level - /// _are_ subject to limits and (b) some of the server's limited - /// capacity is made available exclusively to this priority level. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `limited` specifies how requests are handled for a Limited priority level. - /// This field must be non-empty if and only if `type` is `"Limited"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub limited: ::core::option::Option, - /// `exempt` specifies how requests are handled for an exempt priority level. - /// This field MUST be empty if `type` is `"Limited"`. - /// This field MAY be non-empty if `type` is `"Exempt"`. - /// If empty and `type` is `"Exempt"` then the default values - /// for `ExemptPriorityLevelConfiguration` apply. - /// +optional - #[prost(message, optional, tag = "3")] - pub exempt: ::core::option::Option, -} -/// PriorityLevelConfigurationStatus represents the current state of a "request-priority". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationStatus { - /// `conditions` is the current state of "request-priority". - /// +listType=map - /// +listMapKey=type - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// QueuingConfiguration holds the configuration parameters for queuing -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct QueuingConfiguration { - /// `queues` is the number of queues for this priority level. The - /// queues exist independently at each apiserver. The value must be - /// positive. Setting it to 1 effectively precludes - /// shufflesharding and thus makes the distinguisher method of - /// associated flow schemas irrelevant. This field has a default - /// value of 64. - /// +optional - #[prost(int32, optional, tag = "1")] - pub queues: ::core::option::Option, - /// `handSize` is a small positive number that configures the - /// shuffle sharding of requests into queues. When enqueuing a request - /// at this priority level the request's flow identifier (a string - /// pair) is hashed and the hash value is used to shuffle the list - /// of queues and deal a hand of the size specified here. The - /// request is put into one of the shortest queues in that hand. - /// `handSize` must be no larger than `queues`, and should be - /// significantly smaller (so that a few heavy flows do not - /// saturate most of the queues). See the user-facing - /// documentation for more extensive guidance on setting this - /// field. This field has a default value of 8. - /// +optional - #[prost(int32, optional, tag = "2")] - pub hand_size: ::core::option::Option, - /// `queueLengthLimit` is the maximum number of requests allowed to - /// be waiting in a given queue of this priority level at a time; - /// excess requests are rejected. This value must be positive. If - /// not specified, it will be defaulted to 50. - /// +optional - #[prost(int32, optional, tag = "3")] - pub queue_length_limit: ::core::option::Option, -} -/// ResourcePolicyRule is a predicate that matches some resource -/// requests, testing the request's verb and the target resource. A -/// ResourcePolicyRule matches a resource request if and only if: (a) -/// at least one member of verbs matches the request, (b) at least one -/// member of apiGroups matches the request, (c) at least one member of -/// resources matches the request, and (d) either (d1) the request does -/// not specify a namespace (i.e., `Namespace==""`) and clusterScope is -/// true or (d2) the request specifies a namespace and least one member -/// of namespaces matches the request's namespace. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `apiGroups` is a list of matching API groups and may not be empty. - /// "*" matches all API groups and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `resources` is a list of matching resources (i.e., lowercase - /// and plural) with, if desired, subresource. For example, [ - /// "services", "nodes/status" ]. This list may not be empty. - /// "*" matches all resources and, if present, must be the only entry. - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `clusterScope` indicates whether to match requests that do not - /// specify a namespace (which happens either because the resource - /// is not namespaced or the request targets all namespaces). - /// If this field is omitted or false then the `namespaces` field - /// must contain a non-empty list. - /// +optional - #[prost(bool, optional, tag = "4")] - pub cluster_scope: ::core::option::Option, - /// `namespaces` is a list of target namespaces that restricts - /// matches. A request that specifies a target namespace matches - /// only if either (a) this list contains that target namespace or - /// (b) this list contains "*". Note that "*" matches any - /// specified namespace but does not match a request that _does - /// not specify_ a namespace (see the `clusterScope` field for - /// that). - /// This list may be empty, but only if `clusterScope` is true. - /// +optional - /// +listType=set - #[prost(string, repeated, tag = "5")] - pub namespaces: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ServiceAccountSubject holds detailed information for service-account-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceAccountSubject { - /// `namespace` is the namespace of matching ServiceAccount objects. - /// Required. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// `name` is the name of matching ServiceAccount objects, or "*" to match regardless of name. - /// Required. - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject matches the originator of a request, as identified by the request authentication system. There are three -/// ways of matching an originator; by user, group, or service account. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// `kind` indicates which one of the other fields is non-empty. - /// Required - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// `user` matches based on username. - /// +optional - #[prost(message, optional, tag = "2")] - pub user: ::core::option::Option, - /// `group` matches based on user group name. - /// +optional - #[prost(message, optional, tag = "3")] - pub group: ::core::option::Option, - /// `serviceAccount` matches ServiceAccounts. - /// +optional - #[prost(message, optional, tag = "4")] - pub service_account: ::core::option::Option, -} -/// UserSubject holds detailed information for user-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct UserSubject { - /// `name` is the username that matches, or "*" to match all usernames. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/flowcontrol/v1beta3/mod.rs b/k8s-pb/src/api/flowcontrol/v1beta3/mod.rs deleted file mode 100644 index 845586e..0000000 --- a/k8s-pb/src/api/flowcontrol/v1beta3/mod.rs +++ /dev/null @@ -1,511 +0,0 @@ -// This file is @generated by prost-build. -/// ExemptPriorityLevelConfiguration describes the configurable aspects -/// of the handling of exempt requests. -/// In the mandatory exempt configuration object the values in the fields -/// here can be modified by authorized users, unlike the rest of the `spec`. -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ExemptPriorityLevelConfiguration { - /// `nominalConcurrencyShares` (NCS) contributes to the computation of the - /// NominalConcurrencyLimit (NominalCL) of this level. - /// This is the number of execution seats nominally reserved for this priority level. - /// This DOES NOT limit the dispatching from this priority level - /// but affects the other priority levels through the borrowing mechanism. - /// The server's concurrency limit (ServerCL) is divided among all the - /// priority levels in proportion to their NCS values: - /// - /// NominalCL(i) = ceil( ServerCL * NCS(i) / sum_ncs ) - /// sum_ncs = sum\[priority level k\] NCS(k) - /// - /// Bigger numbers mean a larger nominal concurrency limit, - /// at the expense of every other priority level. - /// This field has a default value of zero. - /// +optional - #[prost(int32, optional, tag = "1")] - pub nominal_concurrency_shares: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. This value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "2")] - pub lendable_percent: ::core::option::Option, -} -/// FlowDistinguisherMethod specifies the method of a flow distinguisher. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowDistinguisherMethod { - /// `type` is the type of flow distinguisher method - /// The supported types are "ByUser" and "ByNamespace". - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with -/// similar attributes and is identified by a pair of strings: the name of the FlowSchema and a "flow distinguisher". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchema { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a FlowSchema. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// FlowSchemaCondition describes conditions for a FlowSchema. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct FlowSchemaCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// FlowSchemaList is a list of FlowSchema objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaList { - /// `metadata` is the standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of FlowSchemas. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// FlowSchemaSpec describes how the FlowSchema's specification looks like. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaSpec { - /// `priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot - /// be resolved, the FlowSchema will be ignored and marked as invalid in its status. - /// Required. - #[prost(message, optional, tag = "1")] - pub priority_level_configuration: ::core::option::Option, - /// `matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen - /// FlowSchema is among those with the numerically lowest (which we take to be logically highest) - /// MatchingPrecedence. Each MatchingPrecedence value must be ranged in \[1,10000\]. - /// Note that if the precedence is not specified, it will be set to 1000 as default. - /// +optional - #[prost(int32, optional, tag = "2")] - pub matching_precedence: ::core::option::Option, - /// `distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. - /// `nil` specifies that the distinguisher is disabled and thus will always be the empty string. - /// +optional - #[prost(message, optional, tag = "3")] - pub distinguisher_method: ::core::option::Option, - /// `rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if - /// at least one member of rules matches the request. - /// if it is an empty slice, there will be no requests matching the FlowSchema. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub rules: ::prost::alloc::vec::Vec, -} -/// FlowSchemaStatus represents the current state of a FlowSchema. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct FlowSchemaStatus { - /// `conditions` is a list of the current states of FlowSchema. - /// +listType=map - /// +listMapKey=type - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// GroupSubject holds detailed information for group-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct GroupSubject { - /// name is the user group that matches, or "*" to match all user groups. - /// See for some - /// well-known group names. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// LimitResponse defines how to handle requests that can not be executed right now. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitResponse { - /// `type` is "Queue" or "Reject". - /// "Queue" means that requests that can not be executed upon arrival - /// are held in a queue until they can be executed or a queuing limit - /// is reached. - /// "Reject" means that requests that can not be executed upon arrival - /// are rejected. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `queuing` holds the configuration parameters for queuing. - /// This field may be non-empty only if `type` is `"Queue"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub queuing: ::core::option::Option, -} -/// LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. -/// It addresses two issues: -/// - How are requests for this priority level limited? -/// - What should be done with requests that exceed the limit? -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct LimitedPriorityLevelConfiguration { - /// `nominalConcurrencyShares` (NCS) contributes to the computation of the - /// NominalConcurrencyLimit (NominalCL) of this level. - /// This is the number of execution seats available at this priority level. - /// This is used both for requests dispatched from this priority level - /// as well as requests dispatched from other priority levels - /// borrowing seats from this level. - /// The server's concurrency limit (ServerCL) is divided among the - /// Limited priority levels in proportion to their NCS values: - /// - /// NominalCL(i) = ceil( ServerCL * NCS(i) / sum_ncs ) - /// sum_ncs = sum\[priority level k\] NCS(k) - /// - /// Bigger numbers mean a larger nominal concurrency limit, - /// at the expense of every other priority level. - /// This field has a default value of 30. - /// +optional - #[prost(int32, optional, tag = "1")] - pub nominal_concurrency_shares: ::core::option::Option, - /// `limitResponse` indicates what to do with requests that can not be executed right now - #[prost(message, optional, tag = "2")] - pub limit_response: ::core::option::Option, - /// `lendablePercent` prescribes the fraction of the level's NominalCL that - /// can be borrowed by other priority levels. The value of this - /// field must be between 0 and 100, inclusive, and it defaults to 0. - /// The number of seats that other levels can borrow from this level, known - /// as this level's LendableConcurrencyLimit (LendableCL), is defined as follows. - /// - /// LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 ) - /// - /// +optional - #[prost(int32, optional, tag = "3")] - pub lendable_percent: ::core::option::Option, - /// `borrowingLimitPercent`, if present, configures a limit on how many - /// seats this priority level can borrow from other priority levels. - /// The limit is known as this level's BorrowingConcurrencyLimit - /// (BorrowingCL) and is a limit on the total number of seats that this - /// level may borrow at any one time. - /// This field holds the ratio of that limit to the level's nominal - /// concurrency limit. When this field is non-nil, it must hold a - /// non-negative integer and the limit is calculated as follows. - /// - /// BorrowingCL(i) = round( NominalCL(i) * borrowingLimitPercent(i)/100.0 ) - /// - /// The value of this field can be more than 100, implying that this - /// priority level can borrow a number of seats that is greater than - /// its own nominal concurrency limit (NominalCL). - /// When this field is left `nil`, the limit is effectively infinite. - /// +optional - #[prost(int32, optional, tag = "4")] - pub borrowing_limit_percent: ::core::option::Option, -} -/// NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the -/// target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member -/// of verbs matches the request and (b) at least one member of nonResourceURLs matches the request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NonResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs. If it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. - /// For example: - /// - "/healthz" is legal - /// - "/hea*" is illegal - /// - "/hea" is legal but matches nothing - /// - "/hea/*" also matches nothing - /// - "/healthz/*" matches all per-component health checks. - /// "*" matches all non-resource urls. if it is present, it must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "6")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject -/// making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches -/// a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member -/// of resourceRules or nonResourceRules matches the request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PolicyRulesWithSubjects { - /// subjects is the list of normal user, serviceaccount, or group that this rule cares about. - /// There must be at least one member in this slice. - /// A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. - /// +listType=atomic - /// Required. - #[prost(message, repeated, tag = "1")] - pub subjects: ::prost::alloc::vec::Vec, - /// `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the - /// target resource. - /// At least one of `resourceRules` and `nonResourceRules` has to be non-empty. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "2")] - pub resource_rules: ::prost::alloc::vec::Vec, - /// `nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb - /// and the target non-resource URL. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub non_resource_rules: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfiguration represents the configuration of a priority level. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfiguration { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `spec` is the specification of the desired behavior of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// `status` is the current status of a "request-priority". - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PriorityLevelConfigurationCondition defines the condition of priority level. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationCondition { - /// `type` is the type of the condition. - /// Required. - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `status` is the status of the condition. - /// Can be True, False, Unknown. - /// Required. - #[prost(string, optional, tag = "2")] - pub status: ::core::option::Option<::prost::alloc::string::String>, - /// `lastTransitionTime` is the last time the condition transitioned from one status to another. - #[prost(message, optional, tag = "3")] - pub last_transition_time: - ::core::option::Option, - /// `reason` is a unique, one-word, CamelCase reason for the condition's last transition. - #[prost(string, optional, tag = "4")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// `message` is a human-readable message indicating details about last transition. - #[prost(string, optional, tag = "5")] - pub message: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationList { - /// `metadata` is the standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// `items` is a list of request-priorities. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PriorityLevelConfigurationReference contains information that points to the "request-priority" being used. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationReference { - /// `name` is the name of the priority level configuration being referenced - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// PriorityLevelConfigurationSpec specifies the configuration of a priority level. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PriorityLevelConfigurationSpec { - /// `type` indicates whether this priority level is subject to - /// limitation on request execution. A value of `"Exempt"` means - /// that requests of this priority level are not subject to a limit - /// (and thus are never queued) and do not detract from the - /// capacity made available to other priority levels. A value of - /// `"Limited"` means that (a) requests of this priority level - /// _are_ subject to limits and (b) some of the server's limited - /// capacity is made available exclusively to this priority level. - /// Required. - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub r#type: ::core::option::Option<::prost::alloc::string::String>, - /// `limited` specifies how requests are handled for a Limited priority level. - /// This field must be non-empty if and only if `type` is `"Limited"`. - /// +optional - #[prost(message, optional, tag = "2")] - pub limited: ::core::option::Option, - /// `exempt` specifies how requests are handled for an exempt priority level. - /// This field MUST be empty if `type` is `"Limited"`. - /// This field MAY be non-empty if `type` is `"Exempt"`. - /// If empty and `type` is `"Exempt"` then the default values - /// for `ExemptPriorityLevelConfiguration` apply. - /// +optional - #[prost(message, optional, tag = "3")] - pub exempt: ::core::option::Option, -} -/// PriorityLevelConfigurationStatus represents the current state of a "request-priority". -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PriorityLevelConfigurationStatus { - /// `conditions` is the current state of "request-priority". - /// +listType=map - /// +listMapKey=type - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +optional - #[prost(message, repeated, tag = "1")] - pub conditions: ::prost::alloc::vec::Vec, -} -/// QueuingConfiguration holds the configuration parameters for queuing -#[derive(Clone, Copy, PartialEq, Eq, Hash, ::prost::Message)] -pub struct QueuingConfiguration { - /// `queues` is the number of queues for this priority level. The - /// queues exist independently at each apiserver. The value must be - /// positive. Setting it to 1 effectively precludes - /// shufflesharding and thus makes the distinguisher method of - /// associated flow schemas irrelevant. This field has a default - /// value of 64. - /// +optional - #[prost(int32, optional, tag = "1")] - pub queues: ::core::option::Option, - /// `handSize` is a small positive number that configures the - /// shuffle sharding of requests into queues. When enqueuing a request - /// at this priority level the request's flow identifier (a string - /// pair) is hashed and the hash value is used to shuffle the list - /// of queues and deal a hand of the size specified here. The - /// request is put into one of the shortest queues in that hand. - /// `handSize` must be no larger than `queues`, and should be - /// significantly smaller (so that a few heavy flows do not - /// saturate most of the queues). See the user-facing - /// documentation for more extensive guidance on setting this - /// field. This field has a default value of 8. - /// +optional - #[prost(int32, optional, tag = "2")] - pub hand_size: ::core::option::Option, - /// `queueLengthLimit` is the maximum number of requests allowed to - /// be waiting in a given queue of this priority level at a time; - /// excess requests are rejected. This value must be positive. If - /// not specified, it will be defaulted to 50. - /// +optional - #[prost(int32, optional, tag = "3")] - pub queue_length_limit: ::core::option::Option, -} -/// ResourcePolicyRule is a predicate that matches some resource -/// requests, testing the request's verb and the target resource. A -/// ResourcePolicyRule matches a resource request if and only if: (a) -/// at least one member of verbs matches the request, (b) at least one -/// member of apiGroups matches the request, (c) at least one member of -/// resources matches the request, and (d) either (d1) the request does -/// not specify a namespace (i.e., `Namespace==""`) and clusterScope is -/// true or (d2) the request specifies a namespace and least one member -/// of namespaces matches the request's namespace. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ResourcePolicyRule { - /// `verbs` is a list of matching verbs and may not be empty. - /// "*" matches all verbs and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `apiGroups` is a list of matching API groups and may not be empty. - /// "*" matches all API groups and, if present, must be the only entry. - /// +listType=set - /// Required. - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `resources` is a list of matching resources (i.e., lowercase - /// and plural) with, if desired, subresource. For example, [ - /// "services", "nodes/status" ]. This list may not be empty. - /// "*" matches all resources and, if present, must be the only entry. - /// Required. - /// +listType=set - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// `clusterScope` indicates whether to match requests that do not - /// specify a namespace (which happens either because the resource - /// is not namespaced or the request targets all namespaces). - /// If this field is omitted or false then the `namespaces` field - /// must contain a non-empty list. - /// +optional - #[prost(bool, optional, tag = "4")] - pub cluster_scope: ::core::option::Option, - /// `namespaces` is a list of target namespaces that restricts - /// matches. A request that specifies a target namespace matches - /// only if either (a) this list contains that target namespace or - /// (b) this list contains "*". Note that "*" matches any - /// specified namespace but does not match a request that _does - /// not specify_ a namespace (see the `clusterScope` field for - /// that). - /// This list may be empty, but only if `clusterScope` is true. - /// +optional - /// +listType=set - #[prost(string, repeated, tag = "5")] - pub namespaces: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ServiceAccountSubject holds detailed information for service-account-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceAccountSubject { - /// `namespace` is the namespace of matching ServiceAccount objects. - /// Required. - #[prost(string, optional, tag = "1")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// `name` is the name of matching ServiceAccount objects, or "*" to match regardless of name. - /// Required. - #[prost(string, optional, tag = "2")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject matches the originator of a request, as identified by the request authentication system. There are three -/// ways of matching an originator; by user, group, or service account. -/// +union -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// `kind` indicates which one of the other fields is non-empty. - /// Required - /// +unionDiscriminator - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// `user` matches based on username. - /// +optional - #[prost(message, optional, tag = "2")] - pub user: ::core::option::Option, - /// `group` matches based on user group name. - /// +optional - #[prost(message, optional, tag = "3")] - pub group: ::core::option::Option, - /// `serviceAccount` matches ServiceAccounts. - /// +optional - #[prost(message, optional, tag = "4")] - pub service_account: ::core::option::Option, -} -/// UserSubject holds detailed information for user-kind subject. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct UserSubject { - /// `name` is the username that matches, or "*" to match all usernames. - /// Required. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/imagepolicy/mod.rs b/k8s-pb/src/api/imagepolicy/mod.rs deleted file mode 100644 index 32a5a9d..0000000 --- a/k8s-pb/src/api/imagepolicy/mod.rs +++ /dev/null @@ -1 +0,0 @@ -pub mod v1alpha1; diff --git a/k8s-pb/src/api/imagepolicy/v1alpha1/mod.rs b/k8s-pb/src/api/imagepolicy/v1alpha1/mod.rs deleted file mode 100644 index 8e75e1e..0000000 --- a/k8s-pb/src/api/imagepolicy/v1alpha1/mod.rs +++ /dev/null @@ -1,66 +0,0 @@ -// This file is @generated by prost-build. -/// ImageReview checks if the set of images in a pod are allowed. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ImageReview { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec holds information about the pod being evaluated - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Status is filled in by the backend and indicates whether the pod should be allowed. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ImageReviewContainerSpec is a description of a container within the pod creation request. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ImageReviewContainerSpec { - /// This can be in the form image:tag or image@SHA:012345679abcdef. - /// +optional - #[prost(string, optional, tag = "1")] - pub image: ::core::option::Option<::prost::alloc::string::String>, -} -/// ImageReviewSpec is a description of the pod creation request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ImageReviewSpec { - /// Containers is a list of a subset of the information in each container of the Pod being created. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub containers: ::prost::alloc::vec::Vec, - /// Annotations is a list of key-value pairs extracted from the Pod's annotations. - /// It only includes keys which match the pattern `*.image-policy.k8s.io/*`. - /// It is up to each webhook backend to determine how to interpret these annotations, if at all. - /// +optional - #[prost(btree_map = "string, string", tag = "2")] - pub annotations: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// Namespace is the namespace the pod is being created in. - /// +optional - #[prost(string, optional, tag = "3")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// ImageReviewStatus is the result of the review for the pod creation request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ImageReviewStatus { - /// Allowed indicates that all images were allowed to be run. - #[prost(bool, optional, tag = "1")] - pub allowed: ::core::option::Option, - /// Reason should be empty unless Allowed is false in which case it - /// may contain a short description of what is wrong. Kubernetes - /// may truncate excessively long errors when displaying to the user. - /// +optional - #[prost(string, optional, tag = "2")] - pub reason: ::core::option::Option<::prost::alloc::string::String>, - /// AuditAnnotations will be added to the attributes object of the - /// admission controller request using 'AddAnnotation'. The keys should - /// be prefix-less (i.e., the admission controller will add an - /// appropriate prefix). - /// +optional - #[prost(btree_map = "string, string", tag = "3")] - pub audit_annotations: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/mod.rs b/k8s-pb/src/api/mod.rs deleted file mode 100644 index dd572f8..0000000 --- a/k8s-pb/src/api/mod.rs +++ /dev/null @@ -1,25 +0,0 @@ -pub mod admission; -pub mod admissionregistration; -pub mod apidiscovery; -pub mod apiserverinternal; -pub mod apps; -pub mod authentication; -pub mod authorization; -pub mod autoscaling; -pub mod batch; -pub mod certificates; -pub mod coordination; -pub mod core; -pub mod discovery; -pub mod events; -pub mod extensions; -pub mod flowcontrol; -pub mod imagepolicy; -pub mod networking; -pub mod node; -pub mod policy; -pub mod rbac; -pub mod resource; -pub mod scheduling; -pub mod storage; -pub mod storagemigration; diff --git a/k8s-pb/src/api/networking/mod.rs b/k8s-pb/src/api/networking/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/networking/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/networking/v1/mod.rs b/k8s-pb/src/api/networking/v1/mod.rs deleted file mode 100644 index 34c812b..0000000 --- a/k8s-pb/src/api/networking/v1/mod.rs +++ /dev/null @@ -1,836 +0,0 @@ -// This file is @generated by prost-build. -/// HTTPIngressPath associates a path with a backend. Incoming urls matching the -/// path are forwarded to the backend. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HttpIngressPath { - /// path is matched against the path of an incoming request. Currently it can - /// contain characters disallowed from the conventional "path" part of a URL - /// as defined by RFC 3986. Paths must begin with a '/' and must be present - /// when using PathType with value "Exact" or "Prefix". - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// pathType determines the interpretation of the path matching. PathType can - /// be one of the following values: - /// * Exact: Matches the URL path exactly. - /// * Prefix: Matches based on a URL path prefix split by '/'. Matching is - /// done on a path element by element basis. A path element refers is the - /// list of labels in the path split by the '/' separator. A request is a - /// match for path p if every p is an element-wise prefix of p of the - /// request path. Note that if the last element of the path is a substring - /// of the last element in request path, it is not a match (e.g. /foo/bar - /// matches /foo/bar/baz, but does not match /foo/barbaz). - /// * ImplementationSpecific: Interpretation of the Path matching is up to - /// the IngressClass. Implementations can treat this as a separate PathType - /// or treat it identically to Prefix or Exact path types. - /// Implementations are required to support all path types. - #[prost(string, optional, tag = "3")] - pub path_type: ::core::option::Option<::prost::alloc::string::String>, - /// backend defines the referenced service endpoint to which the traffic - /// will be forwarded to. - #[prost(message, optional, tag = "2")] - pub backend: ::core::option::Option, -} -/// HTTPIngressRuleValue is a list of http selectors pointing to backends. -/// In the example: /?> -> backend where -/// where parts of the url correspond to RFC 3986, this resource will be used -/// to match against everything after the last '/' and before the first '?' -/// or '#'. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HttpIngressRuleValue { - /// paths is a collection of paths that map requests to backends. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub paths: ::prost::alloc::vec::Vec, -} -/// IPAddress represents a single IP of a single IP Family. The object is designed to be used by APIs -/// that operate on IP addresses. The object is used by the Service core API for allocation of IP addresses. -/// An IP address can be represented in different formats, to guarantee the uniqueness of the IP, -/// the name of the object is the IP address in canonical format, four decimal digits separated -/// by dots suppressing leading zeros for IPv4 and the representation defined by RFC 5952 for IPv6. -/// Valid: 192.168.1.5 or 2001:db8::1 or 2001:db8:aaaa:bbbb:cccc:dddd:eeee:1 -/// Invalid: 10.01.2.3 or 2001:db8:0:0:0::1 -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IPAddress { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the IPAddress. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// IPAddressList contains a list of IPAddress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IPAddressList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of IPAddresses. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IPAddressSpec describe the attributes in an IP Address. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IPAddressSpec { - /// ParentRef references the resource that an IPAddress is attached to. - /// An IPAddress must reference a parent object. - /// +required - #[prost(message, optional, tag = "1")] - pub parent_ref: ::core::option::Option, -} -/// IPBlock describes a particular CIDR (Ex. "192.168.1.0/24","2001:db8::/64") that is allowed -/// to the pods matched by a NetworkPolicySpec's podSelector. The except entry describes CIDRs -/// that should not be included within this rule. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IpBlock { - /// cidr is a string representing the IPBlock - /// Valid examples are "192.168.1.0/24" or "2001:db8::/64" - #[prost(string, optional, tag = "1")] - pub cidr: ::core::option::Option<::prost::alloc::string::String>, - /// except is a slice of CIDRs that should not be included within an IPBlock - /// Valid examples are "192.168.1.0/24" or "2001:db8::/64" - /// Except values will be rejected if they are outside the cidr range - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub except: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Ingress is a collection of rules that allow inbound connections to reach the -/// endpoints defined by a backend. An Ingress can be configured to give services -/// externally-reachable urls, load balance traffic, terminate SSL, offer name -/// based virtual hosting etc. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Ingress { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the Ingress. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current state of the Ingress. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// IngressBackend describes all endpoints for a given service and port. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressBackend { - /// service references a service as a backend. - /// This is a mutually exclusive setting with "Resource". - /// +optional - #[prost(message, optional, tag = "4")] - pub service: ::core::option::Option, - /// resource is an ObjectRef to another Kubernetes resource in the namespace - /// of the Ingress object. If resource is specified, a service.Name and - /// service.Port must not be specified. - /// This is a mutually exclusive setting with "Service". - /// +optional - #[prost(message, optional, tag = "3")] - pub resource: ::core::option::Option, -} -/// IngressClass represents the class of the Ingress, referenced by the Ingress -/// Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be -/// used to indicate that an IngressClass should be considered default. When a -/// single IngressClass resource has this annotation set to true, new Ingress -/// resources without a class specified will be assigned this default class. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressClass { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the IngressClass. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// IngressClassList is a collection of IngressClasses. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressClassList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of IngressClasses. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IngressClassParametersReference identifies an API object. This can be used -/// to specify a cluster or namespace-scoped resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressClassParametersReference { - /// apiGroup is the group for the resource being referenced. If APIGroup is - /// not specified, the specified Kind must be in the core API group. For any - /// other third-party types, APIGroup is required. - /// +optional - #[prost(string, optional, tag = "1")] - pub a_pi_group: ::core::option::Option<::prost::alloc::string::String>, - /// kind is the type of resource being referenced. - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// name is the name of resource being referenced. - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// scope represents if this refers to a cluster or namespace scoped resource. - /// This may be set to "Cluster" (default) or "Namespace". - /// +optional - #[prost(string, optional, tag = "4")] - pub scope: ::core::option::Option<::prost::alloc::string::String>, - /// namespace is the namespace of the resource being referenced. This field is - /// required when scope is set to "Namespace" and must be unset when scope is set to - /// "Cluster". - /// +optional - #[prost(string, optional, tag = "5")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// IngressClassSpec provides information about the class of an Ingress. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressClassSpec { - /// controller refers to the name of the controller that should handle this - /// class. This allows for different "flavors" that are controlled by the - /// same controller. For example, you may have different parameters for the - /// same implementing controller. This should be specified as a - /// domain-prefixed path no more than 250 characters in length, e.g. - /// "acme.io/ingress-controller". This field is immutable. - #[prost(string, optional, tag = "1")] - pub controller: ::core::option::Option<::prost::alloc::string::String>, - /// parameters is a link to a custom resource containing additional - /// configuration for the controller. This is optional if the controller does - /// not require extra parameters. - /// +optional - #[prost(message, optional, tag = "2")] - pub parameters: ::core::option::Option, -} -/// IngressList is a collection of Ingress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of Ingress. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IngressLoadBalancerIngress represents the status of a load-balancer ingress point. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressLoadBalancerIngress { - /// ip is set for load-balancer ingress points that are IP based. - /// +optional - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, - /// hostname is set for load-balancer ingress points that are DNS based. - /// +optional - #[prost(string, optional, tag = "2")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// ports provides information about the ports exposed by this LoadBalancer. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub ports: ::prost::alloc::vec::Vec, -} -/// IngressLoadBalancerStatus represents the status of a load-balancer. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressLoadBalancerStatus { - /// ingress is a list containing ingress points for the load-balancer. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ingress: ::prost::alloc::vec::Vec, -} -/// IngressPortStatus represents the error condition of a service port -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressPortStatus { - /// port is the port number of the ingress port. - #[prost(int32, optional, tag = "1")] - pub port: ::core::option::Option, - /// protocol is the protocol of the ingress port. - /// The supported values are: "TCP", "UDP", "SCTP" - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// error is to record the problem with the service port - /// The format of the error shall comply with the following rules: - /// - built-in error values shall be specified in this file and those shall use - /// CamelCase names - /// - cloud provider specific error values must have names that comply with the - /// format foo.example.com/CamelCase. - /// --- - /// The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) - /// +optional - /// +kubebuilder:validation:Required - /// +kubebuilder:validation:Pattern=`^([a-z0-9](\[-a-z0-9\]*[a-z0-9])?(\.[a-z0-9](\[-a-z0-9\]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\])$` - /// +kubebuilder:validation:MaxLength=316 - #[prost(string, optional, tag = "3")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// IngressRule represents the rules mapping the paths under a specified host to -/// the related backend services. Incoming requests are first evaluated for a host -/// match, then routed to the backend associated with the matching IngressRuleValue. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressRule { - /// host is the fully qualified domain name of a network host, as defined by RFC 3986. - /// Note the following deviations from the "host" part of the - /// URI as defined in RFC 3986: - /// 1. IPs are not allowed. Currently an IngressRuleValue can only apply to - /// the IP in the Spec of the parent Ingress. - /// 2. The `:` delimiter is not respected because ports are not allowed. - /// Currently the port of an Ingress is implicitly :80 for http and - /// :443 for https. - /// Both these may change in the future. - /// Incoming requests are matched against the host before the - /// IngressRuleValue. If the host is unspecified, the Ingress routes all - /// traffic based on the specified IngressRuleValue. - /// - /// host can be "precise" which is a domain name without the terminating dot of - /// a network host (e.g. "foo.bar.com") or "wildcard", which is a domain name - /// prefixed with a single wildcard label (e.g. "*.foo.com"). - /// The wildcard character '*' must appear by itself as the first DNS label and - /// matches only a single label. You cannot have a wildcard label by itself (e.g. Host == "*"). - /// Requests will be matched against the Host field in the following way: - /// 1. If host is precise, the request matches this rule if the http host header is equal to Host. - /// 2. If host is a wildcard, then the request matches this rule if the http host header - /// is to equal to the suffix (removing the first label) of the wildcard rule. - /// +optional - #[prost(string, optional, tag = "1")] - pub host: ::core::option::Option<::prost::alloc::string::String>, - /// IngressRuleValue represents a rule to route requests for this IngressRule. - /// If unspecified, the rule defaults to a http catch-all. Whether that sends - /// just traffic matching the host to the default backend or all traffic to the - /// default backend, is left to the controller fulfilling the Ingress. Http is - /// currently the only supported IngressRuleValue. - /// +optional - #[prost(message, optional, tag = "2")] - pub ingress_rule_value: ::core::option::Option, -} -/// IngressRuleValue represents a rule to apply against incoming requests. If the -/// rule is satisfied, the request is routed to the specified backend. Currently -/// mixing different types of rules in a single Ingress is disallowed, so exactly -/// one of the following must be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressRuleValue { - /// +optional - #[prost(message, optional, tag = "1")] - pub http: ::core::option::Option, -} -/// IngressServiceBackend references a Kubernetes Service as a Backend. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressServiceBackend { - /// name is the referenced service. The service must exist in - /// the same namespace as the Ingress object. - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// port of the referenced service. A port name or port number - /// is required for a IngressServiceBackend. - #[prost(message, optional, tag = "2")] - pub port: ::core::option::Option, -} -/// IngressSpec describes the Ingress the user wishes to exist. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressSpec { - /// ingressClassName is the name of an IngressClass cluster resource. Ingress - /// controller implementations use this field to know whether they should be - /// serving this Ingress resource, by a transitive connection - /// (controller -> IngressClass -> Ingress resource). Although the - /// `kubernetes.io/ingress.class` annotation (simple constant name) was never - /// formally defined, it was widely supported by Ingress controllers to create - /// a direct binding between Ingress controller and Ingress resources. Newly - /// created Ingress resources should prefer using the field. However, even - /// though the annotation is officially deprecated, for backwards compatibility - /// reasons, ingress controllers should still honor that annotation if present. - /// +optional - #[prost(string, optional, tag = "4")] - pub ingress_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// defaultBackend is the backend that should handle requests that don't - /// match any rule. If Rules are not specified, DefaultBackend must be specified. - /// If DefaultBackend is not set, the handling of requests that do not match any - /// of the rules will be up to the Ingress controller. - /// +optional - #[prost(message, optional, tag = "1")] - pub default_backend: ::core::option::Option, - /// tls represents the TLS configuration. Currently the Ingress only supports a - /// single TLS port, 443. If multiple members of this list specify different hosts, - /// they will be multiplexed on the same port according to the hostname specified - /// through the SNI TLS extension, if the ingress controller fulfilling the - /// ingress supports SNI. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "2")] - pub tls: ::prost::alloc::vec::Vec, - /// rules is a list of host rules used to configure the Ingress. If unspecified, - /// or no rule matches, all traffic is sent to the default backend. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, -} -/// IngressStatus describe the current state of the Ingress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressStatus { - /// loadBalancer contains the current status of the load-balancer. - /// +optional - #[prost(message, optional, tag = "1")] - pub load_balancer: ::core::option::Option, -} -/// IngressTLS describes the transport layer security associated with an ingress. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressTls { - /// hosts is a list of hosts included in the TLS certificate. The values in - /// this list must match the name/s used in the tlsSecret. Defaults to the - /// wildcard host setting for the loadbalancer controller fulfilling this - /// Ingress, if left unspecified. - /// +listType=atomic - /// +optional - #[prost(string, repeated, tag = "1")] - pub hosts: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// secretName is the name of the secret used to terminate TLS traffic on - /// port 443. Field is left optional to allow TLS routing based on SNI - /// hostname alone. If the SNI host in a listener conflicts with the "Host" - /// header field used by an IngressRule, the SNI host is used for termination - /// and value of the "Host" header is used for routing. - /// +optional - #[prost(string, optional, tag = "2")] - pub secret_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// NetworkPolicy describes what network traffic is allowed for a set of Pods -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicy { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec represents the specification of the desired behavior for this NetworkPolicy. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods -/// matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and to. -/// This type is beta-level in 1.8 -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyEgressRule { - /// ports is a list of destination ports for outgoing traffic. - /// Each item in this list is combined using a logical OR. If this field is - /// empty or missing, this rule matches all ports (traffic not restricted by port). - /// If this field is present and contains at least one item, then this rule allows - /// traffic only if the traffic matches at least one port in the list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ports: ::prost::alloc::vec::Vec, - /// to is a list of destinations for outgoing traffic of pods selected for this rule. - /// Items in this list are combined using a logical OR operation. If this field is - /// empty or missing, this rule matches all destinations (traffic not restricted by - /// destination). If this field is present and contains at least one item, this rule - /// allows traffic only if the traffic matches at least one item in the to list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub to: ::prost::alloc::vec::Vec, -} -/// NetworkPolicyIngressRule describes a particular set of traffic that is allowed to the pods -/// matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and from. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyIngressRule { - /// ports is a list of ports which should be made accessible on the pods selected for - /// this rule. Each item in this list is combined using a logical OR. If this field is - /// empty or missing, this rule matches all ports (traffic not restricted by port). - /// If this field is present and contains at least one item, then this rule allows - /// traffic only if the traffic matches at least one port in the list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ports: ::prost::alloc::vec::Vec, - /// from is a list of sources which should be able to access the pods selected for this rule. - /// Items in this list are combined using a logical OR operation. If this field is - /// empty or missing, this rule matches all sources (traffic not restricted by - /// source). If this field is present and contains at least one item, this rule - /// allows traffic only if the traffic matches at least one item in the from list. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub from: ::prost::alloc::vec::Vec, -} -/// NetworkPolicyList is a list of NetworkPolicy objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of -/// fields are allowed -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicyPeer { - /// podSelector is a label selector which selects pods. This field follows standard label - /// selector semantics; if present but empty, it selects all pods. - /// - /// If namespaceSelector is also set, then the NetworkPolicyPeer as a whole selects - /// the pods matching podSelector in the Namespaces selected by NamespaceSelector. - /// Otherwise it selects the pods matching podSelector in the policy's own namespace. - /// +optional - #[prost(message, optional, tag = "1")] - pub pod_selector: - ::core::option::Option, - /// namespaceSelector selects namespaces using cluster-scoped labels. This field follows - /// standard label selector semantics; if present but empty, it selects all namespaces. - /// - /// If podSelector is also set, then the NetworkPolicyPeer as a whole selects - /// the pods matching podSelector in the namespaces selected by namespaceSelector. - /// Otherwise it selects all pods in the namespaces selected by namespaceSelector. - /// +optional - #[prost(message, optional, tag = "2")] - pub namespace_selector: - ::core::option::Option, - /// ipBlock defines policy on a particular IPBlock. If this field is set then - /// neither of the other fields can be. - /// +optional - #[prost(message, optional, tag = "3")] - pub ip_block: ::core::option::Option, -} -/// NetworkPolicyPort describes a port to allow traffic on -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct NetworkPolicyPort { - /// protocol represents the protocol (TCP, UDP, or SCTP) which traffic must match. - /// If not specified, this field defaults to TCP. - /// +optional - #[prost(string, optional, tag = "1")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// port represents the port on the given protocol. This can either be a numerical or named - /// port on a pod. If this field is not provided, this matches all port names and - /// numbers. - /// If present, only traffic on the specified protocol AND port will be matched. - /// +optional - #[prost(message, optional, tag = "2")] - pub port: ::core::option::Option, - /// endPort indicates that the range of ports from port to endPort if set, inclusive, - /// should be allowed by the policy. This field cannot be defined if the port field - /// is not defined or if the port field is defined as a named (string) port. - /// The endPort must be equal or greater than port. - /// +optional - #[prost(int32, optional, tag = "3")] - pub end_port: ::core::option::Option, -} -/// NetworkPolicySpec provides the specification of a NetworkPolicy -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct NetworkPolicySpec { - /// podSelector selects the pods to which this NetworkPolicy object applies. - /// The array of rules is applied to any pods selected by this field. An empty - /// selector matches all pods in the policy's namespace. - /// Multiple network policies can select the same set of pods. In this case, - /// the ingress rules for each are combined additively. - /// This field is optional. If it is not specified, it defaults to an empty selector. - /// +optional - #[prost(message, optional, tag = "1")] - pub pod_selector: - ::core::option::Option, - /// ingress is a list of ingress rules to be applied to the selected pods. - /// Traffic is allowed to a pod if there are no NetworkPolicies selecting the pod - /// (and cluster policy otherwise allows the traffic), OR if the traffic source is - /// the pod's local node, OR if the traffic matches at least one ingress rule - /// across all of the NetworkPolicy objects whose podSelector matches the pod. If - /// this field is empty then this NetworkPolicy does not allow any traffic (and serves - /// solely to ensure that the pods it selects are isolated by default) - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub ingress: ::prost::alloc::vec::Vec, - /// egress is a list of egress rules to be applied to the selected pods. Outgoing traffic - /// is allowed if there are no NetworkPolicies selecting the pod (and cluster policy - /// otherwise allows the traffic), OR if the traffic matches at least one egress rule - /// across all of the NetworkPolicy objects whose podSelector matches the pod. If - /// this field is empty then this NetworkPolicy limits all outgoing traffic (and serves - /// solely to ensure that the pods it selects are isolated by default). - /// This field is beta-level in 1.8 - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub egress: ::prost::alloc::vec::Vec, - /// policyTypes is a list of rule types that the NetworkPolicy relates to. - /// Valid options are \["Ingress"\], \["Egress"\], or \["Ingress", "Egress"\]. - /// If this field is not specified, it will default based on the existence of ingress or egress rules; - /// policies that contain an egress section are assumed to affect egress, and all policies - /// (whether or not they contain an ingress section) are assumed to affect ingress. - /// If you want to write an egress-only policy, you must explicitly specify policyTypes \[ "Egress" \]. - /// Likewise, if you want to write a policy that specifies that no egress is allowed, - /// you must specify a policyTypes value that include "Egress" (since such a policy would not include - /// an egress section and would otherwise default to just \[ "Ingress" \]). - /// This field is beta-level in 1.8 - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub policy_types: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ParentReference describes a reference to a parent object. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ParentReference { - /// Group is the group of the object being referenced. - /// +optional - #[prost(string, optional, tag = "1")] - pub group: ::core::option::Option<::prost::alloc::string::String>, - /// Resource is the resource of the object being referenced. - /// +required - #[prost(string, optional, tag = "2")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace is the namespace of the object being referenced. - /// +optional - #[prost(string, optional, tag = "3")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of the object being referenced. - /// +required - #[prost(string, optional, tag = "4")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// ServiceBackendPort is the service port being referenced. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceBackendPort { - /// name is the name of the port on the Service. - /// This is a mutually exclusive setting with "Number". - /// +optional - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// number is the numerical port number (e.g. 80) on the Service. - /// This is a mutually exclusive setting with "Name". - /// +optional - #[prost(int32, optional, tag = "2")] - pub number: ::core::option::Option, -} -/// ServiceCIDR defines a range of IP addresses using CIDR format (e.g. 192.168.0.0/24 or 2001:db2::/64). -/// This range is used to allocate ClusterIPs to Service objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceCIDR { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the ServiceCIDR. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status represents the current state of the ServiceCIDR. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ServiceCIDRList contains a list of ServiceCIDR objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceCIDRList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of ServiceCIDRs. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ServiceCIDRSpec define the CIDRs the user wants to use for allocating ClusterIPs for Services. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceCIDRSpec { - /// CIDRs defines the IP blocks in CIDR notation (e.g. "192.168.0.0/24" or "2001:db8::/64") - /// from which to assign service cluster IPs. Max of two CIDRs is allowed, one of each IP family. - /// This field is immutable. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub cidrs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ServiceCIDRStatus describes the current state of the ServiceCIDR. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceCIDRStatus { - /// conditions holds an array of metav1.Condition that describe the state of the ServiceCIDR. - /// Current service state - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "1")] - pub conditions: - ::prost::alloc::vec::Vec, -} - -impl crate::Resource for IPAddress { - const API_VERSION: &'static str = "networking.k8s.io/v1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "IPAddress"; - const URL_PATH_SEGMENT: &'static str = "ipaddresses"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for IPAddress { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for IPAddress { - type Spec = crate::api::networking::v1::IPAddressSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for Ingress { - const API_VERSION: &'static str = "networking.k8s.io/v1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Ingress"; - const URL_PATH_SEGMENT: &'static str = "ingresses"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Ingress { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for Ingress { - type Spec = crate::api::networking::v1::IngressSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for Ingress { - type Status = crate::api::networking::v1::IngressStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} - -impl crate::Resource for IngressClass { - const API_VERSION: &'static str = "networking.k8s.io/v1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "IngressClass"; - const URL_PATH_SEGMENT: &'static str = "ingressclasses"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for IngressClass { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for IngressClass { - type Spec = crate::api::networking::v1::IngressClassSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for NetworkPolicy { - const API_VERSION: &'static str = "networking.k8s.io/v1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "NetworkPolicy"; - const URL_PATH_SEGMENT: &'static str = "networkpolicies"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for NetworkPolicy { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for NetworkPolicy { - type Spec = crate::api::networking::v1::NetworkPolicySpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for ServiceCIDR { - const API_VERSION: &'static str = "networking.k8s.io/v1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ServiceCIDR"; - const URL_PATH_SEGMENT: &'static str = "servicecidrs"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ServiceCIDR { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ServiceCIDR { - type Spec = crate::api::networking::v1::ServiceCIDRSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for ServiceCIDR { - type Status = crate::api::networking::v1::ServiceCIDRStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for ServiceCIDR { - type Condition = crate::apimachinery::pkg::apis::meta::v1::Condition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/networking/v1beta1/mod.rs b/k8s-pb/src/api/networking/v1beta1/mod.rs deleted file mode 100644 index bdee75f..0000000 --- a/k8s-pb/src/api/networking/v1beta1/mod.rs +++ /dev/null @@ -1,530 +0,0 @@ -// This file is @generated by prost-build. -/// HTTPIngressPath associates a path with a backend. Incoming urls matching the -/// path are forwarded to the backend. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct HttpIngressPath { - /// path is matched against the path of an incoming request. Currently it can - /// contain characters disallowed from the conventional "path" part of a URL - /// as defined by RFC 3986. Paths must begin with a '/' and must be present - /// when using PathType with value "Exact" or "Prefix". - /// +optional - #[prost(string, optional, tag = "1")] - pub path: ::core::option::Option<::prost::alloc::string::String>, - /// pathType determines the interpretation of the path matching. PathType can - /// be one of the following values: - /// * Exact: Matches the URL path exactly. - /// * Prefix: Matches based on a URL path prefix split by '/'. Matching is - /// done on a path element by element basis. A path element refers is the - /// list of labels in the path split by the '/' separator. A request is a - /// match for path p if every p is an element-wise prefix of p of the - /// request path. Note that if the last element of the path is a substring - /// of the last element in request path, it is not a match (e.g. /foo/bar - /// matches /foo/bar/baz, but does not match /foo/barbaz). - /// * ImplementationSpecific: Interpretation of the Path matching is up to - /// the IngressClass. Implementations can treat this as a separate PathType - /// or treat it identically to Prefix or Exact path types. - /// Implementations are required to support all path types. - /// Defaults to ImplementationSpecific. - #[prost(string, optional, tag = "3")] - pub path_type: ::core::option::Option<::prost::alloc::string::String>, - /// backend defines the referenced service endpoint to which the traffic - /// will be forwarded to. - #[prost(message, optional, tag = "2")] - pub backend: ::core::option::Option, -} -/// HTTPIngressRuleValue is a list of http selectors pointing to backends. -/// In the example: /?> -> backend where -/// where parts of the url correspond to RFC 3986, this resource will be used -/// to match against everything after the last '/' and before the first '?' -/// or '#'. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct HttpIngressRuleValue { - /// paths is a collection of paths that map requests to backends. - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub paths: ::prost::alloc::vec::Vec, -} -/// IPAddress represents a single IP of a single IP Family. The object is designed to be used by APIs -/// that operate on IP addresses. The object is used by the Service core API for allocation of IP addresses. -/// An IP address can be represented in different formats, to guarantee the uniqueness of the IP, -/// the name of the object is the IP address in canonical format, four decimal digits separated -/// by dots suppressing leading zeros for IPv4 and the representation defined by RFC 5952 for IPv6. -/// Valid: 192.168.1.5 or 2001:db8::1 or 2001:db8:aaaa:bbbb:cccc:dddd:eeee:1 -/// Invalid: 10.01.2.3 or 2001:db8:0:0:0::1 -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IPAddress { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the IPAddress. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// IPAddressList contains a list of IPAddress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IPAddressList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of IPAddresses. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IPAddressSpec describe the attributes in an IP Address. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IPAddressSpec { - /// ParentRef references the resource that an IPAddress is attached to. - /// An IPAddress must reference a parent object. - /// +required - #[prost(message, optional, tag = "1")] - pub parent_ref: ::core::option::Option, -} -/// Ingress is a collection of rules that allow inbound connections to reach the -/// endpoints defined by a backend. An Ingress can be configured to give services -/// externally-reachable urls, load balance traffic, terminate SSL, offer name -/// based virtual hosting etc. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Ingress { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the Ingress. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status is the current state of the Ingress. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// IngressBackend describes all endpoints for a given service and port. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressBackend { - /// serviceName specifies the name of the referenced service. - /// +optional - #[prost(string, optional, tag = "1")] - pub service_name: ::core::option::Option<::prost::alloc::string::String>, - /// servicePort Specifies the port of the referenced service. - /// +optional - #[prost(message, optional, tag = "2")] - pub service_port: - ::core::option::Option, - /// resource is an ObjectRef to another Kubernetes resource in the namespace - /// of the Ingress object. If resource is specified, serviceName and servicePort - /// must not be specified. - /// +optional - #[prost(message, optional, tag = "3")] - pub resource: ::core::option::Option, -} -/// IngressClass represents the class of the Ingress, referenced by the Ingress -/// Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be -/// used to indicate that an IngressClass should be considered default. When a -/// single IngressClass resource has this annotation set to true, new Ingress -/// resources without a class specified will be assigned this default class. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressClass { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the IngressClass. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// IngressClassList is a collection of IngressClasses. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressClassList { - /// Standard list metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of IngressClasses. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IngressClassParametersReference identifies an API object. This can be used -/// to specify a cluster or namespace-scoped resource. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressClassParametersReference { - /// apiGroup is the group for the resource being referenced. If APIGroup is - /// not specified, the specified Kind must be in the core API group. For any - /// other third-party types, APIGroup is required. - /// +optional - #[prost(string, optional, tag = "1")] - pub a_pi_group: ::core::option::Option<::prost::alloc::string::String>, - /// kind is the type of resource being referenced. - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// name is the name of resource being referenced. - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// scope represents if this refers to a cluster or namespace scoped resource. - /// This may be set to "Cluster" (default) or "Namespace". - #[prost(string, optional, tag = "4")] - pub scope: ::core::option::Option<::prost::alloc::string::String>, - /// namespace is the namespace of the resource being referenced. This field is - /// required when scope is set to "Namespace" and must be unset when scope is set to - /// "Cluster". - /// +optional - #[prost(string, optional, tag = "5")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} -/// IngressClassSpec provides information about the class of an Ingress. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressClassSpec { - /// controller refers to the name of the controller that should handle this - /// class. This allows for different "flavors" that are controlled by the - /// same controller. For example, you may have different parameters for the - /// same implementing controller. This should be specified as a - /// domain-prefixed path no more than 250 characters in length, e.g. - /// "acme.io/ingress-controller". This field is immutable. - #[prost(string, optional, tag = "1")] - pub controller: ::core::option::Option<::prost::alloc::string::String>, - /// parameters is a link to a custom resource containing additional - /// configuration for the controller. This is optional if the controller does - /// not require extra parameters. - /// +optional - #[prost(message, optional, tag = "2")] - pub parameters: ::core::option::Option, -} -/// IngressList is a collection of Ingress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of Ingress. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// IngressLoadBalancerIngress represents the status of a load-balancer ingress point. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressLoadBalancerIngress { - /// ip is set for load-balancer ingress points that are IP based. - /// +optional - #[prost(string, optional, tag = "1")] - pub ip: ::core::option::Option<::prost::alloc::string::String>, - /// hostname is set for load-balancer ingress points that are DNS based. - /// +optional - #[prost(string, optional, tag = "2")] - pub hostname: ::core::option::Option<::prost::alloc::string::String>, - /// ports provides information about the ports exposed by this LoadBalancer. - /// +listType=atomic - /// +optional - #[prost(message, repeated, tag = "4")] - pub ports: ::prost::alloc::vec::Vec, -} -/// LoadBalancerStatus represents the status of a load-balancer. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressLoadBalancerStatus { - /// ingress is a list containing ingress points for the load-balancer. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub ingress: ::prost::alloc::vec::Vec, -} -/// IngressPortStatus represents the error condition of a service port -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressPortStatus { - /// port is the port number of the ingress port. - #[prost(int32, optional, tag = "1")] - pub port: ::core::option::Option, - /// protocol is the protocol of the ingress port. - /// The supported values are: "TCP", "UDP", "SCTP" - #[prost(string, optional, tag = "2")] - pub protocol: ::core::option::Option<::prost::alloc::string::String>, - /// error is to record the problem with the service port - /// The format of the error shall comply with the following rules: - /// - built-in error values shall be specified in this file and those shall use - /// CamelCase names - /// - cloud provider specific error values must have names that comply with the - /// format foo.example.com/CamelCase. - /// --- - /// The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) - /// +optional - /// +kubebuilder:validation:Required - /// +kubebuilder:validation:Pattern=`^([a-z0-9](\[-a-z0-9\]*[a-z0-9])?(\.[a-z0-9](\[-a-z0-9\]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?\[A-Za-z0-9\])$` - /// +kubebuilder:validation:MaxLength=316 - #[prost(string, optional, tag = "3")] - pub error: ::core::option::Option<::prost::alloc::string::String>, -} -/// IngressRule represents the rules mapping the paths under a specified host to -/// the related backend services. Incoming requests are first evaluated for a host -/// match, then routed to the backend associated with the matching IngressRuleValue. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressRule { - /// host is the fully qualified domain name of a network host, as defined by RFC 3986. - /// Note the following deviations from the "host" part of the - /// URI as defined in RFC 3986: - /// 1. IPs are not allowed. Currently an IngressRuleValue can only apply to - /// the IP in the Spec of the parent Ingress. - /// 2. The `:` delimiter is not respected because ports are not allowed. - /// Currently the port of an Ingress is implicitly :80 for http and - /// :443 for https. - /// Both these may change in the future. - /// Incoming requests are matched against the host before the - /// IngressRuleValue. If the host is unspecified, the Ingress routes all - /// traffic based on the specified IngressRuleValue. - /// - /// host can be "precise" which is a domain name without the terminating dot of - /// a network host (e.g. "foo.bar.com") or "wildcard", which is a domain name - /// prefixed with a single wildcard label (e.g. "*.foo.com"). - /// The wildcard character '*' must appear by itself as the first DNS label and - /// matches only a single label. You cannot have a wildcard label by itself (e.g. Host == "*"). - /// Requests will be matched against the Host field in the following way: - /// 1. If Host is precise, the request matches this rule if the http host header is equal to Host. - /// 2. If Host is a wildcard, then the request matches this rule if the http host header - /// is to equal to the suffix (removing the first label) of the wildcard rule. - /// +optional - #[prost(string, optional, tag = "1")] - pub host: ::core::option::Option<::prost::alloc::string::String>, - /// IngressRuleValue represents a rule to route requests for this IngressRule. - /// If unspecified, the rule defaults to a http catch-all. Whether that sends - /// just traffic matching the host to the default backend or all traffic to the - /// default backend, is left to the controller fulfilling the Ingress. Http is - /// currently the only supported IngressRuleValue. - /// +optional - #[prost(message, optional, tag = "2")] - pub ingress_rule_value: ::core::option::Option, -} -/// IngressRuleValue represents a rule to apply against incoming requests. If the -/// rule is satisfied, the request is routed to the specified backend. Currently -/// mixing different types of rules in a single Ingress is disallowed, so exactly -/// one of the following must be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressRuleValue { - /// +optional - #[prost(message, optional, tag = "1")] - pub http: ::core::option::Option, -} -/// IngressSpec describes the Ingress the user wishes to exist. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressSpec { - /// ingressClassName is the name of the IngressClass cluster resource. The - /// associated IngressClass defines which controller will implement the - /// resource. This replaces the deprecated `kubernetes.io/ingress.class` - /// annotation. For backwards compatibility, when that annotation is set, it - /// must be given precedence over this field. The controller may emit a - /// warning if the field and annotation have different values. - /// Implementations of this API should ignore Ingresses without a class - /// specified. An IngressClass resource may be marked as default, which can - /// be used to set a default value for this field. For more information, - /// refer to the IngressClass documentation. - /// +optional - #[prost(string, optional, tag = "4")] - pub ingress_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// backend is the default backend capable of servicing requests that don't match any - /// rule. At least one of 'backend' or 'rules' must be specified. This field - /// is optional to allow the loadbalancer controller or defaulting logic to - /// specify a global default. - /// +optional - #[prost(message, optional, tag = "1")] - pub backend: ::core::option::Option, - /// tls represents the TLS configuration. Currently the Ingress only supports a - /// single TLS port, 443. If multiple members of this list specify different hosts, - /// they will be multiplexed on the same port according to the hostname specified - /// through the SNI TLS extension, if the ingress controller fulfilling the - /// ingress supports SNI. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub tls: ::prost::alloc::vec::Vec, - /// rules is a list of host rules used to configure the Ingress. If unspecified, or - /// no rule matches, all traffic is sent to the default backend. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub rules: ::prost::alloc::vec::Vec, -} -/// IngressStatus describes the current state of the Ingress. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct IngressStatus { - /// loadBalancer contains the current status of the load-balancer. - /// +optional - #[prost(message, optional, tag = "1")] - pub load_balancer: ::core::option::Option, -} -/// IngressTLS describes the transport layer security associated with an Ingress. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct IngressTls { - /// hosts is a list of hosts included in the TLS certificate. The values in - /// this list must match the name/s used in the tlsSecret. Defaults to the - /// wildcard host setting for the loadbalancer controller fulfilling this - /// Ingress, if left unspecified. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub hosts: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// secretName is the name of the secret used to terminate TLS traffic on - /// port 443. Field is left optional to allow TLS routing based on SNI - /// hostname alone. If the SNI host in a listener conflicts with the "Host" - /// header field used by an IngressRule, the SNI host is used for termination - /// and value of the Host header is used for routing. - /// +optional - #[prost(string, optional, tag = "2")] - pub secret_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// ParentReference describes a reference to a parent object. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ParentReference { - /// Group is the group of the object being referenced. - /// +optional - #[prost(string, optional, tag = "1")] - pub group: ::core::option::Option<::prost::alloc::string::String>, - /// Resource is the resource of the object being referenced. - /// +required - #[prost(string, optional, tag = "2")] - pub resource: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace is the namespace of the object being referenced. - /// +optional - #[prost(string, optional, tag = "3")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of the object being referenced. - /// +required - #[prost(string, optional, tag = "4")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// ServiceCIDR defines a range of IP addresses using CIDR format (e.g. 192.168.0.0/24 or 2001:db2::/64). -/// This range is used to allocate ClusterIPs to Service objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceCIDR { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec is the desired state of the ServiceCIDR. - /// More info: - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// status represents the current state of the ServiceCIDR. - /// More info: - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// ServiceCIDRList contains a list of ServiceCIDR objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceCIDRList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is the list of ServiceCIDRs. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ServiceCIDRSpec define the CIDRs the user wants to use for allocating ClusterIPs for Services. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct ServiceCIDRSpec { - /// CIDRs defines the IP blocks in CIDR notation (e.g. "192.168.0.0/24" or "2001:db8::/64") - /// from which to assign service cluster IPs. Max of two CIDRs is allowed, one of each IP family. - /// This field is immutable. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub cidrs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// ServiceCIDRStatus describes the current state of the ServiceCIDR. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ServiceCIDRStatus { - /// conditions holds an array of metav1.Condition that describe the state of the ServiceCIDR. - /// Current service state - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "1")] - pub conditions: - ::prost::alloc::vec::Vec, -} - -impl crate::Resource for IPAddress { - const API_VERSION: &'static str = "networking.k8s.io/v1beta1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1beta1"; - const KIND: &'static str = "IPAddress"; - const URL_PATH_SEGMENT: &'static str = "ipaddresses"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for IPAddress { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for IPAddress { - type Spec = crate::api::networking::v1beta1::IPAddressSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} - -impl crate::Resource for ServiceCIDR { - const API_VERSION: &'static str = "networking.k8s.io/v1beta1"; - const GROUP: &'static str = "networking.k8s.io"; - const VERSION: &'static str = "v1beta1"; - const KIND: &'static str = "ServiceCIDR"; - const URL_PATH_SEGMENT: &'static str = "servicecidrs"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ServiceCIDR { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for ServiceCIDR { - type Spec = crate::api::networking::v1beta1::ServiceCIDRSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for ServiceCIDR { - type Status = crate::api::networking::v1beta1::ServiceCIDRStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for ServiceCIDR { - type Condition = crate::apimachinery::pkg::apis::meta::v1::Condition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/node/mod.rs b/k8s-pb/src/api/node/mod.rs deleted file mode 100644 index 5a1e260..0000000 --- a/k8s-pb/src/api/node/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1alpha1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/node/v1/mod.rs b/k8s-pb/src/api/node/v1/mod.rs deleted file mode 100644 index 31ce5a4..0000000 --- a/k8s-pb/src/api/node/v1/mod.rs +++ /dev/null @@ -1,103 +0,0 @@ -// This file is @generated by prost-build. -/// Overhead structure represents the resource overhead associated with running a pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Overhead { - /// podFixed represents the fixed resource overhead associated with running a pod. - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub pod_fixed: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// RuntimeClass defines a class of container runtime supported in the cluster. -/// The RuntimeClass is used to determine which container runtime is used to run -/// all containers in a pod. RuntimeClasses are manually defined by a -/// user or cluster provisioner, and referenced in the PodSpec. The Kubelet is -/// responsible for resolving the RuntimeClassName reference before running the -/// pod. For more details, see -/// -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClass { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// handler specifies the underlying runtime and configuration that the CRI - /// implementation will use to handle pods of this class. The possible values - /// are specific to the node & CRI configuration. It is assumed that all - /// handlers are available on every node, and handlers of the same name are - /// equivalent on every node. - /// For example, a handler called "runc" might specify that the runc OCI - /// runtime (using native Linux containers) will be used to run the containers - /// in a pod. - /// The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, - /// and is immutable. - #[prost(string, optional, tag = "2")] - pub handler: ::core::option::Option<::prost::alloc::string::String>, - /// overhead represents the resource overhead associated with running a pod for a - /// given RuntimeClass. For more details, see - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub overhead: ::core::option::Option, - /// scheduling holds the scheduling constraints to ensure that pods running - /// with this RuntimeClass are scheduled to nodes that support it. - /// If scheduling is nil, this RuntimeClass is assumed to be supported by all - /// nodes. - /// +optional - #[prost(message, optional, tag = "4")] - pub scheduling: ::core::option::Option, -} -/// RuntimeClassList is a list of RuntimeClass objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClassList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// Scheduling specifies the scheduling constraints for nodes supporting a -/// RuntimeClass. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scheduling { - /// nodeSelector lists labels that must be present on nodes that support this - /// RuntimeClass. Pods using this RuntimeClass can only be scheduled to a - /// node matched by this selector. The RuntimeClass nodeSelector is merged - /// with a pod's existing nodeSelector. Any conflicts will cause the pod to - /// be rejected in admission. - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "1")] - pub node_selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// tolerations are appended (excluding duplicates) to pods running with this - /// RuntimeClass during admission, effectively unioning the set of nodes - /// tolerated by the pod and the RuntimeClass. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub tolerations: ::prost::alloc::vec::Vec, -} - -impl crate::Resource for RuntimeClass { - const API_VERSION: &'static str = "node.k8s.io/v1"; - const GROUP: &'static str = "node.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "RuntimeClass"; - const URL_PATH_SEGMENT: &'static str = "runtimeclasses"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for RuntimeClass { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} diff --git a/k8s-pb/src/api/node/v1alpha1/mod.rs b/k8s-pb/src/api/node/v1alpha1/mod.rs deleted file mode 100644 index 4f7395c..0000000 --- a/k8s-pb/src/api/node/v1alpha1/mod.rs +++ /dev/null @@ -1,96 +0,0 @@ -// This file is @generated by prost-build. -/// Overhead structure represents the resource overhead associated with running a pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Overhead { - /// podFixed represents the fixed resource overhead associated with running a pod. - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub pod_fixed: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// RuntimeClass defines a class of container runtime supported in the cluster. -/// The RuntimeClass is used to determine which container runtime is used to run -/// all containers in a pod. RuntimeClasses are (currently) manually defined by a -/// user or cluster provisioner, and referenced in the PodSpec. The Kubelet is -/// responsible for resolving the RuntimeClassName reference before running the -/// pod. For more details, see -/// -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClass { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// spec represents specification of the RuntimeClass - /// More info: - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// RuntimeClassList is a list of RuntimeClass objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClassList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RuntimeClassSpec is a specification of a RuntimeClass. It contains parameters -/// that are required to describe the RuntimeClass to the Container Runtime -/// Interface (CRI) implementation, as well as any other components that need to -/// understand how the pod will be run. The RuntimeClassSpec is immutable. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClassSpec { - /// runtimeHandler specifies the underlying runtime and configuration that the - /// CRI implementation will use to handle pods of this class. The possible - /// values are specific to the node & CRI configuration. It is assumed that - /// all handlers are available on every node, and handlers of the same name are - /// equivalent on every node. - /// For example, a handler called "runc" might specify that the runc OCI - /// runtime (using native Linux containers) will be used to run the containers - /// in a pod. - /// The runtimeHandler must be lowercase, conform to the DNS Label (RFC 1123) - /// requirements, and is immutable. - #[prost(string, optional, tag = "1")] - pub runtime_handler: ::core::option::Option<::prost::alloc::string::String>, - /// overhead represents the resource overhead associated with running a pod for a - /// given RuntimeClass. For more details, see - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub overhead: ::core::option::Option, - /// scheduling holds the scheduling constraints to ensure that pods running - /// with this RuntimeClass are scheduled to nodes that support it. - /// If scheduling is nil, this RuntimeClass is assumed to be supported by all - /// nodes. - /// +optional - #[prost(message, optional, tag = "3")] - pub scheduling: ::core::option::Option, -} -/// Scheduling specifies the scheduling constraints for nodes supporting a -/// RuntimeClass. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scheduling { - /// nodeSelector lists labels that must be present on nodes that support this - /// RuntimeClass. Pods using this RuntimeClass can only be scheduled to a - /// node matched by this selector. The RuntimeClass nodeSelector is merged - /// with a pod's existing nodeSelector. Any conflicts will cause the pod to - /// be rejected in admission. - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "1")] - pub node_selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// tolerations are appended (excluding duplicates) to pods running with this - /// RuntimeClass during admission, effectively unioning the set of nodes - /// tolerated by the pod and the RuntimeClass. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub tolerations: ::prost::alloc::vec::Vec, -} diff --git a/k8s-pb/src/api/node/v1beta1/mod.rs b/k8s-pb/src/api/node/v1beta1/mod.rs deleted file mode 100644 index 19c4bcc..0000000 --- a/k8s-pb/src/api/node/v1beta1/mod.rs +++ /dev/null @@ -1,85 +0,0 @@ -// This file is @generated by prost-build. -/// Overhead structure represents the resource overhead associated with running a pod. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Overhead { - /// podFixed represents the fixed resource overhead associated with running a pod. - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub pod_fixed: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// RuntimeClass defines a class of container runtime supported in the cluster. -/// The RuntimeClass is used to determine which container runtime is used to run -/// all containers in a pod. RuntimeClasses are (currently) manually defined by a -/// user or cluster provisioner, and referenced in the PodSpec. The Kubelet is -/// responsible for resolving the RuntimeClassName reference before running the -/// pod. For more details, see -/// -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClass { - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// handler specifies the underlying runtime and configuration that the CRI - /// implementation will use to handle pods of this class. The possible values - /// are specific to the node & CRI configuration. It is assumed that all - /// handlers are available on every node, and handlers of the same name are - /// equivalent on every node. - /// For example, a handler called "runc" might specify that the runc OCI - /// runtime (using native Linux containers) will be used to run the containers - /// in a pod. - /// The handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, - /// and is immutable. - #[prost(string, optional, tag = "2")] - pub handler: ::core::option::Option<::prost::alloc::string::String>, - /// overhead represents the resource overhead associated with running a pod for a - /// given RuntimeClass. For more details, see - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub overhead: ::core::option::Option, - /// scheduling holds the scheduling constraints to ensure that pods running - /// with this RuntimeClass are scheduled to nodes that support it. - /// If scheduling is nil, this RuntimeClass is assumed to be supported by all - /// nodes. - /// +optional - #[prost(message, optional, tag = "4")] - pub scheduling: ::core::option::Option, -} -/// RuntimeClassList is a list of RuntimeClass objects. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RuntimeClassList { - /// Standard list metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items is a list of schema objects. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// Scheduling specifies the scheduling constraints for nodes supporting a -/// RuntimeClass. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Scheduling { - /// nodeSelector lists labels that must be present on nodes that support this - /// RuntimeClass. Pods using this RuntimeClass can only be scheduled to a - /// node matched by this selector. The RuntimeClass nodeSelector is merged - /// with a pod's existing nodeSelector. Any conflicts will cause the pod to - /// be rejected in admission. - /// +optional - /// +mapType=atomic - #[prost(btree_map = "string, string", tag = "1")] - pub node_selector: - ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, ::prost::alloc::string::String>, - /// tolerations are appended (excluding duplicates) to pods running with this - /// RuntimeClass during admission, effectively unioning the set of nodes - /// tolerated by the pod and the RuntimeClass. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub tolerations: ::prost::alloc::vec::Vec, -} diff --git a/k8s-pb/src/api/policy/mod.rs b/k8s-pb/src/api/policy/mod.rs deleted file mode 100644 index 517ec85..0000000 --- a/k8s-pb/src/api/policy/mod.rs +++ /dev/null @@ -1,2 +0,0 @@ -pub mod v1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/policy/v1/mod.rs b/k8s-pb/src/api/policy/v1/mod.rs deleted file mode 100644 index 684df6a..0000000 --- a/k8s-pb/src/api/policy/v1/mod.rs +++ /dev/null @@ -1,204 +0,0 @@ -// This file is @generated by prost-build. -/// Eviction evicts a pod from its node subject to certain policies and safety constraints. -/// This is a subresource of Pod. A request to cause such an eviction is -/// created by POSTing to .../pods//evictions. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Eviction { - /// ObjectMeta describes the pod that is being evicted. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// DeleteOptions may be provided - /// +optional - #[prost(message, optional, tag = "2")] - pub delete_options: - ::core::option::Option, -} -/// PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudget { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the PodDisruptionBudget. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the PodDisruptionBudget. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PodDisruptionBudgetList is a collection of PodDisruptionBudgets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudgetList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of PodDisruptionBudgets - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PodDisruptionBudgetSpec is a description of a PodDisruptionBudget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudgetSpec { - /// An eviction is allowed if at least "minAvailable" pods selected by - /// "selector" will still be available after the eviction, i.e. even in the - /// absence of the evicted pod. So for example you can prevent all voluntary - /// evictions by specifying "100%". - /// +optional - #[prost(message, optional, tag = "1")] - pub min_available: - ::core::option::Option, - /// Label query over pods whose evictions are managed by the disruption - /// budget. - /// A null selector will match no pods, while an empty ({}) selector will select - /// all pods within the namespace. - /// +patchStrategy=replace - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// An eviction is allowed if at most "maxUnavailable" pods selected by - /// "selector" are unavailable after the eviction, i.e. even in absence of - /// the evicted pod. For example, one can prevent all voluntary evictions - /// by specifying 0. This is a mutually exclusive setting with "minAvailable". - /// +optional - #[prost(message, optional, tag = "3")] - pub max_unavailable: - ::core::option::Option, - /// UnhealthyPodEvictionPolicy defines the criteria for when unhealthy pods - /// should be considered for eviction. Current implementation considers healthy pods, - /// as pods that have status.conditions item with type="Ready",status="True". - /// - /// Valid policies are IfHealthyBudget and AlwaysAllow. - /// If no policy is specified, the default behavior will be used, - /// which corresponds to the IfHealthyBudget policy. - /// - /// IfHealthyBudget policy means that running pods (status.phase="Running"), - /// but not yet healthy can be evicted only if the guarded application is not - /// disrupted (status.currentHealthy is at least equal to status.desiredHealthy). - /// Healthy pods will be subject to the PDB for eviction. - /// - /// AlwaysAllow policy means that all running pods (status.phase="Running"), - /// but not yet healthy are considered disrupted and can be evicted regardless - /// of whether the criteria in a PDB is met. This means perspective running - /// pods of a disrupted application might not get a chance to become healthy. - /// Healthy pods will be subject to the PDB for eviction. - /// - /// Additional policies may be added in the future. - /// Clients making eviction decisions should disallow eviction of unhealthy pods - /// if they encounter an unrecognized policy in this field. - /// +optional - #[prost(string, optional, tag = "4")] - pub unhealthy_pod_eviction_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodDisruptionBudgetStatus represents information about the status of a -/// PodDisruptionBudget. Status may trail the actual state of a system. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudgetStatus { - /// Most recent generation observed when updating this PDB status. DisruptionsAllowed and other - /// status information is valid only if observedGeneration equals to PDB's object generation. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// DisruptedPods contains information about pods whose eviction was - /// processed by the API server eviction subresource handler but has not - /// yet been observed by the PodDisruptionBudget controller. - /// A pod will be in this map from the time when the API server processed the - /// eviction request to the time when the pod is seen by PDB controller - /// as having been marked for deletion (or after a timeout). The key in the map is the name of the pod - /// and the value is the time when the API server processed the eviction request. If - /// the deletion didn't occur and a pod is still there it will be removed from - /// the list automatically by PodDisruptionBudget controller after some time. - /// If everything goes smooth this map should be empty for the most of the time. - /// Large number of entries in the map may indicate problems with pod deletions. - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub disrupted_pods: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::apis::meta::v1::Time, - >, - /// Number of pod disruptions that are currently allowed. - #[prost(int32, optional, tag = "3")] - pub disruptions_allowed: ::core::option::Option, - /// current number of healthy pods - #[prost(int32, optional, tag = "4")] - pub current_healthy: ::core::option::Option, - /// minimum desired number of healthy pods - #[prost(int32, optional, tag = "5")] - pub desired_healthy: ::core::option::Option, - /// total number of pods counted by this disruption budget - #[prost(int32, optional, tag = "6")] - pub expected_pods: ::core::option::Option, - /// Conditions contain conditions for PDB. The disruption controller sets the - /// DisruptionAllowed condition. The following are known values for the reason field - /// (additional reasons could be added in the future): - /// - SyncFailed: The controller encountered an error and wasn't able to compute - /// the number of allowed disruptions. Therefore no disruptions are - /// allowed and the status of the condition will be False. - /// - InsufficientPods: The number of pods are either at or below the number - /// required by the PodDisruptionBudget. No disruptions are - /// allowed and the status of the condition will be False. - /// - SufficientPods: There are more pods than required by the PodDisruptionBudget. - /// The condition will be True, and the number of allowed - /// disruptions are provided by the disruptionsAllowed property. - /// - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "7")] - pub conditions: - ::prost::alloc::vec::Vec, -} - -impl crate::Resource for PodDisruptionBudget { - const API_VERSION: &'static str = "policy/v1"; - const GROUP: &'static str = "policy"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "PodDisruptionBudget"; - const URL_PATH_SEGMENT: &'static str = "poddisruptionbudgets"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for PodDisruptionBudget { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} -impl crate::HasSpec for PodDisruptionBudget { - type Spec = crate::api::policy::v1::PodDisruptionBudgetSpec; - fn spec(&self) -> Option<&::Spec> { - self.spec.as_ref() - } - fn spec_mut(&mut self) -> Option<&mut ::Spec> { - self.spec.as_mut() - } -} -impl crate::HasStatus for PodDisruptionBudget { - type Status = crate::api::policy::v1::PodDisruptionBudgetStatus; - fn status(&self) -> Option<&::Status> { - self.status.as_ref() - } - fn status_mut(&mut self) -> Option<&mut ::Status> { - self.status.as_mut() - } -} -impl crate::HasConditions for PodDisruptionBudget { - type Condition = crate::apimachinery::pkg::apis::meta::v1::Condition; - fn conditions(&self) -> Option<&[::Condition]> { - self.status.as_ref().map(|s| s.conditions.as_slice()) - } - fn conditions_mut(&mut self) -> Option<&mut Vec<::Condition>> { - self.status.as_mut().and_then(|s| Some(s.conditions.as_mut())) - } -} diff --git a/k8s-pb/src/api/policy/v1beta1/mod.rs b/k8s-pb/src/api/policy/v1beta1/mod.rs deleted file mode 100644 index 6c33642..0000000 --- a/k8s-pb/src/api/policy/v1beta1/mod.rs +++ /dev/null @@ -1,159 +0,0 @@ -// This file is @generated by prost-build. -/// Eviction evicts a pod from its node subject to certain policies and safety constraints. -/// This is a subresource of Pod. A request to cause such an eviction is -/// created by POSTing to .../pods//evictions. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Eviction { - /// ObjectMeta describes the pod that is being evicted. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// DeleteOptions may be provided - /// +optional - #[prost(message, optional, tag = "2")] - pub delete_options: - ::core::option::Option, -} -/// PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudget { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Specification of the desired behavior of the PodDisruptionBudget. - /// +optional - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, - /// Most recently observed status of the PodDisruptionBudget. - /// +optional - #[prost(message, optional, tag = "3")] - pub status: ::core::option::Option, -} -/// PodDisruptionBudgetList is a collection of PodDisruptionBudgets. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudgetList { - /// Standard object's metadata. - /// More info: - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// items list individual PodDisruptionBudget objects - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PodDisruptionBudgetSpec is a description of a PodDisruptionBudget. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudgetSpec { - /// An eviction is allowed if at least "minAvailable" pods selected by - /// "selector" will still be available after the eviction, i.e. even in the - /// absence of the evicted pod. So for example you can prevent all voluntary - /// evictions by specifying "100%". - /// +optional - #[prost(message, optional, tag = "1")] - pub min_available: - ::core::option::Option, - /// Label query over pods whose evictions are managed by the disruption - /// budget. - /// A null selector selects no pods. - /// An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. - /// In policy/v1, an empty selector will select all pods in the namespace. - /// +optional - #[prost(message, optional, tag = "2")] - pub selector: - ::core::option::Option, - /// An eviction is allowed if at most "maxUnavailable" pods selected by - /// "selector" are unavailable after the eviction, i.e. even in absence of - /// the evicted pod. For example, one can prevent all voluntary evictions - /// by specifying 0. This is a mutually exclusive setting with "minAvailable". - /// +optional - #[prost(message, optional, tag = "3")] - pub max_unavailable: - ::core::option::Option, - /// UnhealthyPodEvictionPolicy defines the criteria for when unhealthy pods - /// should be considered for eviction. Current implementation considers healthy pods, - /// as pods that have status.conditions item with type="Ready",status="True". - /// - /// Valid policies are IfHealthyBudget and AlwaysAllow. - /// If no policy is specified, the default behavior will be used, - /// which corresponds to the IfHealthyBudget policy. - /// - /// IfHealthyBudget policy means that running pods (status.phase="Running"), - /// but not yet healthy can be evicted only if the guarded application is not - /// disrupted (status.currentHealthy is at least equal to status.desiredHealthy). - /// Healthy pods will be subject to the PDB for eviction. - /// - /// AlwaysAllow policy means that all running pods (status.phase="Running"), - /// but not yet healthy are considered disrupted and can be evicted regardless - /// of whether the criteria in a PDB is met. This means perspective running - /// pods of a disrupted application might not get a chance to become healthy. - /// Healthy pods will be subject to the PDB for eviction. - /// - /// Additional policies may be added in the future. - /// Clients making eviction decisions should disallow eviction of unhealthy pods - /// if they encounter an unrecognized policy in this field. - /// +optional - #[prost(string, optional, tag = "4")] - pub unhealthy_pod_eviction_policy: ::core::option::Option<::prost::alloc::string::String>, -} -/// PodDisruptionBudgetStatus represents information about the status of a -/// PodDisruptionBudget. Status may trail the actual state of a system. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct PodDisruptionBudgetStatus { - /// Most recent generation observed when updating this PDB status. DisruptionsAllowed and other - /// status information is valid only if observedGeneration equals to PDB's object generation. - /// +optional - #[prost(int64, optional, tag = "1")] - pub observed_generation: ::core::option::Option, - /// DisruptedPods contains information about pods whose eviction was - /// processed by the API server eviction subresource handler but has not - /// yet been observed by the PodDisruptionBudget controller. - /// A pod will be in this map from the time when the API server processed the - /// eviction request to the time when the pod is seen by PDB controller - /// as having been marked for deletion (or after a timeout). The key in the map is the name of the pod - /// and the value is the time when the API server processed the eviction request. If - /// the deletion didn't occur and a pod is still there it will be removed from - /// the list automatically by PodDisruptionBudget controller after some time. - /// If everything goes smooth this map should be empty for the most of the time. - /// Large number of entries in the map may indicate problems with pod deletions. - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub disrupted_pods: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::apis::meta::v1::Time, - >, - /// Number of pod disruptions that are currently allowed. - #[prost(int32, optional, tag = "3")] - pub disruptions_allowed: ::core::option::Option, - /// current number of healthy pods - #[prost(int32, optional, tag = "4")] - pub current_healthy: ::core::option::Option, - /// minimum desired number of healthy pods - #[prost(int32, optional, tag = "5")] - pub desired_healthy: ::core::option::Option, - /// total number of pods counted by this disruption budget - #[prost(int32, optional, tag = "6")] - pub expected_pods: ::core::option::Option, - /// Conditions contain conditions for PDB. The disruption controller sets the - /// DisruptionAllowed condition. The following are known values for the reason field - /// (additional reasons could be added in the future): - /// - SyncFailed: The controller encountered an error and wasn't able to compute - /// the number of allowed disruptions. Therefore no disruptions are - /// allowed and the status of the condition will be False. - /// - InsufficientPods: The number of pods are either at or below the number - /// required by the PodDisruptionBudget. No disruptions are - /// allowed and the status of the condition will be False. - /// - SufficientPods: There are more pods than required by the PodDisruptionBudget. - /// The condition will be True, and the number of allowed - /// disruptions are provided by the disruptionsAllowed property. - /// - /// +optional - /// +patchMergeKey=type - /// +patchStrategy=merge - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "7")] - pub conditions: - ::prost::alloc::vec::Vec, -} diff --git a/k8s-pb/src/api/rbac/mod.rs b/k8s-pb/src/api/rbac/mod.rs deleted file mode 100644 index 5a1e260..0000000 --- a/k8s-pb/src/api/rbac/mod.rs +++ /dev/null @@ -1,3 +0,0 @@ -pub mod v1; -pub mod v1alpha1; -pub mod v1beta1; diff --git a/k8s-pb/src/api/rbac/v1/mod.rs b/k8s-pb/src/api/rbac/v1/mod.rs deleted file mode 100644 index 5b62e21..0000000 --- a/k8s-pb/src/api/rbac/v1/mod.rs +++ /dev/null @@ -1,269 +0,0 @@ -// This file is @generated by prost-build. -/// AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AggregationRule { - /// ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. - /// If any of the selectors match, then the ClusterRole's permissions will be added - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub cluster_role_selectors: - ::prost::alloc::vec::Vec, -} -/// ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRole { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Rules holds all the PolicyRules for this ClusterRole - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub rules: ::prost::alloc::vec::Vec, - /// AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. - /// If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be - /// stomped by the controller. - /// +optional - #[prost(message, optional, tag = "3")] - pub aggregation_rule: ::core::option::Option, -} -/// ClusterRoleBinding references a ClusterRole, but not contain it. It can reference a ClusterRole in the global namespace, -/// and adds who information via Subject. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleBinding { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Subjects holds references to the objects the role applies to. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subjects: ::prost::alloc::vec::Vec, - /// RoleRef can only reference a ClusterRole in the global namespace. - /// If the RoleRef cannot be resolved, the Authorizer must return an error. - /// This field is immutable. - #[prost(message, optional, tag = "3")] - pub role_ref: ::core::option::Option, -} -/// ClusterRoleBindingList is a collection of ClusterRoleBindings -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleBindingList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ClusterRoleBindings - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ClusterRoleList is a collection of ClusterRoles -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ClusterRoles - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PolicyRule holds information that describes a policy rule, but does not contain information -/// about who the rule applies to or which namespace the rule applies to. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PolicyRule { - /// Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of - /// the enumerated resources in any API group will be allowed. "" represents the core API group and "*" represents all API groups. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Resources is a list of resources this rule applies to. '*' represents all resources. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, final step in the path - /// Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. - /// Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"), but not both. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Role { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Rules holds all the PolicyRules for this Role - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub rules: ::prost::alloc::vec::Vec, -} -/// RoleBinding references a role, but does not contain it. It can reference a Role in the same namespace or a ClusterRole in the global namespace. -/// It adds who information via Subjects and namespace information by which namespace it exists in. RoleBindings in a given -/// namespace only have effect in that namespace. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleBinding { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Subjects holds references to the objects the role applies to. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subjects: ::prost::alloc::vec::Vec, - /// RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. - /// If the RoleRef cannot be resolved, the Authorizer must return an error. - /// This field is immutable. - #[prost(message, optional, tag = "3")] - pub role_ref: ::core::option::Option, -} -/// RoleBindingList is a collection of RoleBindings -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleBindingList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of RoleBindings - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RoleList is a collection of Roles -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of Roles - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RoleRef contains information that points to the role being used -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RoleRef { - /// APIGroup is the group for the resource being referenced - #[prost(string, optional, tag = "1")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the type of resource being referenced - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of resource being referenced - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject contains a reference to the object or user identities a role binding applies to. This can either hold a direct API object reference, -/// or a value for non-objects such as user and group names. -/// +structType=atomic -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". - /// If the Authorizer does not recognized the kind value, the Authorizer should report an error. - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// APIGroup holds the API group of the referenced subject. - /// Defaults to "" for ServiceAccount subjects. - /// Defaults to "rbac.authorization.k8s.io" for User and Group subjects. - /// +optional - #[prost(string, optional, tag = "2")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Name of the object being referenced. - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace of the referenced object. If the object kind is non-namespace, such as "User" or "Group", and this value is not empty - /// the Authorizer should report an error. - /// +optional - #[prost(string, optional, tag = "4")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} - -impl crate::Resource for ClusterRole { - const API_VERSION: &'static str = "rbac.authorization.k8s.io/v1"; - const GROUP: &'static str = "rbac.authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ClusterRole"; - const URL_PATH_SEGMENT: &'static str = "clusterroles"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ClusterRole { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for ClusterRoleBinding { - const API_VERSION: &'static str = "rbac.authorization.k8s.io/v1"; - const GROUP: &'static str = "rbac.authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "ClusterRoleBinding"; - const URL_PATH_SEGMENT: &'static str = "clusterrolebindings"; - type Scope = crate::ClusterResourceScope; -} -impl crate::Metadata for ClusterRoleBinding { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for Role { - const API_VERSION: &'static str = "rbac.authorization.k8s.io/v1"; - const GROUP: &'static str = "rbac.authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "Role"; - const URL_PATH_SEGMENT: &'static str = "roles"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for Role { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} - -impl crate::Resource for RoleBinding { - const API_VERSION: &'static str = "rbac.authorization.k8s.io/v1"; - const GROUP: &'static str = "rbac.authorization.k8s.io"; - const VERSION: &'static str = "v1"; - const KIND: &'static str = "RoleBinding"; - const URL_PATH_SEGMENT: &'static str = "rolebindings"; - type Scope = crate::NamespaceResourceScope; -} -impl crate::Metadata for RoleBinding { - type Ty = crate::apimachinery::pkg::apis::meta::v1::ObjectMeta; - fn metadata(&self) -> Option<&::Ty> { - self.metadata.as_ref() - } - fn metadata_mut(&mut self) -> Option<&mut ::Ty> { - self.metadata.as_mut() - } -} diff --git a/k8s-pb/src/api/rbac/v1alpha1/mod.rs b/k8s-pb/src/api/rbac/v1alpha1/mod.rs deleted file mode 100644 index 4e420f6..0000000 --- a/k8s-pb/src/api/rbac/v1alpha1/mod.rs +++ /dev/null @@ -1,202 +0,0 @@ -// This file is @generated by prost-build. -/// AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AggregationRule { - /// ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. - /// If any of the selectors match, then the ClusterRole's permissions will be added - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub cluster_role_selectors: - ::prost::alloc::vec::Vec, -} -/// ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRole, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRole { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Rules holds all the PolicyRules for this ClusterRole - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub rules: ::prost::alloc::vec::Vec, - /// AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. - /// If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be - /// stomped by the controller. - /// +optional - #[prost(message, optional, tag = "3")] - pub aggregation_rule: ::core::option::Option, -} -/// ClusterRoleBinding references a ClusterRole, but not contain it. It can reference a ClusterRole in the global namespace, -/// and adds who information via Subject. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoleBinding, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleBinding { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Subjects holds references to the objects the role applies to. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subjects: ::prost::alloc::vec::Vec, - /// RoleRef can only reference a ClusterRole in the global namespace. - /// If the RoleRef cannot be resolved, the Authorizer must return an error. - #[prost(message, optional, tag = "3")] - pub role_ref: ::core::option::Option, -} -/// ClusterRoleBindingList is a collection of ClusterRoleBindings. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoleBindings, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleBindingList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ClusterRoleBindings - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ClusterRoleList is a collection of ClusterRoles. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoles, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ClusterRoles - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PolicyRule holds information that describes a policy rule, but does not contain information -/// about who the rule applies to or which namespace the rule applies to. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PolicyRule { - /// Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of - /// the enumerated resources in any API group will be allowed. "" represents the core API group and "*" represents all API groups. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Resources is a list of resources this rule applies to. '*' represents all resources. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, final step in the path - /// Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. - /// Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"), but not both. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "6")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 Role, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Role { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Rules holds all the PolicyRules for this Role - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub rules: ::prost::alloc::vec::Vec, -} -/// RoleBinding references a role, but does not contain it. It can reference a Role in the same namespace or a ClusterRole in the global namespace. -/// It adds who information via Subjects and namespace information by which namespace it exists in. RoleBindings in a given -/// namespace only have effect in that namespace. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleBinding, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleBinding { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Subjects holds references to the objects the role applies to. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subjects: ::prost::alloc::vec::Vec, - /// RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. - /// If the RoleRef cannot be resolved, the Authorizer must return an error. - #[prost(message, optional, tag = "3")] - pub role_ref: ::core::option::Option, -} -/// RoleBindingList is a collection of RoleBindings -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleBindingList, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleBindingList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of RoleBindings - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RoleList is a collection of Roles. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleList, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of Roles - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RoleRef contains information that points to the role being used -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RoleRef { - /// APIGroup is the group for the resource being referenced - #[prost(string, optional, tag = "1")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the type of resource being referenced - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of resource being referenced - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject contains a reference to the object or user identities a role binding applies to. This can either hold a direct API object reference, -/// or a value for non-objects such as user and group names. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". - /// If the Authorizer does not recognized the kind value, the Authorizer should report an error. - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// APIVersion holds the API group and version of the referenced subject. - /// Defaults to "v1" for ServiceAccount subjects. - /// Defaults to "rbac.authorization.k8s.io/v1alpha1" for User and Group subjects. - /// +k8s:conversion-gen=false - /// +optional - #[prost(string, optional, tag = "2")] - pub api_version: ::core::option::Option<::prost::alloc::string::String>, - /// Name of the object being referenced. - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace of the referenced object. If the object kind is non-namespace, such as "User" or "Group", and this value is not empty - /// the Authorizer should report an error. - /// +optional - #[prost(string, optional, tag = "4")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/rbac/v1beta1/mod.rs b/k8s-pb/src/api/rbac/v1beta1/mod.rs deleted file mode 100644 index 7be98bc..0000000 --- a/k8s-pb/src/api/rbac/v1beta1/mod.rs +++ /dev/null @@ -1,202 +0,0 @@ -// This file is @generated by prost-build. -/// AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AggregationRule { - /// ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. - /// If any of the selectors match, then the ClusterRole's permissions will be added - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub cluster_role_selectors: - ::prost::alloc::vec::Vec, -} -/// ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRole, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRole { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Rules holds all the PolicyRules for this ClusterRole - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub rules: ::prost::alloc::vec::Vec, - /// AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. - /// If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be - /// stomped by the controller. - /// +optional - #[prost(message, optional, tag = "3")] - pub aggregation_rule: ::core::option::Option, -} -/// ClusterRoleBinding references a ClusterRole, but not contain it. It can reference a ClusterRole in the global namespace, -/// and adds who information via Subject. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoleBinding, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleBinding { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Subjects holds references to the objects the role applies to. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subjects: ::prost::alloc::vec::Vec, - /// RoleRef can only reference a ClusterRole in the global namespace. - /// If the RoleRef cannot be resolved, the Authorizer must return an error. - #[prost(message, optional, tag = "3")] - pub role_ref: ::core::option::Option, -} -/// ClusterRoleBindingList is a collection of ClusterRoleBindings. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoleBindingList, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleBindingList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ClusterRoleBindings - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// ClusterRoleList is a collection of ClusterRoles. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoles, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct ClusterRoleList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of ClusterRoles - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// PolicyRule holds information that describes a policy rule, but does not contain information -/// about who the rule applies to or which namespace the rule applies to. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct PolicyRule { - /// Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs. - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub verbs: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of - /// the enumerated resources in any API group will be allowed. "" represents the core API group and "*" represents all API groups. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub api_groups: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// Resources is a list of resources this rule applies to. '*' represents all resources in the specified apiGroups. - /// '*/foo' represents the subresource 'foo' for all resources in the specified apiGroups. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "3")] - pub resources: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "4")] - pub resource_names: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, final step in the path - /// Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. - /// Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"), but not both. - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "5")] - pub non_resource_ur_ls: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, -} -/// Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 Role, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Role { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Rules holds all the PolicyRules for this Role - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub rules: ::prost::alloc::vec::Vec, -} -/// RoleBinding references a role, but does not contain it. It can reference a Role in the same namespace or a ClusterRole in the global namespace. -/// It adds who information via Subjects and namespace information by which namespace it exists in. RoleBindings in a given -/// namespace only have effect in that namespace. -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleBinding, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleBinding { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Subjects holds references to the objects the role applies to. - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub subjects: ::prost::alloc::vec::Vec, - /// RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. - /// If the RoleRef cannot be resolved, the Authorizer must return an error. - #[prost(message, optional, tag = "3")] - pub role_ref: ::core::option::Option, -} -/// RoleBindingList is a collection of RoleBindings -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleBindingList, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleBindingList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of RoleBindings - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RoleList is a collection of Roles -/// Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleList, and will no longer be served in v1.22. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct RoleList { - /// Standard object's metadata. - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is a list of Roles - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// RoleRef contains information that points to the role being used -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct RoleRef { - /// APIGroup is the group for the resource being referenced - #[prost(string, optional, tag = "1")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Kind is the type of resource being referenced - #[prost(string, optional, tag = "2")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// Name is the name of resource being referenced - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, -} -/// Subject contains a reference to the object or user identities a role binding applies to. This can either hold a direct API object reference, -/// or a value for non-objects such as user and group names. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Subject { - /// Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". - /// If the Authorizer does not recognized the kind value, the Authorizer should report an error. - #[prost(string, optional, tag = "1")] - pub kind: ::core::option::Option<::prost::alloc::string::String>, - /// APIGroup holds the API group of the referenced subject. - /// Defaults to "" for ServiceAccount subjects. - /// Defaults to "rbac.authorization.k8s.io" for User and Group subjects. - /// +optional - #[prost(string, optional, tag = "2")] - pub api_group: ::core::option::Option<::prost::alloc::string::String>, - /// Name of the object being referenced. - #[prost(string, optional, tag = "3")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Namespace of the referenced object. If the object kind is non-namespace, such as "User" or "Group", and this value is not empty - /// the Authorizer should report an error. - /// +optional - #[prost(string, optional, tag = "4")] - pub namespace: ::core::option::Option<::prost::alloc::string::String>, -} diff --git a/k8s-pb/src/api/resource/mod.rs b/k8s-pb/src/api/resource/mod.rs deleted file mode 100644 index 8bb2c47..0000000 --- a/k8s-pb/src/api/resource/mod.rs +++ /dev/null @@ -1,4 +0,0 @@ -pub mod v1; -pub mod v1alpha3; -pub mod v1beta1; -pub mod v1beta2; diff --git a/k8s-pb/src/api/resource/v1/mod.rs b/k8s-pb/src/api/resource/v1/mod.rs deleted file mode 100644 index dc60a66..0000000 --- a/k8s-pb/src/api/resource/v1/mod.rs +++ /dev/null @@ -1,1727 +0,0 @@ -// This file is @generated by prost-build. -/// AllocatedDeviceStatus contains the status of an allocated device, if the -/// driver chooses to report it. This may include driver-specific information. -/// -/// The combination of Driver, Pool, Device, and ShareID must match the corresponding key -/// in Status.Allocation.Devices. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AllocatedDeviceStatus { - /// Driver specifies the name of the DRA driver whose kubelet - /// plugin should be invoked to process the allocation once the claim is - /// needed on a node. - /// - /// Must be a DNS subdomain and should end with a DNS domain owned by the - /// vendor of the driver. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub driver: ::core::option::Option<::prost::alloc::string::String>, - /// This name together with the driver name and the device name field - /// identify which device was allocated (`//`). - /// - /// Must not be longer than 253 characters and may contain one or more - /// DNS sub-domains separated by slashes. - /// - /// +required - #[prost(string, optional, tag = "2")] - pub pool: ::core::option::Option<::prost::alloc::string::String>, - /// Device references one device instance via its name in the driver's - /// resource pool. It must be a DNS label. - /// - /// +required - #[prost(string, optional, tag = "3")] - pub device: ::core::option::Option<::prost::alloc::string::String>, - /// ShareID uniquely identifies an individual allocation share of the device. - /// - /// +optional - /// +featureGate=DRAConsumableCapacity - #[prost(string, optional, tag = "7")] - pub share_id: ::core::option::Option<::prost::alloc::string::String>, - /// Conditions contains the latest observation of the device's state. - /// If the device has been configured according to the class and claim - /// config references, the `Ready` condition should be True. - /// - /// Must not contain more than 8 entries. - /// - /// +optional - /// +listType=map - /// +listMapKey=type - #[prost(message, repeated, tag = "4")] - pub conditions: - ::prost::alloc::vec::Vec, - /// Data contains arbitrary driver-specific data. - /// - /// The length of the raw data must be smaller or equal to 10 Ki. - /// - /// +optional - #[prost(message, optional, tag = "5")] - pub data: ::core::option::Option, - /// NetworkData contains network-related information specific to the device. - /// - /// +optional - #[prost(message, optional, tag = "6")] - pub network_data: ::core::option::Option, -} -/// AllocationResult contains attributes of an allocated resource. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct AllocationResult { - /// Devices is the result of allocating devices. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub devices: ::core::option::Option, - /// NodeSelector defines where the allocated resources are available. If - /// unset, they are available everywhere. - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub node_selector: ::core::option::Option, - /// AllocationTimestamp stores the time when the resources were allocated. - /// This field is not guaranteed to be set, in which case that time is unknown. - /// - /// This is an alpha field and requires enabling the DRADeviceBindingConditions and DRAResourceClaimDeviceStatus - /// feature gate. - /// - /// +optional - /// +featureGate=DRADeviceBindingConditions,DRAResourceClaimDeviceStatus - #[prost(message, optional, tag = "5")] - pub allocation_timestamp: - ::core::option::Option, -} -/// CELDeviceSelector contains a CEL expression for selecting a device. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CelDeviceSelector { - /// Expression is a CEL expression which evaluates a single device. It - /// must evaluate to true when the device under consideration satisfies - /// the desired criteria, and false when it does not. Any other result - /// is an error and causes allocation of devices to abort. - /// - /// The expression's input is an object named "device", which carries - /// the following properties: - /// - driver (string): the name of the driver which defines this device. - /// - attributes (map\[string\]object): the device's attributes, grouped by prefix - /// (e.g. device.attributes\["dra.example.com"\] evaluates to an object with all - /// of the attributes which were prefixed by "dra.example.com". - /// - capacity (map\[string\]object): the device's capacities, grouped by prefix. - /// - allowMultipleAllocations (bool): the allowMultipleAllocations property of the device - /// (v1.34+ with the DRAConsumableCapacity feature enabled). - /// - /// Example: Consider a device with driver="dra.example.com", which exposes - /// two attributes named "model" and "ext.example.com/family" and which - /// exposes one capacity named "modules". This input to this expression - /// would have the following fields: - /// - /// device.driver - /// device.attributes\["dra.example.com"\].model - /// device.attributes\["ext.example.com"\].family - /// device.capacity\["dra.example.com"\].modules - /// - /// The device.driver field can be used to check for a specific driver, - /// either as a high-level precondition (i.e. you only want to consider - /// devices from this driver) or as part of a multi-clause expression - /// that is meant to consider devices from different drivers. - /// - /// The value type of each attribute is defined by the device - /// definition, and users who write these expressions must consult the - /// documentation for their specific drivers. The value type of each - /// capacity is Quantity. - /// - /// If an unknown prefix is used as a lookup in either device.attributes - /// or device.capacity, an empty map will be returned. Any reference to - /// an unknown field will cause an evaluation error and allocation to - /// abort. - /// - /// A robust expression should check for the existence of attributes - /// before referencing them. - /// - /// For ease of use, the cel.bind() function is enabled, and can be used - /// to simplify expressions that access multiple attributes with the - /// same domain. For example: - /// - /// cel.bind(dra, device.attributes\["dra.example.com"\], dra.someBool && dra.anotherBool) - /// - /// The length of the expression must be smaller or equal to 10 Ki. The - /// cost of evaluating it is also limited based on the estimated number - /// of logical steps. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub expression: ::core::option::Option<::prost::alloc::string::String>, -} -/// CapacityRequestPolicy defines how requests consume device capacity. -/// -/// Must not set more than one ValidRequestValues. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CapacityRequestPolicy { - /// Default specifies how much of this capacity is consumed by a request - /// that does not contain an entry for it in DeviceRequest's Capacity. - /// - /// +optional - #[prost(message, optional, tag = "1")] - pub default: ::core::option::Option, - /// ValidValues defines a set of acceptable quantity values in consuming requests. - /// - /// Must not contain more than 10 entries. - /// Must be sorted in ascending order. - /// - /// If this field is set, - /// Default must be defined and it must be included in ValidValues list. - /// - /// If the requested amount does not match any valid value but smaller than some valid values, - /// the scheduler calculates the smallest valid value that is greater than or equal to the request. - /// That is: min(ceil(requestedValue) ∈ validValues), where requestedValue ≤ max(validValues). - /// - /// If the requested amount exceeds all valid values, the request violates the policy, - /// and this device cannot be allocated. - /// - /// +optional - /// +listType=atomic - /// +oneOf=ValidRequestValues - #[prost(message, repeated, tag = "3")] - pub valid_values: - ::prost::alloc::vec::Vec, - /// ValidRange defines an acceptable quantity value range in consuming requests. - /// - /// If this field is set, - /// Default must be defined and it must fall within the defined ValidRange. - /// - /// If the requested amount does not fall within the defined range, the request violates the policy, - /// and this device cannot be allocated. - /// - /// If the request doesn't contain this capacity entry, Default value is used. - /// - /// +optional - /// +oneOf=ValidRequestValues - #[prost(message, optional, tag = "4")] - pub valid_range: ::core::option::Option, -} -/// CapacityRequestPolicyRange defines a valid range for consumable capacity values. -/// -/// - If the requested amount is less than Min, it is rounded up to the Min value. -/// - If Step is set and the requested amount is between Min and Max but not aligned with Step, -/// it will be rounded up to the next value equal to Min + (n * Step). -/// - If Step is not set, the requested amount is used as-is if it falls within the range Min to Max (if set). -/// - If the requested or rounded amount exceeds Max (if set), the request does not satisfy the policy, -/// and the device cannot be allocated. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct CapacityRequestPolicyRange { - /// Min specifies the minimum capacity allowed for a consumption request. - /// - /// Min must be greater than or equal to zero, - /// and less than or equal to the capacity value. - /// requestPolicy.default must be more than or equal to the minimum. - /// - /// +required - #[prost(message, optional, tag = "1")] - pub min: ::core::option::Option, - /// Max defines the upper limit for capacity that can be requested. - /// - /// Max must be less than or equal to the capacity value. - /// Min and requestPolicy.default must be less than or equal to the maximum. - /// - /// +optional - #[prost(message, optional, tag = "2")] - pub max: ::core::option::Option, - /// Step defines the step size between valid capacity amounts within the range. - /// - /// Max (if set) and requestPolicy.default must be a multiple of Step. - /// Min + Step must be less than or equal to the capacity value. - /// - /// +optional - #[prost(message, optional, tag = "3")] - pub step: ::core::option::Option, -} -/// CapacityRequirements defines the capacity requirements for a specific device request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CapacityRequirements { - /// Requests represent individual device resource requests for distinct resources, - /// all of which must be provided by the device. - /// - /// This value is used as an additional filtering condition against the available capacity on the device. - /// This is semantically equivalent to a CEL selector with - /// `device.capacity\[\]..compareTo(quantity()) >= 0`. - /// For example, device.capacity\['test-driver.cdi.k8s.io'\].counters.compareTo(quantity('2')) >= 0. - /// - /// When a requestPolicy is defined, the requested amount is adjusted upward - /// to the nearest valid value based on the policy. - /// If the requested amount cannot be adjusted to a valid value—because it exceeds what the requestPolicy allows— - /// the device is considered ineligible for allocation. - /// - /// For any capacity that is not explicitly requested: - /// - If no requestPolicy is set, the default consumed capacity is equal to the full device capacity - /// (i.e., the whole device is claimed). - /// - If a requestPolicy is set, the default consumed capacity is determined according to that policy. - /// - /// If the device allows multiple allocation, - /// the aggregated amount across all requests must not exceed the capacity value. - /// The consumed capacity, which may be adjusted based on the requestPolicy if defined, - /// is recorded in the resource claim’s status.devices\[*\].consumedCapacity field. - /// - /// +optional - #[prost(btree_map = "string, message", tag = "1")] - pub requests: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// Counter describes a quantity associated with a device. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct Counter { - /// Value defines how much of a certain device counter is available. - /// - /// +required - #[prost(message, optional, tag = "1")] - pub value: ::core::option::Option, -} -/// CounterSet defines a named set of counters -/// that are available to be used by devices defined in the -/// ResourceSlice. -/// -/// The counters are not allocatable by themselves, but -/// can be referenced by devices. When a device is allocated, -/// the portion of counters it uses will no longer be available for use -/// by other devices. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct CounterSet { - /// Name defines the name of the counter set. - /// It must be a DNS label. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Counters defines the set of counters for this CounterSet - /// The name of each counter must be unique in that set and must be a DNS label. - /// - /// The maximum number of counters in all sets is 32. - /// - /// +required - #[prost(btree_map = "string, message", tag = "2")] - pub counters: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, Counter>, -} -/// Device represents one individual hardware instance that can be selected based -/// on its attributes. Besides the name, exactly one field must be set. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct Device { - /// Name is unique identifier among all devices managed by - /// the driver in the pool. It must be a DNS label. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Attributes defines the set of attributes for this device. - /// The name of each attribute must be unique in that set. - /// - /// The maximum number of attributes and capacities combined is 32. - /// - /// +optional - #[prost(btree_map = "string, message", tag = "2")] - pub attributes: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, DeviceAttribute>, - /// Capacity defines the set of capacities for this device. - /// The name of each capacity must be unique in that set. - /// - /// The maximum number of attributes and capacities combined is 32. - /// - /// +optional - #[prost(btree_map = "string, message", tag = "3")] - pub capacity: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, DeviceCapacity>, - /// ConsumesCounters defines a list of references to sharedCounters - /// and the set of counters that the device will - /// consume from those counter sets. - /// - /// There can only be a single entry per counterSet. - /// - /// The total number of device counter consumption entries - /// must be <= 32. In addition, the total number in the - /// entire ResourceSlice must be <= 1024 (for example, - /// 64 devices with 16 counters each). - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRAPartitionableDevices - #[prost(message, repeated, tag = "4")] - pub consumes_counters: ::prost::alloc::vec::Vec, - /// NodeName identifies the node where the device is available. - /// - /// Must only be set if Spec.PerDeviceNodeSelection is set to true. - /// At most one of NodeName, NodeSelector and AllNodes can be set. - /// - /// +optional - /// +oneOf=DeviceNodeSelection - /// +featureGate=DRAPartitionableDevices - #[prost(string, optional, tag = "5")] - pub node_name: ::core::option::Option<::prost::alloc::string::String>, - /// NodeSelector defines the nodes where the device is available. - /// - /// Must use exactly one term. - /// - /// Must only be set if Spec.PerDeviceNodeSelection is set to true. - /// At most one of NodeName, NodeSelector and AllNodes can be set. - /// - /// +optional - /// +oneOf=DeviceNodeSelection - /// +featureGate=DRAPartitionableDevices - #[prost(message, optional, tag = "6")] - pub node_selector: ::core::option::Option, - /// AllNodes indicates that all nodes have access to the device. - /// - /// Must only be set if Spec.PerDeviceNodeSelection is set to true. - /// At most one of NodeName, NodeSelector and AllNodes can be set. - /// - /// +optional - /// +oneOf=DeviceNodeSelection - /// +featureGate=DRAPartitionableDevices - #[prost(bool, optional, tag = "7")] - pub all_nodes: ::core::option::Option, - /// If specified, these are the driver-defined taints. - /// - /// The maximum number of taints is 4. - /// - /// This is an alpha field and requires enabling the DRADeviceTaints - /// feature gate. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceTaints - #[prost(message, repeated, tag = "8")] - pub taints: ::prost::alloc::vec::Vec, - /// BindsToNode indicates if the usage of an allocation involving this device - /// has to be limited to exactly the node that was chosen when allocating the claim. - /// If set to true, the scheduler will set the ResourceClaim.Status.Allocation.NodeSelector - /// to match the node where the allocation was made. - /// - /// This is an alpha field and requires enabling the DRADeviceBindingConditions and DRAResourceClaimDeviceStatus - /// feature gates. - /// - /// +optional - /// +featureGate=DRADeviceBindingConditions,DRAResourceClaimDeviceStatus - #[prost(bool, optional, tag = "9")] - pub binds_to_node: ::core::option::Option, - /// BindingConditions defines the conditions for proceeding with binding. - /// All of these conditions must be set in the per-device status - /// conditions with a value of True to proceed with binding the pod to the node - /// while scheduling the pod. - /// - /// The maximum number of binding conditions is 4. - /// - /// The conditions must be a valid condition type string. - /// - /// This is an alpha field and requires enabling the DRADeviceBindingConditions and DRAResourceClaimDeviceStatus - /// feature gates. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceBindingConditions,DRAResourceClaimDeviceStatus - #[prost(string, repeated, tag = "10")] - pub binding_conditions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// BindingFailureConditions defines the conditions for binding failure. - /// They may be set in the per-device status conditions. - /// If any is set to "True", a binding failure occurred. - /// - /// The maximum number of binding failure conditions is 4. - /// - /// The conditions must be a valid condition type string. - /// - /// This is an alpha field and requires enabling the DRADeviceBindingConditions and DRAResourceClaimDeviceStatus - /// feature gates. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceBindingConditions,DRAResourceClaimDeviceStatus - #[prost(string, repeated, tag = "11")] - pub binding_failure_conditions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// AllowMultipleAllocations marks whether the device is allowed to be allocated to multiple DeviceRequests. - /// - /// If AllowMultipleAllocations is set to true, the device can be allocated more than once, - /// and all of its capacity is consumable, regardless of whether the requestPolicy is defined or not. - /// - /// +optional - /// +featureGate=DRAConsumableCapacity - #[prost(bool, optional, tag = "12")] - pub allow_multiple_allocations: ::core::option::Option, -} -/// DeviceAllocationConfiguration gets embedded in an AllocationResult. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceAllocationConfiguration { - /// Source records whether the configuration comes from a class and thus - /// is not something that a normal user would have been able to set - /// or from a claim. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub source: ::core::option::Option<::prost::alloc::string::String>, - /// Requests lists the names of requests where the configuration applies. - /// If empty, its applies to all requests. - /// - /// References to subrequests must include the name of the main request - /// and may include the subrequest using the format
\[/\]. If just - /// the main request is given, the configuration applies to all subrequests. - /// - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "2")] - pub requests: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - #[prost(message, optional, tag = "3")] - pub device_configuration: ::core::option::Option, -} -/// DeviceAllocationResult is the result of allocating devices. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceAllocationResult { - /// Results lists all allocated devices. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub results: ::prost::alloc::vec::Vec, - /// This field is a combination of all the claim and class configuration parameters. - /// Drivers can distinguish between those based on a flag. - /// - /// This includes configuration parameters for drivers which have no allocated - /// devices in the result because it is up to the drivers which configuration - /// parameters they support. They can silently ignore unknown configuration - /// parameters. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub config: ::prost::alloc::vec::Vec, -} -/// DeviceAttribute must have exactly one field set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceAttribute { - /// IntValue is a number. - /// - /// +optional - /// +oneOf=ValueType - #[prost(int64, optional, tag = "2")] - pub int: ::core::option::Option, - /// BoolValue is a true/false value. - /// - /// +optional - /// +oneOf=ValueType - #[prost(bool, optional, tag = "3")] - pub bool: ::core::option::Option, - /// StringValue is a string. Must not be longer than 64 characters. - /// - /// +optional - /// +oneOf=ValueType - #[prost(string, optional, tag = "4")] - pub string: ::core::option::Option<::prost::alloc::string::String>, - /// VersionValue is a semantic version according to semver.org spec 2.0.0. - /// Must not be longer than 64 characters. - /// - /// +optional - /// +oneOf=ValueType - #[prost(string, optional, tag = "5")] - pub version: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeviceCapacity describes a quantity associated with a device. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceCapacity { - /// Value defines how much of a certain capacity that device has. - /// - /// This field reflects the fixed total capacity and does not change. - /// The consumed amount is tracked separately by scheduler - /// and does not affect this value. - /// - /// +required - #[prost(message, optional, tag = "1")] - pub value: ::core::option::Option, - /// RequestPolicy defines how this DeviceCapacity must be consumed - /// when the device is allowed to be shared by multiple allocations. - /// - /// The Device must have allowMultipleAllocations set to true in order to set a requestPolicy. - /// - /// If unset, capacity requests are unconstrained: - /// requests can consume any amount of capacity, as long as the total consumed - /// across all allocations does not exceed the device's defined capacity. - /// If request is also unset, default is the full capacity value. - /// - /// +optional - /// +featureGate=DRAConsumableCapacity - #[prost(message, optional, tag = "2")] - pub request_policy: ::core::option::Option, -} -/// DeviceClaim defines how to request devices with a ResourceClaim. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceClaim { - /// Requests represent individual requests for distinct devices which - /// must all be satisfied. If empty, nothing needs to be allocated. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub requests: ::prost::alloc::vec::Vec, - /// These constraints must be satisfied by the set of devices that get - /// allocated for the claim. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub constraints: ::prost::alloc::vec::Vec, - /// This field holds configuration for multiple potential drivers which - /// could satisfy requests in this claim. It is ignored while allocating - /// the claim. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub config: ::prost::alloc::vec::Vec, -} -/// DeviceClaimConfiguration is used for configuration parameters in DeviceClaim. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceClaimConfiguration { - /// Requests lists the names of requests where the configuration applies. - /// If empty, it applies to all requests. - /// - /// References to subrequests must include the name of the main request - /// and may include the subrequest using the format
\[/\]. If just - /// the main request is given, the configuration applies to all subrequests. - /// - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub requests: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - #[prost(message, optional, tag = "2")] - pub device_configuration: ::core::option::Option, -} -/// DeviceClass is a vendor- or admin-provided resource that contains -/// device configuration and selectors. It can be referenced in -/// the device requests of a claim to apply these presets. -/// Cluster scoped. -/// -/// This is an alpha type and requires enabling the DynamicResourceAllocation -/// feature gate. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceClass { - /// Standard object metadata - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Spec defines what can be allocated and how to configure it. - /// - /// This is mutable. Consumers have to be prepared for classes changing - /// at any time, either because they get updated or replaced. Claim - /// allocations are done once based on whatever was set in classes at - /// the time of allocation. - /// - /// Changing the spec automatically increments the metadata.generation number. - #[prost(message, optional, tag = "2")] - pub spec: ::core::option::Option, -} -/// DeviceClassConfiguration is used in DeviceClass. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceClassConfiguration { - #[prost(message, optional, tag = "1")] - pub device_configuration: ::core::option::Option, -} -/// DeviceClassList is a collection of classes. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceClassList { - /// Standard list metadata - /// +optional - #[prost(message, optional, tag = "1")] - pub metadata: ::core::option::Option, - /// Items is the list of resource classes. - #[prost(message, repeated, tag = "2")] - pub items: ::prost::alloc::vec::Vec, -} -/// DeviceClassSpec is used in a \[DeviceClass\] to define what can be allocated -/// and how to configure it. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceClassSpec { - /// Each selector must be satisfied by a device which is claimed via this class. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "1")] - pub selectors: ::prost::alloc::vec::Vec, - /// Config defines configuration parameters that apply to each device that is claimed via this class. - /// Some classses may potentially be satisfied by multiple drivers, so each instance of a vendor - /// configuration applies to exactly one driver. - /// - /// They are passed to the driver, but are not considered while allocating the claim. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "2")] - pub config: ::prost::alloc::vec::Vec, - /// ExtendedResourceName is the extended resource name for the devices of this class. - /// The devices of this class can be used to satisfy a pod's extended resource requests. - /// It has the same format as the name of a pod's extended resource. - /// It should be unique among all the device classes in a cluster. - /// If two device classes have the same name, then the class created later - /// is picked to satisfy a pod's extended resource requests. - /// If two classes are created at the same time, then the name of the class - /// lexicographically sorted first is picked. - /// - /// This is an alpha field. - /// +optional - /// +featureGate=DRAExtendedResource - #[prost(string, optional, tag = "4")] - pub extended_resource_name: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeviceConfiguration must have exactly one field set. It gets embedded -/// inline in some other structs which have other fields, so field names must -/// not conflict with those. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceConfiguration { - /// Opaque provides driver-specific configuration parameters. - /// - /// +optional - /// +oneOf=ConfigurationType - #[prost(message, optional, tag = "1")] - pub opaque: ::core::option::Option, -} -/// DeviceConstraint must have exactly one field set besides Requests. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceConstraint { - /// Requests is a list of the one or more requests in this claim which - /// must co-satisfy this constraint. If a request is fulfilled by - /// multiple devices, then all of the devices must satisfy the - /// constraint. If this is not specified, this constraint applies to all - /// requests in this claim. - /// - /// References to subrequests must include the name of the main request - /// and may include the subrequest using the format
\[/\]. If just - /// the main request is given, the constraint applies to all subrequests. - /// - /// +optional - /// +listType=atomic - #[prost(string, repeated, tag = "1")] - pub requests: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// MatchAttribute requires that all devices in question have this - /// attribute and that its type and value are the same across those - /// devices. - /// - /// For example, if you specified "dra.example.com/numa" (a hypothetical example!), - /// then only devices in the same NUMA node will be chosen. A device which - /// does not have that attribute will not be chosen. All devices should - /// use a value of the same type for this attribute because that is part of - /// its specification, but if one device doesn't, then it also will not be - /// chosen. - /// - /// Must include the domain qualifier. - /// - /// +optional - /// +oneOf=ConstraintType - #[prost(string, optional, tag = "2")] - pub match_attribute: ::core::option::Option<::prost::alloc::string::String>, - /// DistinctAttribute requires that all devices in question have this - /// attribute and that its type and value are unique across those devices. - /// - /// This acts as the inverse of MatchAttribute. - /// - /// This constraint is used to avoid allocating multiple requests to the same device - /// by ensuring attribute-level differentiation. - /// - /// This is useful for scenarios where resource requests must be fulfilled by separate physical devices. - /// For example, a container requests two network interfaces that must be allocated from two different physical NICs. - /// - /// +optional - /// +oneOf=ConstraintType - /// +featureGate=DRAConsumableCapacity - #[prost(string, optional, tag = "3")] - pub distinct_attribute: ::core::option::Option<::prost::alloc::string::String>, -} -/// DeviceCounterConsumption defines a set of counters that -/// a device will consume from a CounterSet. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceCounterConsumption { - /// CounterSet is the name of the set from which the - /// counters defined will be consumed. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub counter_set: ::core::option::Option<::prost::alloc::string::String>, - /// Counters defines the counters that will be consumed by the device. - /// - /// The maximum number counters in a device is 32. - /// In addition, the maximum number of all counters - /// in all devices is 1024 (for example, 64 devices with - /// 16 counters each). - /// - /// +required - #[prost(btree_map = "string, message", tag = "2")] - pub counters: ::prost::alloc::collections::BTreeMap<::prost::alloc::string::String, Counter>, -} -/// DeviceRequest is a request for devices required for a claim. -/// This is typically a request for a single resource like a device, but can -/// also ask for several identical devices. With FirstAvailable it is also -/// possible to provide a prioritized list of requests. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceRequest { - /// Name can be used to reference this request in a pod.spec.containers\[\].resources.claims - /// entry and in a constraint of the claim. - /// - /// References using the name in the DeviceRequest will uniquely - /// identify a request when the Exactly field is set. When the - /// FirstAvailable field is set, a reference to the name of the - /// DeviceRequest will match whatever subrequest is chosen by the - /// scheduler. - /// - /// Must be a DNS label. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// Exactly specifies the details for a single request that must - /// be met exactly for the request to be satisfied. - /// - /// One of Exactly or FirstAvailable must be set. - /// - /// +optional - /// +oneOf=deviceRequestType - #[prost(message, optional, tag = "2")] - pub exactly: ::core::option::Option, - /// FirstAvailable contains subrequests, of which exactly one will be - /// selected by the scheduler. It tries to - /// satisfy them in the order in which they are listed here. So if - /// there are two entries in the list, the scheduler will only check - /// the second one if it determines that the first one can not be used. - /// - /// DRA does not yet implement scoring, so the scheduler will - /// select the first set of devices that satisfies all the - /// requests in the claim. And if the requirements can - /// be satisfied on more than one node, other scheduling features - /// will determine which node is chosen. This means that the set of - /// devices allocated to a claim might not be the optimal set - /// available to the cluster. Scoring will be implemented later. - /// - /// +optional - /// +oneOf=deviceRequestType - /// +listType=atomic - /// +featureGate=DRAPrioritizedList - #[prost(message, repeated, tag = "3")] - pub first_available: ::prost::alloc::vec::Vec, -} -/// DeviceRequestAllocationResult contains the allocation result for one request. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceRequestAllocationResult { - /// Request is the name of the request in the claim which caused this - /// device to be allocated. If it references a subrequest in the - /// firstAvailable list on a DeviceRequest, this field must - /// include both the name of the main request and the subrequest - /// using the format
/. - /// - /// Multiple devices may have been allocated per request. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub request: ::core::option::Option<::prost::alloc::string::String>, - /// Driver specifies the name of the DRA driver whose kubelet - /// plugin should be invoked to process the allocation once the claim is - /// needed on a node. - /// - /// Must be a DNS subdomain and should end with a DNS domain owned by the - /// vendor of the driver. - /// - /// +required - #[prost(string, optional, tag = "2")] - pub driver: ::core::option::Option<::prost::alloc::string::String>, - /// This name together with the driver name and the device name field - /// identify which device was allocated (`//`). - /// - /// Must not be longer than 253 characters and may contain one or more - /// DNS sub-domains separated by slashes. - /// - /// +required - #[prost(string, optional, tag = "3")] - pub pool: ::core::option::Option<::prost::alloc::string::String>, - /// Device references one device instance via its name in the driver's - /// resource pool. It must be a DNS label. - /// - /// +required - #[prost(string, optional, tag = "4")] - pub device: ::core::option::Option<::prost::alloc::string::String>, - /// AdminAccess indicates that this device was allocated for - /// administrative access. See the corresponding request field - /// for a definition of mode. - /// - /// This is an alpha field and requires enabling the DRAAdminAccess - /// feature gate. Admin access is disabled if this field is unset or - /// set to false, otherwise it is enabled. - /// - /// +optional - /// +featureGate=DRAAdminAccess - #[prost(bool, optional, tag = "5")] - pub admin_access: ::core::option::Option, - /// A copy of all tolerations specified in the request at the time - /// when the device got allocated. - /// - /// The maximum number of tolerations is 16. - /// - /// This is an alpha field and requires enabling the DRADeviceTaints - /// feature gate. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceTaints - #[prost(message, repeated, tag = "6")] - pub tolerations: ::prost::alloc::vec::Vec, - /// BindingConditions contains a copy of the BindingConditions - /// from the corresponding ResourceSlice at the time of allocation. - /// - /// This is an alpha field and requires enabling the DRADeviceBindingConditions and DRAResourceClaimDeviceStatus - /// feature gates. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceBindingConditions,DRAResourceClaimDeviceStatus - #[prost(string, repeated, tag = "7")] - pub binding_conditions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// BindingFailureConditions contains a copy of the BindingFailureConditions - /// from the corresponding ResourceSlice at the time of allocation. - /// - /// This is an alpha field and requires enabling the DRADeviceBindingConditions and DRAResourceClaimDeviceStatus - /// feature gates. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceBindingConditions,DRAResourceClaimDeviceStatus - #[prost(string, repeated, tag = "8")] - pub binding_failure_conditions: ::prost::alloc::vec::Vec<::prost::alloc::string::String>, - /// ShareID uniquely identifies an individual allocation share of the device, - /// used when the device supports multiple simultaneous allocations. - /// It serves as an additional map key to differentiate concurrent shares - /// of the same device. - /// - /// +optional - /// +featureGate=DRAConsumableCapacity - #[prost(string, optional, tag = "9")] - pub share_id: ::core::option::Option<::prost::alloc::string::String>, - /// ConsumedCapacity tracks the amount of capacity consumed per device as part of the claim request. - /// The consumed amount may differ from the requested amount: it is rounded up to the nearest valid - /// value based on the device’s requestPolicy if applicable (i.e., may not be less than the requested amount). - /// - /// The total consumed capacity for each device must not exceed the DeviceCapacity's Value. - /// - /// This field is populated only for devices that allow multiple allocations. - /// All capacity entries are included, even if the consumed amount is zero. - /// - /// +optional - /// +featureGate=DRAConsumableCapacity - #[prost(btree_map = "string, message", tag = "10")] - pub consumed_capacity: ::prost::alloc::collections::BTreeMap< - ::prost::alloc::string::String, - super::super::super::apimachinery::pkg::api::resource::Quantity, - >, -} -/// DeviceSelector must have exactly one field set. -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceSelector { - /// CEL contains a CEL expression for selecting a device. - /// - /// +optional - /// +oneOf=SelectorType - #[prost(message, optional, tag = "1")] - pub cel: ::core::option::Option, -} -/// DeviceSubRequest describes a request for device provided in the -/// claim.spec.devices.requests\[\].firstAvailable array. Each -/// is typically a request for a single resource like a device, but can -/// also ask for several identical devices. -/// -/// DeviceSubRequest is similar to ExactDeviceRequest, but doesn't expose the -/// AdminAccess field as that one is only supported when requesting a -/// specific device. -#[derive(Clone, PartialEq, ::prost::Message)] -pub struct DeviceSubRequest { - /// Name can be used to reference this subrequest in the list of constraints - /// or the list of configurations for the claim. References must use the - /// format
/. - /// - /// Must be a DNS label. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub name: ::core::option::Option<::prost::alloc::string::String>, - /// DeviceClassName references a specific DeviceClass, which can define - /// additional configuration and selectors to be inherited by this - /// subrequest. - /// - /// A class is required. Which classes are available depends on the cluster. - /// - /// Administrators may use this to restrict which devices may get - /// requested by only installing classes with selectors for permitted - /// devices. If users are free to request anything without restrictions, - /// then administrators can create an empty DeviceClass for users - /// to reference. - /// - /// +required - #[prost(string, optional, tag = "2")] - pub device_class_name: ::core::option::Option<::prost::alloc::string::String>, - /// Selectors define criteria which must be satisfied by a specific - /// device in order for that device to be considered for this - /// subrequest. All selectors must be satisfied for a device to be - /// considered. - /// - /// +optional - /// +listType=atomic - #[prost(message, repeated, tag = "3")] - pub selectors: ::prost::alloc::vec::Vec, - /// AllocationMode and its related fields define how devices are allocated - /// to satisfy this subrequest. Supported values are: - /// - /// - ExactCount: This request is for a specific number of devices. - /// This is the default. The exact number is provided in the - /// count field. - /// - /// - All: This subrequest is for all of the matching devices in a pool. - /// Allocation will fail if some devices are already allocated, - /// unless adminAccess is requested. - /// - /// If AllocationMode is not specified, the default mode is ExactCount. If - /// the mode is ExactCount and count is not specified, the default count is - /// one. Any other subrequests must specify this field. - /// - /// More modes may get added in the future. Clients must refuse to handle - /// requests with unknown modes. - /// - /// +optional - #[prost(string, optional, tag = "4")] - pub allocation_mode: ::core::option::Option<::prost::alloc::string::String>, - /// Count is used only when the count mode is "ExactCount". Must be greater than zero. - /// If AllocationMode is ExactCount and this field is not specified, the default is one. - /// - /// +optional - /// +oneOf=AllocationMode - #[prost(int64, optional, tag = "5")] - pub count: ::core::option::Option, - /// If specified, the request's tolerations. - /// - /// Tolerations for NoSchedule are required to allocate a - /// device which has a taint with that effect. The same applies - /// to NoExecute. - /// - /// In addition, should any of the allocated devices get tainted - /// with NoExecute after allocation and that effect is not tolerated, - /// then all pods consuming the ResourceClaim get deleted to evict - /// them. The scheduler will not let new pods reserve the claim while - /// it has these tainted devices. Once all pods are evicted, the - /// claim will get deallocated. - /// - /// The maximum number of tolerations is 16. - /// - /// This is an alpha field and requires enabling the DRADeviceTaints - /// feature gate. - /// - /// +optional - /// +listType=atomic - /// +featureGate=DRADeviceTaints - #[prost(message, repeated, tag = "6")] - pub tolerations: ::prost::alloc::vec::Vec, - /// Capacity define resource requirements against each capacity. - /// - /// If this field is unset and the device supports multiple allocations, - /// the default value will be applied to each capacity according to requestPolicy. - /// For the capacity that has no requestPolicy, default is the full capacity value. - /// - /// Applies to each device allocation. - /// If Count > 1, - /// the request fails if there aren't enough devices that meet the requirements. - /// If AllocationMode is set to All, - /// the request fails if there are devices that otherwise match the request, - /// and have this capacity, with a value >= the requested amount, but which cannot be allocated to this request. - /// - /// +optional - /// +featureGate=DRAConsumableCapacity - #[prost(message, optional, tag = "7")] - pub capacity: ::core::option::Option, -} -/// The device this taint is attached to has the "effect" on -/// any claim which does not tolerate the taint and, through the claim, -/// to pods using the claim. -/// -/// +protobuf.options.(gogoproto.goproto_stringer)=false -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceTaint { - /// The taint key to be applied to a device. - /// Must be a label name. - /// - /// +required - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// The taint value corresponding to the taint key. - /// Must be a label value. - /// - /// +optional - #[prost(string, optional, tag = "2")] - pub value: ::core::option::Option<::prost::alloc::string::String>, - /// The effect of the taint on claims that do not tolerate the taint - /// and through such claims on the pods using them. - /// Valid effects are NoSchedule and NoExecute. PreferNoSchedule as used for - /// nodes is not valid here. - /// - /// +required - #[prost(string, optional, tag = "3")] - pub effect: ::core::option::Option<::prost::alloc::string::String>, - /// TimeAdded represents the time at which the taint was added. - /// Added automatically during create or update if not set. - /// - /// +optional - #[prost(message, optional, tag = "4")] - pub time_added: ::core::option::Option, -} -/// The ResourceClaim this DeviceToleration is attached to tolerates any taint that matches -/// the triple using the matching operator . -#[derive(Clone, PartialEq, Eq, Hash, ::prost::Message)] -pub struct DeviceToleration { - /// Key is the taint key that the toleration applies to. Empty means match all taint keys. - /// If the key is empty, operator must be Exists; this combination means to match all values and all keys. - /// Must be a label name. - /// - /// +optional - #[prost(string, optional, tag = "1")] - pub key: ::core::option::Option<::prost::alloc::string::String>, - /// Operator represents a key's relationship to the value. - /// Valid operators are Exists and Equal. Defaults to Equal. - /// Exists is equivalent to wildcard for value, so that a ResourceClaim can - /// tolerate all taints of a particular category. - /// - /// +optional - /// +default="Equal" - #[prost(string, optional, tag = "2")] - pub operator: ::core::option::Option<::prost::alloc::string::String>, - /// Value is the taint value the toleration matches to. - /// If the operator is Exists, the value must be empty, otherwise just a regular string. - /// Must be a label value. - /// - /// +optional - #[prost(string, optional, tag = "3")] - pub value: ::core::option::Option<::prost::alloc::string::String>, - /// Effect indicates the taint effect to match. Empty means match all taint effects. - /// When specified, allowed values are NoSchedule and NoExecute. - /// - /// +optional - #[prost(string, optional, tag = "4")] - pub effect: ::core::option::Option<::prost::alloc::string::String>, - /// TolerationSeconds represents the period of time the toleration (which must be - /// of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, - /// it is not set, which means tolerate the taint forever (do not evict). Zero and - /// negative values will be treated as 0 (evict immediately) by the system. - /// If larger than zero, the time when the pod needs to be evicted is calculated as