Skip to content

Commit f5d3094

Browse files
alexellisalexellis
committed
Add label to all CRDs for easy uninstallation
Signed-off-by: Alex Ellis (OpenFaaS Ltd) <[email protected]>
1 parent aa2e33f commit f5d3094

9 files changed

+641
-661
lines changed

artifacts/crds/crds.yaml

Lines changed: 209 additions & 218 deletions
Large diffs are not rendered by default.

artifacts/crds/iam.openfaas.com_jwtissuers.yaml

Lines changed: 63 additions & 61 deletions
Original file line numberDiff line numberDiff line change
@@ -3,6 +3,8 @@ kind: CustomResourceDefinition
33
metadata:
44
annotations:
55
controller-gen.kubebuilder.io/version: v0.14.0
6+
labels:
7+
app.kubernetes.io/name: openfaas
68
name: jwtissuers.iam.openfaas.com
79
spec:
810
group: iam.openfaas.com
@@ -13,65 +15,65 @@ spec:
1315
singular: jwtissuer
1416
scope: Namespaced
1517
versions:
16-
- additionalPrinterColumns:
17-
- jsonPath: .spec.iss
18-
name: Issuer
19-
type: string
20-
- jsonPath: .spec.aud
21-
name: Audience
22-
type: string
23-
- jsonPath: .spec.tokenExpiry
24-
name: Expiry
25-
type: string
26-
name: v1
27-
schema:
28-
openAPIV3Schema:
29-
description: JwtIssuer is used to define a JWT issuer for a function
30-
type: object
31-
required:
32-
- spec
33-
properties:
34-
apiVersion:
35-
description: |-
36-
APIVersion defines the versioned schema of this representation of an object.
37-
Servers should convert recognized schemas to the latest internal value, and
38-
may reject unrecognized values.
39-
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
40-
type: string
41-
kind:
42-
description: |-
43-
Kind is a string value representing the REST resource this object represents.
44-
Servers may infer this from the endpoint the client submits requests to.
45-
Cannot be updated.
46-
In CamelCase.
47-
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
48-
type: string
49-
metadata:
50-
type: object
51-
spec:
52-
description: JwtIssuerSpec is the spec for a JwtIssuer resource
53-
type: object
54-
required:
55-
- aud
56-
- iss
57-
properties:
58-
aud:
59-
description: |-
60-
Audience is the intended audience of the JWT, at times, like with Auth0 this is the
61-
client ID of the app, and not our validating server
62-
type: array
63-
items:
64-
type: string
65-
iss:
66-
description: Issuer is the issuer of the JWT
18+
- additionalPrinterColumns:
19+
- jsonPath: .spec.iss
20+
name: Issuer
21+
type: string
22+
- jsonPath: .spec.aud
23+
name: Audience
24+
type: string
25+
- jsonPath: .spec.tokenExpiry
26+
name: Expiry
27+
type: string
28+
name: v1
29+
schema:
30+
openAPIV3Schema:
31+
description: JwtIssuer is used to define a JWT issuer for a function
32+
properties:
33+
apiVersion:
34+
description: |-
35+
APIVersion defines the versioned schema of this representation of an object.
36+
Servers should convert recognized schemas to the latest internal value, and
37+
may reject unrecognized values.
38+
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
39+
type: string
40+
kind:
41+
description: |-
42+
Kind is a string value representing the REST resource this object represents.
43+
Servers may infer this from the endpoint the client submits requests to.
44+
Cannot be updated.
45+
In CamelCase.
46+
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
47+
type: string
48+
metadata:
49+
type: object
50+
spec:
51+
description: JwtIssuerSpec is the spec for a JwtIssuer resource
52+
properties:
53+
aud:
54+
description: |-
55+
Audience is the intended audience of the JWT, at times, like with Auth0 this is the
56+
client ID of the app, and not our validating server
57+
items:
6758
type: string
68-
issInternal:
69-
description: |-
70-
IssuerInternal provides an alternative URL to use to download the public key
71-
for this issuer. It's useful for the system issuer.
72-
type: string
73-
tokenExpiry:
74-
type: string
75-
served: true
76-
storage: true
77-
subresources: {}
59+
type: array
60+
iss:
61+
description: Issuer is the issuer of the JWT
62+
type: string
63+
issInternal:
64+
description: |-
65+
IssuerInternal provides an alternative URL to use to download the public key
66+
for this issuer. It's useful for the system issuer.
67+
type: string
68+
tokenExpiry:
69+
type: string
70+
required:
71+
- aud
72+
- iss
73+
type: object
74+
required:
75+
- spec
76+
type: object
77+
served: true
78+
storage: true
79+
subresources: {}

artifacts/crds/iam.openfaas.com_policies.yaml

Lines changed: 78 additions & 81 deletions
Original file line numberDiff line numberDiff line change
@@ -3,6 +3,8 @@ kind: CustomResourceDefinition
33
metadata:
44
annotations:
55
controller-gen.kubebuilder.io/version: v0.14.0
6+
labels:
7+
app.kubernetes.io/name: openfaas
68
name: policies.iam.openfaas.com
79
spec:
810
group: iam.openfaas.com
@@ -13,86 +15,81 @@ spec:
1315
singular: policy
1416
scope: Namespaced
1517
versions:
16-
- additionalPrinterColumns:
17-
- jsonPath: .spec.statement
18-
name: Statement
19-
type: string
20-
name: v1
21-
schema:
22-
openAPIV3Schema:
23-
description: Policy is used to define a policy for a function
24-
type: object
25-
required:
26-
- spec
27-
properties:
28-
apiVersion:
29-
description: |-
30-
APIVersion defines the versioned schema of this representation of an object.
31-
Servers should convert recognized schemas to the latest internal value, and
32-
may reject unrecognized values.
33-
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
34-
type: string
35-
kind:
36-
description: |-
37-
Kind is a string value representing the REST resource this object represents.
38-
Servers may infer this from the endpoint the client submits requests to.
39-
Cannot be updated.
40-
In CamelCase.
41-
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
42-
type: string
43-
metadata:
44-
type: object
45-
spec:
46-
type: object
47-
required:
48-
- statement
49-
properties:
50-
statement:
51-
type: array
52-
items:
53-
type: object
54-
required:
55-
- action
56-
- effect
57-
- resource
58-
- sid
59-
properties:
60-
action:
61-
description: Action is a set of actions that the policy applies to i.e. Function:Read
62-
type: array
63-
items:
64-
type: string
65-
condition:
66-
description: |-
67-
Condition is a set of conditions that the policy applies to
68-
{
69-
"StringLike": {
70-
"jwt:https://my-identity-provider.com#sub-id": [
71-
"1234567890",
72-
"0987654321"
73-
],
74-
}
75-
}
76-
type: object
77-
additionalProperties:
78-
type: object
79-
additionalProperties:
80-
type: array
81-
items:
82-
type: string
83-
effect:
84-
description: Effect is the effect of the policy - only Allow is supported
18+
- additionalPrinterColumns:
19+
- jsonPath: .spec.statement
20+
name: Statement
21+
type: string
22+
name: v1
23+
schema:
24+
openAPIV3Schema:
25+
description: Policy is used to define a policy for a function
26+
properties:
27+
apiVersion:
28+
description: |-
29+
APIVersion defines the versioned schema of this representation of an object.
30+
Servers should convert recognized schemas to the latest internal value, and
31+
may reject unrecognized values.
32+
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
33+
type: string
34+
kind:
35+
description: |-
36+
Kind is a string value representing the REST resource this object represents.
37+
Servers may infer this from the endpoint the client submits requests to.
38+
Cannot be updated.
39+
In CamelCase.
40+
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
41+
type: string
42+
metadata:
43+
type: object
44+
spec:
45+
properties:
46+
statement:
47+
items:
48+
properties:
49+
action:
50+
description: Action is a set of actions that the policy applies
51+
to i.e. Function:Read
52+
items:
8553
type: string
86-
resource:
87-
description: |-
88-
Resource is a set of resources that the policy applies to - only namespaces are supported at
89-
present
90-
type: array
91-
items:
92-
type: string
93-
sid:
94-
description: SID is the unique identifier for the policy
54+
type: array
55+
condition:
56+
additionalProperties:
57+
additionalProperties:
58+
items:
59+
type: string
60+
type: array
61+
type: object
62+
description: "Condition is a set of conditions that the policy
63+
applies to\n{\n\t\"StringLike\": {\n\t\t\"jwt:https://my-identity-provider.com#sub-id\":
64+
[\n\t\t\t\"1234567890\",\n\t\t\t\"0987654321\"\n\t\t],\n\t}\n}"
65+
type: object
66+
effect:
67+
description: Effect is the effect of the policy - only Allow
68+
is supported
69+
type: string
70+
resource:
71+
description: |-
72+
Resource is a set of resources that the policy applies to - only namespaces are supported at
73+
present
74+
items:
9575
type: string
96-
served: true
97-
storage: true
98-
subresources: {}
76+
type: array
77+
sid:
78+
description: SID is the unique identifier for the policy
79+
type: string
80+
required:
81+
- action
82+
- effect
83+
- resource
84+
- sid
85+
type: object
86+
type: array
87+
required:
88+
- statement
89+
type: object
90+
required:
91+
- spec
92+
type: object
93+
served: true
94+
storage: true
95+
subresources: {}

0 commit comments

Comments
 (0)