ceph.rook.io / v1 / CephNFS

• string

  .apiVersion

  APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

• string

  .kind

  Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

• object required

  .metadata

• object required

  .spec

  NFSGaneshaSpec represents the spec of an nfs ganesha server

• object | null

  .spec .rados

  RADOS is the Ganesha RADOS specification

• string

  .spec .rados .namespace

  The namespace inside the Ceph pool (set by ‘pool’) where shared NFS-Ganesha config is stored. This setting is deprecated as it is internally set to the name of the CephNFS.

• string

  .spec .rados .pool

  The Ceph pool used store the shared configuration for NFS-Ganesha daemons. This setting is deprecated, as it is internally required to be “.nfs”.

• object | null

  .spec .security

  Security allows specifying security configurations for the NFS cluster

• object | null

  .spec .security .kerberos

  Kerberos configures NFS-Ganesha to secure NFS client connections with Kerberos.

• object

  .spec .security .kerberos .configFiles

  ConfigFiles defines where the Kerberos configuration should be sourced from. Config files will be placed into the /etc/krb5.conf.rook/ directory.

  If this is left empty, Rook will not add any files. This allows you to manage the files yourself however you wish. For example, you may build them into your custom Ceph container image or use the Vault agent injector to securely add the files via annotations on the CephNFS spec (passed to the NFS server pods).

  Rook configures Kerberos to log to stderr. We suggest removing logging sections from config files to avoid consuming unnecessary disk space from logging to files.

• object

  .spec .security .kerberos .configFiles .volumeSource

• object

  .spec .security .kerberos .configFiles .volumeSource .configMap

• integer

  .spec .security .kerberos .configFiles .volumeSource .configMap .defaultMode

• array

  .spec .security .kerberos .configFiles .volumeSource .configMap .items

• string required

  .spec .security .kerberos .configFiles .volumeSource .configMap .items[] .key

• integer

  .spec .security .kerberos .configFiles .volumeSource .configMap .items[] .mode

• string required

  .spec .security .kerberos .configFiles .volumeSource .configMap .items[] .path

• string

  .spec .security .kerberos .configFiles .volumeSource .configMap .name

• boolean

  .spec .security .kerberos .configFiles .volumeSource .configMap .optional

• object

  .spec .security .kerberos .configFiles .volumeSource .emptyDir

• string

  .spec .security .kerberos .configFiles .volumeSource .emptyDir .medium

• integer | string

  .spec .security .kerberos .configFiles .volumeSource .emptyDir .sizeLimit

• object

  .spec .security .kerberos .configFiles .volumeSource .hostPath

• string required

  .spec .security .kerberos .configFiles .volumeSource .hostPath .path

• string

  .spec .security .kerberos .configFiles .volumeSource .hostPath .type

• object

  .spec .security .kerberos .configFiles .volumeSource .persistentVolumeClaim

• string required

  .spec .security .kerberos .configFiles .volumeSource .persistentVolumeClaim .claimName

• boolean

  .spec .security .kerberos .configFiles .volumeSource .persistentVolumeClaim .readOnly

• object

  .spec .security .kerberos .configFiles .volumeSource .projected

• integer

  .spec .security .kerberos .configFiles .volumeSource .projected .defaultMode

• array

  .spec .security .kerberos .configFiles .volumeSource .projected .sources

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector

• array

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .key

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .operator

• array

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .values

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchLabels

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .name

• boolean

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .optional

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .path

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .clusterTrustBundle .signerName

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap

• array

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap .items

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap .items[] .key

• integer

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap .items[] .mode

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap .items[] .path

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap .name

• boolean

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .configMap .optional

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI

• array

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .apiVersion

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .fieldPath

• integer

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .mode

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .path

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .containerName

• integer | string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .divisor

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .resource

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret

• array

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret .items

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret .items[] .key

• integer

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret .items[] .mode

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret .items[] .path

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret .name

• boolean

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .secret .optional

• object

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .serviceAccountToken

• string

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .serviceAccountToken .audience

• integer

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .serviceAccountToken .expirationSeconds

• string required

  .spec .security .kerberos .configFiles .volumeSource .projected .sources[] .serviceAccountToken .path

• object

  .spec .security .kerberos .configFiles .volumeSource .secret

• integer

  .spec .security .kerberos .configFiles .volumeSource .secret .defaultMode

• array

  .spec .security .kerberos .configFiles .volumeSource .secret .items

• string required

  .spec .security .kerberos .configFiles .volumeSource .secret .items[] .key

• integer

  .spec .security .kerberos .configFiles .volumeSource .secret .items[] .mode

• string required

  .spec .security .kerberos .configFiles .volumeSource .secret .items[] .path

• boolean

  .spec .security .kerberos .configFiles .volumeSource .secret .optional

• string

  .spec .security .kerberos .configFiles .volumeSource .secret .secretName

• string

  .spec .security .kerberos .domainName

  DomainName should be set to the Kerberos Realm.

• object

  .spec .security .kerberos .keytabFile

  KeytabFile defines where the Kerberos keytab should be sourced from. The keytab file will be placed into /etc/krb5.keytab. If this is left empty, Rook will not add the file. This allows you to manage the krb5.keytab file yourself however you wish. For example, you may build it into your custom Ceph container image or use the Vault agent injector to securely add the file via annotations on the CephNFS spec (passed to the NFS server pods).

• object

  .spec .security .kerberos .keytabFile .volumeSource

• object

  .spec .security .kerberos .keytabFile .volumeSource .configMap

• integer

  .spec .security .kerberos .keytabFile .volumeSource .configMap .defaultMode

• array

  .spec .security .kerberos .keytabFile .volumeSource .configMap .items

• string required

  .spec .security .kerberos .keytabFile .volumeSource .configMap .items[] .key

• integer

  .spec .security .kerberos .keytabFile .volumeSource .configMap .items[] .mode

• string required

  .spec .security .kerberos .keytabFile .volumeSource .configMap .items[] .path

• string

  .spec .security .kerberos .keytabFile .volumeSource .configMap .name

• boolean

  .spec .security .kerberos .keytabFile .volumeSource .configMap .optional

• object

  .spec .security .kerberos .keytabFile .volumeSource .emptyDir

• string

  .spec .security .kerberos .keytabFile .volumeSource .emptyDir .medium

• integer | string

  .spec .security .kerberos .keytabFile .volumeSource .emptyDir .sizeLimit

• object

  .spec .security .kerberos .keytabFile .volumeSource .hostPath

• string required

  .spec .security .kerberos .keytabFile .volumeSource .hostPath .path

• string

  .spec .security .kerberos .keytabFile .volumeSource .hostPath .type

• object

  .spec .security .kerberos .keytabFile .volumeSource .persistentVolumeClaim

• string required

  .spec .security .kerberos .keytabFile .volumeSource .persistentVolumeClaim .claimName

• boolean

  .spec .security .kerberos .keytabFile .volumeSource .persistentVolumeClaim .readOnly

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected

• integer

  .spec .security .kerberos .keytabFile .volumeSource .projected .defaultMode

• array

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector

• array

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .key

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .operator

• array

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .values

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchLabels

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .name

• boolean

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .optional

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .path

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .clusterTrustBundle .signerName

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap

• array

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap .items

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap .items[] .key

• integer

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap .items[] .mode

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap .items[] .path

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap .name

• boolean

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .configMap .optional

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI

• array

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .apiVersion

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .fieldPath

• integer

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .mode

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .path

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .containerName

• integer | string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .divisor

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .resource

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret

• array

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret .items

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret .items[] .key

• integer

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret .items[] .mode

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret .items[] .path

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret .name

• boolean

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .secret .optional

• object

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .serviceAccountToken

• string

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .serviceAccountToken .audience

• integer

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .serviceAccountToken .expirationSeconds

• string required

  .spec .security .kerberos .keytabFile .volumeSource .projected .sources[] .serviceAccountToken .path

• object

  .spec .security .kerberos .keytabFile .volumeSource .secret

• integer

  .spec .security .kerberos .keytabFile .volumeSource .secret .defaultMode

• array

  .spec .security .kerberos .keytabFile .volumeSource .secret .items

• string required

  .spec .security .kerberos .keytabFile .volumeSource .secret .items[] .key

• integer

  .spec .security .kerberos .keytabFile .volumeSource .secret .items[] .mode

• string required

  .spec .security .kerberos .keytabFile .volumeSource .secret .items[] .path

• boolean

  .spec .security .kerberos .keytabFile .volumeSource .secret .optional

• string

  .spec .security .kerberos .keytabFile .volumeSource .secret .secretName

• string

  .spec .security .kerberos .principalName

  PrincipalName corresponds directly to NFS-Ganesha’s NFS_KRB5:PrincipalName config. In practice, this is the service prefix of the principal name. The default is “nfs”. This value is combined with (a) the namespace and name of the CephNFS (with a hyphen between) and (b) the Realm configured in the user-provided krb5.conf to determine the full principal name: /-@. e.g., nfs/rook-ceph-my-nfs@example.net. See https://github.com/nfs-ganesha/nfs-ganesha/wiki/RPCSEC_GSS for more detail.

• object | null

  .spec .security .sssd

  SSSD enables integration with System Security Services Daemon (SSSD). SSSD can be used to provide user ID mapping from a number of sources. See https://sssd.io for more information about the SSSD project.

• object

  .spec .security .sssd .sidecar

  Sidecar tells Rook to run SSSD in a sidecar alongside the NFS-Ganesha server in each NFS pod.

• array

  .spec .security .sssd .sidecar .additionalFiles

  AdditionalFiles defines any number of additional files that should be mounted into the SSSD sidecar with a directory root of /etc/sssd/rook-additional/. These files may be referenced by the sssd.conf config file.

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .subPath

  SubPath defines the sub-path (subdirectory) of the directory root where the volumeSource will be mounted. All files/keys in the volume source’s volume will be mounted to the subdirectory. This is not the same as the Kubernetes subPath volume mount option. Each subPath definition must be unique and must not contain ‘:’.

• object required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .defaultMode

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .items

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .items[] .key

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .items[] .mode

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .items[] .path

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .name

• boolean

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .configMap .optional

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .emptyDir

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .emptyDir .medium

• integer | string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .emptyDir .sizeLimit

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .hostPath

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .hostPath .path

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .hostPath .type

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .persistentVolumeClaim

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .persistentVolumeClaim .claimName

• boolean

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .persistentVolumeClaim .readOnly

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .defaultMode

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .key

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .operator

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .values

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchLabels

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .name

• boolean

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .optional

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .path

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .clusterTrustBundle .signerName

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap .items

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap .items[] .key

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap .items[] .mode

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap .items[] .path

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap .name

• boolean

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .configMap .optional

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .apiVersion

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .fieldPath

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .mode

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .path

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .containerName

• integer | string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .divisor

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .resource

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret .items

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret .items[] .key

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret .items[] .mode

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret .items[] .path

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret .name

• boolean

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .secret .optional

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .serviceAccountToken

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .serviceAccountToken .audience

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .serviceAccountToken .expirationSeconds

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .projected .sources[] .serviceAccountToken .path

• object

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .defaultMode

• array

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .items

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .items[] .key

• integer

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .items[] .mode

• string required

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .items[] .path

• boolean

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .optional

• string

  .spec .security .sssd .sidecar .additionalFiles[] .volumeSource .secret .secretName

• integer

  .spec .security .sssd .sidecar .debugLevel

  DebugLevel sets the debug level for SSSD. If unset or set to 0, Rook does nothing. Otherwise, this may be a value between 1 and 10. See SSSD docs for more info: https://sssd.io/troubleshooting/basics.html#sssd-debug-logs

• string required

  .spec .security .sssd .sidecar .image

  Image defines the container image that should be used for the SSSD sidecar.

• object

  .spec .security .sssd .sidecar .resources

  Resources allow specifying resource requests/limits on the SSSD sidecar container.

• array

  .spec .security .sssd .sidecar .resources .claims

  Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container.

  This is an alpha field and requires enabling the DynamicResourceAllocation feature gate.

  This field is immutable. It can only be set for containers.

• string required

  .spec .security .sssd .sidecar .resources .claims[] .name

  Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.

• string

  .spec .security .sssd .sidecar .resources .claims[] .request

  Request is the name chosen for a request in the referenced claim. If empty, everything from the claim is made available, otherwise only the result of this request.

• object

  .spec .security .sssd .sidecar .resources .limits

  Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/

• object

  .spec .security .sssd .sidecar .resources .requests

  Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/

• object

  .spec .security .sssd .sidecar .sssdConfigFile

  SSSDConfigFile defines where the SSSD configuration should be sourced from. The config file will be placed into /etc/sssd/sssd.conf. If this is left empty, Rook will not add the file. This allows you to manage the sssd.conf file yourself however you wish. For example, you may build it into your custom Ceph container image or use the Vault agent injector to securely add the file via annotations on the CephNFS spec (passed to the NFS server pods).

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .defaultMode

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .items

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .items[] .key

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .items[] .mode

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .items[] .path

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .name

• boolean

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .configMap .optional

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .emptyDir

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .emptyDir .medium

• integer | string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .emptyDir .sizeLimit

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .hostPath

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .hostPath .path

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .hostPath .type

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .persistentVolumeClaim

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .persistentVolumeClaim .claimName

• boolean

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .persistentVolumeClaim .readOnly

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .defaultMode

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .key

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .operator

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchExpressions[] .values

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .labelSelector .matchLabels

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .name

• boolean

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .optional

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .path

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .clusterTrustBundle .signerName

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap .items

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap .items[] .key

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap .items[] .mode

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap .items[] .path

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap .name

• boolean

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .configMap .optional

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .apiVersion

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .fieldRef .fieldPath

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .mode

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .path

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .containerName

• integer | string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .divisor

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .downwardAPI .items[] .resourceFieldRef .resource

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret .items

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret .items[] .key

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret .items[] .mode

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret .items[] .path

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret .name

• boolean

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .secret .optional

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .serviceAccountToken

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .serviceAccountToken .audience

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .serviceAccountToken .expirationSeconds

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .projected .sources[] .serviceAccountToken .path

• object

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .defaultMode

• array

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .items

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .items[] .key

• integer

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .items[] .mode

• string required

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .items[] .path

• boolean

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .optional

• string

  .spec .security .sssd .sidecar .sssdConfigFile .volumeSource .secret .secretName

• object required

  .spec .server

  Server is the Ganesha Server specification

• integer required

  .spec .server .active

  The number of active Ganesha servers

• object | null

  .spec .server .annotations

  The annotations-related configuration to add/set on each Pod related object.

• boolean | null

  .spec .server .hostNetwork

  Whether host networking is enabled for the Ganesha server. If not set, the network settings from the cluster CR will be applied.

• object | null

  .spec .server .labels

  The labels-related configuration to add/set on each Pod related object.

• object

  .spec .server .livenessProbe

  A liveness-probe to verify that Ganesha server has valid run-time state. If LivenessProbe.Disabled is false and LivenessProbe.Probe is nil uses default probe.

• boolean

  .spec .server .livenessProbe .disabled

  Disabled determines whether probe is disable or not

• object

  .spec .server .livenessProbe .probe

  Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.

• object

  .spec .server .livenessProbe .probe .exec

  Exec specifies a command to execute in the container.

• array

  .spec .server .livenessProbe .probe .exec .command

  Command is the command line to execute inside the container, the working directory for the command is root (‘/’) in the container’s filesystem. The command is simply exec’d, it is not run inside a shell, so traditional shell instructions (‘|’, etc) won’t work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.

• integer

  .spec .server .livenessProbe .probe .failureThreshold

  Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.

• object

  .spec .server .livenessProbe .probe .grpc

  GRPC specifies a GRPC HealthCheckRequest.

• integer required

  .spec .server .livenessProbe .probe .grpc .port

  Port number of the gRPC service. Number must be in the range 1 to 65535.

• string

  .spec .server .livenessProbe .probe .grpc .service

  Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).

  If this is not specified, the default behavior is defined by gRPC.

• object

  .spec .server .livenessProbe .probe .httpGet

  HTTPGet specifies an HTTP GET request to perform.

• string

  .spec .server .livenessProbe .probe .httpGet .host

  Host name to connect to, defaults to the pod IP. You probably want to set “Host” in httpHeaders instead.

• array

  .spec .server .livenessProbe .probe .httpGet .httpHeaders

  Custom headers to set in the request. HTTP allows repeated headers.

• string required

  .spec .server .livenessProbe .probe .httpGet .httpHeaders[] .name

  The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.

• string required

  .spec .server .livenessProbe .probe .httpGet .httpHeaders[] .value

  The header field value

• string

  .spec .server .livenessProbe .probe .httpGet .path

  Path to access on the HTTP server.

• integer | string required

  .spec .server .livenessProbe .probe .httpGet .port

  Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.

• string

  .spec .server .livenessProbe .probe .httpGet .scheme

  Scheme to use for connecting to the host. Defaults to HTTP.

• integer

  .spec .server .livenessProbe .probe .initialDelaySeconds

  Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes

• integer

  .spec .server .livenessProbe .probe .periodSeconds

  How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.

• integer

  .spec .server .livenessProbe .probe .successThreshold

  Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.

• object

  .spec .server .livenessProbe .probe .tcpSocket

  TCPSocket specifies a connection to a TCP port.

• string

  .spec .server .livenessProbe .probe .tcpSocket .host

  Optional: Host name to connect to, defaults to the pod IP.

• integer | string required

  .spec .server .livenessProbe .probe .tcpSocket .port

  Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.

• integer

  .spec .server .livenessProbe .probe .terminationGracePeriodSeconds

• integer

  .spec .server .livenessProbe .probe .timeoutSeconds

  Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes

• string

  .spec .server .logLevel

  LogLevel set logging level

• object | null

  .spec .server .placement

• object

  .spec .server .placement .nodeAffinity

• array

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution

• object required

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference

• array

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchExpressions

• string required

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchExpressions[] .key

• string required

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchExpressions[] .operator

• array

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchExpressions[] .values

• array

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchFields

• string required

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchFields[] .key

• string required

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchFields[] .operator

• array

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .preference .matchFields[] .values

• integer required

  .spec .server .placement .nodeAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .weight

• object

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution

• array required

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms

• array

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchExpressions

• string required

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchExpressions[] .key

• string required

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchExpressions[] .operator

• array

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchExpressions[] .values

• array

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchFields

• string required

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchFields[] .key

• string required

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchFields[] .operator

• array

  .spec .server .placement .nodeAffinity .requiredDuringSchedulingIgnoredDuringExecution .nodeSelectorTerms[] .matchFields[] .values

• object

  .spec .server .placement .podAffinity

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution

• object required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm

• object

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions

• string required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchLabels

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .matchLabelKeys

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .mismatchLabelKeys

• object

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions

• string required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchLabels

• array

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaces

• string required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .topologyKey

• integer required

  .spec .server .placement .podAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .weight

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution

• object

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions

• string required

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchLabels

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .matchLabelKeys

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .mismatchLabelKeys

• object

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions

• string required

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchLabels

• array

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaces

• string required

  .spec .server .placement .podAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .topologyKey

• object

  .spec .server .placement .podAntiAffinity

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution

• object required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm

• object

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions

• string required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .labelSelector .matchLabels

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .matchLabelKeys

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .mismatchLabelKeys

• object

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions

• string required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaceSelector .matchLabels

• array

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .namespaces

• string required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .podAffinityTerm .topologyKey

• integer required

  .spec .server .placement .podAntiAffinity .preferredDuringSchedulingIgnoredDuringExecution[] .weight

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution

• object

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions

• string required

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .labelSelector .matchLabels

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .matchLabelKeys

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .mismatchLabelKeys

• object

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions

• string required

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions[] .key

• string required

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions[] .operator

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchExpressions[] .values

• object

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaceSelector .matchLabels

• array

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .namespaces

• string required

  .spec .server .placement .podAntiAffinity .requiredDuringSchedulingIgnoredDuringExecution[] .topologyKey

• array

  .spec .server .placement .tolerations

• string

  .spec .server .placement .tolerations[] .effect

• string

  .spec .server .placement .tolerations[] .key

• string

  .spec .server .placement .tolerations[] .operator

• integer

  .spec .server .placement .tolerations[] .tolerationSeconds

• string

  .spec .server .placement .tolerations[] .value

• array

  .spec .server .placement .topologySpreadConstraints

• object

  .spec .server .placement .topologySpreadConstraints[] .labelSelector

• array

  .spec .server .placement .topologySpreadConstraints[] .labelSelector .matchExpressions

• string required

  .spec .server .placement .topologySpreadConstraints[] .labelSelector .matchExpressions[] .key

• string required

  .spec .server .placement .topologySpreadConstraints[] .labelSelector .matchExpressions[] .operator

• array

  .spec .server .placement .topologySpreadConstraints[] .labelSelector .matchExpressions[] .values

• object

  .spec .server .placement .topologySpreadConstraints[] .labelSelector .matchLabels

• array

  .spec .server .placement .topologySpreadConstraints[] .matchLabelKeys

• integer required

  .spec .server .placement .topologySpreadConstraints[] .maxSkew

• integer

  .spec .server .placement .topologySpreadConstraints[] .minDomains

• string

  .spec .server .placement .topologySpreadConstraints[] .nodeAffinityPolicy

• string

  .spec .server .placement .topologySpreadConstraints[] .nodeTaintsPolicy

• string required

  .spec .server .placement .topologySpreadConstraints[] .topologyKey

• string required

  .spec .server .placement .topologySpreadConstraints[] .whenUnsatisfiable

• string

  .spec .server .priorityClassName

  PriorityClassName sets the priority class on the pods

• object | null

  .spec .server .resources

  Resources set resource requests and limits

• array

  .spec .server .resources .claims

  Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container.

  This is an alpha field and requires enabling the DynamicResourceAllocation feature gate.

  This field is immutable. It can only be set for containers.

• string required

  .spec .server .resources .claims[] .name

  Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.

• string

  .spec .server .resources .claims[] .request

  Request is the name chosen for a request in the referenced claim. If empty, everything from the claim is made available, otherwise only the result of this request.

• object

  .spec .server .resources .limits

  Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/

• object

  .spec .server .resources .requests

  Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/

• object

  .status

  Status represents the status of an object

• array

  .status .conditions

• string

  .status .conditions[] .lastHeartbeatTime

• string

  .status .conditions[] .lastTransitionTime

• string

  .status .conditions[] .message

• string

  .status .conditions[] .reason

  ConditionReason is a reason for a condition

• string

  .status .conditions[] .status

• string

  .status .conditions[] .type

  ConditionType represent a resource’s status

• integer

  .status .observedGeneration

  ObservedGeneration is the latest generation observed by the controller.

• string

  .status .phase