|
| 1 | +apiVersion: apiextensions.k8s.io/v1 |
| 2 | +kind: CustomResourceDefinition |
| 3 | +metadata: |
| 4 | + annotations: |
| 5 | + controller-gen.kubebuilder.io/version: v0.4.1 |
| 6 | + creationTimestamp: null |
| 7 | + name: atlasdatabaseusers.atlas.mongodb.com |
| 8 | +spec: |
| 9 | + group: atlas.mongodb.com |
| 10 | + names: |
| 11 | + kind: AtlasDatabaseUser |
| 12 | + listKind: AtlasDatabaseUserList |
| 13 | + plural: atlasdatabaseusers |
| 14 | + singular: atlasdatabaseuser |
| 15 | + scope: Namespaced |
| 16 | + versions: |
| 17 | + - additionalPrinterColumns: |
| 18 | + - jsonPath: .spec.name |
| 19 | + name: Name |
| 20 | + type: string |
| 21 | + name: v1 |
| 22 | + schema: |
| 23 | + openAPIV3Schema: |
| 24 | + description: AtlasDatabaseUser is the Schema for the Atlas Database User API |
| 25 | + properties: |
| 26 | + apiVersion: |
| 27 | + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' |
| 28 | + type: string |
| 29 | + kind: |
| 30 | + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' |
| 31 | + type: string |
| 32 | + metadata: |
| 33 | + type: object |
| 34 | + spec: |
| 35 | + description: AtlasDatabaseUserSpec defines the desired state of Database User in Atlas |
| 36 | + properties: |
| 37 | + databaseName: |
| 38 | + default: admin |
| 39 | + description: DatabaseName is a Database against which Atlas authenticates the user. Default value is 'admin'. |
| 40 | + type: string |
| 41 | + deleteAfterDate: |
| 42 | + description: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. |
| 43 | + type: string |
| 44 | + labels: |
| 45 | + description: Labels is an array containing key-value pairs that tag and categorize the database user. Each key and value has a maximum length of 255 characters. |
| 46 | + items: |
| 47 | + description: LabelSpec contains key-value pairs that tag and categorize the Cluster/DBUser |
| 48 | + properties: |
| 49 | + key: |
| 50 | + maxLength: 255 |
| 51 | + type: string |
| 52 | + value: |
| 53 | + type: string |
| 54 | + required: |
| 55 | + - key |
| 56 | + - value |
| 57 | + type: object |
| 58 | + type: array |
| 59 | + passwordSecretRef: |
| 60 | + description: PasswordSecret is a reference to the Secret keeping the user password. |
| 61 | + properties: |
| 62 | + name: |
| 63 | + description: Name is the name of the Kubernetes Resource |
| 64 | + type: string |
| 65 | + required: |
| 66 | + - name |
| 67 | + type: object |
| 68 | + projectRef: |
| 69 | + description: Project is a reference to AtlasProject resource the user belongs to |
| 70 | + properties: |
| 71 | + name: |
| 72 | + description: Name is the name of the Kubernetes Resource |
| 73 | + type: string |
| 74 | + required: |
| 75 | + - name |
| 76 | + type: object |
| 77 | + roles: |
| 78 | + description: Roles is an array of this user's roles and the databases / collections on which the roles apply. A role allows the user to perform particular actions on the specified database. |
| 79 | + items: |
| 80 | + description: RoleSpec allows the user to perform particular actions on the specified database. A role on the admin database can include privileges that apply to the other databases as well. |
| 81 | + properties: |
| 82 | + collectionName: |
| 83 | + description: CollectionName is a collection for which the role applies. |
| 84 | + type: string |
| 85 | + databaseName: |
| 86 | + description: DatabaseName is a database on which the user has the specified role. A role on the admin database can include privileges that apply to the other databases. |
| 87 | + type: string |
| 88 | + roleName: |
| 89 | + description: RoleName is a name of the role. This value can either be a built-in role or a custom role. |
| 90 | + type: string |
| 91 | + required: |
| 92 | + - databaseName |
| 93 | + - roleName |
| 94 | + type: object |
| 95 | + minItems: 1 |
| 96 | + type: array |
| 97 | + scopes: |
| 98 | + description: Scopes is an array of clusters and Atlas Data Lakes that this user has access to. |
| 99 | + items: |
| 100 | + description: ScopeSpec if present a database user only have access to the indicated resource (Cluster or Atlas Data Lake) if none is given then it has access to all. It's highly recommended to restrict the access of the database users only to a limited set of resources. |
| 101 | + properties: |
| 102 | + name: |
| 103 | + description: Name is a name of the cluster or Atlas Data Lake that the user has access to. |
| 104 | + type: string |
| 105 | + type: |
| 106 | + description: Type is a type of resource that the user has access to. |
| 107 | + enum: |
| 108 | + - CLUSTER |
| 109 | + - DATA_LAKE |
| 110 | + type: string |
| 111 | + required: |
| 112 | + - name |
| 113 | + - type |
| 114 | + type: object |
| 115 | + type: array |
| 116 | + username: |
| 117 | + description: Username is a username for authenticating to MongoDB. |
| 118 | + type: string |
| 119 | + required: |
| 120 | + - passwordSecretRef |
| 121 | + - projectRef |
| 122 | + - roles |
| 123 | + - username |
| 124 | + type: object |
| 125 | + status: |
| 126 | + description: AtlasDatabaseUserStatus defines the observed state of AtlasProject |
| 127 | + properties: |
| 128 | + conditions: |
| 129 | + description: Conditions is the list of statuses showing the current state of the Atlas Custom Resource |
| 130 | + items: |
| 131 | + description: Condition describes the state of an Atlas Custom Resource at a certain point. |
| 132 | + properties: |
| 133 | + lastTransitionTime: |
| 134 | + description: Last time the condition transitioned from one status to another. |
| 135 | + format: date-time |
| 136 | + type: string |
| 137 | + message: |
| 138 | + description: A human readable message indicating details about the transition. |
| 139 | + type: string |
| 140 | + reason: |
| 141 | + description: The reason for the condition's last transition. |
| 142 | + type: string |
| 143 | + status: |
| 144 | + description: Status of the condition, one of True, False, Unknown. |
| 145 | + type: string |
| 146 | + type: |
| 147 | + description: Type of Atlas Custom Resource condition. |
| 148 | + type: string |
| 149 | + required: |
| 150 | + - status |
| 151 | + - type |
| 152 | + type: object |
| 153 | + type: array |
| 154 | + connectionSecrets: |
| 155 | + additionalProperties: |
| 156 | + type: string |
| 157 | + type: object |
| 158 | + observedGeneration: |
| 159 | + description: ObservedGeneration indicates the generation of the resource specification that the Atlas Operator is aware of. The Atlas Operator updates this field to the 'metadata.generation' as soon as it starts reconciliation of the resource. |
| 160 | + format: int64 |
| 161 | + type: integer |
| 162 | + required: |
| 163 | + - conditions |
| 164 | + type: object |
| 165 | + type: object |
| 166 | + served: true |
| 167 | + storage: true |
| 168 | + subresources: |
| 169 | + status: {} |
| 170 | +status: |
| 171 | + acceptedNames: |
| 172 | + kind: "" |
| 173 | + plural: "" |
| 174 | + conditions: [] |
| 175 | + storedVersions: [] |
0 commit comments