diff --git a/library/k8s_apps_v1beta1_deployment.py b/library/k8s_apps_v1beta1_deployment.py new file mode 100644 index 00000000..1ea82d68 --- /dev/null +++ b/library/k8s_apps_v1beta1_deployment.py @@ -0,0 +1,4750 @@ +#!/usr/bin/env python + +from ansible.module_utils.k8s_common import KubernetesAnsibleModule, KubernetesAnsibleException + +DOCUMENTATION = ''' +module: k8s_apps_v1beta1_deployment +short_description: Kubernetes Deployment +description: +- Manage the lifecycle of a deployment object. Supports check mode, and attempts to + to be idempotent. +version_added: 2.3.0 +author: OpenShift (@openshift) +options: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that may + be set by external tools to store and retrieve arbitrary metadata. They are + not queryable and should be preserved when modifying objects. + type: dict + api_key: + description: + - Token used to connect to the API. + cert_file: + description: + - Path to a certificate used to authenticate with the API. + type: path + context: + description: + - The name of a context found in the Kubernetes config file. + debug: + description: + - Enable debug output from the OpenShift helper. Logging info is written to KubeObjHelper.log + default: false + type: bool + force: + description: + - If set to C(True), and I(state) is C(present), an existing object will updated, + and lists will be replaced, rather than merged. + default: false + type: bool + host: + description: + - Provide a URL for acessing the Kubernetes API. + key_file: + description: + - Path to a key file used to authenticate with the API. + type: path + kubeconfig: + description: + - Path to an existing Kubernetes config file. If not provided, and no other connection + options are provided, the openshift client will attempt to load the default + configuration file from I(~/.kube/config.json). + type: path + labels: + description: + - Map of string keys and values that can be used to organize and categorize (scope + and select) objects. May match selectors of replication controllers and services. + type: dict + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of an appropriate + name automatically. Name is primarily intended for creation idempotence and + configuration definition. Cannot be updated. + namespace: + description: + - Namespace defines the space within each name must be unique. An empty namespace + is equivalent to the "default" namespace, but "default" is the canonical representation. + Not all objects are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. Cannot be updated. + password: + description: + - Provide a password for connecting to the API. Use in conjunction with I(username). + resource_definition: + description: + - Provide the YAML definition for the object, bypassing any modules parameters + intended to define object attributes. + type: dict + spec_min_ready_seconds: + description: + - Minimum number of seconds for which a newly created pod should be ready without + any of its container crashing, for it to be considered available. Defaults to + 0 (pod will be considered available as soon as it is ready) + aliases: + - min_ready_seconds + type: int + spec_paused: + description: + - Indicates that the deployment is paused. + aliases: + - paused + type: bool + spec_progress_deadline_seconds: + description: + - The maximum time in seconds for a deployment to make progress before it is considered + to be failed. The deployment controller will continue to process failed deployments + and a condition with a ProgressDeadlineExceeded reason will be surfaced in the + deployment status. Once autoRollback is implemented, the deployment controller + will automatically rollback failed deployments. Note that progress will not + be estimated during the time a deployment is paused. Defaults to 600s. + aliases: + - progress_deadline_seconds + type: int + spec_replicas: + description: + - Number of desired pods. This is a pointer to distinguish between explicit zero + and not specified. Defaults to 1. + aliases: + - replicas + type: int + spec_revision_history_limit: + description: + - The number of old ReplicaSets to retain to allow rollback. This is a pointer + to distinguish between explicit zero and not specified. Defaults to 2. + aliases: + - revision_history_limit + type: int + spec_rollback_to_revision: + description: + - The revision to rollback to. If set to 0, rollback to the last revision. + aliases: + - rollback_to_revision + type: int + spec_selector_match_expressions: + description: + - matchExpressions is a list of label selector requirements. The requirements + are ANDed. + aliases: + - selector_match_expressions + type: list + spec_selector_match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", + the operator is "In", and the values array contains only "value". The requirements + are ANDed. + aliases: + - selector_match_labels + type: dict + spec_strategy_rolling_update_max_surge: + description: + - 'The maximum number of pods that can be scheduled above the desired number of + pods. Value can be an absolute number (ex: 5) or a percentage of desired pods + (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated + from percentage by rounding up. Defaults to 25%. Example: when this is set to + 30%, the new RC can be scaled up immediately when the rolling update starts, + such that the total number of old and new pods do not exceed 130% of desired + pods. Once old pods have been killed, new RC can be scaled up further, ensuring + that total number of pods running at any time during the update is atmost 130% + of desired pods.' + aliases: + - strategy_rolling_update_max_surge + spec_strategy_rolling_update_max_unavailable: + description: + - 'The maximum number of pods that can be unavailable during the update. Value + can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). + Absolute number is calculated from percentage by rounding down. This can not + be 0 if MaxSurge is 0. Defaults to 25%. Example: when this is set to 30%, the + old RC can be scaled down to 70% of desired pods immediately when the rolling + update starts. Once new pods are ready, old RC can be scaled down further, followed + by scaling up the new RC, ensuring that the total number of pods available at + all times during the update is at least 70% of desired pods.' + aliases: + - strategy_rolling_update_max_unavailable + spec_strategy_type: + description: + - Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate. + aliases: + - strategy_type + spec_template_metadata_annotations: + description: + - Annotations is an unstructured key value map stored with a resource that may + be set by external tools to store and retrieve arbitrary metadata. They are + not queryable and should be preserved when modifying objects. + type: dict + spec_template_metadata_labels: + description: + - Map of string keys and values that can be used to organize and categorize (scope + and select) objects. May match selectors of replication controllers and services. + type: dict + spec_template_metadata_name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of an appropriate + name automatically. Name is primarily intended for creation idempotence and + configuration definition. Cannot be updated. + spec_template_metadata_namespace: + description: + - Namespace defines the space within each name must be unique. An empty namespace + is equivalent to the "default" namespace, but "default" is the canonical representation. + Not all objects are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. Cannot be updated. + spec_template_spec_active_deadline_seconds: + description: + - Optional duration in seconds the pod may be active on the node relative to StartTime + before the system will actively try to mark it failed and kill associated containers. + Value must be a positive integer. + aliases: + - active_deadline_seconds + type: int + spec_template_spec_affinity_node_affinity_preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that satisfy the affinity + expressions specified by this field, but it may choose a node that violates + one or more of the expressions. The node that is most preferred is the one with + the greatest sum of weights, i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements of this field and adding + "weight" to the sum if the node matches the corresponding matchExpressions; + the node(s) with the highest sum are the most preferred. + aliases: + - affinity_node_affinity_preferred_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_node_affinity_required_during_scheduling_ignored_during_execution_node_selector_terms: + description: + - Required. A list of node selector terms. The terms are ORed. + aliases: + - affinity_node_affinity_required_during_scheduling_ignored_during_execution_node_selector_terms + type: list + spec_template_spec_affinity_pod_affinity_preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that satisfy the affinity + expressions specified by this field, but it may choose a node that violates + one or more of the expressions. The node that is most preferred is the one with + the greatest sum of weights, i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements of this field and adding + "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + aliases: + - affinity_pod_affinity_preferred_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_pod_affinity_required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is implemented. If the affinity + requirements specified by this field are not met at scheduling time, the pod + will not be scheduled onto the node. If the affinity requirements specified + by this field cease to be met at some point during pod execution (e.g. due to + a pod label update), the system will try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes corresponding to + each podAffinityTerm are intersected, i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the affinity requirements specified by this field are not met at scheduling + time, the pod will not be scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point during pod execution (e.g. + due to a pod label update), the system may or may not try to eventually evict + the pod from its node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, i.e. all terms must be + satisfied.' + aliases: + - affinity_pod_affinity_required_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_pod_anti_affinity_preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity + expressions specified by this field, but it may choose a node that violates + one or more of the expressions. The node that is most preferred is the one with + the greatest sum of weights, i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling anti-affinity expressions, + etc.), compute a sum by iterating through the elements of this field and adding + "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + aliases: + - affinity_pod_anti_affinity_preferred_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_pod_anti_affinity_required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is implemented. If the anti-affinity + requirements specified by this field are not met at scheduling time, the pod + will not be scheduled onto the node. If the anti-affinity requirements specified + by this field cease to be met at some point during pod execution (e.g. due to + a pod label update), the system will try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes corresponding to + each podAffinityTerm are intersected, i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the anti-affinity requirements specified by this field are not met at scheduling + time, the pod will not be scheduled onto the node. If the anti-affinity requirements + specified by this field cease to be met at some point during pod execution (e.g. + due to a pod label update), the system may or may not try to eventually evict + the pod from its node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, i.e. all terms must be + satisfied.' + aliases: + - affinity_pod_anti_affinity_required_during_scheduling_ignored_during_execution + type: list + spec_template_spec_automount_service_account_token: + description: + - AutomountServiceAccountToken indicates whether a service account token should + be automatically mounted. + aliases: + - automount_service_account_token + type: bool + spec_template_spec_containers: + description: + - List of containers belonging to the pod. Containers cannot currently be added + or removed. There must be at least one container in a Pod. Cannot be updated. + aliases: + - containers + type: list + spec_template_spec_dns_policy: + description: + - Set DNS policy for containers within the pod. One of 'ClusterFirstWithHostNet', + 'ClusterFirst' or 'Default'. Defaults to "ClusterFirst". To have DNS options + set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'. + aliases: + - dns_policy + spec_template_spec_host_aliases: + description: + - HostAliases is an optional list of hosts and IPs that will be injected into + the pod's hosts file if specified. This is only valid for non-hostNetwork pods. + aliases: + - host_aliases + type: list + spec_template_spec_host_ipc: + description: + - "Use the host's ipc namespace. Optional: Default to false." + aliases: + - host_ipc + type: bool + spec_template_spec_host_network: + description: + - Host networking requested for this pod. Use the host's network namespace. If + this option is set, the ports that will be used must be specified. Default to + false. + aliases: + - host_network + type: bool + spec_template_spec_host_pid: + description: + - "Use the host's pid namespace. Optional: Default to false." + aliases: + - host_pid + type: bool + spec_template_spec_hostname: + description: + - Specifies the hostname of the Pod If not specified, the pod's hostname will + be set to a system-defined value. + aliases: + - hostname + spec_template_spec_image_pull_secrets: + description: + - ImagePullSecrets is an optional list of references to secrets in the same namespace + to use for pulling any of the images used by this PodSpec. If specified, these + secrets will be passed to individual puller implementations for them to use. + For example, in the case of docker, only DockerConfig type secrets are honored. + aliases: + - image_pull_secrets + type: list + spec_template_spec_init_containers: + description: + - List of initialization containers belonging to the pod. Init containers are + executed in order prior to containers being started. If any init container fails, + the pod is considered to have failed and is handled according to its restartPolicy. + The name for an init container or normal container must be unique among all + containers. Init containers may not have Lifecycle actions, Readiness probes, + or Liveness probes. The resourceRequirements of an init container are taken + into account during scheduling by finding the highest request/limit for each + resource type, and then using the max of of that value or the sum of the normal + containers. Limits are applied to init containers in a similar fashion. Init + containers cannot currently be added or removed. Cannot be updated. + aliases: + - init_containers + type: list + spec_template_spec_node_name: + description: + - NodeName is a request to schedule this pod onto a specific node. If it is non-empty, + the scheduler simply schedules this pod onto that node, assuming that it fits + resource requirements. + aliases: + - node_name + spec_template_spec_node_selector: + description: + - NodeSelector is a selector which must be true for the pod to fit on a node. + Selector which must match a node's labels for the pod to be scheduled on that + node. + aliases: + - node_selector + type: dict + spec_template_spec_restart_policy: + description: + - Restart policy for all containers within the pod. One of Always, OnFailure, + Never. Default to Always. + aliases: + - restart_policy + spec_template_spec_scheduler_name: + description: + - If specified, the pod will be dispatched by specified scheduler. If not specified, + the pod will be dispatched by default scheduler. + aliases: + - scheduler_name + spec_template_spec_security_context_fs_group: + description: + - "A special supplemental group that applies to all containers in a pod. Some\ + \ volume types allow the Kubelet to change the ownership of that volume to be\ + \ owned by the pod: 1. The owning GID will be the FSGroup 2. The setgid bit\ + \ is set (new files created in the volume will be owned by FSGroup) 3. The permission\ + \ bits are OR'd with rw-rw---- If unset, the Kubelet will not modify the ownership\ + \ and permissions of any volume." + aliases: + - security_context_fs_group + type: int + spec_template_spec_security_context_run_as_non_root: + description: + - Indicates that the container must run as a non-root user. If true, the Kubelet + will validate the image at runtime to ensure that it does not run as UID 0 (root) + and fail to start the container if it does. If unset or false, no such validation + will be performed. May also be set in SecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext takes precedence. + aliases: + - security_context_run_as_non_root + type: bool + spec_template_spec_security_context_run_as_user: + description: + - The UID to run the entrypoint of the container process. Defaults to user specified + in image metadata if unspecified. May also be set in SecurityContext. If set + in both SecurityContext and PodSecurityContext, the value specified in SecurityContext + takes precedence for that container. + aliases: + - security_context_run_as_user + type: int + spec_template_spec_security_context_se_linux_options_level: + description: + - Level is SELinux level label that applies to the container. + aliases: + - security_context_se_linux_options_level + spec_template_spec_security_context_se_linux_options_role: + description: + - Role is a SELinux role label that applies to the container. + aliases: + - security_context_se_linux_options_role + spec_template_spec_security_context_se_linux_options_type: + description: + - Type is a SELinux type label that applies to the container. + aliases: + - security_context_se_linux_options_type + spec_template_spec_security_context_se_linux_options_user: + description: + - User is a SELinux user label that applies to the container. + aliases: + - security_context_se_linux_options_user + spec_template_spec_security_context_supplemental_groups: + description: + - A list of groups applied to the first process run in each container, in addition + to the container's primary GID. If unspecified, no groups will be added to any + container. + aliases: + - security_context_supplemental_groups + type: list + spec_template_spec_service_account: + description: + - 'DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: + Use serviceAccountName instead.' + aliases: + - service_account + spec_template_spec_service_account_name: + description: + - ServiceAccountName is the name of the ServiceAccount to use to run this pod. + aliases: + - service_account_name + spec_template_spec_subdomain: + description: + - If specified, the fully qualified Pod hostname will be "...svc.". If not specified, the pod will not have a + domainname at all. + aliases: + - subdomain + spec_template_spec_termination_grace_period_seconds: + description: + - Optional duration in seconds the pod needs to terminate gracefully. May be decreased + in delete request. Value must be non-negative integer. The value zero indicates + delete immediately. If this value is nil, the default grace period will be used + instead. The grace period is the duration in seconds after the processes running + in the pod are sent a termination signal and the time when the processes are + forcibly halted with a kill signal. Set this value longer than the expected + cleanup time for your process. Defaults to 30 seconds. + aliases: + - termination_grace_period_seconds + type: int + spec_template_spec_tolerations: + description: + - If specified, the pod's tolerations. + aliases: + - tolerations + type: list + spec_template_spec_volumes: + description: + - List of volumes that can be mounted by containers belonging to the pod. + aliases: + - volumes + type: list + src: + description: + - Provide a path to a file containing the YAML definition of the object. Mutually + exclusive with I(resource_definition). + type: path + ssl_ca_cert: + description: + - Path to a CA certificate used to authenticate with the API. + type: path + state: + description: + - Determines if an object should be created, patched, or deleted. When set to + C(present), the object will be created, if it does not exist, or patched, if + parameter values differ from the existing object's attributes, and deleted, + if set to C(absent). A patch operation results in merging lists and updating + dictionaries, with lists being merged into a unique set of values. If a list + contains a dictionary with a I(name) or I(type) attribute, a strategic merge + is performed, where individual elements with a matching I(name_) or I(type) + are merged. To force the replacement of lists, set the I(force) option to C(True). + default: present + choices: + - present + - absent + username: + description: + - Provide a username for connecting to the API. + verify_ssl: + description: + - Whether or not to verify the API server's SSL certificates. + type: bool +requirements: +- kubernetes == 3.0.0 +''' + +EXAMPLES = ''' +''' + +RETURN = ''' +api_version: + type: string + description: Requested API version +deployment: + type: complex + returned: when I(state) = C(present) + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + type: str + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + metadata: + description: + - Standard object metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that + may be set by external tools to store and retrieve arbitrary metadata. + They are not queryable and should be preserved when modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used to distinguish + resources with same name and namespace in different clusters. This field + is not set anywhere right now and apiserver is going to ignore it if set + in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time when this + object was created. It is not guaranteed to be set in happens-before order + across separate operations. Clients may not set this value. It is represented + in RFC3339 form and is in UTC. Populated by the system. Read-only. Null + for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate before + it will be removed from the system. Only set when deletionTimestamp is + also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource will + be deleted. This field is set by the server when a graceful deletion is + requested by the user, and is not directly settable by a client. The resource + is expected to be deleted (no longer visible from resource lists, and + not reachable by name) after the time in this field. Once set, this value + may not be unset or be set further into the future, although it may be + shortened or the resource may be deleted prior to this time. For example, + a user may request that a pod is deleted in 30 seconds. The Kubelet will + react by sending a graceful termination signal to the containers in the + pod. After that 30 seconds, the Kubelet will send a hard termination signal + (SIGKILL) to the container and after cleanup, remove the pod from the + API. In the presence of network partitions, this object may still exist + after this timestamp, until an administrator or automated process can + determine the resource is fully terminated. If not set, graceful deletion + of the object has not been requested. Populated by the system when a graceful + deletion is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. Each entry + is an identifier for the responsible component that will remove the entry + from the list. If the deletionTimestamp of the object is non-nil, entries + in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate a + unique name ONLY IF the Name field has not been provided. If this field + is used, the name returned to the client will be different than the name + passed. This value will also be combined with a unique suffix. The provided + value has the same validation rules as the Name field, and may be truncated + by the length of the suffix required to make the value unique on the server. + If this field is specified and the generated name exists, the server will + NOT return a 409 - instead, it will either return 201 Created or 500 with + Reason ServerTimeout indicating a unique name could not be found in the + time allotted, and the client should retry (optionally after the time + indicated in the Retry-After header). Applied only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired state. + Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant at + object creation time. This field is a list of initializers that have not + yet acted on this object. If nil or empty, this object has been completely + initialized. Otherwise, the object is considered uninitialized and is + hidden (in list/watch and get calls) from clients that haven't explicitly + asked to observe uninitialized objects. When an object is created, the + system will populate this list with the current set of initializers. Only + privileged users may set or modify this list. Once it is empty, it may + not be modified further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order before + this object is visible. When the last pending initializer is removed, + and no failing result is set, the initializers struct will be set + to nil and the object is considered as initialized and visible to + all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing this + object. + type: str + result: + description: + - If result is set with the Failure field, the object will be persisted + to storage and then deleted, ensuring that other clients can observe + the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the + latest internal value, and may reject unrecognized values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason may define + its own extended details. This field is optional and the data + returned is not guaranteed to conform to any schema except that + defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated with the + StatusReason failure. Not all StatusReasons may provide detailed + causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this error, + as named by its JSON serialization. May include dot and + postfix notation for nested attributes. Arrays are zero-indexed. + Fields may appear more than once in an array of causes + due to fields having multiple errors. Optional. Examples: + "name" - the field "name" on the current resource "items[0].name" + - the field "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause of the error. + This field may be presented as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause of the error. + If this value is empty there is no information available. + type: str + group: + description: + - The group attribute of the resource associated with the status + StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with the status + StatusReason. On some operations may differ from the requested + resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with the status + StatusReason (when there is a single name which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation should + be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource which + can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource this object + represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of this + object that can be used by clients to determine when objects + have changed. Value must be treated as opaque by clients and + passed unmodified back to the server. Populated by the system. + Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the + system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is in the + "Failure" status. If this value is empty there is no information + available. A Reason clarifies an HTTP status code but does not + override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and categorize + (scope and select) objects. May match selectors of replication controllers + and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of + an appropriate name automatically. Name is primarily intended for creation + idempotence and configuration definition. Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An empty + namespace is equivalent to the "default" namespace, but "default" is the + canonical representation. Not all objects are required to be scoped to + a namespace - the value of this field for those objects will be empty. + Must be a DNS_LABEL. Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the list have + been deleted, this object will be garbage collected. If this object is + managed by a controller, then an entry in this list will point to this + controller, with the controller field set to true. There cannot be more + than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store until this + reference is removed. Defaults to false. To set this field, a user + needs "delete" permission of the owner, otherwise 422 (Unprocessable + Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object that + can be used by clients to determine when objects have changed. May be + used for optimistic concurrency, change detection, and the watch operation + on a resource or set of resources. Clients must treat these values as + opaque and passed unmodified back to the server. They may only be valid + for a particular resource or set of resources. Populated by the system. + Read-only. Value must be treated as opaque by clients and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It is typically + generated by the server on successful creation of a resource and is not + allowed to change on PUT operations. Populated by the system. Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the Deployment. + type: complex + contains: + min_ready_seconds: + description: + - Minimum number of seconds for which a newly created pod should be ready + without any of its container crashing, for it to be considered available. + Defaults to 0 (pod will be considered available as soon as it is ready) + type: int + paused: + description: + - Indicates that the deployment is paused. + type: bool + progress_deadline_seconds: + description: + - The maximum time in seconds for a deployment to make progress before it + is considered to be failed. The deployment controller will continue to + process failed deployments and a condition with a ProgressDeadlineExceeded + reason will be surfaced in the deployment status. Once autoRollback is + implemented, the deployment controller will automatically rollback failed + deployments. Note that progress will not be estimated during the time + a deployment is paused. Defaults to 600s. + type: int + replicas: + description: + - Number of desired pods. This is a pointer to distinguish between explicit + zero and not specified. Defaults to 1. + type: int + revision_history_limit: + description: + - The number of old ReplicaSets to retain to allow rollback. This is a pointer + to distinguish between explicit zero and not specified. Defaults to 2. + type: int + rollback_to: + description: + - The config this deployment is rolling back to. Will be cleared after rollback + is done. + type: complex + contains: + revision: + description: + - The revision to rollback to. If set to 0, rollback to the last revision. + type: int + selector: + description: + - Label selector for pods. Existing ReplicaSets whose pods are selected + by this will be the ones affected by this deployment. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. The requirements + are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies to. + type: str + operator: + description: + - operator represents a key's relationship to a set of values. Valid + operators ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the operator is In or + NotIn, the values array must be non-empty. If the operator is + Exists or DoesNotExist, the values array must be empty. This array + is replaced during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single {key,value} in + the matchLabels map is equivalent to an element of matchExpressions, + whose key field is "key", the operator is "In", and the values array + contains only "value". The requirements are ANDed. + type: complex + contains: str, str + strategy: + description: + - The deployment strategy to use to replace existing pods with new ones. + type: complex + contains: + rolling_update: + description: + - Rolling update config params. Present only if DeploymentStrategyType + = RollingUpdate. + type: complex + contains: + max_surge: + description: + - 'The maximum number of pods that can be scheduled above the desired + number of pods. Value can be an absolute number (ex: 5) or a percentage + of desired pods (ex: 10%). This can not be 0 if MaxUnavailable + is 0. Absolute number is calculated from percentage by rounding + up. Defaults to 25%. Example: when this is set to 30%, the new + RC can be scaled up immediately when the rolling update starts, + such that the total number of old and new pods do not exceed 130% + of desired pods. Once old pods have been killed, new RC can be + scaled up further, ensuring that total number of pods running + at any time during the update is atmost 130% of desired pods.' + type: str + max_unavailable: + description: + - 'The maximum number of pods that can be unavailable during the + update. Value can be an absolute number (ex: 5) or a percentage + of desired pods (ex: 10%). Absolute number is calculated from + percentage by rounding down. This can not be 0 if MaxSurge is + 0. Defaults to 25%. Example: when this is set to 30%, the old + RC can be scaled down to 70% of desired pods immediately when + the rolling update starts. Once new pods are ready, old RC can + be scaled down further, followed by scaling up the new RC, ensuring + that the total number of pods available at all times during the + update is at least 70% of desired pods.' + type: str + type: + description: + - Type of deployment. Can be "Recreate" or "RollingUpdate". Default + is RollingUpdate. + type: str + template: + description: + - Template describes the pods that will be created. + type: complex + contains: + metadata: + description: + - Standard object's metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource + that may be set by external tools to store and retrieve arbitrary + metadata. They are not queryable and should be preserved when + modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used + to distinguish resources with same name and namespace in different + clusters. This field is not set anywhere right now and apiserver + is going to ignore it if set in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time + when this object was created. It is not guaranteed to be set in + happens-before order across separate operations. Clients may not + set this value. It is represented in RFC3339 form and is in UTC. + Populated by the system. Read-only. Null for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate + before it will be removed from the system. Only set when deletionTimestamp + is also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource + will be deleted. This field is set by the server when a graceful + deletion is requested by the user, and is not directly settable + by a client. The resource is expected to be deleted (no longer + visible from resource lists, and not reachable by name) after + the time in this field. Once set, this value may not be unset + or be set further into the future, although it may be shortened + or the resource may be deleted prior to this time. For example, + a user may request that a pod is deleted in 30 seconds. The Kubelet + will react by sending a graceful termination signal to the containers + in the pod. After that 30 seconds, the Kubelet will send a hard + termination signal (SIGKILL) to the container and after cleanup, + remove the pod from the API. In the presence of network partitions, + this object may still exist after this timestamp, until an administrator + or automated process can determine the resource is fully terminated. + If not set, graceful deletion of the object has not been requested. + Populated by the system when a graceful deletion is requested. + Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. + Each entry is an identifier for the responsible component that + will remove the entry from the list. If the deletionTimestamp + of the object is non-nil, entries in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate + a unique name ONLY IF the Name field has not been provided. If + this field is used, the name returned to the client will be different + than the name passed. This value will also be combined with a + unique suffix. The provided value has the same validation rules + as the Name field, and may be truncated by the length of the suffix + required to make the value unique on the server. If this field + is specified and the generated name exists, the server will NOT + return a 409 - instead, it will either return 201 Created or 500 + with Reason ServerTimeout indicating a unique name could not be + found in the time allotted, and the client should retry (optionally + after the time indicated in the Retry-After header). Applied only + if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired + state. Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant + at object creation time. This field is a list of initializers + that have not yet acted on this object. If nil or empty, this + object has been completely initialized. Otherwise, the object + is considered uninitialized and is hidden (in list/watch and get + calls) from clients that haven't explicitly asked to observe uninitialized + objects. When an object is created, the system will populate this + list with the current set of initializers. Only privileged users + may set or modify this list. Once it is empty, it may not be modified + further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order + before this object is visible. When the last pending initializer + is removed, and no failing result is set, the initializers + struct will be set to nil and the object is considered as + initialized and visible to all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing + this object. + type: str + result: + description: + - If result is set with the Failure field, the object will be + persisted to storage and then deleted, ensuring that other + clients can observe the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas + to the latest internal value, and may reject unrecognized + values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason + may define its own extended details. This field is optional + and the data returned is not guaranteed to conform to + any schema except that defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated + with the StatusReason failure. Not all StatusReasons + may provide detailed causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this + error, as named by its JSON serialization. May + include dot and postfix notation for nested attributes. + Arrays are zero-indexed. Fields may appear more + than once in an array of causes due to fields + having multiple errors. Optional. Examples: "name" + - the field "name" on the current resource "items[0].name" + - the field "name" on the first array entry in + "items"' + type: str + message: + description: + - A human-readable description of the cause of the + error. This field may be presented as-is to a + reader. + type: str + reason: + description: + - A machine-readable description of the cause of + the error. If this value is empty there is no + information available. + type: str + group: + description: + - The group attribute of the resource associated with + the status StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with + the status StatusReason. On some operations may differ + from the requested resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with + the status StatusReason (when there is a single name + which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation + should be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource + which can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource + this object represents. Servers may infer this from the + endpoint the client submits requests to. Cannot be updated. + In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version + of this object that can be used by clients to determine + when objects have changed. Value must be treated as + opaque by clients and passed unmodified back to the + server. Populated by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated + by the system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is + in the "Failure" status. If this value is empty there + is no information available. A Reason clarifies an HTTP + status code but does not override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and + categorize (scope and select) objects. May match selectors of + replication controllers and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating + resources, although some resources may allow a client to request + the generation of an appropriate name automatically. Name is primarily + intended for creation idempotence and configuration definition. + Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An + empty namespace is equivalent to the "default" namespace, but + "default" is the canonical representation. Not all objects are + required to be scoped to a namespace - the value of this field + for those objects will be empty. Must be a DNS_LABEL. Cannot be + updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the + list have been deleted, this object will be garbage collected. + If this object is managed by a controller, then an entry in this + list will point to this controller, with the controller field + set to true. There cannot be more than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store + until this reference is removed. Defaults to false. To set + this field, a user needs "delete" permission of the owner, + otherwise 422 (Unprocessable Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object + that can be used by clients to determine when objects have changed. + May be used for optimistic concurrency, change detection, and + the watch operation on a resource or set of resources. Clients + must treat these values as opaque and passed unmodified back to + the server. They may only be valid for a particular resource or + set of resources. Populated by the system. Read-only. Value must + be treated as opaque by clients and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. + Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It + is typically generated by the server on successful creation of + a resource and is not allowed to change on PUT operations. Populated + by the system. Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the pod. + type: complex + contains: + active_deadline_seconds: + description: + - Optional duration in seconds the pod may be active on the node + relative to StartTime before the system will actively try to mark + it failed and kill associated containers. Value must be a positive + integer. + type: int + affinity: + description: + - If specified, the pod's scheduling constraints + type: complex + contains: + node_affinity: + description: + - Describes node affinity scheduling rules for the pod. + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that + satisfy the affinity expressions specified by this field, + but it may choose a node that violates one or more of + the expressions. The node that is most preferred is the + one with the greatest sum of weights, i.e. for each node + that meets all of the scheduling requirements (resource + request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements + of this field and adding "weight" to the sum if the node + matches the corresponding matchExpressions; the node(s) + with the highest sum are the most preferred. + type: list + contains: + preference: + description: + - A node selector term, associated with the corresponding + weight. + type: complex + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies to. + type: str + operator: + description: + - Represents a key's relationship to a set of + values. Valid operators are In, NotIn, Exists, + DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must be non-empty. + If the operator is Exists or DoesNotExist, + the values array must be empty. If the operator + is Gt or Lt, the values array must have a + single element, which will be interpreted + as an integer. This array is replaced during + a strategic merge patch. + type: list + contains: str + weight: + description: + - Weight associated with matching the corresponding + nodeSelectorTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - If the affinity requirements specified by this field are + not met at scheduling time, the pod will not be scheduled + onto the node. If the affinity requirements specified + by this field cease to be met at some point during pod + execution (e.g. due to an update), the system may or may + not try to eventually evict the pod from its node. + type: complex + contains: + node_selector_terms: + description: + - Required. A list of node selector terms. The terms + are ORed. + type: list + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies to. + type: str + operator: + description: + - Represents a key's relationship to a set of + values. Valid operators are In, NotIn, Exists, + DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must be non-empty. + If the operator is Exists or DoesNotExist, + the values array must be empty. If the operator + is Gt or Lt, the values array must have a + single element, which will be interpreted + as an integer. This array is replaced during + a strategic merge patch. + type: list + contains: str + pod_affinity: + description: + - Describes pod affinity scheduling rules (e.g. co-locate this + pod in the same node, zone, etc. as some other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that + satisfy the affinity expressions specified by this field, + but it may choose a node that violates one or more of + the expressions. The node that is most preferred is the + one with the greatest sum of weights, i.e. for each node + that meets all of the scheduling requirements (resource + request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements + of this field and adding "weight" to the sum if the node + has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with the + corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is + implemented. If the affinity requirements specified by + this field are not met at scheduling time, the pod will + not be scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point + during pod execution (e.g. due to a pod label update), + the system will try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the affinity requirements specified by this field are + not met at scheduling time, the pod will not be scheduled + onto the node. If the affinity requirements specified + by this field cease to be met at some point during pod + execution (e.g. due to a pod label update), the system + may or may not try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this case + pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies + to. + type: str + operator: + description: + - operator represents a key's relationship to + a set of values. Valid operators ard In, NotIn, + Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the + operator is In or NotIn, the values array + must be non-empty. If the operator is Exists + or DoesNotExist, the values array must be + empty. This array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single + {key,value} in the matchLabels map is equivalent + to an element of matchExpressions, whose key field + is "key", the operator is "In", and the values + array contains only "value". The requirements + are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list means + "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not co-located + (anti-affinity) with the pods matching the labelSelector + in the specified namespaces, where co-located is defined + as running on a node whose value of the label with + key topologyKey matches that of any node on which + any of the selected pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means all + the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and for + RequiredDuringScheduling pod anti-affinity, empty + topologyKey is not allowed. + type: str + pod_anti_affinity: + description: + - Describes pod anti-affinity scheduling rules (e.g. avoid putting + this pod in the same node, zone, etc. as some other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that + satisfy the anti-affinity expressions specified by this + field, but it may choose a node that violates one or more + of the expressions. The node that is most preferred is + the one with the greatest sum of weights, i.e. for each + node that meets all of the scheduling requirements (resource + request, requiredDuringScheduling anti-affinity expressions, + etc.), compute a sum by iterating through the elements + of this field and adding "weight" to the sum if the node + has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with the + corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is + implemented. If the anti-affinity requirements specified + by this field are not met at scheduling time, the pod + will not be scheduled onto the node. If the anti-affinity + requirements specified by this field cease to be met at + some point during pod execution (e.g. due to a pod label + update), the system will try to eventually evict the pod + from its node. When there are multiple elements, the lists + of nodes corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the anti-affinity requirements specified by this field + are not met at scheduling time, the pod will not be scheduled + onto the node. If the anti-affinity requirements specified + by this field cease to be met at some point during pod + execution (e.g. due to a pod label update), the system + may or may not try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this case + pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies + to. + type: str + operator: + description: + - operator represents a key's relationship to + a set of values. Valid operators ard In, NotIn, + Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the + operator is In or NotIn, the values array + must be non-empty. If the operator is Exists + or DoesNotExist, the values array must be + empty. This array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single + {key,value} in the matchLabels map is equivalent + to an element of matchExpressions, whose key field + is "key", the operator is "In", and the values + array contains only "value". The requirements + are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list means + "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not co-located + (anti-affinity) with the pods matching the labelSelector + in the specified namespaces, where co-located is defined + as running on a node whose value of the label with + key topologyKey matches that of any node on which + any of the selected pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means all + the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and for + RequiredDuringScheduling pod anti-affinity, empty + topologyKey is not allowed. + type: str + automount_service_account_token: + description: + - AutomountServiceAccountToken indicates whether a service account + token should be automatically mounted. + type: bool + containers: + description: + - List of containers belonging to the pod. Containers cannot currently + be added or removed. There must be at least one container in a + Pod. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is used\ + \ if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a variable\ + \ cannot be resolved, the reference in the input string will\ + \ be unchanged. The $(VAR_NAME) syntax can be escaped with\ + \ a double $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists or\ + \ not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided. Variable\ + \ references $(VAR_NAME) are expanded using the container's\ + \ environment. If a variable cannot be resolved, the reference\ + \ in the input string will be unchanged. The $(VAR_NAME) syntax\ + \ can be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. Cannot + be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using the + previous defined environment variables in the container + and any service environment variables. If a variable cannot + be resolved, the reference in the input string will be + unchanged. The $(VAR_NAME) syntax can be escaped with + a double $$, ie: $$(VAR_NAME). Escaped references will + never be expanded, regardless of whether the variable + exists or not. Defaults to "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot be + used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key must + be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified API + version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, requests.cpu + and requests.memory) are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed resources, + defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must be + a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must be + defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the container. + The keys defined within a source must be a C_IDENTIFIER. All + invalid keys will be reported as an event when the container + is starting. When a key exists in multiple sources, the value + associated with the last source will take precedence. Values + defined by an Env with a duplicate key will take precedence. + Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the ConfigMap. + Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. Defaults + to Always if :latest tag is specified, or IfNotPresent otherwise. + Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container is created. + If the handler fails, the container is terminated and + restarted according to its restart policy. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is terminated. + The container is terminated after the handler completes. + The reason for termination is passed to the handler. Regardless + of the outcome of the handler, the container is eventually + terminated. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be restarted + if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a port + here gives the system additional information about the network + connections a container uses, but is primarily informational. + Not specifying a port here DOES NOT prevent that port from + being exposed. Any port which is listening on the default + "0.0.0.0" address inside a container will be accessible from + the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. This + must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, this + must be a valid port number, 0 < x < 65536. If HostNetwork + is specified, this must match ContainerPort. Most containers + do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have a unique + name. Name for the port that can be referred to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container will + be removed from service endpoints if the probe fails. Cannot + be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, it defaults + to Limits if that is explicitly specified, otherwise to + an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted by + the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the host. + Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime + to ensure that it does not run as UID 0 (root) and fail + to start the container if it does. If unset or false, + no such validation will be performed. May also be set + in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value specified + in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. If + unspecified, the container runtime will allocate a random + SELinux context for each container. May also be set in + PodSecurityContext. If set in both SecurityContext and + PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from stdin + in the container will always result in EOF. Default is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin is + true the stdin stream will remain open across multiple attach + sessions. If stdinOnce is set to true, stdin is opened on + container start, is empty until the first client attaches + to stdin, and then remains open and accepts data until the + client disconnects, at which time stdin is closed and remains + closed until the container is restarted. If this flag is false, + a container processes that reads from stdin will never receive + an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into the\ + \ container's filesystem. Message written is intended to be\ + \ brief final status, such as an assertion failure message.\ + \ Will be truncated by the node if greater than 4096 bytes.\ + \ The total message length across all containers will be limited\ + \ to 12kb. Defaults to /dev/termination-log. Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to populate + the container status message on both success and failure. + FallbackToLogsOnError will use the last chunk of container + log output if the termination message file is empty and the + container exited with an error. The log output is limited + to 2048 bytes or 80 lines, whichever is smaller. Defaults + to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, also + requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. Cannot + be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should be + mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's volume + should be mounted. Defaults to "" (volume's root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + dns_policy: + description: + - Set DNS policy for containers within the pod. One of 'ClusterFirstWithHostNet', + 'ClusterFirst' or 'Default'. Defaults to "ClusterFirst". To have + DNS options set along with hostNetwork, you have to specify DNS + policy explicitly to 'ClusterFirstWithHostNet'. + type: str + host_aliases: + description: + - HostAliases is an optional list of hosts and IPs that will be + injected into the pod's hosts file if specified. This is only + valid for non-hostNetwork pods. + type: list + contains: + hostnames: + description: + - Hostnames for the above IP address. + type: list + contains: str + ip: + description: + - IP address of the host file entry. + type: str + host_ipc: + description: + - "Use the host's ipc namespace. Optional: Default to false." + type: bool + host_network: + description: + - Host networking requested for this pod. Use the host's network + namespace. If this option is set, the ports that will be used + must be specified. Default to false. + type: bool + host_pid: + description: + - "Use the host's pid namespace. Optional: Default to false." + type: bool + hostname: + description: + - Specifies the hostname of the Pod If not specified, the pod's + hostname will be set to a system-defined value. + type: str + image_pull_secrets: + description: + - ImagePullSecrets is an optional list of references to secrets + in the same namespace to use for pulling any of the images used + by this PodSpec. If specified, these secrets will be passed to + individual puller implementations for them to use. For example, + in the case of docker, only DockerConfig type secrets are honored. + type: list + contains: + name: + description: + - Name of the referent. + type: str + init_containers: + description: + - List of initialization containers belonging to the pod. Init containers + are executed in order prior to containers being started. If any + init container fails, the pod is considered to have failed and + is handled according to its restartPolicy. The name for an init + container or normal container must be unique among all containers. + Init containers may not have Lifecycle actions, Readiness probes, + or Liveness probes. The resourceRequirements of an init container + are taken into account during scheduling by finding the highest + request/limit for each resource type, and then using the max of + of that value or the sum of the normal containers. Limits are + applied to init containers in a similar fashion. Init containers + cannot currently be added or removed. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is used\ + \ if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a variable\ + \ cannot be resolved, the reference in the input string will\ + \ be unchanged. The $(VAR_NAME) syntax can be escaped with\ + \ a double $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists or\ + \ not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided. Variable\ + \ references $(VAR_NAME) are expanded using the container's\ + \ environment. If a variable cannot be resolved, the reference\ + \ in the input string will be unchanged. The $(VAR_NAME) syntax\ + \ can be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. Cannot + be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using the + previous defined environment variables in the container + and any service environment variables. If a variable cannot + be resolved, the reference in the input string will be + unchanged. The $(VAR_NAME) syntax can be escaped with + a double $$, ie: $$(VAR_NAME). Escaped references will + never be expanded, regardless of whether the variable + exists or not. Defaults to "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot be + used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key must + be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified API + version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, requests.cpu + and requests.memory) are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed resources, + defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must be + a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must be + defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the container. + The keys defined within a source must be a C_IDENTIFIER. All + invalid keys will be reported as an event when the container + is starting. When a key exists in multiple sources, the value + associated with the last source will take precedence. Values + defined by an Env with a duplicate key will take precedence. + Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the ConfigMap. + Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. Defaults + to Always if :latest tag is specified, or IfNotPresent otherwise. + Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container is created. + If the handler fails, the container is terminated and + restarted according to its restart policy. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is terminated. + The container is terminated after the handler completes. + The reason for termination is passed to the handler. Regardless + of the outcome of the handler, the container is eventually + terminated. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be restarted + if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a port + here gives the system additional information about the network + connections a container uses, but is primarily informational. + Not specifying a port here DOES NOT prevent that port from + being exposed. Any port which is listening on the default + "0.0.0.0" address inside a container will be accessible from + the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. This + must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, this + must be a valid port number, 0 < x < 65536. If HostNetwork + is specified, this must match ContainerPort. Most containers + do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have a unique + name. Name for the port that can be referred to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container will + be removed from service endpoints if the probe fails. Cannot + be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, it defaults + to Limits if that is explicitly specified, otherwise to + an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted by + the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the host. + Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime + to ensure that it does not run as UID 0 (root) and fail + to start the container if it does. If unset or false, + no such validation will be performed. May also be set + in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value specified + in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. If + unspecified, the container runtime will allocate a random + SELinux context for each container. May also be set in + PodSecurityContext. If set in both SecurityContext and + PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from stdin + in the container will always result in EOF. Default is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin is + true the stdin stream will remain open across multiple attach + sessions. If stdinOnce is set to true, stdin is opened on + container start, is empty until the first client attaches + to stdin, and then remains open and accepts data until the + client disconnects, at which time stdin is closed and remains + closed until the container is restarted. If this flag is false, + a container processes that reads from stdin will never receive + an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into the\ + \ container's filesystem. Message written is intended to be\ + \ brief final status, such as an assertion failure message.\ + \ Will be truncated by the node if greater than 4096 bytes.\ + \ The total message length across all containers will be limited\ + \ to 12kb. Defaults to /dev/termination-log. Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to populate + the container status message on both success and failure. + FallbackToLogsOnError will use the last chunk of container + log output if the termination message file is empty and the + container exited with an error. The log output is limited + to 2048 bytes or 80 lines, whichever is smaller. Defaults + to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, also + requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. Cannot + be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should be + mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's volume + should be mounted. Defaults to "" (volume's root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + node_name: + description: + - NodeName is a request to schedule this pod onto a specific node. + If it is non-empty, the scheduler simply schedules this pod onto + that node, assuming that it fits resource requirements. + type: str + node_selector: + description: + - NodeSelector is a selector which must be true for the pod to fit + on a node. Selector which must match a node's labels for the pod + to be scheduled on that node. + type: complex + contains: str, str + restart_policy: + description: + - Restart policy for all containers within the pod. One of Always, + OnFailure, Never. Default to Always. + type: str + scheduler_name: + description: + - If specified, the pod will be dispatched by specified scheduler. + If not specified, the pod will be dispatched by default scheduler. + type: str + security_context: + description: + - 'SecurityContext holds pod-level security attributes and common + container settings. Optional: Defaults to empty. See type description + for default values of each field.' + type: complex + contains: + fs_group: + description: + - "A special supplemental group that applies to all containers\ + \ in a pod. Some volume types allow the Kubelet to change\ + \ the ownership of that volume to be owned by the pod: 1.\ + \ The owning GID will be the FSGroup 2. The setgid bit is\ + \ set (new files created in the volume will be owned by FSGroup)\ + \ 3. The permission bits are OR'd with rw-rw---- If unset,\ + \ the Kubelet will not modify the ownership and permissions\ + \ of any volume." + type: int + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime to + ensure that it does not run as UID 0 (root) and fail to start + the container if it does. If unset or false, no such validation + will be performed. May also be set in SecurityContext. If + set in both SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. Defaults + to user specified in image metadata if unspecified. May also + be set in SecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence for that container. + type: int + se_linux_options: + description: + - The SELinux context to be applied to all containers. If unspecified, + the container runtime will allocate a random SELinux context + for each container. May also be set in SecurityContext. If + set in both SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence for that container. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + supplemental_groups: + description: + - A list of groups applied to the first process run in each + container, in addition to the container's primary GID. If + unspecified, no groups will be added to any container. + type: list + contains: int + service_account: + description: + - 'DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. + Deprecated: Use serviceAccountName instead.' + type: str + service_account_name: + description: + - ServiceAccountName is the name of the ServiceAccount to use to + run this pod. + type: str + subdomain: + description: + - If specified, the fully qualified Pod hostname will be "...svc.". If not specified, the pod will + not have a domainname at all. + type: str + termination_grace_period_seconds: + description: + - Optional duration in seconds the pod needs to terminate gracefully. + May be decreased in delete request. Value must be non-negative + integer. The value zero indicates delete immediately. If this + value is nil, the default grace period will be used instead. The + grace period is the duration in seconds after the processes running + in the pod are sent a termination signal and the time when the + processes are forcibly halted with a kill signal. Set this value + longer than the expected cleanup time for your process. Defaults + to 30 seconds. + type: int + tolerations: + description: + - If specified, the pod's tolerations. + type: list + contains: + effect: + description: + - Effect indicates the taint effect to match. Empty means match + all taint effects. When specified, allowed values are NoSchedule, + PreferNoSchedule and NoExecute. + type: str + key: + description: + - Key is the taint key that the toleration applies to. Empty + means match all taint keys. If the key is empty, operator + must be Exists; this combination means to match all values + and all keys. + type: str + operator: + description: + - Operator represents a key's relationship to the value. Valid + operators are Exists and Equal. Defaults to Equal. Exists + is equivalent to wildcard for value, so that a pod can tolerate + all taints of a particular category. + type: str + toleration_seconds: + description: + - TolerationSeconds represents the period of time the toleration + (which must be of effect NoExecute, otherwise this field is + ignored) tolerates the taint. By default, it is not set, which + means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by + the system. + type: int + value: + description: + - Value is the taint value the toleration matches to. If the + operator is Exists, the value should be empty, otherwise just + a regular string. + type: str + volumes: + description: + - List of volumes that can be mounted by containers belonging to + the pod. + type: list + contains: + aws_elastic_block_store: + description: + - AWSElasticBlockStore represents an AWS Disk resource that + is attached to a kubelet's host machine and then exposed to + the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. If + omitted, the default is to mount by volume name. Examples: + For volume /dev/sda1, you specify the partition as "1". + Similarly, the volume partition for /dev/sda is "0" (or + you can leave the property empty).' + type: int + read_only: + description: + - Specify "true" to force and set the ReadOnly property + in VolumeMounts to "true". If omitted, the default is + "false". + type: bool + volume_id: + description: + - Unique ID of the persistent disk resource in AWS (Amazon + EBS volume). + type: str + azure_disk: + description: + - AzureDisk represents an Azure Data Disk mount on the host + and bind mount to the pod. + type: complex + contains: + caching_mode: + description: + - 'Host Caching mode: None, Read Only, Read Write.' + type: str + disk_name: + description: + - The Name of the data disk in the blob storage + type: str + disk_uri: + description: + - The URI the data disk in the blob storage + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + kind: + description: + - 'Expected values Shared: mulitple blob disks per storage + account Dedicated: single blob disk per storage account + Managed: azure managed data disk (only in managed availability + set). defaults to shared' + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + azure_file: + description: + - AzureFile represents an Azure File Service mount on the host + and bind mount to the pod. + type: complex + contains: + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + secret_name: + description: + - the name of secret that contains Azure Storage Account + Name and Key + type: str + share_name: + description: + - Share Name + type: str + cephfs: + description: + - CephFS represents a Ceph FS mount on the host that shares + a pod's lifetime + type: complex + contains: + monitors: + description: + - 'Required: Monitors is a collection of Ceph monitors' + type: list + contains: str + path: + description: + - 'Optional: Used as the mounted root, rather than the full + Ceph tree, default is /' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_file: + description: + - 'Optional: SecretFile is the path to key ring for User, + default is /etc/ceph/user.secret' + type: str + secret_ref: + description: + - 'Optional: SecretRef is reference to the authentication + secret for User, default is empty.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - 'Optional: User is the rados user name, default is admin' + type: str + cinder: + description: + - Cinder represents a cinder volume attached and mounted on + kubelets host machine + type: complex + contains: + fs_type: + description: + - 'Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + volume_id: + description: + - volume id used to identify the volume in cinder + type: str + config_map: + description: + - ConfigMap represents a configMap that should populate this + volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this setting. + This might be in conflict with other options that affect + the file mode, like fsGroup, and the result can be other + mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced ConfigMap will be projected into the + volume as a file whose name is the key and content is + the value. If specified, the listed keys will be projected + into the specified paths, and unlisted keys will not be + present. If a key is specified which is not present in + the ConfigMap, the volume setup will error unless it is + marked optional. Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must be + a value between 0 and 0777. If not specified, the + volume defaultMode will be used. This might be in + conflict with other options that affect the file mode, + like fsGroup, and the result can be other mode bits + set.' + type: int + path: + description: + - The relative path of the file to map the key to. May + not be an absolute path. May not contain the path + element '..'. May not start with the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys must be defined + type: bool + downward_api: + description: + - DownwardAPI represents downward API about the pod that should + populate this volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this setting. + This might be in conflict with other options that affect + the file mode, like fsGroup, and the result can be other + mode bits set.' + type: int + items: + description: + - Items is a list of downward API volume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: only annotations, + labels, name and namespace are supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified API + version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must be + a value between 0 and 0777. If not specified, the + volume defaultMode will be used. This might be in + conflict with other options that affect the file mode, + like fsGroup, and the result can be other mode bits + set.' + type: int + path: + description: + - "Required: Path is the relative path name of the file\ + \ to be created. Must not be absolute or contain the\ + \ '..' path. Must be utf-8 encoded. The first item\ + \ of the relative path must not start with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, requests.cpu + and requests.memory) are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed resources, + defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + empty_dir: + description: + - EmptyDir represents a temporary directory that shares a pod's + lifetime. + type: complex + contains: + medium: + description: + - What type of storage medium should back this directory. + The default is "" which means to use the node's default + medium. Must be an empty string (default) or Memory. + type: str + size_limit: + description: + - Total amount of local storage required for this EmptyDir + volume. The size limit is also applicable for memory medium. + The maximum usage on memory medium EmptyDir would be the + minimum value between the SizeLimit specified here and + the sum of memory limits of all containers in a pod. The + default is nil which means that the limit is undefined. + type: str + fc: + description: + - FC represents a Fibre Channel resource that is attached to + a kubelet's host machine and then exposed to the pod. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + lun: + description: + - 'Required: FC target lun number' + type: int + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + target_ww_ns: + description: + - 'Required: FC target worldwide names (WWNs)' + type: list + contains: str + flex_volume: + description: + - FlexVolume represents a generic volume resource that is provisioned/attached + using an exec based plugin. This is an alpha feature and may + change in future. + type: complex + contains: + driver: + description: + - Driver is the name of the driver to use for this volume. + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + The default filesystem depends on FlexVolume script. + type: str + options: + description: + - 'Optional: Extra command options if any.' + type: complex + contains: str, str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_ref: + description: + - 'Optional: SecretRef is reference to the secret object + containing sensitive information to pass to the plugin + scripts. This may be empty if no secret object is specified. + If the secret object contains more than one secret, all + secrets are passed to the plugin scripts.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + flocker: + description: + - Flocker represents a Flocker volume attached to a kubelet's + host machine. This depends on the Flocker control service + being running + type: complex + contains: + dataset_name: + description: + - Name of the dataset stored as metadata -> name on the + dataset for Flocker should be considered as deprecated + type: str + dataset_uuid: + description: + - UUID of the dataset. This is unique identifier of a Flocker + dataset + type: str + gce_persistent_disk: + description: + - GCEPersistentDisk represents a GCE Disk resource that is attached + to a kubelet's host machine and then exposed to the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. If + omitted, the default is to mount by volume name. Examples: + For volume /dev/sda1, you specify the partition as "1". + Similarly, the volume partition for /dev/sda is "0" (or + you can leave the property empty).' + type: int + pd_name: + description: + - Unique name of the PD resource in GCE. Used to identify + the disk in GCE. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + git_repo: + description: + - GitRepo represents a git repository at a particular revision. + type: complex + contains: + directory: + description: + - Target directory name. Must not contain or start with + '..'. If '.' is supplied, the volume directory will be + the git repository. Otherwise, if specified, the volume + will contain the git repository in the subdirectory with + the given name. + type: str + repository: + description: + - Repository URL + type: str + revision: + description: + - Commit hash for the specified revision. + type: str + glusterfs: + description: + - Glusterfs represents a Glusterfs mount on the host that shares + a pod's lifetime. + type: complex + contains: + endpoints: + description: + - EndpointsName is the endpoint name that details Glusterfs + topology. + type: str + path: + description: + - Path is the Glusterfs volume path. + type: str + read_only: + description: + - ReadOnly here will force the Glusterfs volume to be mounted + with read-only permissions. Defaults to false. + type: bool + host_path: + description: + - HostPath represents a pre-existing file or directory on the + host machine that is directly exposed to the container. This + is generally used for system agents or other privileged things + that are allowed to see the host machine. Most containers + will NOT need this. + type: complex + contains: + path: + description: + - Path of the directory on the host. + type: str + iscsi: + description: + - ISCSI represents an ISCSI Disk resource that is attached to + a kubelet's host machine and then exposed to the pod. + type: complex + contains: + chap_auth_discovery: + description: + - whether support iSCSI Discovery CHAP authentication + type: bool + chap_auth_session: + description: + - whether support iSCSI Session CHAP authentication + type: bool + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + iqn: + description: + - Target iSCSI Qualified Name. + type: str + iscsi_interface: + description: + - "Optional: Defaults to 'default' (tcp). iSCSI interface\ + \ name that uses an iSCSI transport." + type: str + lun: + description: + - iSCSI target lun number. + type: int + portals: + description: + - iSCSI target portal List. The portal is either an IP or + ip_addr:port if the port is other than default (typically + TCP ports 860 and 3260). + type: list + contains: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - CHAP secret for iSCSI target and initiator authentication + type: complex + contains: + name: + description: + - Name of the referent. + type: str + target_portal: + description: + - iSCSI target portal. The portal is either an IP or ip_addr:port + if the port is other than default (typically TCP ports + 860 and 3260). + type: str + name: + description: + - Volume's name. Must be a DNS_LABEL and unique within the pod. + type: str + nfs: + description: + - NFS represents an NFS mount on the host that shares a pod's + lifetime + type: complex + contains: + path: + description: + - Path that is exported by the NFS server. + type: str + read_only: + description: + - ReadOnly here will force the NFS export to be mounted + with read-only permissions. Defaults to false. + type: bool + server: + description: + - Server is the hostname or IP address of the NFS server. + type: str + persistent_volume_claim: + description: + - PersistentVolumeClaimVolumeSource represents a reference to + a PersistentVolumeClaim in the same namespace. + type: complex + contains: + claim_name: + description: + - ClaimName is the name of a PersistentVolumeClaim in the + same namespace as the pod using this volume. + type: str + read_only: + description: + - Will force the ReadOnly setting in VolumeMounts. Default + false. + type: bool + photon_persistent_disk: + description: + - PhotonPersistentDisk represents a PhotonController persistent + disk attached and mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + pd_id: + description: + - ID that identifies Photon Controller persistent disk + type: str + portworx_volume: + description: + - PortworxVolume represents a portworx volume attached and mounted + on kubelets host machine + type: complex + contains: + fs_type: + description: + - FSType represents the filesystem type to mount Must be + a filesystem type supported by the host operating system. + Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + volume_id: + description: + - VolumeID uniquely identifies a Portworx volume + type: str + projected: + description: + - Items for all in one resources secrets, configmaps, and downward + API + type: complex + contains: + default_mode: + description: + - Mode bits to use on created files by default. Must be + a value between 0 and 0777. Directories within the path + are not affected by this setting. This might be in conflict + with other options that affect the file mode, like fsGroup, + and the result can be other mode bits set. + type: int + sources: + description: + - list of volume projections + type: list + contains: + config_map: + description: + - information about the configMap data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the Data + field of the referenced ConfigMap will be projected + into the volume as a file whose name is the key + and content is the value. If specified, the listed + keys will be projected into the specified paths, + and unlisted keys will not be present. If a key + is specified which is not present in the ConfigMap, + the volume setup will error unless it is marked + optional. Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If not + specified, the volume defaultMode will be + used. This might be in conflict with other + options that affect the file mode, like fsGroup, + and the result can be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key + to. May not be an absolute path. May not contain + the path element '..'. May not start with + the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys must + be defined + type: bool + downward_api: + description: + - information about the downwardAPI data to project + type: complex + contains: + items: + description: + - Items is a list of DownwardAPIVolume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: only + annotations, labels, name and namespace are + supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is + written in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If not + specified, the volume defaultMode will be + used. This might be in conflict with other + options that affect the file mode, like fsGroup, + and the result can be other mode bits set.' + type: int + path: + description: + - "Required: Path is the relative path name\ + \ of the file to be created. Must not be absolute\ + \ or contain the '..' path. Must be utf-8\ + \ encoded. The first item of the relative\ + \ path must not start with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only + resources limits and requests (limits.cpu, + limits.memory, requests.cpu and requests.memory) + are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, + optional for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret: + description: + - information about the secret data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the Data + field of the referenced Secret will be projected + into the volume as a file whose name is the key + and content is the value. If specified, the listed + keys will be projected into the specified paths, + and unlisted keys will not be present. If a key + is specified which is not present in the Secret, + the volume setup will error unless it is marked + optional. Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If not + specified, the volume defaultMode will be + used. This might be in conflict with other + options that affect the file mode, like fsGroup, + and the result can be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key + to. May not be an absolute path. May not contain + the path element '..'. May not start with + the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or its key must be + defined + type: bool + quobyte: + description: + - Quobyte represents a Quobyte mount on the host that shares + a pod's lifetime + type: complex + contains: + group: + description: + - Group to map volume access to Default is no group + type: str + read_only: + description: + - ReadOnly here will force the Quobyte volume to be mounted + with read-only permissions. Defaults to false. + type: bool + registry: + description: + - Registry represents a single or multiple Quobyte Registry + services specified as a string as host:port pair (multiple + entries are separated with commas) which acts as the central + registry for volumes + type: str + user: + description: + - User to map volume access to Defaults to serivceaccount + user + type: str + volume: + description: + - Volume is a string that references an already created + Quobyte volume by name. + type: str + rbd: + description: + - RBD represents a Rados Block Device mount on the host that + shares a pod's lifetime. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + image: + description: + - The rados image name. + type: str + keyring: + description: + - Keyring is the path to key ring for RBDUser. Default is + /etc/ceph/keyring. + type: str + monitors: + description: + - A collection of Ceph monitors. + type: list + contains: str + pool: + description: + - The rados pool name. Default is rbd. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - SecretRef is name of the authentication secret for RBDUser. + If provided overrides keyring. Default is nil. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - The rados user name. Default is admin. + type: str + scale_io: + description: + - ScaleIO represents a ScaleIO persistent volume attached and + mounted on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + gateway: + description: + - The host address of the ScaleIO API Gateway. + type: str + protection_domain: + description: + - The name of the Protection Domain for the configured storage + (defaults to "default"). + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef references to the secret for ScaleIO user and + other sensitive information. If this is not provided, + Login operation will fail. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + ssl_enabled: + description: + - Flag to enable/disable SSL communication with Gateway, + default false + type: bool + storage_mode: + description: + - Indicates whether the storage for a volume should be thick + or thin (defaults to "thin"). + type: str + storage_pool: + description: + - The Storage Pool associated with the protection domain + (defaults to "default"). + type: str + system: + description: + - The name of the storage system as configured in ScaleIO. + type: str + volume_name: + description: + - The name of a volume already created in the ScaleIO system + that is associated with this volume source. + type: str + secret: + description: + - Secret represents a secret that should populate this volume. + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this setting. + This might be in conflict with other options that affect + the file mode, like fsGroup, and the result can be other + mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced Secret will be projected into the volume + as a file whose name is the key and content is the value. + If specified, the listed keys will be projected into the + specified paths, and unlisted keys will not be present. + If a key is specified which is not present in the Secret, + the volume setup will error unless it is marked optional. + Paths must be relative and may not contain the '..' path + or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must be + a value between 0 and 0777. If not specified, the + volume defaultMode will be used. This might be in + conflict with other options that affect the file mode, + like fsGroup, and the result can be other mode bits + set.' + type: int + path: + description: + - The relative path of the file to map the key to. May + not be an absolute path. May not contain the path + element '..'. May not start with the string '..'. + type: str + optional: + description: + - Specify whether the Secret or it's keys must be defined + type: bool + secret_name: + description: + - Name of the secret in the pod's namespace to use. + type: str + storageos: + description: + - StorageOS represents a StorageOS volume attached and mounted + on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef specifies the secret to use for obtaining the + StorageOS API credentials. If not specified, default values + will be attempted. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + volume_name: + description: + - VolumeName is the human-readable name of the StorageOS + volume. Volume names are only unique within a namespace. + type: str + volume_namespace: + description: + - VolumeNamespace specifies the scope of the volume within + StorageOS. If no namespace is specified then the Pod's + namespace will be used. This allows the Kubernetes name + scoping to be mirrored within StorageOS for tighter integration. + Set VolumeName to any name to override the default behaviour. + Set to "default" if you are not using namespaces within + StorageOS. Namespaces that do not pre-exist within StorageOS + will be created. + type: str + vsphere_volume: + description: + - VsphereVolume represents a vSphere volume attached and mounted + on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + storage_policy_id: + description: + - Storage Policy Based Management (SPBM) profile ID associated + with the StoragePolicyName. + type: str + storage_policy_name: + description: + - Storage Policy Based Management (SPBM) profile name. + type: str + volume_path: + description: + - Path that identifies vSphere volume vmdk + type: str + status: + description: + - Most recently observed status of the Deployment. + type: complex + contains: + available_replicas: + description: + - Total number of available pods (ready for at least minReadySeconds) targeted + by this deployment. + type: int + collision_count: + description: + - Count of hash collisions for the Deployment. The Deployment controller + uses this field as a collision avoidance mechanism when it needs to create + the name for the newest ReplicaSet. + type: int + conditions: + description: + - Represents the latest available observations of a deployment's current + state. + type: list + contains: + last_transition_time: + description: + - Last time the condition transitioned from one status to another. + type: complex + contains: {} + last_update_time: + description: + - The last time this condition was updated. + type: complex + contains: {} + message: + description: + - A human readable message indicating details about the transition. + type: str + reason: + description: + - The reason for the condition's last transition. + type: str + status: + description: + - Status of the condition, one of True, False, Unknown. + type: str + type: + description: + - Type of deployment condition. + type: str + observed_generation: + description: + - The generation observed by the deployment controller. + type: int + ready_replicas: + description: + - Total number of ready pods targeted by this deployment. + type: int + replicas: + description: + - Total number of non-terminated pods targeted by this deployment (their + labels match the selector). + type: int + unavailable_replicas: + description: + - Total number of unavailable pods targeted by this deployment. + type: int + updated_replicas: + description: + - Total number of non-terminated pods targeted by this deployment that have + the desired template spec. + type: int +''' + + +def main(): + try: + module = KubernetesAnsibleModule('deployment', 'apps_v1beta1') + except KubernetesAnsibleException as exc: + # The helper failed to init, so there is no module object. All we can do is raise the error. + raise Exception(exc.message) + + try: + module.execute_module() + except KubernetesAnsibleException as exc: + module.fail_json(msg="Module failed!", error=str(exc)) + + +if __name__ == '__main__': + main() diff --git a/library/k8s_apps_v1beta1_deployment_list.py b/library/k8s_apps_v1beta1_deployment_list.py new file mode 100644 index 00000000..594d45dd --- /dev/null +++ b/library/k8s_apps_v1beta1_deployment_list.py @@ -0,0 +1,4462 @@ +#!/usr/bin/env python + +from ansible.module_utils.k8s_common import KubernetesAnsibleModule, KubernetesAnsibleException + +DOCUMENTATION = ''' +module: k8s_apps_v1beta1_deployment_list +short_description: Kubernetes DeploymentList +description: +- Retrieve a list of deployments. List operations provide a snapshot read of the underlying + objects, returning a resource_version representing a consistent version of the listed + objects. +version_added: 2.3.0 +author: OpenShift (@openshift) +options: + api_key: + description: + - Token used to connect to the API. + cert_file: + description: + - Path to a certificate used to authenticate with the API. + type: path + context: + description: + - The name of a context found in the Kubernetes config file. + debug: + description: + - Enable debug output from the OpenShift helper. Logging info is written to KubeObjHelper.log + default: false + type: bool + force: + description: + - If set to C(True), and I(state) is C(present), an existing object will updated, + and lists will be replaced, rather than merged. + default: false + type: bool + host: + description: + - Provide a URL for acessing the Kubernetes API. + key_file: + description: + - Path to a key file used to authenticate with the API. + type: path + kubeconfig: + description: + - Path to an existing Kubernetes config file. If not provided, and no other connection + options are provided, the openshift client will attempt to load the default + configuration file from I(~/.kube/config.json). + type: path + password: + description: + - Provide a password for connecting to the API. Use in conjunction with I(username). + resource_definition: + description: + - Provide the YAML definition for the object, bypassing any modules parameters + intended to define object attributes. + type: dict + src: + description: + - Provide a path to a file containing the YAML definition of the object. Mutually + exclusive with I(resource_definition). + type: path + ssl_ca_cert: + description: + - Path to a CA certificate used to authenticate with the API. + type: path + state: + description: + - Determines if an object should be created, patched, or deleted. When set to + C(present), the object will be created, if it does not exist, or patched, if + parameter values differ from the existing object's attributes, and deleted, + if set to C(absent). A patch operation results in merging lists and updating + dictionaries, with lists being merged into a unique set of values. If a list + contains a dictionary with a I(name) or I(type) attribute, a strategic merge + is performed, where individual elements with a matching I(name_) or I(type) + are merged. To force the replacement of lists, set the I(force) option to C(True). + default: present + choices: + - present + - absent + username: + description: + - Provide a username for connecting to the API. + verify_ssl: + description: + - Whether or not to verify the API server's SSL certificates. + type: bool +requirements: +- kubernetes == 3.0.0 +''' + +EXAMPLES = ''' +''' + +RETURN = ''' +api_version: + type: string + description: Requested API version +deployment_list: + type: complex + returned: when I(state) = C(present) + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + type: str + items: + description: + - Items is the list of Deployments. + type: list + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, + and may reject unrecognized values. + type: str + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. In CamelCase. + type: str + metadata: + description: + - Standard object metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource + that may be set by external tools to store and retrieve arbitrary + metadata. They are not queryable and should be preserved when modifying + objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used + to distinguish resources with same name and namespace in different + clusters. This field is not set anywhere right now and apiserver is + going to ignore it if set in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time when + this object was created. It is not guaranteed to be set in happens-before + order across separate operations. Clients may not set this value. + It is represented in RFC3339 form and is in UTC. Populated by the + system. Read-only. Null for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate + before it will be removed from the system. Only set when deletionTimestamp + is also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource + will be deleted. This field is set by the server when a graceful deletion + is requested by the user, and is not directly settable by a client. + The resource is expected to be deleted (no longer visible from resource + lists, and not reachable by name) after the time in this field. Once + set, this value may not be unset or be set further into the future, + although it may be shortened or the resource may be deleted prior + to this time. For example, a user may request that a pod is deleted + in 30 seconds. The Kubelet will react by sending a graceful termination + signal to the containers in the pod. After that 30 seconds, the Kubelet + will send a hard termination signal (SIGKILL) to the container and + after cleanup, remove the pod from the API. In the presence of network + partitions, this object may still exist after this timestamp, until + an administrator or automated process can determine the resource is + fully terminated. If not set, graceful deletion of the object has + not been requested. Populated by the system when a graceful deletion + is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. Each + entry is an identifier for the responsible component that will remove + the entry from the list. If the deletionTimestamp of the object is + non-nil, entries in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate + a unique name ONLY IF the Name field has not been provided. If this + field is used, the name returned to the client will be different than + the name passed. This value will also be combined with a unique suffix. + The provided value has the same validation rules as the Name field, + and may be truncated by the length of the suffix required to make + the value unique on the server. If this field is specified and the + generated name exists, the server will NOT return a 409 - instead, + it will either return 201 Created or 500 with Reason ServerTimeout + indicating a unique name could not be found in the time allotted, + and the client should retry (optionally after the time indicated in + the Retry-After header). Applied only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired + state. Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant + at object creation time. This field is a list of initializers that + have not yet acted on this object. If nil or empty, this object has + been completely initialized. Otherwise, the object is considered uninitialized + and is hidden (in list/watch and get calls) from clients that haven't + explicitly asked to observe uninitialized objects. When an object + is created, the system will populate this list with the current set + of initializers. Only privileged users may set or modify this list. + Once it is empty, it may not be modified further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order before + this object is visible. When the last pending initializer is removed, + and no failing result is set, the initializers struct will be + set to nil and the object is considered as initialized and visible + to all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing this + object. + type: str + result: + description: + - If result is set with the Failure field, the object will be persisted + to storage and then deleted, ensuring that other clients can observe + the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to + the latest internal value, and may reject unrecognized values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason may + define its own extended details. This field is optional and + the data returned is not guaranteed to conform to any schema + except that defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated with + the StatusReason failure. Not all StatusReasons may provide + detailed causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this error, + as named by its JSON serialization. May include dot + and postfix notation for nested attributes. Arrays + are zero-indexed. Fields may appear more than once + in an array of causes due to fields having multiple + errors. Optional. Examples: "name" - the field "name" + on the current resource "items[0].name" - the field + "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause of the error. + This field may be presented as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause of the + error. If this value is empty there is no information + available. + type: str + group: + description: + - The group attribute of the resource associated with the + status StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with the + status StatusReason. On some operations may differ from + the requested resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with the + status StatusReason (when there is a single name which + can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation + should be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource + which can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint + the client submits requests to. Cannot be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of + this object that can be used by clients to determine when + objects have changed. Value must be treated as opaque + by clients and passed unmodified back to the server. Populated + by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated + by the system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is in + the "Failure" status. If this value is empty there is no information + available. A Reason clarifies an HTTP status code but does + not override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and categorize + (scope and select) objects. May match selectors of replication controllers + and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating + resources, although some resources may allow a client to request the + generation of an appropriate name automatically. Name is primarily + intended for creation idempotence and configuration definition. Cannot + be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An empty + namespace is equivalent to the "default" namespace, but "default" + is the canonical representation. Not all objects are required to be + scoped to a namespace - the value of this field for those objects + will be empty. Must be a DNS_LABEL. Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the list + have been deleted, this object will be garbage collected. If this + object is managed by a controller, then an entry in this list will + point to this controller, with the controller field set to true. There + cannot be more than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store until + this reference is removed. Defaults to false. To set this field, + a user needs "delete" permission of the owner, otherwise 422 (Unprocessable + Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object + that can be used by clients to determine when objects have changed. + May be used for optimistic concurrency, change detection, and the + watch operation on a resource or set of resources. Clients must treat + these values as opaque and passed unmodified back to the server. They + may only be valid for a particular resource or set of resources. Populated + by the system. Read-only. Value must be treated as opaque by clients + and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. + Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It is typically + generated by the server on successful creation of a resource and is + not allowed to change on PUT operations. Populated by the system. + Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the Deployment. + type: complex + contains: + min_ready_seconds: + description: + - Minimum number of seconds for which a newly created pod should be + ready without any of its container crashing, for it to be considered + available. Defaults to 0 (pod will be considered available as soon + as it is ready) + type: int + paused: + description: + - Indicates that the deployment is paused. + type: bool + progress_deadline_seconds: + description: + - The maximum time in seconds for a deployment to make progress before + it is considered to be failed. The deployment controller will continue + to process failed deployments and a condition with a ProgressDeadlineExceeded + reason will be surfaced in the deployment status. Once autoRollback + is implemented, the deployment controller will automatically rollback + failed deployments. Note that progress will not be estimated during + the time a deployment is paused. Defaults to 600s. + type: int + replicas: + description: + - Number of desired pods. This is a pointer to distinguish between explicit + zero and not specified. Defaults to 1. + type: int + revision_history_limit: + description: + - The number of old ReplicaSets to retain to allow rollback. This is + a pointer to distinguish between explicit zero and not specified. + Defaults to 2. + type: int + rollback_to: + description: + - The config this deployment is rolling back to. Will be cleared after + rollback is done. + type: complex + contains: + revision: + description: + - The revision to rollback to. If set to 0, rollback to the last + revision. + type: int + selector: + description: + - Label selector for pods. Existing ReplicaSets whose pods are selected + by this will be the ones affected by this deployment. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. The + requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies to. + type: str + operator: + description: + - operator represents a key's relationship to a set of values. + Valid operators ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the operator is In + or NotIn, the values array must be non-empty. If the operator + is Exists or DoesNotExist, the values array must be empty. + This array is replaced during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single {key,value} + in the matchLabels map is equivalent to an element of matchExpressions, + whose key field is "key", the operator is "In", and the values + array contains only "value". The requirements are ANDed. + type: complex + contains: str, str + strategy: + description: + - The deployment strategy to use to replace existing pods with new ones. + type: complex + contains: + rolling_update: + description: + - Rolling update config params. Present only if DeploymentStrategyType + = RollingUpdate. + type: complex + contains: + max_surge: + description: + - 'The maximum number of pods that can be scheduled above the + desired number of pods. Value can be an absolute number (ex: + 5) or a percentage of desired pods (ex: 10%). This can not + be 0 if MaxUnavailable is 0. Absolute number is calculated + from percentage by rounding up. Defaults to 25%. Example: + when this is set to 30%, the new RC can be scaled up immediately + when the rolling update starts, such that the total number + of old and new pods do not exceed 130% of desired pods. Once + old pods have been killed, new RC can be scaled up further, + ensuring that total number of pods running at any time during + the update is atmost 130% of desired pods.' + type: str + max_unavailable: + description: + - 'The maximum number of pods that can be unavailable during + the update. Value can be an absolute number (ex: 5) or a percentage + of desired pods (ex: 10%). Absolute number is calculated from + percentage by rounding down. This can not be 0 if MaxSurge + is 0. Defaults to 25%. Example: when this is set to 30%, the + old RC can be scaled down to 70% of desired pods immediately + when the rolling update starts. Once new pods are ready, old + RC can be scaled down further, followed by scaling up the + new RC, ensuring that the total number of pods available at + all times during the update is at least 70% of desired pods.' + type: str + type: + description: + - Type of deployment. Can be "Recreate" or "RollingUpdate". Default + is RollingUpdate. + type: str + template: + description: + - Template describes the pods that will be created. + type: complex + contains: + metadata: + description: + - Standard object's metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a + resource that may be set by external tools to store and retrieve + arbitrary metadata. They are not queryable and should be preserved + when modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This + is used to distinguish resources with same name and namespace + in different clusters. This field is not set anywhere right + now and apiserver is going to ignore it if set in create or + update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time + when this object was created. It is not guaranteed to be set + in happens-before order across separate operations. Clients + may not set this value. It is represented in RFC3339 form + and is in UTC. Populated by the system. Read-only. Null for + lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate + before it will be removed from the system. Only set when deletionTimestamp + is also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this + resource will be deleted. This field is set by the server + when a graceful deletion is requested by the user, and is + not directly settable by a client. The resource is expected + to be deleted (no longer visible from resource lists, and + not reachable by name) after the time in this field. Once + set, this value may not be unset or be set further into the + future, although it may be shortened or the resource may be + deleted prior to this time. For example, a user may request + that a pod is deleted in 30 seconds. The Kubelet will react + by sending a graceful termination signal to the containers + in the pod. After that 30 seconds, the Kubelet will send a + hard termination signal (SIGKILL) to the container and after + cleanup, remove the pod from the API. In the presence of network + partitions, this object may still exist after this timestamp, + until an administrator or automated process can determine + the resource is fully terminated. If not set, graceful deletion + of the object has not been requested. Populated by the system + when a graceful deletion is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. + Each entry is an identifier for the responsible component + that will remove the entry from the list. If the deletionTimestamp + of the object is non-nil, entries in this list can only be + removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to + generate a unique name ONLY IF the Name field has not been + provided. If this field is used, the name returned to the + client will be different than the name passed. This value + will also be combined with a unique suffix. The provided value + has the same validation rules as the Name field, and may be + truncated by the length of the suffix required to make the + value unique on the server. If this field is specified and + the generated name exists, the server will NOT return a 409 + - instead, it will either return 201 Created or 500 with Reason + ServerTimeout indicating a unique name could not be found + in the time allotted, and the client should retry (optionally + after the time indicated in the Retry-After header). Applied + only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the + desired state. Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system + invariant at object creation time. This field is a list of + initializers that have not yet acted on this object. If nil + or empty, this object has been completely initialized. Otherwise, + the object is considered uninitialized and is hidden (in list/watch + and get calls) from clients that haven't explicitly asked + to observe uninitialized objects. When an object is created, + the system will populate this list with the current set of + initializers. Only privileged users may set or modify this + list. Once it is empty, it may not be modified further by + any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in + order before this object is visible. When the last pending + initializer is removed, and no failing result is set, + the initializers struct will be set to nil and the object + is considered as initialized and visible to all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing + this object. + type: str + result: + description: + - If result is set with the Failure field, the object will + be persisted to storage and then deleted, ensuring that + other clients can observe the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas + to the latest internal value, and may reject unrecognized + values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not + set. + type: int + details: + description: + - Extended data associated with the reason. Each reason + may define its own extended details. This field is + optional and the data returned is not guaranteed to + conform to any schema except that defined by the reason + type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated + with the StatusReason failure. Not all StatusReasons + may provide detailed causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused + this error, as named by its JSON serialization. + May include dot and postfix notation for nested + attributes. Arrays are zero-indexed. Fields + may appear more than once in an array of causes + due to fields having multiple errors. Optional. + Examples: "name" - the field "name" on the + current resource "items[0].name" - the field + "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause + of the error. This field may be presented + as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause + of the error. If this value is empty there + is no information available. + type: str + group: + description: + - The group attribute of the resource associated + with the status StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated + with the status StatusReason. On some operations + may differ from the requested resource Kind. + type: str + name: + description: + - The name attribute of the resource associated + with the status StatusReason (when there is a + single name which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation + should be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource + which can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource + this object represents. Servers may infer this from + the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this + operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version + of this object that can be used by clients to + determine when objects have changed. Value must + be treated as opaque by clients and passed unmodified + back to the server. Populated by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated + by the system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation + is in the "Failure" status. If this value is empty + there is no information available. A Reason clarifies + an HTTP status code but does not override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize + and categorize (scope and select) objects. May match selectors + of replication controllers and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating + resources, although some resources may allow a client to request + the generation of an appropriate name automatically. Name + is primarily intended for creation idempotence and configuration + definition. Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. + An empty namespace is equivalent to the "default" namespace, + but "default" is the canonical representation. Not all objects + are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. + Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in + the list have been deleted, this object will be garbage collected. + If this object is managed by a controller, then an entry in + this list will point to this controller, with the controller + field set to true. There cannot be more than one managing + controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" + finalizer, then the owner cannot be deleted from the key-value + store until this reference is removed. Defaults to false. + To set this field, a user needs "delete" permission of + the owner, otherwise 422 (Unprocessable Entity) will be + returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this + object that can be used by clients to determine when objects + have changed. May be used for optimistic concurrency, change + detection, and the watch operation on a resource or set of + resources. Clients must treat these values as opaque and passed + unmodified back to the server. They may only be valid for + a particular resource or set of resources. Populated by the + system. Read-only. Value must be treated as opaque by clients + and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the + system. Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. + It is typically generated by the server on successful creation + of a resource and is not allowed to change on PUT operations. + Populated by the system. Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the pod. + type: complex + contains: + active_deadline_seconds: + description: + - Optional duration in seconds the pod may be active on the + node relative to StartTime before the system will actively + try to mark it failed and kill associated containers. Value + must be a positive integer. + type: int + affinity: + description: + - If specified, the pod's scheduling constraints + type: complex + contains: + node_affinity: + description: + - Describes node affinity scheduling rules for the pod. + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes + that satisfy the affinity expressions specified by + this field, but it may choose a node that violates + one or more of the expressions. The node that is most + preferred is the one with the greatest sum of weights, + i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling + affinity expressions, etc.), compute a sum by iterating + through the elements of this field and adding "weight" + to the sum if the node matches the corresponding matchExpressions; + the node(s) with the highest sum are the most preferred. + type: list + contains: + preference: + description: + - A node selector term, associated with the corresponding + weight. + type: complex + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies + to. + type: str + operator: + description: + - Represents a key's relationship to a set + of values. Valid operators are In, NotIn, + Exists, DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must + be non-empty. If the operator is Exists + or DoesNotExist, the values array must + be empty. If the operator is Gt or Lt, + the values array must have a single element, + which will be interpreted as an integer. + This array is replaced during a strategic + merge patch. + type: list + contains: str + weight: + description: + - Weight associated with matching the corresponding + nodeSelectorTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - If the affinity requirements specified by this field + are not met at scheduling time, the pod will not be + scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point + during pod execution (e.g. due to an update), the + system may or may not try to eventually evict the + pod from its node. + type: complex + contains: + node_selector_terms: + description: + - Required. A list of node selector terms. The terms + are ORed. + type: list + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies + to. + type: str + operator: + description: + - Represents a key's relationship to a set + of values. Valid operators are In, NotIn, + Exists, DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must + be non-empty. If the operator is Exists + or DoesNotExist, the values array must + be empty. If the operator is Gt or Lt, + the values array must have a single element, + which will be interpreted as an integer. + This array is replaced during a strategic + merge patch. + type: list + contains: str + pod_affinity: + description: + - Describes pod affinity scheduling rules (e.g. co-locate + this pod in the same node, zone, etc. as some other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes + that satisfy the affinity expressions specified by + this field, but it may choose a node that violates + one or more of the expressions. The node that is most + preferred is the one with the greatest sum of weights, + i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling + affinity expressions, etc.), compute a sum by iterating + through the elements of this field and adding "weight" + to the sum if the node has pods which matches the + corresponding podAffinityTerm; the node(s) with the + highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with + the corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in + this case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators + ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. + If the operator is In or NotIn, the + values array must be non-empty. If + the operator is Exists or DoesNotExist, + the values array must be empty. This + array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, + whose key field is "key", the operator + is "In", and the values array contains + only "value". The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the + labelSelector applies to (matches against); + null or empty list means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or + not co-located (anti-affinity) with the pods + matching the labelSelector in the specified + namespaces, where co-located is defined as + running on a node whose value of the label + with key topologyKey matches that of any node + on which any of the selected pods is running. + For PreferredDuringScheduling pod anti-affinity, + empty topologyKey is interpreted as "all topologies" + ("all topologies" here means all the topologyKeys + indicated by scheduler command-line argument + --failure-domains); for affinity and for RequiredDuringScheduling + pod anti-affinity, empty topologyKey is not + allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it + is implemented. If the affinity requirements specified + by this field are not met at scheduling time, the + pod will not be scheduled onto the node. If the affinity + requirements specified by this field cease to be met + at some point during pod execution (e.g. due to a + pod label update), the system will try to eventually + evict the pod from its node. When there are multiple + elements, the lists of nodes corresponding to each + podAffinityTerm are intersected, i.e. all terms must + be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the affinity requirements specified by this field + are not met at scheduling time, the pod will not be + scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point + during pod execution (e.g. due to a pod label update), + the system may or may not try to eventually evict + the pod from its node. When there are multiple elements, + the lists of nodes corresponding to each podAffinityTerm + are intersected, i.e. all terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + pod_anti_affinity: + description: + - Describes pod anti-affinity scheduling rules (e.g. avoid + putting this pod in the same node, zone, etc. as some + other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes + that satisfy the anti-affinity expressions specified + by this field, but it may choose a node that violates + one or more of the expressions. The node that is most + preferred is the one with the greatest sum of weights, + i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling + anti-affinity expressions, etc.), compute a sum by + iterating through the elements of this field and adding + "weight" to the sum if the node has pods which matches + the corresponding podAffinityTerm; the node(s) with + the highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with + the corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in + this case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators + ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. + If the operator is In or NotIn, the + values array must be non-empty. If + the operator is Exists or DoesNotExist, + the values array must be empty. This + array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, + whose key field is "key", the operator + is "In", and the values array contains + only "value". The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the + labelSelector applies to (matches against); + null or empty list means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or + not co-located (anti-affinity) with the pods + matching the labelSelector in the specified + namespaces, where co-located is defined as + running on a node whose value of the label + with key topologyKey matches that of any node + on which any of the selected pods is running. + For PreferredDuringScheduling pod anti-affinity, + empty topologyKey is interpreted as "all topologies" + ("all topologies" here means all the topologyKeys + indicated by scheduler command-line argument + --failure-domains); for affinity and for RequiredDuringScheduling + pod anti-affinity, empty topologyKey is not + allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it + is implemented. If the anti-affinity requirements + specified by this field are not met at scheduling + time, the pod will not be scheduled onto the node. + If the anti-affinity requirements specified by this + field cease to be met at some point during pod execution + (e.g. due to a pod label update), the system will + try to eventually evict the pod from its node. When + there are multiple elements, the lists of nodes corresponding + to each podAffinityTerm are intersected, i.e. all + terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the anti-affinity requirements specified by this + field are not met at scheduling time, the pod will + not be scheduled onto the node. If the anti-affinity + requirements specified by this field cease to be met + at some point during pod execution (e.g. due to a + pod label update), the system may or may not try to + eventually evict the pod from its node. When there + are multiple elements, the lists of nodes corresponding + to each podAffinityTerm are intersected, i.e. all + terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + automount_service_account_token: + description: + - AutomountServiceAccountToken indicates whether a service account + token should be automatically mounted. + type: bool + containers: + description: + - List of containers belonging to the pod. Containers cannot + currently be added or removed. There must be at least one + container in a Pod. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is\ + \ used if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a\ + \ variable cannot be resolved, the reference in the input\ + \ string will be unchanged. The $(VAR_NAME) syntax can\ + \ be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided.\ + \ Variable references $(VAR_NAME) are expanded using the\ + \ container's environment. If a variable cannot be resolved,\ + \ the reference in the input string will be unchanged.\ + \ The $(VAR_NAME) syntax can be escaped with a double\ + \ $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists\ + \ or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. + Cannot be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using + the previous defined environment variables in the + container and any service environment variables. If + a variable cannot be resolved, the reference in the + input string will be unchanged. The $(VAR_NAME) syntax + can be escaped with a double $$, ie: $$(VAR_NAME). + Escaped references will never be expanded, regardless + of whether the variable exists or not. Defaults to + "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot + be used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key + must be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, + requests.cpu and requests.memory) are currently + supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must + be a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must + be defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the + container. The keys defined within a source must be a + C_IDENTIFIER. All invalid keys will be reported as an + event when the container is starting. When a key exists + in multiple sources, the value associated with the last + source will take precedence. Values defined by an Env + with a duplicate key will take precedence. Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the + ConfigMap. Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. + Defaults to Always if :latest tag is specified, or IfNotPresent + otherwise. Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container + is created. If the handler fails, the container is + terminated and restarted according to its restart + policy. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is + terminated. The container is terminated after the + handler completes. The reason for termination is passed + to the handler. Regardless of the outcome of the handler, + the container is eventually terminated. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be + restarted if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be + updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a + port here gives the system additional information about + the network connections a container uses, but is primarily + informational. Not specifying a port here DOES NOT prevent + that port from being exposed. Any port which is listening + on the default "0.0.0.0" address inside a container will + be accessible from the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. + This must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, + this must be a valid port number, 0 < x < 65536. If + HostNetwork is specified, this must match ContainerPort. + Most containers do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have + a unique name. Name for the port that can be referred + to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to + "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container + will be removed from service endpoints if the probe fails. + Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be + updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted + by the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the + host. Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root + user. If true, the Kubelet will validate the image + at runtime to ensure that it does not run as UID 0 + (root) and fail to start the container if it does. + If unset or false, no such validation will be performed. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. + If unspecified, the container runtime will allocate + a random SELinux context for each container. May also + be set in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the + container. + type: str + role: + description: + - Role is a SELinux role label that applies to the + container. + type: str + type: + description: + - Type is a SELinux type label that applies to the + container. + type: str + user: + description: + - User is a SELinux user label that applies to the + container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from + stdin in the container will always result in EOF. Default + is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin + is true the stdin stream will remain open across multiple + attach sessions. If stdinOnce is set to true, stdin is + opened on container start, is empty until the first client + attaches to stdin, and then remains open and accepts data + until the client disconnects, at which time stdin is closed + and remains closed until the container is restarted. If + this flag is false, a container processes that reads from + stdin will never receive an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into\ + \ the container's filesystem. Message written is intended\ + \ to be brief final status, such as an assertion failure\ + \ message. Will be truncated by the node if greater than\ + \ 4096 bytes. The total message length across all containers\ + \ will be limited to 12kb. Defaults to /dev/termination-log.\ + \ Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to + populate the container status message on both success + and failure. FallbackToLogsOnError will use the last chunk + of container log output if the termination message file + is empty and the container exited with an error. The log + output is limited to 2048 bytes or 80 lines, whichever + is smaller. Defaults to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, + also requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. + Cannot be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should + be mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's + volume should be mounted. Defaults to "" (volume's + root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + dns_policy: + description: + - Set DNS policy for containers within the pod. One of 'ClusterFirstWithHostNet', + 'ClusterFirst' or 'Default'. Defaults to "ClusterFirst". To + have DNS options set along with hostNetwork, you have to specify + DNS policy explicitly to 'ClusterFirstWithHostNet'. + type: str + host_aliases: + description: + - HostAliases is an optional list of hosts and IPs that will + be injected into the pod's hosts file if specified. This is + only valid for non-hostNetwork pods. + type: list + contains: + hostnames: + description: + - Hostnames for the above IP address. + type: list + contains: str + ip: + description: + - IP address of the host file entry. + type: str + host_ipc: + description: + - "Use the host's ipc namespace. Optional: Default to false." + type: bool + host_network: + description: + - Host networking requested for this pod. Use the host's network + namespace. If this option is set, the ports that will be used + must be specified. Default to false. + type: bool + host_pid: + description: + - "Use the host's pid namespace. Optional: Default to false." + type: bool + hostname: + description: + - Specifies the hostname of the Pod If not specified, the pod's + hostname will be set to a system-defined value. + type: str + image_pull_secrets: + description: + - ImagePullSecrets is an optional list of references to secrets + in the same namespace to use for pulling any of the images + used by this PodSpec. If specified, these secrets will be + passed to individual puller implementations for them to use. + For example, in the case of docker, only DockerConfig type + secrets are honored. + type: list + contains: + name: + description: + - Name of the referent. + type: str + init_containers: + description: + - List of initialization containers belonging to the pod. Init + containers are executed in order prior to containers being + started. If any init container fails, the pod is considered + to have failed and is handled according to its restartPolicy. + The name for an init container or normal container must be + unique among all containers. Init containers may not have + Lifecycle actions, Readiness probes, or Liveness probes. The + resourceRequirements of an init container are taken into account + during scheduling by finding the highest request/limit for + each resource type, and then using the max of of that value + or the sum of the normal containers. Limits are applied to + init containers in a similar fashion. Init containers cannot + currently be added or removed. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is\ + \ used if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a\ + \ variable cannot be resolved, the reference in the input\ + \ string will be unchanged. The $(VAR_NAME) syntax can\ + \ be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided.\ + \ Variable references $(VAR_NAME) are expanded using the\ + \ container's environment. If a variable cannot be resolved,\ + \ the reference in the input string will be unchanged.\ + \ The $(VAR_NAME) syntax can be escaped with a double\ + \ $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists\ + \ or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. + Cannot be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using + the previous defined environment variables in the + container and any service environment variables. If + a variable cannot be resolved, the reference in the + input string will be unchanged. The $(VAR_NAME) syntax + can be escaped with a double $$, ie: $$(VAR_NAME). + Escaped references will never be expanded, regardless + of whether the variable exists or not. Defaults to + "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot + be used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key + must be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, + requests.cpu and requests.memory) are currently + supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must + be a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must + be defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the + container. The keys defined within a source must be a + C_IDENTIFIER. All invalid keys will be reported as an + event when the container is starting. When a key exists + in multiple sources, the value associated with the last + source will take precedence. Values defined by an Env + with a duplicate key will take precedence. Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the + ConfigMap. Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. + Defaults to Always if :latest tag is specified, or IfNotPresent + otherwise. Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container + is created. If the handler fails, the container is + terminated and restarted according to its restart + policy. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is + terminated. The container is terminated after the + handler completes. The reason for termination is passed + to the handler. Regardless of the outcome of the handler, + the container is eventually terminated. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be + restarted if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be + updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a + port here gives the system additional information about + the network connections a container uses, but is primarily + informational. Not specifying a port here DOES NOT prevent + that port from being exposed. Any port which is listening + on the default "0.0.0.0" address inside a container will + be accessible from the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. + This must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, + this must be a valid port number, 0 < x < 65536. If + HostNetwork is specified, this must match ContainerPort. + Most containers do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have + a unique name. Name for the port that can be referred + to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to + "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container + will be removed from service endpoints if the probe fails. + Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be + updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted + by the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the + host. Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root + user. If true, the Kubelet will validate the image + at runtime to ensure that it does not run as UID 0 + (root) and fail to start the container if it does. + If unset or false, no such validation will be performed. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. + If unspecified, the container runtime will allocate + a random SELinux context for each container. May also + be set in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the + container. + type: str + role: + description: + - Role is a SELinux role label that applies to the + container. + type: str + type: + description: + - Type is a SELinux type label that applies to the + container. + type: str + user: + description: + - User is a SELinux user label that applies to the + container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from + stdin in the container will always result in EOF. Default + is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin + is true the stdin stream will remain open across multiple + attach sessions. If stdinOnce is set to true, stdin is + opened on container start, is empty until the first client + attaches to stdin, and then remains open and accepts data + until the client disconnects, at which time stdin is closed + and remains closed until the container is restarted. If + this flag is false, a container processes that reads from + stdin will never receive an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into\ + \ the container's filesystem. Message written is intended\ + \ to be brief final status, such as an assertion failure\ + \ message. Will be truncated by the node if greater than\ + \ 4096 bytes. The total message length across all containers\ + \ will be limited to 12kb. Defaults to /dev/termination-log.\ + \ Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to + populate the container status message on both success + and failure. FallbackToLogsOnError will use the last chunk + of container log output if the termination message file + is empty and the container exited with an error. The log + output is limited to 2048 bytes or 80 lines, whichever + is smaller. Defaults to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, + also requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. + Cannot be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should + be mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's + volume should be mounted. Defaults to "" (volume's + root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + node_name: + description: + - NodeName is a request to schedule this pod onto a specific + node. If it is non-empty, the scheduler simply schedules this + pod onto that node, assuming that it fits resource requirements. + type: str + node_selector: + description: + - NodeSelector is a selector which must be true for the pod + to fit on a node. Selector which must match a node's labels + for the pod to be scheduled on that node. + type: complex + contains: str, str + restart_policy: + description: + - Restart policy for all containers within the pod. One of Always, + OnFailure, Never. Default to Always. + type: str + scheduler_name: + description: + - If specified, the pod will be dispatched by specified scheduler. + If not specified, the pod will be dispatched by default scheduler. + type: str + security_context: + description: + - 'SecurityContext holds pod-level security attributes and common + container settings. Optional: Defaults to empty. See type + description for default values of each field.' + type: complex + contains: + fs_group: + description: + - "A special supplemental group that applies to all containers\ + \ in a pod. Some volume types allow the Kubelet to change\ + \ the ownership of that volume to be owned by the pod:\ + \ 1. The owning GID will be the FSGroup 2. The setgid\ + \ bit is set (new files created in the volume will be\ + \ owned by FSGroup) 3. The permission bits are OR'd with\ + \ rw-rw---- If unset, the Kubelet will not modify the\ + \ ownership and permissions of any volume." + type: int + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime + to ensure that it does not run as UID 0 (root) and fail + to start the container if it does. If unset or false, + no such validation will be performed. May also be set + in SecurityContext. If set in both SecurityContext and + PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in SecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence for that container. + type: int + se_linux_options: + description: + - The SELinux context to be applied to all containers. If + unspecified, the container runtime will allocate a random + SELinux context for each container. May also be set in + SecurityContext. If set in both SecurityContext and PodSecurityContext, + the value specified in SecurityContext takes precedence + for that container. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + supplemental_groups: + description: + - A list of groups applied to the first process run in each + container, in addition to the container's primary GID. + If unspecified, no groups will be added to any container. + type: list + contains: int + service_account: + description: + - 'DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. + Deprecated: Use serviceAccountName instead.' + type: str + service_account_name: + description: + - ServiceAccountName is the name of the ServiceAccount to use + to run this pod. + type: str + subdomain: + description: + - If specified, the fully qualified Pod hostname will be "...svc.". If not specified, the pod + will not have a domainname at all. + type: str + termination_grace_period_seconds: + description: + - Optional duration in seconds the pod needs to terminate gracefully. + May be decreased in delete request. Value must be non-negative + integer. The value zero indicates delete immediately. If this + value is nil, the default grace period will be used instead. + The grace period is the duration in seconds after the processes + running in the pod are sent a termination signal and the time + when the processes are forcibly halted with a kill signal. + Set this value longer than the expected cleanup time for your + process. Defaults to 30 seconds. + type: int + tolerations: + description: + - If specified, the pod's tolerations. + type: list + contains: + effect: + description: + - Effect indicates the taint effect to match. Empty means + match all taint effects. When specified, allowed values + are NoSchedule, PreferNoSchedule and NoExecute. + type: str + key: + description: + - Key is the taint key that the toleration applies to. Empty + means match all taint keys. If the key is empty, operator + must be Exists; this combination means to match all values + and all keys. + type: str + operator: + description: + - Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a + pod can tolerate all taints of a particular category. + type: str + toleration_seconds: + description: + - TolerationSeconds represents the period of time the toleration + (which must be of effect NoExecute, otherwise this field + is ignored) tolerates the taint. By default, it is not + set, which means tolerate the taint forever (do not evict). + Zero and negative values will be treated as 0 (evict immediately) + by the system. + type: int + value: + description: + - Value is the taint value the toleration matches to. If + the operator is Exists, the value should be empty, otherwise + just a regular string. + type: str + volumes: + description: + - List of volumes that can be mounted by containers belonging + to the pod. + type: list + contains: + aws_elastic_block_store: + description: + - AWSElasticBlockStore represents an AWS Disk resource that + is attached to a kubelet's host machine and then exposed + to the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. + If omitted, the default is to mount by volume name. + Examples: For volume /dev/sda1, you specify the partition + as "1". Similarly, the volume partition for /dev/sda + is "0" (or you can leave the property empty).' + type: int + read_only: + description: + - Specify "true" to force and set the ReadOnly property + in VolumeMounts to "true". If omitted, the default + is "false". + type: bool + volume_id: + description: + - Unique ID of the persistent disk resource in AWS (Amazon + EBS volume). + type: str + azure_disk: + description: + - AzureDisk represents an Azure Data Disk mount on the host + and bind mount to the pod. + type: complex + contains: + caching_mode: + description: + - 'Host Caching mode: None, Read Only, Read Write.' + type: str + disk_name: + description: + - The Name of the data disk in the blob storage + type: str + disk_uri: + description: + - The URI the data disk in the blob storage + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + kind: + description: + - 'Expected values Shared: mulitple blob disks per storage + account Dedicated: single blob disk per storage account + Managed: azure managed data disk (only in managed + availability set). defaults to shared' + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + azure_file: + description: + - AzureFile represents an Azure File Service mount on the + host and bind mount to the pod. + type: complex + contains: + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + secret_name: + description: + - the name of secret that contains Azure Storage Account + Name and Key + type: str + share_name: + description: + - Share Name + type: str + cephfs: + description: + - CephFS represents a Ceph FS mount on the host that shares + a pod's lifetime + type: complex + contains: + monitors: + description: + - 'Required: Monitors is a collection of Ceph monitors' + type: list + contains: str + path: + description: + - 'Optional: Used as the mounted root, rather than the + full Ceph tree, default is /' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_file: + description: + - 'Optional: SecretFile is the path to key ring for + User, default is /etc/ceph/user.secret' + type: str + secret_ref: + description: + - 'Optional: SecretRef is reference to the authentication + secret for User, default is empty.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - 'Optional: User is the rados user name, default is + admin' + type: str + cinder: + description: + - Cinder represents a cinder volume attached and mounted + on kubelets host machine + type: complex + contains: + fs_type: + description: + - 'Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Examples: + "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" + if unspecified.' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + volume_id: + description: + - volume id used to identify the volume in cinder + type: str + config_map: + description: + - ConfigMap represents a configMap that should populate + this volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this + setting. This might be in conflict with other options + that affect the file mode, like fsGroup, and the result + can be other mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced ConfigMap will be projected into + the volume as a file whose name is the key and content + is the value. If specified, the listed keys will be + projected into the specified paths, and unlisted keys + will not be present. If a key is specified which is + not present in the ConfigMap, the volume setup will + error unless it is marked optional. Paths must be + relative and may not contain the '..' path or start + with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must + be a value between 0 and 0777. If not specified, + the volume defaultMode will be used. This might + be in conflict with other options that affect + the file mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key to. + May not be an absolute path. May not contain the + path element '..'. May not start with the string + '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys must be + defined + type: bool + downward_api: + description: + - DownwardAPI represents downward API about the pod that + should populate this volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this + setting. This might be in conflict with other options + that affect the file mode, like fsGroup, and the result + can be other mode bits set.' + type: int + items: + description: + - Items is a list of downward API volume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: only annotations, + labels, name and namespace are supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must + be a value between 0 and 0777. If not specified, + the volume defaultMode will be used. This might + be in conflict with other options that affect + the file mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - "Required: Path is the relative path name of the\ + \ file to be created. Must not be absolute or\ + \ contain the '..' path. Must be utf-8 encoded.\ + \ The first item of the relative path must not\ + \ start with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, + requests.cpu and requests.memory) are currently + supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + empty_dir: + description: + - EmptyDir represents a temporary directory that shares + a pod's lifetime. + type: complex + contains: + medium: + description: + - What type of storage medium should back this directory. + The default is "" which means to use the node's default + medium. Must be an empty string (default) or Memory. + type: str + size_limit: + description: + - Total amount of local storage required for this EmptyDir + volume. The size limit is also applicable for memory + medium. The maximum usage on memory medium EmptyDir + would be the minimum value between the SizeLimit specified + here and the sum of memory limits of all containers + in a pod. The default is nil which means that the + limit is undefined. + type: str + fc: + description: + - FC represents a Fibre Channel resource that is attached + to a kubelet's host machine and then exposed to the pod. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + lun: + description: + - 'Required: FC target lun number' + type: int + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + target_ww_ns: + description: + - 'Required: FC target worldwide names (WWNs)' + type: list + contains: str + flex_volume: + description: + - FlexVolume represents a generic volume resource that is + provisioned/attached using an exec based plugin. This + is an alpha feature and may change in future. + type: complex + contains: + driver: + description: + - Driver is the name of the driver to use for this volume. + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". The default filesystem depends on FlexVolume + script. + type: str + options: + description: + - 'Optional: Extra command options if any.' + type: complex + contains: str, str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_ref: + description: + - 'Optional: SecretRef is reference to the secret object + containing sensitive information to pass to the plugin + scripts. This may be empty if no secret object is + specified. If the secret object contains more than + one secret, all secrets are passed to the plugin scripts.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + flocker: + description: + - Flocker represents a Flocker volume attached to a kubelet's + host machine. This depends on the Flocker control service + being running + type: complex + contains: + dataset_name: + description: + - Name of the dataset stored as metadata -> name on + the dataset for Flocker should be considered as deprecated + type: str + dataset_uuid: + description: + - UUID of the dataset. This is unique identifier of + a Flocker dataset + type: str + gce_persistent_disk: + description: + - GCEPersistentDisk represents a GCE Disk resource that + is attached to a kubelet's host machine and then exposed + to the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. + If omitted, the default is to mount by volume name. + Examples: For volume /dev/sda1, you specify the partition + as "1". Similarly, the volume partition for /dev/sda + is "0" (or you can leave the property empty).' + type: int + pd_name: + description: + - Unique name of the PD resource in GCE. Used to identify + the disk in GCE. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + git_repo: + description: + - GitRepo represents a git repository at a particular revision. + type: complex + contains: + directory: + description: + - Target directory name. Must not contain or start with + '..'. If '.' is supplied, the volume directory will + be the git repository. Otherwise, if specified, the + volume will contain the git repository in the subdirectory + with the given name. + type: str + repository: + description: + - Repository URL + type: str + revision: + description: + - Commit hash for the specified revision. + type: str + glusterfs: + description: + - Glusterfs represents a Glusterfs mount on the host that + shares a pod's lifetime. + type: complex + contains: + endpoints: + description: + - EndpointsName is the endpoint name that details Glusterfs + topology. + type: str + path: + description: + - Path is the Glusterfs volume path. + type: str + read_only: + description: + - ReadOnly here will force the Glusterfs volume to be + mounted with read-only permissions. Defaults to false. + type: bool + host_path: + description: + - HostPath represents a pre-existing file or directory on + the host machine that is directly exposed to the container. + This is generally used for system agents or other privileged + things that are allowed to see the host machine. Most + containers will NOT need this. + type: complex + contains: + path: + description: + - Path of the directory on the host. + type: str + iscsi: + description: + - ISCSI represents an ISCSI Disk resource that is attached + to a kubelet's host machine and then exposed to the pod. + type: complex + contains: + chap_auth_discovery: + description: + - whether support iSCSI Discovery CHAP authentication + type: bool + chap_auth_session: + description: + - whether support iSCSI Session CHAP authentication + type: bool + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + iqn: + description: + - Target iSCSI Qualified Name. + type: str + iscsi_interface: + description: + - "Optional: Defaults to 'default' (tcp). iSCSI interface\ + \ name that uses an iSCSI transport." + type: str + lun: + description: + - iSCSI target lun number. + type: int + portals: + description: + - iSCSI target portal List. The portal is either an + IP or ip_addr:port if the port is other than default + (typically TCP ports 860 and 3260). + type: list + contains: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - CHAP secret for iSCSI target and initiator authentication + type: complex + contains: + name: + description: + - Name of the referent. + type: str + target_portal: + description: + - iSCSI target portal. The portal is either an IP or + ip_addr:port if the port is other than default (typically + TCP ports 860 and 3260). + type: str + name: + description: + - Volume's name. Must be a DNS_LABEL and unique within the + pod. + type: str + nfs: + description: + - NFS represents an NFS mount on the host that shares a + pod's lifetime + type: complex + contains: + path: + description: + - Path that is exported by the NFS server. + type: str + read_only: + description: + - ReadOnly here will force the NFS export to be mounted + with read-only permissions. Defaults to false. + type: bool + server: + description: + - Server is the hostname or IP address of the NFS server. + type: str + persistent_volume_claim: + description: + - PersistentVolumeClaimVolumeSource represents a reference + to a PersistentVolumeClaim in the same namespace. + type: complex + contains: + claim_name: + description: + - ClaimName is the name of a PersistentVolumeClaim in + the same namespace as the pod using this volume. + type: str + read_only: + description: + - Will force the ReadOnly setting in VolumeMounts. Default + false. + type: bool + photon_persistent_disk: + description: + - PhotonPersistentDisk represents a PhotonController persistent + disk attached and mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + pd_id: + description: + - ID that identifies Photon Controller persistent disk + type: str + portworx_volume: + description: + - PortworxVolume represents a portworx volume attached and + mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - FSType represents the filesystem type to mount Must + be a filesystem type supported by the host operating + system. Ex. "ext4", "xfs". Implicitly inferred to + be "ext4" if unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + volume_id: + description: + - VolumeID uniquely identifies a Portworx volume + type: str + projected: + description: + - Items for all in one resources secrets, configmaps, and + downward API + type: complex + contains: + default_mode: + description: + - Mode bits to use on created files by default. Must + be a value between 0 and 0777. Directories within + the path are not affected by this setting. This might + be in conflict with other options that affect the + file mode, like fsGroup, and the result can be other + mode bits set. + type: int + sources: + description: + - list of volume projections + type: list + contains: + config_map: + description: + - information about the configMap data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the + Data field of the referenced ConfigMap will + be projected into the volume as a file whose + name is the key and content is the value. + If specified, the listed keys will be projected + into the specified paths, and unlisted keys + will not be present. If a key is specified + which is not present in the ConfigMap, the + volume setup will error unless it is marked + optional. Paths must be relative and may not + contain the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If + not specified, the volume defaultMode + will be used. This might be in conflict + with other options that affect the file + mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the + key to. May not be an absolute path. May + not contain the path element '..'. May + not start with the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys + must be defined + type: bool + downward_api: + description: + - information about the downwardAPI data to project + type: complex + contains: + items: + description: + - Items is a list of DownwardAPIVolume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: + only annotations, labels, name and namespace + are supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath + is written in terms of, defaults to + "v1". + type: str + field_path: + description: + - Path of the field to select in the + specified API version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If + not specified, the volume defaultMode + will be used. This might be in conflict + with other options that affect the file + mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - "Required: Path is the relative path name\ + \ of the file to be created. Must not\ + \ be absolute or contain the '..' path.\ + \ Must be utf-8 encoded. The first item\ + \ of the relative path must not start\ + \ with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: + only resources limits and requests (limits.cpu, + limits.memory, requests.cpu and requests.memory) + are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, + optional for env vars' + type: str + divisor: + description: + - Specifies the output format of the + exposed resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret: + description: + - information about the secret data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the + Data field of the referenced Secret will be + projected into the volume as a file whose + name is the key and content is the value. + If specified, the listed keys will be projected + into the specified paths, and unlisted keys + will not be present. If a key is specified + which is not present in the Secret, the volume + setup will error unless it is marked optional. + Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If + not specified, the volume defaultMode + will be used. This might be in conflict + with other options that affect the file + mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the + key to. May not be an absolute path. May + not contain the path element '..'. May + not start with the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or its key must + be defined + type: bool + quobyte: + description: + - Quobyte represents a Quobyte mount on the host that shares + a pod's lifetime + type: complex + contains: + group: + description: + - Group to map volume access to Default is no group + type: str + read_only: + description: + - ReadOnly here will force the Quobyte volume to be + mounted with read-only permissions. Defaults to false. + type: bool + registry: + description: + - Registry represents a single or multiple Quobyte Registry + services specified as a string as host:port pair (multiple + entries are separated with commas) which acts as the + central registry for volumes + type: str + user: + description: + - User to map volume access to Defaults to serivceaccount + user + type: str + volume: + description: + - Volume is a string that references an already created + Quobyte volume by name. + type: str + rbd: + description: + - RBD represents a Rados Block Device mount on the host + that shares a pod's lifetime. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + image: + description: + - The rados image name. + type: str + keyring: + description: + - Keyring is the path to key ring for RBDUser. Default + is /etc/ceph/keyring. + type: str + monitors: + description: + - A collection of Ceph monitors. + type: list + contains: str + pool: + description: + - The rados pool name. Default is rbd. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - SecretRef is name of the authentication secret for + RBDUser. If provided overrides keyring. Default is + nil. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - The rados user name. Default is admin. + type: str + scale_io: + description: + - ScaleIO represents a ScaleIO persistent volume attached + and mounted on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + gateway: + description: + - The host address of the ScaleIO API Gateway. + type: str + protection_domain: + description: + - The name of the Protection Domain for the configured + storage (defaults to "default"). + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef references to the secret for ScaleIO user + and other sensitive information. If this is not provided, + Login operation will fail. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + ssl_enabled: + description: + - Flag to enable/disable SSL communication with Gateway, + default false + type: bool + storage_mode: + description: + - Indicates whether the storage for a volume should + be thick or thin (defaults to "thin"). + type: str + storage_pool: + description: + - The Storage Pool associated with the protection domain + (defaults to "default"). + type: str + system: + description: + - The name of the storage system as configured in ScaleIO. + type: str + volume_name: + description: + - The name of a volume already created in the ScaleIO + system that is associated with this volume source. + type: str + secret: + description: + - Secret represents a secret that should populate this volume. + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this + setting. This might be in conflict with other options + that affect the file mode, like fsGroup, and the result + can be other mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced Secret will be projected into the + volume as a file whose name is the key and content + is the value. If specified, the listed keys will be + projected into the specified paths, and unlisted keys + will not be present. If a key is specified which is + not present in the Secret, the volume setup will error + unless it is marked optional. Paths must be relative + and may not contain the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must + be a value between 0 and 0777. If not specified, + the volume defaultMode will be used. This might + be in conflict with other options that affect + the file mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key to. + May not be an absolute path. May not contain the + path element '..'. May not start with the string + '..'. + type: str + optional: + description: + - Specify whether the Secret or it's keys must be defined + type: bool + secret_name: + description: + - Name of the secret in the pod's namespace to use. + type: str + storageos: + description: + - StorageOS represents a StorageOS volume attached and mounted + on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef specifies the secret to use for obtaining + the StorageOS API credentials. If not specified, default + values will be attempted. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + volume_name: + description: + - VolumeName is the human-readable name of the StorageOS + volume. Volume names are only unique within a namespace. + type: str + volume_namespace: + description: + - VolumeNamespace specifies the scope of the volume + within StorageOS. If no namespace is specified then + the Pod's namespace will be used. This allows the + Kubernetes name scoping to be mirrored within StorageOS + for tighter integration. Set VolumeName to any name + to override the default behaviour. Set to "default" + if you are not using namespaces within StorageOS. + Namespaces that do not pre-exist within StorageOS + will be created. + type: str + vsphere_volume: + description: + - VsphereVolume represents a vSphere volume attached and + mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + storage_policy_id: + description: + - Storage Policy Based Management (SPBM) profile ID + associated with the StoragePolicyName. + type: str + storage_policy_name: + description: + - Storage Policy Based Management (SPBM) profile name. + type: str + volume_path: + description: + - Path that identifies vSphere volume vmdk + type: str + status: + description: + - Most recently observed status of the Deployment. + type: complex + contains: + available_replicas: + description: + - Total number of available pods (ready for at least minReadySeconds) + targeted by this deployment. + type: int + collision_count: + description: + - Count of hash collisions for the Deployment. The Deployment controller + uses this field as a collision avoidance mechanism when it needs to + create the name for the newest ReplicaSet. + type: int + conditions: + description: + - Represents the latest available observations of a deployment's current + state. + type: list + contains: + last_transition_time: + description: + - Last time the condition transitioned from one status to another. + type: complex + contains: {} + last_update_time: + description: + - The last time this condition was updated. + type: complex + contains: {} + message: + description: + - A human readable message indicating details about the transition. + type: str + reason: + description: + - The reason for the condition's last transition. + type: str + status: + description: + - Status of the condition, one of True, False, Unknown. + type: str + type: + description: + - Type of deployment condition. + type: str + observed_generation: + description: + - The generation observed by the deployment controller. + type: int + ready_replicas: + description: + - Total number of ready pods targeted by this deployment. + type: int + replicas: + description: + - Total number of non-terminated pods targeted by this deployment (their + labels match the selector). + type: int + unavailable_replicas: + description: + - Total number of unavailable pods targeted by this deployment. + type: int + updated_replicas: + description: + - Total number of non-terminated pods targeted by this deployment that + have the desired template spec. + type: int + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of this object that + can be used by clients to determine when objects have changed. Value must + be treated as opaque by clients and passed unmodified back to the server. + Populated by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. Read-only. + type: str +''' + + +def main(): + try: + module = KubernetesAnsibleModule('deployment_list', 'apps_v1beta1') + except KubernetesAnsibleException as exc: + # The helper failed to init, so there is no module object. All we can do is raise the error. + raise Exception(exc.message) + + try: + module.execute_module() + except KubernetesAnsibleException as exc: + module.fail_json(msg="Module failed!", error=str(exc)) + + +if __name__ == '__main__': + main() diff --git a/library/k8s_apps_v1beta1_scale.py b/library/k8s_apps_v1beta1_scale.py new file mode 100644 index 00000000..9c15fba1 --- /dev/null +++ b/library/k8s_apps_v1beta1_scale.py @@ -0,0 +1,471 @@ +#!/usr/bin/env python + +from ansible.module_utils.k8s_common import KubernetesAnsibleModule, KubernetesAnsibleException + +DOCUMENTATION = ''' +module: k8s_apps_v1beta1_scale +short_description: Kubernetes Scale +description: +- Manage the lifecycle of a scale object. Supports check mode, and attempts to to + be idempotent. +version_added: 2.3.0 +author: OpenShift (@openshift) +options: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that may + be set by external tools to store and retrieve arbitrary metadata. They are + not queryable and should be preserved when modifying objects. + type: dict + api_key: + description: + - Token used to connect to the API. + cert_file: + description: + - Path to a certificate used to authenticate with the API. + type: path + context: + description: + - The name of a context found in the Kubernetes config file. + debug: + description: + - Enable debug output from the OpenShift helper. Logging info is written to KubeObjHelper.log + default: false + type: bool + force: + description: + - If set to C(True), and I(state) is C(present), an existing object will updated, + and lists will be replaced, rather than merged. + default: false + type: bool + host: + description: + - Provide a URL for acessing the Kubernetes API. + key_file: + description: + - Path to a key file used to authenticate with the API. + type: path + kubeconfig: + description: + - Path to an existing Kubernetes config file. If not provided, and no other connection + options are provided, the openshift client will attempt to load the default + configuration file from I(~/.kube/config.json). + type: path + labels: + description: + - Map of string keys and values that can be used to organize and categorize (scope + and select) objects. May match selectors of replication controllers and services. + type: dict + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of an appropriate + name automatically. Name is primarily intended for creation idempotence and + configuration definition. Cannot be updated. + namespace: + description: + - Namespace defines the space within each name must be unique. An empty namespace + is equivalent to the "default" namespace, but "default" is the canonical representation. + Not all objects are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. Cannot be updated. + password: + description: + - Provide a password for connecting to the API. Use in conjunction with I(username). + spec_replicas: + description: + - desired number of instances for the scaled object. + aliases: + - replicas + type: int + ssl_ca_cert: + description: + - Path to a CA certificate used to authenticate with the API. + type: path + username: + description: + - Provide a username for connecting to the API. + verify_ssl: + description: + - Whether or not to verify the API server's SSL certificates. + type: bool +requirements: +- kubernetes == 3.0.0 +''' + +EXAMPLES = ''' +''' + +RETURN = ''' +api_version: + type: string + description: Requested API version +scale: + type: complex + returned: on success + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + type: str + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + metadata: + description: + - Standard object metadata; + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that + may be set by external tools to store and retrieve arbitrary metadata. + They are not queryable and should be preserved when modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used to distinguish + resources with same name and namespace in different clusters. This field + is not set anywhere right now and apiserver is going to ignore it if set + in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time when this + object was created. It is not guaranteed to be set in happens-before order + across separate operations. Clients may not set this value. It is represented + in RFC3339 form and is in UTC. Populated by the system. Read-only. Null + for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate before + it will be removed from the system. Only set when deletionTimestamp is + also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource will + be deleted. This field is set by the server when a graceful deletion is + requested by the user, and is not directly settable by a client. The resource + is expected to be deleted (no longer visible from resource lists, and + not reachable by name) after the time in this field. Once set, this value + may not be unset or be set further into the future, although it may be + shortened or the resource may be deleted prior to this time. For example, + a user may request that a pod is deleted in 30 seconds. The Kubelet will + react by sending a graceful termination signal to the containers in the + pod. After that 30 seconds, the Kubelet will send a hard termination signal + (SIGKILL) to the container and after cleanup, remove the pod from the + API. In the presence of network partitions, this object may still exist + after this timestamp, until an administrator or automated process can + determine the resource is fully terminated. If not set, graceful deletion + of the object has not been requested. Populated by the system when a graceful + deletion is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. Each entry + is an identifier for the responsible component that will remove the entry + from the list. If the deletionTimestamp of the object is non-nil, entries + in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate a + unique name ONLY IF the Name field has not been provided. If this field + is used, the name returned to the client will be different than the name + passed. This value will also be combined with a unique suffix. The provided + value has the same validation rules as the Name field, and may be truncated + by the length of the suffix required to make the value unique on the server. + If this field is specified and the generated name exists, the server will + NOT return a 409 - instead, it will either return 201 Created or 500 with + Reason ServerTimeout indicating a unique name could not be found in the + time allotted, and the client should retry (optionally after the time + indicated in the Retry-After header). Applied only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired state. + Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant at + object creation time. This field is a list of initializers that have not + yet acted on this object. If nil or empty, this object has been completely + initialized. Otherwise, the object is considered uninitialized and is + hidden (in list/watch and get calls) from clients that haven't explicitly + asked to observe uninitialized objects. When an object is created, the + system will populate this list with the current set of initializers. Only + privileged users may set or modify this list. Once it is empty, it may + not be modified further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order before + this object is visible. When the last pending initializer is removed, + and no failing result is set, the initializers struct will be set + to nil and the object is considered as initialized and visible to + all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing this + object. + type: str + result: + description: + - If result is set with the Failure field, the object will be persisted + to storage and then deleted, ensuring that other clients can observe + the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the + latest internal value, and may reject unrecognized values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason may define + its own extended details. This field is optional and the data + returned is not guaranteed to conform to any schema except that + defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated with the + StatusReason failure. Not all StatusReasons may provide detailed + causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this error, + as named by its JSON serialization. May include dot and + postfix notation for nested attributes. Arrays are zero-indexed. + Fields may appear more than once in an array of causes + due to fields having multiple errors. Optional. Examples: + "name" - the field "name" on the current resource "items[0].name" + - the field "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause of the error. + This field may be presented as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause of the error. + If this value is empty there is no information available. + type: str + group: + description: + - The group attribute of the resource associated with the status + StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with the status + StatusReason. On some operations may differ from the requested + resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with the status + StatusReason (when there is a single name which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation should + be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource which + can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource this object + represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of this + object that can be used by clients to determine when objects + have changed. Value must be treated as opaque by clients and + passed unmodified back to the server. Populated by the system. + Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the + system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is in the + "Failure" status. If this value is empty there is no information + available. A Reason clarifies an HTTP status code but does not + override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and categorize + (scope and select) objects. May match selectors of replication controllers + and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of + an appropriate name automatically. Name is primarily intended for creation + idempotence and configuration definition. Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An empty + namespace is equivalent to the "default" namespace, but "default" is the + canonical representation. Not all objects are required to be scoped to + a namespace - the value of this field for those objects will be empty. + Must be a DNS_LABEL. Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the list have + been deleted, this object will be garbage collected. If this object is + managed by a controller, then an entry in this list will point to this + controller, with the controller field set to true. There cannot be more + than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store until this + reference is removed. Defaults to false. To set this field, a user + needs "delete" permission of the owner, otherwise 422 (Unprocessable + Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object that + can be used by clients to determine when objects have changed. May be + used for optimistic concurrency, change detection, and the watch operation + on a resource or set of resources. Clients must treat these values as + opaque and passed unmodified back to the server. They may only be valid + for a particular resource or set of resources. Populated by the system. + Read-only. Value must be treated as opaque by clients and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It is typically + generated by the server on successful creation of a resource and is not + allowed to change on PUT operations. Populated by the system. Read-only. + type: str + spec: + description: + - defines the behavior of the scale. + type: complex + contains: + replicas: + description: + - desired number of instances for the scaled object. + type: int + status: + description: + - current status of the scale. + type: complex + contains: + replicas: + description: + - actual number of observed instances of the scaled object. + type: int + selector: + description: + - label query over pods that should match the replicas count. + type: complex + contains: str, str + target_selector: + description: + - label selector for pods that should match the replicas count. This is + a serializated version of both map-based and more expressive set-based + selectors. This is done to avoid introspection in the clients. The string + will be in the same format as the query-param syntax. If the target type + only supports map-based selectors, both this field and map-based selector + field are populated. + type: str +''' + + +def main(): + try: + module = KubernetesAnsibleModule('scale', 'apps_v1beta1') + except KubernetesAnsibleException as exc: + # The helper failed to init, so there is no module object. All we can do is raise the error. + raise Exception(exc.message) + + try: + module.execute_module() + except KubernetesAnsibleException as exc: + module.fail_json(msg="Module failed!", error=str(exc)) + + +if __name__ == '__main__': + main() diff --git a/library/k8s_extensions_v1beta1_deployment.py b/library/k8s_extensions_v1beta1_deployment.py new file mode 100644 index 00000000..9cd52665 --- /dev/null +++ b/library/k8s_extensions_v1beta1_deployment.py @@ -0,0 +1,4754 @@ +#!/usr/bin/env python + +from ansible.module_utils.k8s_common import KubernetesAnsibleModule, KubernetesAnsibleException + +DOCUMENTATION = ''' +module: k8s_extensions_v1beta1_deployment +short_description: Kubernetes Deployment +description: +- Manage the lifecycle of a deployment object. Supports check mode, and attempts to + to be idempotent. +version_added: 2.3.0 +author: OpenShift (@openshift) +options: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that may + be set by external tools to store and retrieve arbitrary metadata. They are + not queryable and should be preserved when modifying objects. + type: dict + api_key: + description: + - Token used to connect to the API. + cert_file: + description: + - Path to a certificate used to authenticate with the API. + type: path + context: + description: + - The name of a context found in the Kubernetes config file. + debug: + description: + - Enable debug output from the OpenShift helper. Logging info is written to KubeObjHelper.log + default: false + type: bool + force: + description: + - If set to C(True), and I(state) is C(present), an existing object will updated, + and lists will be replaced, rather than merged. + default: false + type: bool + host: + description: + - Provide a URL for acessing the Kubernetes API. + key_file: + description: + - Path to a key file used to authenticate with the API. + type: path + kubeconfig: + description: + - Path to an existing Kubernetes config file. If not provided, and no other connection + options are provided, the openshift client will attempt to load the default + configuration file from I(~/.kube/config.json). + type: path + labels: + description: + - Map of string keys and values that can be used to organize and categorize (scope + and select) objects. May match selectors of replication controllers and services. + type: dict + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of an appropriate + name automatically. Name is primarily intended for creation idempotence and + configuration definition. Cannot be updated. + namespace: + description: + - Namespace defines the space within each name must be unique. An empty namespace + is equivalent to the "default" namespace, but "default" is the canonical representation. + Not all objects are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. Cannot be updated. + password: + description: + - Provide a password for connecting to the API. Use in conjunction with I(username). + resource_definition: + description: + - Provide the YAML definition for the object, bypassing any modules parameters + intended to define object attributes. + type: dict + spec_min_ready_seconds: + description: + - Minimum number of seconds for which a newly created pod should be ready without + any of its container crashing, for it to be considered available. Defaults to + 0 (pod will be considered available as soon as it is ready) + aliases: + - min_ready_seconds + type: int + spec_paused: + description: + - Indicates that the deployment is paused and will not be processed by the deployment + controller. + aliases: + - paused + type: bool + spec_progress_deadline_seconds: + description: + - The maximum time in seconds for a deployment to make progress before it is considered + to be failed. The deployment controller will continue to process failed deployments + and a condition with a ProgressDeadlineExceeded reason will be surfaced in the + deployment status. Once autoRollback is implemented, the deployment controller + will automatically rollback failed deployments. Note that progress will not + be estimated during the time a deployment is paused. This is not set by default. + aliases: + - progress_deadline_seconds + type: int + spec_replicas: + description: + - Number of desired pods. This is a pointer to distinguish between explicit zero + and not specified. Defaults to 1. + aliases: + - replicas + type: int + spec_revision_history_limit: + description: + - The number of old ReplicaSets to retain to allow rollback. This is a pointer + to distinguish between explicit zero and not specified. + aliases: + - revision_history_limit + type: int + spec_rollback_to_revision: + description: + - The revision to rollback to. If set to 0, rollback to the last revision. + aliases: + - rollback_to_revision + type: int + spec_selector_match_expressions: + description: + - matchExpressions is a list of label selector requirements. The requirements + are ANDed. + aliases: + - selector_match_expressions + type: list + spec_selector_match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", + the operator is "In", and the values array contains only "value". The requirements + are ANDed. + aliases: + - selector_match_labels + type: dict + spec_strategy_rolling_update_max_surge: + description: + - 'The maximum number of pods that can be scheduled above the desired number of + pods. Value can be an absolute number (ex: 5) or a percentage of desired pods + (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated + from percentage by rounding up. By default, a value of 1 is used. Example: when + this is set to 30%, the new RC can be scaled up immediately when the rolling + update starts, such that the total number of old and new pods do not exceed + 130% of desired pods. Once old pods have been killed, new RC can be scaled up + further, ensuring that total number of pods running at any time during the update + is atmost 130% of desired pods.' + aliases: + - strategy_rolling_update_max_surge + spec_strategy_rolling_update_max_unavailable: + description: + - 'The maximum number of pods that can be unavailable during the update. Value + can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). + Absolute number is calculated from percentage by rounding down. This can not + be 0 if MaxSurge is 0. By default, a fixed value of 1 is used. Example: when + this is set to 30%, the old RC can be scaled down to 70% of desired pods immediately + when the rolling update starts. Once new pods are ready, old RC can be scaled + down further, followed by scaling up the new RC, ensuring that the total number + of pods available at all times during the update is at least 70% of desired + pods.' + aliases: + - strategy_rolling_update_max_unavailable + spec_strategy_type: + description: + - Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate. + aliases: + - strategy_type + spec_template_metadata_annotations: + description: + - Annotations is an unstructured key value map stored with a resource that may + be set by external tools to store and retrieve arbitrary metadata. They are + not queryable and should be preserved when modifying objects. + type: dict + spec_template_metadata_labels: + description: + - Map of string keys and values that can be used to organize and categorize (scope + and select) objects. May match selectors of replication controllers and services. + type: dict + spec_template_metadata_name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of an appropriate + name automatically. Name is primarily intended for creation idempotence and + configuration definition. Cannot be updated. + spec_template_metadata_namespace: + description: + - Namespace defines the space within each name must be unique. An empty namespace + is equivalent to the "default" namespace, but "default" is the canonical representation. + Not all objects are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. Cannot be updated. + spec_template_spec_active_deadline_seconds: + description: + - Optional duration in seconds the pod may be active on the node relative to StartTime + before the system will actively try to mark it failed and kill associated containers. + Value must be a positive integer. + aliases: + - active_deadline_seconds + type: int + spec_template_spec_affinity_node_affinity_preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that satisfy the affinity + expressions specified by this field, but it may choose a node that violates + one or more of the expressions. The node that is most preferred is the one with + the greatest sum of weights, i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements of this field and adding + "weight" to the sum if the node matches the corresponding matchExpressions; + the node(s) with the highest sum are the most preferred. + aliases: + - affinity_node_affinity_preferred_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_node_affinity_required_during_scheduling_ignored_during_execution_node_selector_terms: + description: + - Required. A list of node selector terms. The terms are ORed. + aliases: + - affinity_node_affinity_required_during_scheduling_ignored_during_execution_node_selector_terms + type: list + spec_template_spec_affinity_pod_affinity_preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that satisfy the affinity + expressions specified by this field, but it may choose a node that violates + one or more of the expressions. The node that is most preferred is the one with + the greatest sum of weights, i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements of this field and adding + "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + aliases: + - affinity_pod_affinity_preferred_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_pod_affinity_required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is implemented. If the affinity + requirements specified by this field are not met at scheduling time, the pod + will not be scheduled onto the node. If the affinity requirements specified + by this field cease to be met at some point during pod execution (e.g. due to + a pod label update), the system will try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes corresponding to + each podAffinityTerm are intersected, i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the affinity requirements specified by this field are not met at scheduling + time, the pod will not be scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point during pod execution (e.g. + due to a pod label update), the system may or may not try to eventually evict + the pod from its node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, i.e. all terms must be + satisfied.' + aliases: + - affinity_pod_affinity_required_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_pod_anti_affinity_preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity + expressions specified by this field, but it may choose a node that violates + one or more of the expressions. The node that is most preferred is the one with + the greatest sum of weights, i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling anti-affinity expressions, + etc.), compute a sum by iterating through the elements of this field and adding + "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + aliases: + - affinity_pod_anti_affinity_preferred_during_scheduling_ignored_during_execution + type: list + spec_template_spec_affinity_pod_anti_affinity_required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is implemented. If the anti-affinity + requirements specified by this field are not met at scheduling time, the pod + will not be scheduled onto the node. If the anti-affinity requirements specified + by this field cease to be met at some point during pod execution (e.g. due to + a pod label update), the system will try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes corresponding to + each podAffinityTerm are intersected, i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the anti-affinity requirements specified by this field are not met at scheduling + time, the pod will not be scheduled onto the node. If the anti-affinity requirements + specified by this field cease to be met at some point during pod execution (e.g. + due to a pod label update), the system may or may not try to eventually evict + the pod from its node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, i.e. all terms must be + satisfied.' + aliases: + - affinity_pod_anti_affinity_required_during_scheduling_ignored_during_execution + type: list + spec_template_spec_automount_service_account_token: + description: + - AutomountServiceAccountToken indicates whether a service account token should + be automatically mounted. + aliases: + - automount_service_account_token + type: bool + spec_template_spec_containers: + description: + - List of containers belonging to the pod. Containers cannot currently be added + or removed. There must be at least one container in a Pod. Cannot be updated. + aliases: + - containers + type: list + spec_template_spec_dns_policy: + description: + - Set DNS policy for containers within the pod. One of 'ClusterFirstWithHostNet', + 'ClusterFirst' or 'Default'. Defaults to "ClusterFirst". To have DNS options + set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'. + aliases: + - dns_policy + spec_template_spec_host_aliases: + description: + - HostAliases is an optional list of hosts and IPs that will be injected into + the pod's hosts file if specified. This is only valid for non-hostNetwork pods. + aliases: + - host_aliases + type: list + spec_template_spec_host_ipc: + description: + - "Use the host's ipc namespace. Optional: Default to false." + aliases: + - host_ipc + type: bool + spec_template_spec_host_network: + description: + - Host networking requested for this pod. Use the host's network namespace. If + this option is set, the ports that will be used must be specified. Default to + false. + aliases: + - host_network + type: bool + spec_template_spec_host_pid: + description: + - "Use the host's pid namespace. Optional: Default to false." + aliases: + - host_pid + type: bool + spec_template_spec_hostname: + description: + - Specifies the hostname of the Pod If not specified, the pod's hostname will + be set to a system-defined value. + aliases: + - hostname + spec_template_spec_image_pull_secrets: + description: + - ImagePullSecrets is an optional list of references to secrets in the same namespace + to use for pulling any of the images used by this PodSpec. If specified, these + secrets will be passed to individual puller implementations for them to use. + For example, in the case of docker, only DockerConfig type secrets are honored. + aliases: + - image_pull_secrets + type: list + spec_template_spec_init_containers: + description: + - List of initialization containers belonging to the pod. Init containers are + executed in order prior to containers being started. If any init container fails, + the pod is considered to have failed and is handled according to its restartPolicy. + The name for an init container or normal container must be unique among all + containers. Init containers may not have Lifecycle actions, Readiness probes, + or Liveness probes. The resourceRequirements of an init container are taken + into account during scheduling by finding the highest request/limit for each + resource type, and then using the max of of that value or the sum of the normal + containers. Limits are applied to init containers in a similar fashion. Init + containers cannot currently be added or removed. Cannot be updated. + aliases: + - init_containers + type: list + spec_template_spec_node_name: + description: + - NodeName is a request to schedule this pod onto a specific node. If it is non-empty, + the scheduler simply schedules this pod onto that node, assuming that it fits + resource requirements. + aliases: + - node_name + spec_template_spec_node_selector: + description: + - NodeSelector is a selector which must be true for the pod to fit on a node. + Selector which must match a node's labels for the pod to be scheduled on that + node. + aliases: + - node_selector + type: dict + spec_template_spec_restart_policy: + description: + - Restart policy for all containers within the pod. One of Always, OnFailure, + Never. Default to Always. + aliases: + - restart_policy + spec_template_spec_scheduler_name: + description: + - If specified, the pod will be dispatched by specified scheduler. If not specified, + the pod will be dispatched by default scheduler. + aliases: + - scheduler_name + spec_template_spec_security_context_fs_group: + description: + - "A special supplemental group that applies to all containers in a pod. Some\ + \ volume types allow the Kubelet to change the ownership of that volume to be\ + \ owned by the pod: 1. The owning GID will be the FSGroup 2. The setgid bit\ + \ is set (new files created in the volume will be owned by FSGroup) 3. The permission\ + \ bits are OR'd with rw-rw---- If unset, the Kubelet will not modify the ownership\ + \ and permissions of any volume." + aliases: + - security_context_fs_group + type: int + spec_template_spec_security_context_run_as_non_root: + description: + - Indicates that the container must run as a non-root user. If true, the Kubelet + will validate the image at runtime to ensure that it does not run as UID 0 (root) + and fail to start the container if it does. If unset or false, no such validation + will be performed. May also be set in SecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext takes precedence. + aliases: + - security_context_run_as_non_root + type: bool + spec_template_spec_security_context_run_as_user: + description: + - The UID to run the entrypoint of the container process. Defaults to user specified + in image metadata if unspecified. May also be set in SecurityContext. If set + in both SecurityContext and PodSecurityContext, the value specified in SecurityContext + takes precedence for that container. + aliases: + - security_context_run_as_user + type: int + spec_template_spec_security_context_se_linux_options_level: + description: + - Level is SELinux level label that applies to the container. + aliases: + - security_context_se_linux_options_level + spec_template_spec_security_context_se_linux_options_role: + description: + - Role is a SELinux role label that applies to the container. + aliases: + - security_context_se_linux_options_role + spec_template_spec_security_context_se_linux_options_type: + description: + - Type is a SELinux type label that applies to the container. + aliases: + - security_context_se_linux_options_type + spec_template_spec_security_context_se_linux_options_user: + description: + - User is a SELinux user label that applies to the container. + aliases: + - security_context_se_linux_options_user + spec_template_spec_security_context_supplemental_groups: + description: + - A list of groups applied to the first process run in each container, in addition + to the container's primary GID. If unspecified, no groups will be added to any + container. + aliases: + - security_context_supplemental_groups + type: list + spec_template_spec_service_account: + description: + - 'DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: + Use serviceAccountName instead.' + aliases: + - service_account + spec_template_spec_service_account_name: + description: + - ServiceAccountName is the name of the ServiceAccount to use to run this pod. + aliases: + - service_account_name + spec_template_spec_subdomain: + description: + - If specified, the fully qualified Pod hostname will be "...svc.". If not specified, the pod will not have a + domainname at all. + aliases: + - subdomain + spec_template_spec_termination_grace_period_seconds: + description: + - Optional duration in seconds the pod needs to terminate gracefully. May be decreased + in delete request. Value must be non-negative integer. The value zero indicates + delete immediately. If this value is nil, the default grace period will be used + instead. The grace period is the duration in seconds after the processes running + in the pod are sent a termination signal and the time when the processes are + forcibly halted with a kill signal. Set this value longer than the expected + cleanup time for your process. Defaults to 30 seconds. + aliases: + - termination_grace_period_seconds + type: int + spec_template_spec_tolerations: + description: + - If specified, the pod's tolerations. + aliases: + - tolerations + type: list + spec_template_spec_volumes: + description: + - List of volumes that can be mounted by containers belonging to the pod. + aliases: + - volumes + type: list + src: + description: + - Provide a path to a file containing the YAML definition of the object. Mutually + exclusive with I(resource_definition). + type: path + ssl_ca_cert: + description: + - Path to a CA certificate used to authenticate with the API. + type: path + state: + description: + - Determines if an object should be created, patched, or deleted. When set to + C(present), the object will be created, if it does not exist, or patched, if + parameter values differ from the existing object's attributes, and deleted, + if set to C(absent). A patch operation results in merging lists and updating + dictionaries, with lists being merged into a unique set of values. If a list + contains a dictionary with a I(name) or I(type) attribute, a strategic merge + is performed, where individual elements with a matching I(name_) or I(type) + are merged. To force the replacement of lists, set the I(force) option to C(True). + default: present + choices: + - present + - absent + username: + description: + - Provide a username for connecting to the API. + verify_ssl: + description: + - Whether or not to verify the API server's SSL certificates. + type: bool +requirements: +- kubernetes == 3.0.0 +''' + +EXAMPLES = ''' +''' + +RETURN = ''' +api_version: + type: string + description: Requested API version +deployment: + type: complex + returned: when I(state) = C(present) + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + type: str + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + metadata: + description: + - Standard object metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that + may be set by external tools to store and retrieve arbitrary metadata. + They are not queryable and should be preserved when modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used to distinguish + resources with same name and namespace in different clusters. This field + is not set anywhere right now and apiserver is going to ignore it if set + in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time when this + object was created. It is not guaranteed to be set in happens-before order + across separate operations. Clients may not set this value. It is represented + in RFC3339 form and is in UTC. Populated by the system. Read-only. Null + for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate before + it will be removed from the system. Only set when deletionTimestamp is + also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource will + be deleted. This field is set by the server when a graceful deletion is + requested by the user, and is not directly settable by a client. The resource + is expected to be deleted (no longer visible from resource lists, and + not reachable by name) after the time in this field. Once set, this value + may not be unset or be set further into the future, although it may be + shortened or the resource may be deleted prior to this time. For example, + a user may request that a pod is deleted in 30 seconds. The Kubelet will + react by sending a graceful termination signal to the containers in the + pod. After that 30 seconds, the Kubelet will send a hard termination signal + (SIGKILL) to the container and after cleanup, remove the pod from the + API. In the presence of network partitions, this object may still exist + after this timestamp, until an administrator or automated process can + determine the resource is fully terminated. If not set, graceful deletion + of the object has not been requested. Populated by the system when a graceful + deletion is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. Each entry + is an identifier for the responsible component that will remove the entry + from the list. If the deletionTimestamp of the object is non-nil, entries + in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate a + unique name ONLY IF the Name field has not been provided. If this field + is used, the name returned to the client will be different than the name + passed. This value will also be combined with a unique suffix. The provided + value has the same validation rules as the Name field, and may be truncated + by the length of the suffix required to make the value unique on the server. + If this field is specified and the generated name exists, the server will + NOT return a 409 - instead, it will either return 201 Created or 500 with + Reason ServerTimeout indicating a unique name could not be found in the + time allotted, and the client should retry (optionally after the time + indicated in the Retry-After header). Applied only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired state. + Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant at + object creation time. This field is a list of initializers that have not + yet acted on this object. If nil or empty, this object has been completely + initialized. Otherwise, the object is considered uninitialized and is + hidden (in list/watch and get calls) from clients that haven't explicitly + asked to observe uninitialized objects. When an object is created, the + system will populate this list with the current set of initializers. Only + privileged users may set or modify this list. Once it is empty, it may + not be modified further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order before + this object is visible. When the last pending initializer is removed, + and no failing result is set, the initializers struct will be set + to nil and the object is considered as initialized and visible to + all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing this + object. + type: str + result: + description: + - If result is set with the Failure field, the object will be persisted + to storage and then deleted, ensuring that other clients can observe + the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the + latest internal value, and may reject unrecognized values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason may define + its own extended details. This field is optional and the data + returned is not guaranteed to conform to any schema except that + defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated with the + StatusReason failure. Not all StatusReasons may provide detailed + causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this error, + as named by its JSON serialization. May include dot and + postfix notation for nested attributes. Arrays are zero-indexed. + Fields may appear more than once in an array of causes + due to fields having multiple errors. Optional. Examples: + "name" - the field "name" on the current resource "items[0].name" + - the field "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause of the error. + This field may be presented as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause of the error. + If this value is empty there is no information available. + type: str + group: + description: + - The group attribute of the resource associated with the status + StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with the status + StatusReason. On some operations may differ from the requested + resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with the status + StatusReason (when there is a single name which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation should + be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource which + can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource this object + represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of this + object that can be used by clients to determine when objects + have changed. Value must be treated as opaque by clients and + passed unmodified back to the server. Populated by the system. + Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the + system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is in the + "Failure" status. If this value is empty there is no information + available. A Reason clarifies an HTTP status code but does not + override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and categorize + (scope and select) objects. May match selectors of replication controllers + and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of + an appropriate name automatically. Name is primarily intended for creation + idempotence and configuration definition. Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An empty + namespace is equivalent to the "default" namespace, but "default" is the + canonical representation. Not all objects are required to be scoped to + a namespace - the value of this field for those objects will be empty. + Must be a DNS_LABEL. Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the list have + been deleted, this object will be garbage collected. If this object is + managed by a controller, then an entry in this list will point to this + controller, with the controller field set to true. There cannot be more + than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store until this + reference is removed. Defaults to false. To set this field, a user + needs "delete" permission of the owner, otherwise 422 (Unprocessable + Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object that + can be used by clients to determine when objects have changed. May be + used for optimistic concurrency, change detection, and the watch operation + on a resource or set of resources. Clients must treat these values as + opaque and passed unmodified back to the server. They may only be valid + for a particular resource or set of resources. Populated by the system. + Read-only. Value must be treated as opaque by clients and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It is typically + generated by the server on successful creation of a resource and is not + allowed to change on PUT operations. Populated by the system. Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the Deployment. + type: complex + contains: + min_ready_seconds: + description: + - Minimum number of seconds for which a newly created pod should be ready + without any of its container crashing, for it to be considered available. + Defaults to 0 (pod will be considered available as soon as it is ready) + type: int + paused: + description: + - Indicates that the deployment is paused and will not be processed by the + deployment controller. + type: bool + progress_deadline_seconds: + description: + - The maximum time in seconds for a deployment to make progress before it + is considered to be failed. The deployment controller will continue to + process failed deployments and a condition with a ProgressDeadlineExceeded + reason will be surfaced in the deployment status. Once autoRollback is + implemented, the deployment controller will automatically rollback failed + deployments. Note that progress will not be estimated during the time + a deployment is paused. This is not set by default. + type: int + replicas: + description: + - Number of desired pods. This is a pointer to distinguish between explicit + zero and not specified. Defaults to 1. + type: int + revision_history_limit: + description: + - The number of old ReplicaSets to retain to allow rollback. This is a pointer + to distinguish between explicit zero and not specified. + type: int + rollback_to: + description: + - The config this deployment is rolling back to. Will be cleared after rollback + is done. + type: complex + contains: + revision: + description: + - The revision to rollback to. If set to 0, rollback to the last revision. + type: int + selector: + description: + - Label selector for pods. Existing ReplicaSets whose pods are selected + by this will be the ones affected by this deployment. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. The requirements + are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies to. + type: str + operator: + description: + - operator represents a key's relationship to a set of values. Valid + operators ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the operator is In or + NotIn, the values array must be non-empty. If the operator is + Exists or DoesNotExist, the values array must be empty. This array + is replaced during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single {key,value} in + the matchLabels map is equivalent to an element of matchExpressions, + whose key field is "key", the operator is "In", and the values array + contains only "value". The requirements are ANDed. + type: complex + contains: str, str + strategy: + description: + - The deployment strategy to use to replace existing pods with new ones. + type: complex + contains: + rolling_update: + description: + - Rolling update config params. Present only if DeploymentStrategyType + = RollingUpdate. + type: complex + contains: + max_surge: + description: + - 'The maximum number of pods that can be scheduled above the desired + number of pods. Value can be an absolute number (ex: 5) or a percentage + of desired pods (ex: 10%). This can not be 0 if MaxUnavailable + is 0. Absolute number is calculated from percentage by rounding + up. By default, a value of 1 is used. Example: when this is set + to 30%, the new RC can be scaled up immediately when the rolling + update starts, such that the total number of old and new pods + do not exceed 130% of desired pods. Once old pods have been killed, + new RC can be scaled up further, ensuring that total number of + pods running at any time during the update is atmost 130% of desired + pods.' + type: str + max_unavailable: + description: + - 'The maximum number of pods that can be unavailable during the + update. Value can be an absolute number (ex: 5) or a percentage + of desired pods (ex: 10%). Absolute number is calculated from + percentage by rounding down. This can not be 0 if MaxSurge is + 0. By default, a fixed value of 1 is used. Example: when this + is set to 30%, the old RC can be scaled down to 70% of desired + pods immediately when the rolling update starts. Once new pods + are ready, old RC can be scaled down further, followed by scaling + up the new RC, ensuring that the total number of pods available + at all times during the update is at least 70% of desired pods.' + type: str + type: + description: + - Type of deployment. Can be "Recreate" or "RollingUpdate". Default + is RollingUpdate. + type: str + template: + description: + - Template describes the pods that will be created. + type: complex + contains: + metadata: + description: + - Standard object's metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource + that may be set by external tools to store and retrieve arbitrary + metadata. They are not queryable and should be preserved when + modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used + to distinguish resources with same name and namespace in different + clusters. This field is not set anywhere right now and apiserver + is going to ignore it if set in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time + when this object was created. It is not guaranteed to be set in + happens-before order across separate operations. Clients may not + set this value. It is represented in RFC3339 form and is in UTC. + Populated by the system. Read-only. Null for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate + before it will be removed from the system. Only set when deletionTimestamp + is also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource + will be deleted. This field is set by the server when a graceful + deletion is requested by the user, and is not directly settable + by a client. The resource is expected to be deleted (no longer + visible from resource lists, and not reachable by name) after + the time in this field. Once set, this value may not be unset + or be set further into the future, although it may be shortened + or the resource may be deleted prior to this time. For example, + a user may request that a pod is deleted in 30 seconds. The Kubelet + will react by sending a graceful termination signal to the containers + in the pod. After that 30 seconds, the Kubelet will send a hard + termination signal (SIGKILL) to the container and after cleanup, + remove the pod from the API. In the presence of network partitions, + this object may still exist after this timestamp, until an administrator + or automated process can determine the resource is fully terminated. + If not set, graceful deletion of the object has not been requested. + Populated by the system when a graceful deletion is requested. + Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. + Each entry is an identifier for the responsible component that + will remove the entry from the list. If the deletionTimestamp + of the object is non-nil, entries in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate + a unique name ONLY IF the Name field has not been provided. If + this field is used, the name returned to the client will be different + than the name passed. This value will also be combined with a + unique suffix. The provided value has the same validation rules + as the Name field, and may be truncated by the length of the suffix + required to make the value unique on the server. If this field + is specified and the generated name exists, the server will NOT + return a 409 - instead, it will either return 201 Created or 500 + with Reason ServerTimeout indicating a unique name could not be + found in the time allotted, and the client should retry (optionally + after the time indicated in the Retry-After header). Applied only + if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired + state. Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant + at object creation time. This field is a list of initializers + that have not yet acted on this object. If nil or empty, this + object has been completely initialized. Otherwise, the object + is considered uninitialized and is hidden (in list/watch and get + calls) from clients that haven't explicitly asked to observe uninitialized + objects. When an object is created, the system will populate this + list with the current set of initializers. Only privileged users + may set or modify this list. Once it is empty, it may not be modified + further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order + before this object is visible. When the last pending initializer + is removed, and no failing result is set, the initializers + struct will be set to nil and the object is considered as + initialized and visible to all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing + this object. + type: str + result: + description: + - If result is set with the Failure field, the object will be + persisted to storage and then deleted, ensuring that other + clients can observe the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas + to the latest internal value, and may reject unrecognized + values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason + may define its own extended details. This field is optional + and the data returned is not guaranteed to conform to + any schema except that defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated + with the StatusReason failure. Not all StatusReasons + may provide detailed causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this + error, as named by its JSON serialization. May + include dot and postfix notation for nested attributes. + Arrays are zero-indexed. Fields may appear more + than once in an array of causes due to fields + having multiple errors. Optional. Examples: "name" + - the field "name" on the current resource "items[0].name" + - the field "name" on the first array entry in + "items"' + type: str + message: + description: + - A human-readable description of the cause of the + error. This field may be presented as-is to a + reader. + type: str + reason: + description: + - A machine-readable description of the cause of + the error. If this value is empty there is no + information available. + type: str + group: + description: + - The group attribute of the resource associated with + the status StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with + the status StatusReason. On some operations may differ + from the requested resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with + the status StatusReason (when there is a single name + which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation + should be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource + which can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource + this object represents. Servers may infer this from the + endpoint the client submits requests to. Cannot be updated. + In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version + of this object that can be used by clients to determine + when objects have changed. Value must be treated as + opaque by clients and passed unmodified back to the + server. Populated by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated + by the system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is + in the "Failure" status. If this value is empty there + is no information available. A Reason clarifies an HTTP + status code but does not override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and + categorize (scope and select) objects. May match selectors of + replication controllers and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating + resources, although some resources may allow a client to request + the generation of an appropriate name automatically. Name is primarily + intended for creation idempotence and configuration definition. + Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An + empty namespace is equivalent to the "default" namespace, but + "default" is the canonical representation. Not all objects are + required to be scoped to a namespace - the value of this field + for those objects will be empty. Must be a DNS_LABEL. Cannot be + updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the + list have been deleted, this object will be garbage collected. + If this object is managed by a controller, then an entry in this + list will point to this controller, with the controller field + set to true. There cannot be more than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store + until this reference is removed. Defaults to false. To set + this field, a user needs "delete" permission of the owner, + otherwise 422 (Unprocessable Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object + that can be used by clients to determine when objects have changed. + May be used for optimistic concurrency, change detection, and + the watch operation on a resource or set of resources. Clients + must treat these values as opaque and passed unmodified back to + the server. They may only be valid for a particular resource or + set of resources. Populated by the system. Read-only. Value must + be treated as opaque by clients and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. + Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It + is typically generated by the server on successful creation of + a resource and is not allowed to change on PUT operations. Populated + by the system. Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the pod. + type: complex + contains: + active_deadline_seconds: + description: + - Optional duration in seconds the pod may be active on the node + relative to StartTime before the system will actively try to mark + it failed and kill associated containers. Value must be a positive + integer. + type: int + affinity: + description: + - If specified, the pod's scheduling constraints + type: complex + contains: + node_affinity: + description: + - Describes node affinity scheduling rules for the pod. + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that + satisfy the affinity expressions specified by this field, + but it may choose a node that violates one or more of + the expressions. The node that is most preferred is the + one with the greatest sum of weights, i.e. for each node + that meets all of the scheduling requirements (resource + request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements + of this field and adding "weight" to the sum if the node + matches the corresponding matchExpressions; the node(s) + with the highest sum are the most preferred. + type: list + contains: + preference: + description: + - A node selector term, associated with the corresponding + weight. + type: complex + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies to. + type: str + operator: + description: + - Represents a key's relationship to a set of + values. Valid operators are In, NotIn, Exists, + DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must be non-empty. + If the operator is Exists or DoesNotExist, + the values array must be empty. If the operator + is Gt or Lt, the values array must have a + single element, which will be interpreted + as an integer. This array is replaced during + a strategic merge patch. + type: list + contains: str + weight: + description: + - Weight associated with matching the corresponding + nodeSelectorTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - If the affinity requirements specified by this field are + not met at scheduling time, the pod will not be scheduled + onto the node. If the affinity requirements specified + by this field cease to be met at some point during pod + execution (e.g. due to an update), the system may or may + not try to eventually evict the pod from its node. + type: complex + contains: + node_selector_terms: + description: + - Required. A list of node selector terms. The terms + are ORed. + type: list + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies to. + type: str + operator: + description: + - Represents a key's relationship to a set of + values. Valid operators are In, NotIn, Exists, + DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must be non-empty. + If the operator is Exists or DoesNotExist, + the values array must be empty. If the operator + is Gt or Lt, the values array must have a + single element, which will be interpreted + as an integer. This array is replaced during + a strategic merge patch. + type: list + contains: str + pod_affinity: + description: + - Describes pod affinity scheduling rules (e.g. co-locate this + pod in the same node, zone, etc. as some other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that + satisfy the affinity expressions specified by this field, + but it may choose a node that violates one or more of + the expressions. The node that is most preferred is the + one with the greatest sum of weights, i.e. for each node + that meets all of the scheduling requirements (resource + request, requiredDuringScheduling affinity expressions, + etc.), compute a sum by iterating through the elements + of this field and adding "weight" to the sum if the node + has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with the + corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is + implemented. If the affinity requirements specified by + this field are not met at scheduling time, the pod will + not be scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point + during pod execution (e.g. due to a pod label update), + the system will try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the affinity requirements specified by this field are + not met at scheduling time, the pod will not be scheduled + onto the node. If the affinity requirements specified + by this field cease to be met at some point during pod + execution (e.g. due to a pod label update), the system + may or may not try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this case + pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies + to. + type: str + operator: + description: + - operator represents a key's relationship to + a set of values. Valid operators ard In, NotIn, + Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the + operator is In or NotIn, the values array + must be non-empty. If the operator is Exists + or DoesNotExist, the values array must be + empty. This array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single + {key,value} in the matchLabels map is equivalent + to an element of matchExpressions, whose key field + is "key", the operator is "In", and the values + array contains only "value". The requirements + are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list means + "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not co-located + (anti-affinity) with the pods matching the labelSelector + in the specified namespaces, where co-located is defined + as running on a node whose value of the label with + key topologyKey matches that of any node on which + any of the selected pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means all + the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and for + RequiredDuringScheduling pod anti-affinity, empty + topologyKey is not allowed. + type: str + pod_anti_affinity: + description: + - Describes pod anti-affinity scheduling rules (e.g. avoid putting + this pod in the same node, zone, etc. as some other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes that + satisfy the anti-affinity expressions specified by this + field, but it may choose a node that violates one or more + of the expressions. The node that is most preferred is + the one with the greatest sum of weights, i.e. for each + node that meets all of the scheduling requirements (resource + request, requiredDuringScheduling anti-affinity expressions, + etc.), compute a sum by iterating through the elements + of this field and adding "weight" to the sum if the node + has pods which matches the corresponding podAffinityTerm; + the node(s) with the highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with the + corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it is + implemented. If the anti-affinity requirements specified + by this field are not met at scheduling time, the pod + will not be scheduled onto the node. If the anti-affinity + requirements specified by this field cease to be met at + some point during pod execution (e.g. due to a pod label + update), the system will try to eventually evict the pod + from its node. When there are multiple elements, the lists + of nodes corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the anti-affinity requirements specified by this field + are not met at scheduling time, the pod will not be scheduled + onto the node. If the anti-affinity requirements specified + by this field cease to be met at some point during pod + execution (e.g. due to a pod label update), the system + may or may not try to eventually evict the pod from its + node. When there are multiple elements, the lists of nodes + corresponding to each podAffinityTerm are intersected, + i.e. all terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this case + pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies + to. + type: str + operator: + description: + - operator represents a key's relationship to + a set of values. Valid operators ard In, NotIn, + Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the + operator is In or NotIn, the values array + must be non-empty. If the operator is Exists + or DoesNotExist, the values array must be + empty. This array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single + {key,value} in the matchLabels map is equivalent + to an element of matchExpressions, whose key field + is "key", the operator is "In", and the values + array contains only "value". The requirements + are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list means + "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not co-located + (anti-affinity) with the pods matching the labelSelector + in the specified namespaces, where co-located is defined + as running on a node whose value of the label with + key topologyKey matches that of any node on which + any of the selected pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means all + the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and for + RequiredDuringScheduling pod anti-affinity, empty + topologyKey is not allowed. + type: str + automount_service_account_token: + description: + - AutomountServiceAccountToken indicates whether a service account + token should be automatically mounted. + type: bool + containers: + description: + - List of containers belonging to the pod. Containers cannot currently + be added or removed. There must be at least one container in a + Pod. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is used\ + \ if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a variable\ + \ cannot be resolved, the reference in the input string will\ + \ be unchanged. The $(VAR_NAME) syntax can be escaped with\ + \ a double $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists or\ + \ not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided. Variable\ + \ references $(VAR_NAME) are expanded using the container's\ + \ environment. If a variable cannot be resolved, the reference\ + \ in the input string will be unchanged. The $(VAR_NAME) syntax\ + \ can be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. Cannot + be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using the + previous defined environment variables in the container + and any service environment variables. If a variable cannot + be resolved, the reference in the input string will be + unchanged. The $(VAR_NAME) syntax can be escaped with + a double $$, ie: $$(VAR_NAME). Escaped references will + never be expanded, regardless of whether the variable + exists or not. Defaults to "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot be + used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key must + be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified API + version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, requests.cpu + and requests.memory) are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed resources, + defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must be + a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must be + defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the container. + The keys defined within a source must be a C_IDENTIFIER. All + invalid keys will be reported as an event when the container + is starting. When a key exists in multiple sources, the value + associated with the last source will take precedence. Values + defined by an Env with a duplicate key will take precedence. + Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the ConfigMap. + Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. Defaults + to Always if :latest tag is specified, or IfNotPresent otherwise. + Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container is created. + If the handler fails, the container is terminated and + restarted according to its restart policy. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is terminated. + The container is terminated after the handler completes. + The reason for termination is passed to the handler. Regardless + of the outcome of the handler, the container is eventually + terminated. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be restarted + if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a port + here gives the system additional information about the network + connections a container uses, but is primarily informational. + Not specifying a port here DOES NOT prevent that port from + being exposed. Any port which is listening on the default + "0.0.0.0" address inside a container will be accessible from + the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. This + must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, this + must be a valid port number, 0 < x < 65536. If HostNetwork + is specified, this must match ContainerPort. Most containers + do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have a unique + name. Name for the port that can be referred to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container will + be removed from service endpoints if the probe fails. Cannot + be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, it defaults + to Limits if that is explicitly specified, otherwise to + an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted by + the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the host. + Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime + to ensure that it does not run as UID 0 (root) and fail + to start the container if it does. If unset or false, + no such validation will be performed. May also be set + in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value specified + in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. If + unspecified, the container runtime will allocate a random + SELinux context for each container. May also be set in + PodSecurityContext. If set in both SecurityContext and + PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from stdin + in the container will always result in EOF. Default is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin is + true the stdin stream will remain open across multiple attach + sessions. If stdinOnce is set to true, stdin is opened on + container start, is empty until the first client attaches + to stdin, and then remains open and accepts data until the + client disconnects, at which time stdin is closed and remains + closed until the container is restarted. If this flag is false, + a container processes that reads from stdin will never receive + an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into the\ + \ container's filesystem. Message written is intended to be\ + \ brief final status, such as an assertion failure message.\ + \ Will be truncated by the node if greater than 4096 bytes.\ + \ The total message length across all containers will be limited\ + \ to 12kb. Defaults to /dev/termination-log. Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to populate + the container status message on both success and failure. + FallbackToLogsOnError will use the last chunk of container + log output if the termination message file is empty and the + container exited with an error. The log output is limited + to 2048 bytes or 80 lines, whichever is smaller. Defaults + to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, also + requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. Cannot + be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should be + mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's volume + should be mounted. Defaults to "" (volume's root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + dns_policy: + description: + - Set DNS policy for containers within the pod. One of 'ClusterFirstWithHostNet', + 'ClusterFirst' or 'Default'. Defaults to "ClusterFirst". To have + DNS options set along with hostNetwork, you have to specify DNS + policy explicitly to 'ClusterFirstWithHostNet'. + type: str + host_aliases: + description: + - HostAliases is an optional list of hosts and IPs that will be + injected into the pod's hosts file if specified. This is only + valid for non-hostNetwork pods. + type: list + contains: + hostnames: + description: + - Hostnames for the above IP address. + type: list + contains: str + ip: + description: + - IP address of the host file entry. + type: str + host_ipc: + description: + - "Use the host's ipc namespace. Optional: Default to false." + type: bool + host_network: + description: + - Host networking requested for this pod. Use the host's network + namespace. If this option is set, the ports that will be used + must be specified. Default to false. + type: bool + host_pid: + description: + - "Use the host's pid namespace. Optional: Default to false." + type: bool + hostname: + description: + - Specifies the hostname of the Pod If not specified, the pod's + hostname will be set to a system-defined value. + type: str + image_pull_secrets: + description: + - ImagePullSecrets is an optional list of references to secrets + in the same namespace to use for pulling any of the images used + by this PodSpec. If specified, these secrets will be passed to + individual puller implementations for them to use. For example, + in the case of docker, only DockerConfig type secrets are honored. + type: list + contains: + name: + description: + - Name of the referent. + type: str + init_containers: + description: + - List of initialization containers belonging to the pod. Init containers + are executed in order prior to containers being started. If any + init container fails, the pod is considered to have failed and + is handled according to its restartPolicy. The name for an init + container or normal container must be unique among all containers. + Init containers may not have Lifecycle actions, Readiness probes, + or Liveness probes. The resourceRequirements of an init container + are taken into account during scheduling by finding the highest + request/limit for each resource type, and then using the max of + of that value or the sum of the normal containers. Limits are + applied to init containers in a similar fashion. Init containers + cannot currently be added or removed. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is used\ + \ if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a variable\ + \ cannot be resolved, the reference in the input string will\ + \ be unchanged. The $(VAR_NAME) syntax can be escaped with\ + \ a double $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists or\ + \ not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided. Variable\ + \ references $(VAR_NAME) are expanded using the container's\ + \ environment. If a variable cannot be resolved, the reference\ + \ in the input string will be unchanged. The $(VAR_NAME) syntax\ + \ can be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. Cannot + be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using the + previous defined environment variables in the container + and any service environment variables. If a variable cannot + be resolved, the reference in the input string will be + unchanged. The $(VAR_NAME) syntax can be escaped with + a double $$, ie: $$(VAR_NAME). Escaped references will + never be expanded, regardless of whether the variable + exists or not. Defaults to "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot be + used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key must + be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified API + version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, requests.cpu + and requests.memory) are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed resources, + defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must be + a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must be + defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the container. + The keys defined within a source must be a C_IDENTIFIER. All + invalid keys will be reported as an event when the container + is starting. When a key exists in multiple sources, the value + associated with the last source will take precedence. Values + defined by an Env with a duplicate key will take precedence. + Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the ConfigMap. + Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. Defaults + to Always if :latest tag is specified, or IfNotPresent otherwise. + Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container is created. + If the handler fails, the container is terminated and + restarted according to its restart policy. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is terminated. + The container is terminated after the handler completes. + The reason for termination is passed to the handler. Regardless + of the outcome of the handler, the container is eventually + terminated. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be restarted + if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a port + here gives the system additional information about the network + connections a container uses, but is primarily informational. + Not specifying a port here DOES NOT prevent that port from + being exposed. Any port which is listening on the default + "0.0.0.0" address inside a container will be accessible from + the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. This + must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, this + must be a valid port number, 0 < x < 65536. If HostNetwork + is specified, this must match ContainerPort. Most containers + do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have a unique + name. Name for the port that can be referred to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container will + be removed from service endpoints if the probe fails. Cannot + be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside the + container, the working directory for the command is + root ('/') in the container's filesystem. The command + is simply exec'd, it is not run inside a shell, so + traditional shell instructions ('|', etc) won't work. + To use a shell, you need to explicitly call out to + that shell. Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. You + probably want to set "Host" in httpHeaders instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started before + liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default to + 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be considered + successful after having failed. Defaults to 1. Must be + 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. TCP + hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to the + pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. Defaults + to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, it defaults + to Limits if that is explicitly specified, otherwise to + an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted by + the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the host. + Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime + to ensure that it does not run as UID 0 (root) and fail + to start the container if it does. If unset or false, + no such validation will be performed. May also be set + in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value specified + in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. If + unspecified, the container runtime will allocate a random + SELinux context for each container. May also be set in + PodSecurityContext. If set in both SecurityContext and + PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from stdin + in the container will always result in EOF. Default is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin is + true the stdin stream will remain open across multiple attach + sessions. If stdinOnce is set to true, stdin is opened on + container start, is empty until the first client attaches + to stdin, and then remains open and accepts data until the + client disconnects, at which time stdin is closed and remains + closed until the container is restarted. If this flag is false, + a container processes that reads from stdin will never receive + an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into the\ + \ container's filesystem. Message written is intended to be\ + \ brief final status, such as an assertion failure message.\ + \ Will be truncated by the node if greater than 4096 bytes.\ + \ The total message length across all containers will be limited\ + \ to 12kb. Defaults to /dev/termination-log. Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to populate + the container status message on both success and failure. + FallbackToLogsOnError will use the last chunk of container + log output if the termination message file is empty and the + container exited with an error. The log output is limited + to 2048 bytes or 80 lines, whichever is smaller. Defaults + to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, also + requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. Cannot + be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should be + mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's volume + should be mounted. Defaults to "" (volume's root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + node_name: + description: + - NodeName is a request to schedule this pod onto a specific node. + If it is non-empty, the scheduler simply schedules this pod onto + that node, assuming that it fits resource requirements. + type: str + node_selector: + description: + - NodeSelector is a selector which must be true for the pod to fit + on a node. Selector which must match a node's labels for the pod + to be scheduled on that node. + type: complex + contains: str, str + restart_policy: + description: + - Restart policy for all containers within the pod. One of Always, + OnFailure, Never. Default to Always. + type: str + scheduler_name: + description: + - If specified, the pod will be dispatched by specified scheduler. + If not specified, the pod will be dispatched by default scheduler. + type: str + security_context: + description: + - 'SecurityContext holds pod-level security attributes and common + container settings. Optional: Defaults to empty. See type description + for default values of each field.' + type: complex + contains: + fs_group: + description: + - "A special supplemental group that applies to all containers\ + \ in a pod. Some volume types allow the Kubelet to change\ + \ the ownership of that volume to be owned by the pod: 1.\ + \ The owning GID will be the FSGroup 2. The setgid bit is\ + \ set (new files created in the volume will be owned by FSGroup)\ + \ 3. The permission bits are OR'd with rw-rw---- If unset,\ + \ the Kubelet will not modify the ownership and permissions\ + \ of any volume." + type: int + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime to + ensure that it does not run as UID 0 (root) and fail to start + the container if it does. If unset or false, no such validation + will be performed. May also be set in SecurityContext. If + set in both SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. Defaults + to user specified in image metadata if unspecified. May also + be set in SecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence for that container. + type: int + se_linux_options: + description: + - The SELinux context to be applied to all containers. If unspecified, + the container runtime will allocate a random SELinux context + for each container. May also be set in SecurityContext. If + set in both SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence for that container. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + supplemental_groups: + description: + - A list of groups applied to the first process run in each + container, in addition to the container's primary GID. If + unspecified, no groups will be added to any container. + type: list + contains: int + service_account: + description: + - 'DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. + Deprecated: Use serviceAccountName instead.' + type: str + service_account_name: + description: + - ServiceAccountName is the name of the ServiceAccount to use to + run this pod. + type: str + subdomain: + description: + - If specified, the fully qualified Pod hostname will be "...svc.". If not specified, the pod will + not have a domainname at all. + type: str + termination_grace_period_seconds: + description: + - Optional duration in seconds the pod needs to terminate gracefully. + May be decreased in delete request. Value must be non-negative + integer. The value zero indicates delete immediately. If this + value is nil, the default grace period will be used instead. The + grace period is the duration in seconds after the processes running + in the pod are sent a termination signal and the time when the + processes are forcibly halted with a kill signal. Set this value + longer than the expected cleanup time for your process. Defaults + to 30 seconds. + type: int + tolerations: + description: + - If specified, the pod's tolerations. + type: list + contains: + effect: + description: + - Effect indicates the taint effect to match. Empty means match + all taint effects. When specified, allowed values are NoSchedule, + PreferNoSchedule and NoExecute. + type: str + key: + description: + - Key is the taint key that the toleration applies to. Empty + means match all taint keys. If the key is empty, operator + must be Exists; this combination means to match all values + and all keys. + type: str + operator: + description: + - Operator represents a key's relationship to the value. Valid + operators are Exists and Equal. Defaults to Equal. Exists + is equivalent to wildcard for value, so that a pod can tolerate + all taints of a particular category. + type: str + toleration_seconds: + description: + - TolerationSeconds represents the period of time the toleration + (which must be of effect NoExecute, otherwise this field is + ignored) tolerates the taint. By default, it is not set, which + means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by + the system. + type: int + value: + description: + - Value is the taint value the toleration matches to. If the + operator is Exists, the value should be empty, otherwise just + a regular string. + type: str + volumes: + description: + - List of volumes that can be mounted by containers belonging to + the pod. + type: list + contains: + aws_elastic_block_store: + description: + - AWSElasticBlockStore represents an AWS Disk resource that + is attached to a kubelet's host machine and then exposed to + the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. If + omitted, the default is to mount by volume name. Examples: + For volume /dev/sda1, you specify the partition as "1". + Similarly, the volume partition for /dev/sda is "0" (or + you can leave the property empty).' + type: int + read_only: + description: + - Specify "true" to force and set the ReadOnly property + in VolumeMounts to "true". If omitted, the default is + "false". + type: bool + volume_id: + description: + - Unique ID of the persistent disk resource in AWS (Amazon + EBS volume). + type: str + azure_disk: + description: + - AzureDisk represents an Azure Data Disk mount on the host + and bind mount to the pod. + type: complex + contains: + caching_mode: + description: + - 'Host Caching mode: None, Read Only, Read Write.' + type: str + disk_name: + description: + - The Name of the data disk in the blob storage + type: str + disk_uri: + description: + - The URI the data disk in the blob storage + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + kind: + description: + - 'Expected values Shared: mulitple blob disks per storage + account Dedicated: single blob disk per storage account + Managed: azure managed data disk (only in managed availability + set). defaults to shared' + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + azure_file: + description: + - AzureFile represents an Azure File Service mount on the host + and bind mount to the pod. + type: complex + contains: + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + secret_name: + description: + - the name of secret that contains Azure Storage Account + Name and Key + type: str + share_name: + description: + - Share Name + type: str + cephfs: + description: + - CephFS represents a Ceph FS mount on the host that shares + a pod's lifetime + type: complex + contains: + monitors: + description: + - 'Required: Monitors is a collection of Ceph monitors' + type: list + contains: str + path: + description: + - 'Optional: Used as the mounted root, rather than the full + Ceph tree, default is /' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_file: + description: + - 'Optional: SecretFile is the path to key ring for User, + default is /etc/ceph/user.secret' + type: str + secret_ref: + description: + - 'Optional: SecretRef is reference to the authentication + secret for User, default is empty.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - 'Optional: User is the rados user name, default is admin' + type: str + cinder: + description: + - Cinder represents a cinder volume attached and mounted on + kubelets host machine + type: complex + contains: + fs_type: + description: + - 'Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + volume_id: + description: + - volume id used to identify the volume in cinder + type: str + config_map: + description: + - ConfigMap represents a configMap that should populate this + volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this setting. + This might be in conflict with other options that affect + the file mode, like fsGroup, and the result can be other + mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced ConfigMap will be projected into the + volume as a file whose name is the key and content is + the value. If specified, the listed keys will be projected + into the specified paths, and unlisted keys will not be + present. If a key is specified which is not present in + the ConfigMap, the volume setup will error unless it is + marked optional. Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must be + a value between 0 and 0777. If not specified, the + volume defaultMode will be used. This might be in + conflict with other options that affect the file mode, + like fsGroup, and the result can be other mode bits + set.' + type: int + path: + description: + - The relative path of the file to map the key to. May + not be an absolute path. May not contain the path + element '..'. May not start with the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys must be defined + type: bool + downward_api: + description: + - DownwardAPI represents downward API about the pod that should + populate this volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this setting. + This might be in conflict with other options that affect + the file mode, like fsGroup, and the result can be other + mode bits set.' + type: int + items: + description: + - Items is a list of downward API volume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: only annotations, + labels, name and namespace are supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified API + version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must be + a value between 0 and 0777. If not specified, the + volume defaultMode will be used. This might be in + conflict with other options that affect the file mode, + like fsGroup, and the result can be other mode bits + set.' + type: int + path: + description: + - "Required: Path is the relative path name of the file\ + \ to be created. Must not be absolute or contain the\ + \ '..' path. Must be utf-8 encoded. The first item\ + \ of the relative path must not start with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, requests.cpu + and requests.memory) are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed resources, + defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + empty_dir: + description: + - EmptyDir represents a temporary directory that shares a pod's + lifetime. + type: complex + contains: + medium: + description: + - What type of storage medium should back this directory. + The default is "" which means to use the node's default + medium. Must be an empty string (default) or Memory. + type: str + size_limit: + description: + - Total amount of local storage required for this EmptyDir + volume. The size limit is also applicable for memory medium. + The maximum usage on memory medium EmptyDir would be the + minimum value between the SizeLimit specified here and + the sum of memory limits of all containers in a pod. The + default is nil which means that the limit is undefined. + type: str + fc: + description: + - FC represents a Fibre Channel resource that is attached to + a kubelet's host machine and then exposed to the pod. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + lun: + description: + - 'Required: FC target lun number' + type: int + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + target_ww_ns: + description: + - 'Required: FC target worldwide names (WWNs)' + type: list + contains: str + flex_volume: + description: + - FlexVolume represents a generic volume resource that is provisioned/attached + using an exec based plugin. This is an alpha feature and may + change in future. + type: complex + contains: + driver: + description: + - Driver is the name of the driver to use for this volume. + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + The default filesystem depends on FlexVolume script. + type: str + options: + description: + - 'Optional: Extra command options if any.' + type: complex + contains: str, str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly here + will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_ref: + description: + - 'Optional: SecretRef is reference to the secret object + containing sensitive information to pass to the plugin + scripts. This may be empty if no secret object is specified. + If the secret object contains more than one secret, all + secrets are passed to the plugin scripts.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + flocker: + description: + - Flocker represents a Flocker volume attached to a kubelet's + host machine. This depends on the Flocker control service + being running + type: complex + contains: + dataset_name: + description: + - Name of the dataset stored as metadata -> name on the + dataset for Flocker should be considered as deprecated + type: str + dataset_uuid: + description: + - UUID of the dataset. This is unique identifier of a Flocker + dataset + type: str + gce_persistent_disk: + description: + - GCEPersistentDisk represents a GCE Disk resource that is attached + to a kubelet's host machine and then exposed to the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. If + omitted, the default is to mount by volume name. Examples: + For volume /dev/sda1, you specify the partition as "1". + Similarly, the volume partition for /dev/sda is "0" (or + you can leave the property empty).' + type: int + pd_name: + description: + - Unique name of the PD resource in GCE. Used to identify + the disk in GCE. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + git_repo: + description: + - GitRepo represents a git repository at a particular revision. + type: complex + contains: + directory: + description: + - Target directory name. Must not contain or start with + '..'. If '.' is supplied, the volume directory will be + the git repository. Otherwise, if specified, the volume + will contain the git repository in the subdirectory with + the given name. + type: str + repository: + description: + - Repository URL + type: str + revision: + description: + - Commit hash for the specified revision. + type: str + glusterfs: + description: + - Glusterfs represents a Glusterfs mount on the host that shares + a pod's lifetime. + type: complex + contains: + endpoints: + description: + - EndpointsName is the endpoint name that details Glusterfs + topology. + type: str + path: + description: + - Path is the Glusterfs volume path. + type: str + read_only: + description: + - ReadOnly here will force the Glusterfs volume to be mounted + with read-only permissions. Defaults to false. + type: bool + host_path: + description: + - HostPath represents a pre-existing file or directory on the + host machine that is directly exposed to the container. This + is generally used for system agents or other privileged things + that are allowed to see the host machine. Most containers + will NOT need this. + type: complex + contains: + path: + description: + - Path of the directory on the host. + type: str + iscsi: + description: + - ISCSI represents an ISCSI Disk resource that is attached to + a kubelet's host machine and then exposed to the pod. + type: complex + contains: + chap_auth_discovery: + description: + - whether support iSCSI Discovery CHAP authentication + type: bool + chap_auth_session: + description: + - whether support iSCSI Session CHAP authentication + type: bool + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + iqn: + description: + - Target iSCSI Qualified Name. + type: str + iscsi_interface: + description: + - "Optional: Defaults to 'default' (tcp). iSCSI interface\ + \ name that uses an iSCSI transport." + type: str + lun: + description: + - iSCSI target lun number. + type: int + portals: + description: + - iSCSI target portal List. The portal is either an IP or + ip_addr:port if the port is other than default (typically + TCP ports 860 and 3260). + type: list + contains: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - CHAP secret for iSCSI target and initiator authentication + type: complex + contains: + name: + description: + - Name of the referent. + type: str + target_portal: + description: + - iSCSI target portal. The portal is either an IP or ip_addr:port + if the port is other than default (typically TCP ports + 860 and 3260). + type: str + name: + description: + - Volume's name. Must be a DNS_LABEL and unique within the pod. + type: str + nfs: + description: + - NFS represents an NFS mount on the host that shares a pod's + lifetime + type: complex + contains: + path: + description: + - Path that is exported by the NFS server. + type: str + read_only: + description: + - ReadOnly here will force the NFS export to be mounted + with read-only permissions. Defaults to false. + type: bool + server: + description: + - Server is the hostname or IP address of the NFS server. + type: str + persistent_volume_claim: + description: + - PersistentVolumeClaimVolumeSource represents a reference to + a PersistentVolumeClaim in the same namespace. + type: complex + contains: + claim_name: + description: + - ClaimName is the name of a PersistentVolumeClaim in the + same namespace as the pod using this volume. + type: str + read_only: + description: + - Will force the ReadOnly setting in VolumeMounts. Default + false. + type: bool + photon_persistent_disk: + description: + - PhotonPersistentDisk represents a PhotonController persistent + disk attached and mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + pd_id: + description: + - ID that identifies Photon Controller persistent disk + type: str + portworx_volume: + description: + - PortworxVolume represents a portworx volume attached and mounted + on kubelets host machine + type: complex + contains: + fs_type: + description: + - FSType represents the filesystem type to mount Must be + a filesystem type supported by the host operating system. + Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + volume_id: + description: + - VolumeID uniquely identifies a Portworx volume + type: str + projected: + description: + - Items for all in one resources secrets, configmaps, and downward + API + type: complex + contains: + default_mode: + description: + - Mode bits to use on created files by default. Must be + a value between 0 and 0777. Directories within the path + are not affected by this setting. This might be in conflict + with other options that affect the file mode, like fsGroup, + and the result can be other mode bits set. + type: int + sources: + description: + - list of volume projections + type: list + contains: + config_map: + description: + - information about the configMap data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the Data + field of the referenced ConfigMap will be projected + into the volume as a file whose name is the key + and content is the value. If specified, the listed + keys will be projected into the specified paths, + and unlisted keys will not be present. If a key + is specified which is not present in the ConfigMap, + the volume setup will error unless it is marked + optional. Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If not + specified, the volume defaultMode will be + used. This might be in conflict with other + options that affect the file mode, like fsGroup, + and the result can be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key + to. May not be an absolute path. May not contain + the path element '..'. May not start with + the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys must + be defined + type: bool + downward_api: + description: + - information about the downwardAPI data to project + type: complex + contains: + items: + description: + - Items is a list of DownwardAPIVolume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: only + annotations, labels, name and namespace are + supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is + written in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If not + specified, the volume defaultMode will be + used. This might be in conflict with other + options that affect the file mode, like fsGroup, + and the result can be other mode bits set.' + type: int + path: + description: + - "Required: Path is the relative path name\ + \ of the file to be created. Must not be absolute\ + \ or contain the '..' path. Must be utf-8\ + \ encoded. The first item of the relative\ + \ path must not start with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only + resources limits and requests (limits.cpu, + limits.memory, requests.cpu and requests.memory) + are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, + optional for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret: + description: + - information about the secret data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the Data + field of the referenced Secret will be projected + into the volume as a file whose name is the key + and content is the value. If specified, the listed + keys will be projected into the specified paths, + and unlisted keys will not be present. If a key + is specified which is not present in the Secret, + the volume setup will error unless it is marked + optional. Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If not + specified, the volume defaultMode will be + used. This might be in conflict with other + options that affect the file mode, like fsGroup, + and the result can be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key + to. May not be an absolute path. May not contain + the path element '..'. May not start with + the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or its key must be + defined + type: bool + quobyte: + description: + - Quobyte represents a Quobyte mount on the host that shares + a pod's lifetime + type: complex + contains: + group: + description: + - Group to map volume access to Default is no group + type: str + read_only: + description: + - ReadOnly here will force the Quobyte volume to be mounted + with read-only permissions. Defaults to false. + type: bool + registry: + description: + - Registry represents a single or multiple Quobyte Registry + services specified as a string as host:port pair (multiple + entries are separated with commas) which acts as the central + registry for volumes + type: str + user: + description: + - User to map volume access to Defaults to serivceaccount + user + type: str + volume: + description: + - Volume is a string that references an already created + Quobyte volume by name. + type: str + rbd: + description: + - RBD represents a Rados Block Device mount on the host that + shares a pod's lifetime. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported by the + host operating system. Examples: "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified.' + type: str + image: + description: + - The rados image name. + type: str + keyring: + description: + - Keyring is the path to key ring for RBDUser. Default is + /etc/ceph/keyring. + type: str + monitors: + description: + - A collection of Ceph monitors. + type: list + contains: str + pool: + description: + - The rados pool name. Default is rbd. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - SecretRef is name of the authentication secret for RBDUser. + If provided overrides keyring. Default is nil. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - The rados user name. Default is admin. + type: str + scale_io: + description: + - ScaleIO represents a ScaleIO persistent volume attached and + mounted on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + gateway: + description: + - The host address of the ScaleIO API Gateway. + type: str + protection_domain: + description: + - The name of the Protection Domain for the configured storage + (defaults to "default"). + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef references to the secret for ScaleIO user and + other sensitive information. If this is not provided, + Login operation will fail. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + ssl_enabled: + description: + - Flag to enable/disable SSL communication with Gateway, + default false + type: bool + storage_mode: + description: + - Indicates whether the storage for a volume should be thick + or thin (defaults to "thin"). + type: str + storage_pool: + description: + - The Storage Pool associated with the protection domain + (defaults to "default"). + type: str + system: + description: + - The name of the storage system as configured in ScaleIO. + type: str + volume_name: + description: + - The name of a volume already created in the ScaleIO system + that is associated with this volume source. + type: str + secret: + description: + - Secret represents a secret that should populate this volume. + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this setting. + This might be in conflict with other options that affect + the file mode, like fsGroup, and the result can be other + mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced Secret will be projected into the volume + as a file whose name is the key and content is the value. + If specified, the listed keys will be projected into the + specified paths, and unlisted keys will not be present. + If a key is specified which is not present in the Secret, + the volume setup will error unless it is marked optional. + Paths must be relative and may not contain the '..' path + or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must be + a value between 0 and 0777. If not specified, the + volume defaultMode will be used. This might be in + conflict with other options that affect the file mode, + like fsGroup, and the result can be other mode bits + set.' + type: int + path: + description: + - The relative path of the file to map the key to. May + not be an absolute path. May not contain the path + element '..'. May not start with the string '..'. + type: str + optional: + description: + - Specify whether the Secret or it's keys must be defined + type: bool + secret_name: + description: + - Name of the secret in the pod's namespace to use. + type: str + storageos: + description: + - StorageOS represents a StorageOS volume attached and mounted + on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will force + the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef specifies the secret to use for obtaining the + StorageOS API credentials. If not specified, default values + will be attempted. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + volume_name: + description: + - VolumeName is the human-readable name of the StorageOS + volume. Volume names are only unique within a namespace. + type: str + volume_namespace: + description: + - VolumeNamespace specifies the scope of the volume within + StorageOS. If no namespace is specified then the Pod's + namespace will be used. This allows the Kubernetes name + scoping to be mirrored within StorageOS for tighter integration. + Set VolumeName to any name to override the default behaviour. + Set to "default" if you are not using namespaces within + StorageOS. Namespaces that do not pre-exist within StorageOS + will be created. + type: str + vsphere_volume: + description: + - VsphereVolume represents a vSphere volume attached and mounted + on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type supported + by the host operating system. Ex. "ext4", "xfs", "ntfs". + Implicitly inferred to be "ext4" if unspecified. + type: str + storage_policy_id: + description: + - Storage Policy Based Management (SPBM) profile ID associated + with the StoragePolicyName. + type: str + storage_policy_name: + description: + - Storage Policy Based Management (SPBM) profile name. + type: str + volume_path: + description: + - Path that identifies vSphere volume vmdk + type: str + status: + description: + - Most recently observed status of the Deployment. + type: complex + contains: + available_replicas: + description: + - Total number of available pods (ready for at least minReadySeconds) targeted + by this deployment. + type: int + collision_count: + description: + - Count of hash collisions for the Deployment. The Deployment controller + uses this field as a collision avoidance mechanism when it needs to create + the name for the newest ReplicaSet. + type: int + conditions: + description: + - Represents the latest available observations of a deployment's current + state. + type: list + contains: + last_transition_time: + description: + - Last time the condition transitioned from one status to another. + type: complex + contains: {} + last_update_time: + description: + - The last time this condition was updated. + type: complex + contains: {} + message: + description: + - A human readable message indicating details about the transition. + type: str + reason: + description: + - The reason for the condition's last transition. + type: str + status: + description: + - Status of the condition, one of True, False, Unknown. + type: str + type: + description: + - Type of deployment condition. + type: str + observed_generation: + description: + - The generation observed by the deployment controller. + type: int + ready_replicas: + description: + - Total number of ready pods targeted by this deployment. + type: int + replicas: + description: + - Total number of non-terminated pods targeted by this deployment (their + labels match the selector). + type: int + unavailable_replicas: + description: + - Total number of unavailable pods targeted by this deployment. + type: int + updated_replicas: + description: + - Total number of non-terminated pods targeted by this deployment that have + the desired template spec. + type: int +''' + + +def main(): + try: + module = KubernetesAnsibleModule('deployment', 'extensions_v1beta1') + except KubernetesAnsibleException as exc: + # The helper failed to init, so there is no module object. All we can do is raise the error. + raise Exception(exc.message) + + try: + module.execute_module() + except KubernetesAnsibleException as exc: + module.fail_json(msg="Module failed!", error=str(exc)) + + +if __name__ == '__main__': + main() diff --git a/library/k8s_extensions_v1beta1_deployment_list.py b/library/k8s_extensions_v1beta1_deployment_list.py new file mode 100644 index 00000000..1d2b3026 --- /dev/null +++ b/library/k8s_extensions_v1beta1_deployment_list.py @@ -0,0 +1,4463 @@ +#!/usr/bin/env python + +from ansible.module_utils.k8s_common import KubernetesAnsibleModule, KubernetesAnsibleException + +DOCUMENTATION = ''' +module: k8s_extensions_v1beta1_deployment_list +short_description: Kubernetes DeploymentList +description: +- Retrieve a list of deployments. List operations provide a snapshot read of the underlying + objects, returning a resource_version representing a consistent version of the listed + objects. +version_added: 2.3.0 +author: OpenShift (@openshift) +options: + api_key: + description: + - Token used to connect to the API. + cert_file: + description: + - Path to a certificate used to authenticate with the API. + type: path + context: + description: + - The name of a context found in the Kubernetes config file. + debug: + description: + - Enable debug output from the OpenShift helper. Logging info is written to KubeObjHelper.log + default: false + type: bool + force: + description: + - If set to C(True), and I(state) is C(present), an existing object will updated, + and lists will be replaced, rather than merged. + default: false + type: bool + host: + description: + - Provide a URL for acessing the Kubernetes API. + key_file: + description: + - Path to a key file used to authenticate with the API. + type: path + kubeconfig: + description: + - Path to an existing Kubernetes config file. If not provided, and no other connection + options are provided, the openshift client will attempt to load the default + configuration file from I(~/.kube/config.json). + type: path + password: + description: + - Provide a password for connecting to the API. Use in conjunction with I(username). + resource_definition: + description: + - Provide the YAML definition for the object, bypassing any modules parameters + intended to define object attributes. + type: dict + src: + description: + - Provide a path to a file containing the YAML definition of the object. Mutually + exclusive with I(resource_definition). + type: path + ssl_ca_cert: + description: + - Path to a CA certificate used to authenticate with the API. + type: path + state: + description: + - Determines if an object should be created, patched, or deleted. When set to + C(present), the object will be created, if it does not exist, or patched, if + parameter values differ from the existing object's attributes, and deleted, + if set to C(absent). A patch operation results in merging lists and updating + dictionaries, with lists being merged into a unique set of values. If a list + contains a dictionary with a I(name) or I(type) attribute, a strategic merge + is performed, where individual elements with a matching I(name_) or I(type) + are merged. To force the replacement of lists, set the I(force) option to C(True). + default: present + choices: + - present + - absent + username: + description: + - Provide a username for connecting to the API. + verify_ssl: + description: + - Whether or not to verify the API server's SSL certificates. + type: bool +requirements: +- kubernetes == 3.0.0 +''' + +EXAMPLES = ''' +''' + +RETURN = ''' +api_version: + type: string + description: Requested API version +deployment_list: + type: complex + returned: when I(state) = C(present) + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + type: str + items: + description: + - Items is the list of Deployments. + type: list + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, + and may reject unrecognized values. + type: str + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. In CamelCase. + type: str + metadata: + description: + - Standard object metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource + that may be set by external tools to store and retrieve arbitrary + metadata. They are not queryable and should be preserved when modifying + objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used + to distinguish resources with same name and namespace in different + clusters. This field is not set anywhere right now and apiserver is + going to ignore it if set in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time when + this object was created. It is not guaranteed to be set in happens-before + order across separate operations. Clients may not set this value. + It is represented in RFC3339 form and is in UTC. Populated by the + system. Read-only. Null for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate + before it will be removed from the system. Only set when deletionTimestamp + is also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource + will be deleted. This field is set by the server when a graceful deletion + is requested by the user, and is not directly settable by a client. + The resource is expected to be deleted (no longer visible from resource + lists, and not reachable by name) after the time in this field. Once + set, this value may not be unset or be set further into the future, + although it may be shortened or the resource may be deleted prior + to this time. For example, a user may request that a pod is deleted + in 30 seconds. The Kubelet will react by sending a graceful termination + signal to the containers in the pod. After that 30 seconds, the Kubelet + will send a hard termination signal (SIGKILL) to the container and + after cleanup, remove the pod from the API. In the presence of network + partitions, this object may still exist after this timestamp, until + an administrator or automated process can determine the resource is + fully terminated. If not set, graceful deletion of the object has + not been requested. Populated by the system when a graceful deletion + is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. Each + entry is an identifier for the responsible component that will remove + the entry from the list. If the deletionTimestamp of the object is + non-nil, entries in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate + a unique name ONLY IF the Name field has not been provided. If this + field is used, the name returned to the client will be different than + the name passed. This value will also be combined with a unique suffix. + The provided value has the same validation rules as the Name field, + and may be truncated by the length of the suffix required to make + the value unique on the server. If this field is specified and the + generated name exists, the server will NOT return a 409 - instead, + it will either return 201 Created or 500 with Reason ServerTimeout + indicating a unique name could not be found in the time allotted, + and the client should retry (optionally after the time indicated in + the Retry-After header). Applied only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired + state. Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant + at object creation time. This field is a list of initializers that + have not yet acted on this object. If nil or empty, this object has + been completely initialized. Otherwise, the object is considered uninitialized + and is hidden (in list/watch and get calls) from clients that haven't + explicitly asked to observe uninitialized objects. When an object + is created, the system will populate this list with the current set + of initializers. Only privileged users may set or modify this list. + Once it is empty, it may not be modified further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order before + this object is visible. When the last pending initializer is removed, + and no failing result is set, the initializers struct will be + set to nil and the object is considered as initialized and visible + to all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing this + object. + type: str + result: + description: + - If result is set with the Failure field, the object will be persisted + to storage and then deleted, ensuring that other clients can observe + the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to + the latest internal value, and may reject unrecognized values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason may + define its own extended details. This field is optional and + the data returned is not guaranteed to conform to any schema + except that defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated with + the StatusReason failure. Not all StatusReasons may provide + detailed causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this error, + as named by its JSON serialization. May include dot + and postfix notation for nested attributes. Arrays + are zero-indexed. Fields may appear more than once + in an array of causes due to fields having multiple + errors. Optional. Examples: "name" - the field "name" + on the current resource "items[0].name" - the field + "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause of the error. + This field may be presented as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause of the + error. If this value is empty there is no information + available. + type: str + group: + description: + - The group attribute of the resource associated with the + status StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with the + status StatusReason. On some operations may differ from + the requested resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with the + status StatusReason (when there is a single name which + can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation + should be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource + which can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint + the client submits requests to. Cannot be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of + this object that can be used by clients to determine when + objects have changed. Value must be treated as opaque + by clients and passed unmodified back to the server. Populated + by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated + by the system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is in + the "Failure" status. If this value is empty there is no information + available. A Reason clarifies an HTTP status code but does + not override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and categorize + (scope and select) objects. May match selectors of replication controllers + and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating + resources, although some resources may allow a client to request the + generation of an appropriate name automatically. Name is primarily + intended for creation idempotence and configuration definition. Cannot + be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An empty + namespace is equivalent to the "default" namespace, but "default" + is the canonical representation. Not all objects are required to be + scoped to a namespace - the value of this field for those objects + will be empty. Must be a DNS_LABEL. Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the list + have been deleted, this object will be garbage collected. If this + object is managed by a controller, then an entry in this list will + point to this controller, with the controller field set to true. There + cannot be more than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store until + this reference is removed. Defaults to false. To set this field, + a user needs "delete" permission of the owner, otherwise 422 (Unprocessable + Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object + that can be used by clients to determine when objects have changed. + May be used for optimistic concurrency, change detection, and the + watch operation on a resource or set of resources. Clients must treat + these values as opaque and passed unmodified back to the server. They + may only be valid for a particular resource or set of resources. Populated + by the system. Read-only. Value must be treated as opaque by clients + and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. + Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It is typically + generated by the server on successful creation of a resource and is + not allowed to change on PUT operations. Populated by the system. + Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the Deployment. + type: complex + contains: + min_ready_seconds: + description: + - Minimum number of seconds for which a newly created pod should be + ready without any of its container crashing, for it to be considered + available. Defaults to 0 (pod will be considered available as soon + as it is ready) + type: int + paused: + description: + - Indicates that the deployment is paused and will not be processed + by the deployment controller. + type: bool + progress_deadline_seconds: + description: + - The maximum time in seconds for a deployment to make progress before + it is considered to be failed. The deployment controller will continue + to process failed deployments and a condition with a ProgressDeadlineExceeded + reason will be surfaced in the deployment status. Once autoRollback + is implemented, the deployment controller will automatically rollback + failed deployments. Note that progress will not be estimated during + the time a deployment is paused. This is not set by default. + type: int + replicas: + description: + - Number of desired pods. This is a pointer to distinguish between explicit + zero and not specified. Defaults to 1. + type: int + revision_history_limit: + description: + - The number of old ReplicaSets to retain to allow rollback. This is + a pointer to distinguish between explicit zero and not specified. + type: int + rollback_to: + description: + - The config this deployment is rolling back to. Will be cleared after + rollback is done. + type: complex + contains: + revision: + description: + - The revision to rollback to. If set to 0, rollback to the last + revision. + type: int + selector: + description: + - Label selector for pods. Existing ReplicaSets whose pods are selected + by this will be the ones affected by this deployment. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector requirements. The + requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector applies to. + type: str + operator: + description: + - operator represents a key's relationship to a set of values. + Valid operators ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If the operator is In + or NotIn, the values array must be non-empty. If the operator + is Exists or DoesNotExist, the values array must be empty. + This array is replaced during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. A single {key,value} + in the matchLabels map is equivalent to an element of matchExpressions, + whose key field is "key", the operator is "In", and the values + array contains only "value". The requirements are ANDed. + type: complex + contains: str, str + strategy: + description: + - The deployment strategy to use to replace existing pods with new ones. + type: complex + contains: + rolling_update: + description: + - Rolling update config params. Present only if DeploymentStrategyType + = RollingUpdate. + type: complex + contains: + max_surge: + description: + - 'The maximum number of pods that can be scheduled above the + desired number of pods. Value can be an absolute number (ex: + 5) or a percentage of desired pods (ex: 10%). This can not + be 0 if MaxUnavailable is 0. Absolute number is calculated + from percentage by rounding up. By default, a value of 1 is + used. Example: when this is set to 30%, the new RC can be + scaled up immediately when the rolling update starts, such + that the total number of old and new pods do not exceed 130% + of desired pods. Once old pods have been killed, new RC can + be scaled up further, ensuring that total number of pods running + at any time during the update is atmost 130% of desired pods.' + type: str + max_unavailable: + description: + - 'The maximum number of pods that can be unavailable during + the update. Value can be an absolute number (ex: 5) or a percentage + of desired pods (ex: 10%). Absolute number is calculated from + percentage by rounding down. This can not be 0 if MaxSurge + is 0. By default, a fixed value of 1 is used. Example: when + this is set to 30%, the old RC can be scaled down to 70% of + desired pods immediately when the rolling update starts. Once + new pods are ready, old RC can be scaled down further, followed + by scaling up the new RC, ensuring that the total number of + pods available at all times during the update is at least + 70% of desired pods.' + type: str + type: + description: + - Type of deployment. Can be "Recreate" or "RollingUpdate". Default + is RollingUpdate. + type: str + template: + description: + - Template describes the pods that will be created. + type: complex + contains: + metadata: + description: + - Standard object's metadata. + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a + resource that may be set by external tools to store and retrieve + arbitrary metadata. They are not queryable and should be preserved + when modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This + is used to distinguish resources with same name and namespace + in different clusters. This field is not set anywhere right + now and apiserver is going to ignore it if set in create or + update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time + when this object was created. It is not guaranteed to be set + in happens-before order across separate operations. Clients + may not set this value. It is represented in RFC3339 form + and is in UTC. Populated by the system. Read-only. Null for + lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate + before it will be removed from the system. Only set when deletionTimestamp + is also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this + resource will be deleted. This field is set by the server + when a graceful deletion is requested by the user, and is + not directly settable by a client. The resource is expected + to be deleted (no longer visible from resource lists, and + not reachable by name) after the time in this field. Once + set, this value may not be unset or be set further into the + future, although it may be shortened or the resource may be + deleted prior to this time. For example, a user may request + that a pod is deleted in 30 seconds. The Kubelet will react + by sending a graceful termination signal to the containers + in the pod. After that 30 seconds, the Kubelet will send a + hard termination signal (SIGKILL) to the container and after + cleanup, remove the pod from the API. In the presence of network + partitions, this object may still exist after this timestamp, + until an administrator or automated process can determine + the resource is fully terminated. If not set, graceful deletion + of the object has not been requested. Populated by the system + when a graceful deletion is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. + Each entry is an identifier for the responsible component + that will remove the entry from the list. If the deletionTimestamp + of the object is non-nil, entries in this list can only be + removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to + generate a unique name ONLY IF the Name field has not been + provided. If this field is used, the name returned to the + client will be different than the name passed. This value + will also be combined with a unique suffix. The provided value + has the same validation rules as the Name field, and may be + truncated by the length of the suffix required to make the + value unique on the server. If this field is specified and + the generated name exists, the server will NOT return a 409 + - instead, it will either return 201 Created or 500 with Reason + ServerTimeout indicating a unique name could not be found + in the time allotted, and the client should retry (optionally + after the time indicated in the Retry-After header). Applied + only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the + desired state. Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system + invariant at object creation time. This field is a list of + initializers that have not yet acted on this object. If nil + or empty, this object has been completely initialized. Otherwise, + the object is considered uninitialized and is hidden (in list/watch + and get calls) from clients that haven't explicitly asked + to observe uninitialized objects. When an object is created, + the system will populate this list with the current set of + initializers. Only privileged users may set or modify this + list. Once it is empty, it may not be modified further by + any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in + order before this object is visible. When the last pending + initializer is removed, and no failing result is set, + the initializers struct will be set to nil and the object + is considered as initialized and visible to all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing + this object. + type: str + result: + description: + - If result is set with the Failure field, the object will + be persisted to storage and then deleted, ensuring that + other clients can observe the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas + to the latest internal value, and may reject unrecognized + values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not + set. + type: int + details: + description: + - Extended data associated with the reason. Each reason + may define its own extended details. This field is + optional and the data returned is not guaranteed to + conform to any schema except that defined by the reason + type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated + with the StatusReason failure. Not all StatusReasons + may provide detailed causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused + this error, as named by its JSON serialization. + May include dot and postfix notation for nested + attributes. Arrays are zero-indexed. Fields + may appear more than once in an array of causes + due to fields having multiple errors. Optional. + Examples: "name" - the field "name" on the + current resource "items[0].name" - the field + "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause + of the error. This field may be presented + as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause + of the error. If this value is empty there + is no information available. + type: str + group: + description: + - The group attribute of the resource associated + with the status StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated + with the status StatusReason. On some operations + may differ from the requested resource Kind. + type: str + name: + description: + - The name attribute of the resource associated + with the status StatusReason (when there is a + single name which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation + should be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource + which can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource + this object represents. Servers may infer this from + the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this + operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version + of this object that can be used by clients to + determine when objects have changed. Value must + be treated as opaque by clients and passed unmodified + back to the server. Populated by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated + by the system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation + is in the "Failure" status. If this value is empty + there is no information available. A Reason clarifies + an HTTP status code but does not override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize + and categorize (scope and select) objects. May match selectors + of replication controllers and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating + resources, although some resources may allow a client to request + the generation of an appropriate name automatically. Name + is primarily intended for creation idempotence and configuration + definition. Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. + An empty namespace is equivalent to the "default" namespace, + but "default" is the canonical representation. Not all objects + are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. + Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in + the list have been deleted, this object will be garbage collected. + If this object is managed by a controller, then an entry in + this list will point to this controller, with the controller + field set to true. There cannot be more than one managing + controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" + finalizer, then the owner cannot be deleted from the key-value + store until this reference is removed. Defaults to false. + To set this field, a user needs "delete" permission of + the owner, otherwise 422 (Unprocessable Entity) will be + returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this + object that can be used by clients to determine when objects + have changed. May be used for optimistic concurrency, change + detection, and the watch operation on a resource or set of + resources. Clients must treat these values as opaque and passed + unmodified back to the server. They may only be valid for + a particular resource or set of resources. Populated by the + system. Read-only. Value must be treated as opaque by clients + and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the + system. Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. + It is typically generated by the server on successful creation + of a resource and is not allowed to change on PUT operations. + Populated by the system. Read-only. + type: str + spec: + description: + - Specification of the desired behavior of the pod. + type: complex + contains: + active_deadline_seconds: + description: + - Optional duration in seconds the pod may be active on the + node relative to StartTime before the system will actively + try to mark it failed and kill associated containers. Value + must be a positive integer. + type: int + affinity: + description: + - If specified, the pod's scheduling constraints + type: complex + contains: + node_affinity: + description: + - Describes node affinity scheduling rules for the pod. + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes + that satisfy the affinity expressions specified by + this field, but it may choose a node that violates + one or more of the expressions. The node that is most + preferred is the one with the greatest sum of weights, + i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling + affinity expressions, etc.), compute a sum by iterating + through the elements of this field and adding "weight" + to the sum if the node matches the corresponding matchExpressions; + the node(s) with the highest sum are the most preferred. + type: list + contains: + preference: + description: + - A node selector term, associated with the corresponding + weight. + type: complex + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies + to. + type: str + operator: + description: + - Represents a key's relationship to a set + of values. Valid operators are In, NotIn, + Exists, DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must + be non-empty. If the operator is Exists + or DoesNotExist, the values array must + be empty. If the operator is Gt or Lt, + the values array must have a single element, + which will be interpreted as an integer. + This array is replaced during a strategic + merge patch. + type: list + contains: str + weight: + description: + - Weight associated with matching the corresponding + nodeSelectorTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - If the affinity requirements specified by this field + are not met at scheduling time, the pod will not be + scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point + during pod execution (e.g. due to an update), the + system may or may not try to eventually evict the + pod from its node. + type: complex + contains: + node_selector_terms: + description: + - Required. A list of node selector terms. The terms + are ORed. + type: list + contains: + match_expressions: + description: + - Required. A list of node selector requirements. + The requirements are ANDed. + type: list + contains: + key: + description: + - The label key that the selector applies + to. + type: str + operator: + description: + - Represents a key's relationship to a set + of values. Valid operators are In, NotIn, + Exists, DoesNotExist. Gt, and Lt. + type: str + values: + description: + - An array of string values. If the operator + is In or NotIn, the values array must + be non-empty. If the operator is Exists + or DoesNotExist, the values array must + be empty. If the operator is Gt or Lt, + the values array must have a single element, + which will be interpreted as an integer. + This array is replaced during a strategic + merge patch. + type: list + contains: str + pod_affinity: + description: + - Describes pod affinity scheduling rules (e.g. co-locate + this pod in the same node, zone, etc. as some other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes + that satisfy the affinity expressions specified by + this field, but it may choose a node that violates + one or more of the expressions. The node that is most + preferred is the one with the greatest sum of weights, + i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling + affinity expressions, etc.), compute a sum by iterating + through the elements of this field and adding "weight" + to the sum if the node has pods which matches the + corresponding podAffinityTerm; the node(s) with the + highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with + the corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in + this case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators + ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. + If the operator is In or NotIn, the + values array must be non-empty. If + the operator is Exists or DoesNotExist, + the values array must be empty. This + array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, + whose key field is "key", the operator + is "In", and the values array contains + only "value". The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the + labelSelector applies to (matches against); + null or empty list means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or + not co-located (anti-affinity) with the pods + matching the labelSelector in the specified + namespaces, where co-located is defined as + running on a node whose value of the label + with key topologyKey matches that of any node + on which any of the selected pods is running. + For PreferredDuringScheduling pod anti-affinity, + empty topologyKey is interpreted as "all topologies" + ("all topologies" here means all the topologyKeys + indicated by scheduler command-line argument + --failure-domains); for affinity and for RequiredDuringScheduling + pod anti-affinity, empty topologyKey is not + allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it + is implemented. If the affinity requirements specified + by this field are not met at scheduling time, the + pod will not be scheduled onto the node. If the affinity + requirements specified by this field cease to be met + at some point during pod execution (e.g. due to a + pod label update), the system will try to eventually + evict the pod from its node. When there are multiple + elements, the lists of nodes corresponding to each + podAffinityTerm are intersected, i.e. all terms must + be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the affinity requirements specified by this field + are not met at scheduling time, the pod will not be + scheduled onto the node. If the affinity requirements + specified by this field cease to be met at some point + during pod execution (e.g. due to a pod label update), + the system may or may not try to eventually evict + the pod from its node. When there are multiple elements, + the lists of nodes corresponding to each podAffinityTerm + are intersected, i.e. all terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + pod_anti_affinity: + description: + - Describes pod anti-affinity scheduling rules (e.g. avoid + putting this pod in the same node, zone, etc. as some + other pod(s)). + type: complex + contains: + preferred_during_scheduling_ignored_during_execution: + description: + - The scheduler will prefer to schedule pods to nodes + that satisfy the anti-affinity expressions specified + by this field, but it may choose a node that violates + one or more of the expressions. The node that is most + preferred is the one with the greatest sum of weights, + i.e. for each node that meets all of the scheduling + requirements (resource request, requiredDuringScheduling + anti-affinity expressions, etc.), compute a sum by + iterating through the elements of this field and adding + "weight" to the sum if the node has pods which matches + the corresponding podAffinityTerm; the node(s) with + the highest sum are the most preferred. + type: list + contains: + pod_affinity_term: + description: + - Required. A pod affinity term, associated with + the corresponding weight. + type: complex + contains: + label_selector: + description: + - A label query over a set of resources, in + this case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators + ard In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. + If the operator is In or NotIn, the + values array must be non-empty. If + the operator is Exists or DoesNotExist, + the values array must be empty. This + array is replaced during a strategic + merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, + whose key field is "key", the operator + is "In", and the values array contains + only "value". The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the + labelSelector applies to (matches against); + null or empty list means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or + not co-located (anti-affinity) with the pods + matching the labelSelector in the specified + namespaces, where co-located is defined as + running on a node whose value of the label + with key topologyKey matches that of any node + on which any of the selected pods is running. + For PreferredDuringScheduling pod anti-affinity, + empty topologyKey is interpreted as "all topologies" + ("all topologies" here means all the topologyKeys + indicated by scheduler command-line argument + --failure-domains); for affinity and for RequiredDuringScheduling + pod anti-affinity, empty topologyKey is not + allowed. + type: str + weight: + description: + - weight associated with matching the corresponding + podAffinityTerm, in the range 1-100. + type: int + required_during_scheduling_ignored_during_execution: + description: + - 'NOT YET IMPLEMENTED. TODO: Uncomment field once it + is implemented. If the anti-affinity requirements + specified by this field are not met at scheduling + time, the pod will not be scheduled onto the node. + If the anti-affinity requirements specified by this + field cease to be met at some point during pod execution + (e.g. due to a pod label update), the system will + try to eventually evict the pod from its node. When + there are multiple elements, the lists of nodes corresponding + to each podAffinityTerm are intersected, i.e. all + terms must be satisfied. RequiredDuringSchedulingRequiredDuringExecution + []PodAffinityTerm `json:"requiredDuringSchedulingRequiredDuringExecution,omitempty"` + If the anti-affinity requirements specified by this + field are not met at scheduling time, the pod will + not be scheduled onto the node. If the anti-affinity + requirements specified by this field cease to be met + at some point during pod execution (e.g. due to a + pod label update), the system may or may not try to + eventually evict the pod from its node. When there + are multiple elements, the lists of nodes corresponding + to each podAffinityTerm are intersected, i.e. all + terms must be satisfied.' + type: list + contains: + label_selector: + description: + - A label query over a set of resources, in this + case pods. + type: complex + contains: + match_expressions: + description: + - matchExpressions is a list of label selector + requirements. The requirements are ANDed. + type: list + contains: + key: + description: + - key is the label key that the selector + applies to. + type: str + operator: + description: + - operator represents a key's relationship + to a set of values. Valid operators ard + In, NotIn, Exists and DoesNotExist. + type: str + values: + description: + - values is an array of string values. If + the operator is In or NotIn, the values + array must be non-empty. If the operator + is Exists or DoesNotExist, the values + array must be empty. This array is replaced + during a strategic merge patch. + type: list + contains: str + match_labels: + description: + - matchLabels is a map of {key,value} pairs. + A single {key,value} in the matchLabels map + is equivalent to an element of matchExpressions, + whose key field is "key", the operator is + "In", and the values array contains only "value". + The requirements are ANDed. + type: complex + contains: str, str + namespaces: + description: + - namespaces specifies which namespaces the labelSelector + applies to (matches against); null or empty list + means "this pod's namespace" + type: list + contains: str + topology_key: + description: + - This pod should be co-located (affinity) or not + co-located (anti-affinity) with the pods matching + the labelSelector in the specified namespaces, + where co-located is defined as running on a node + whose value of the label with key topologyKey + matches that of any node on which any of the selected + pods is running. For PreferredDuringScheduling + pod anti-affinity, empty topologyKey is interpreted + as "all topologies" ("all topologies" here means + all the topologyKeys indicated by scheduler command-line + argument --failure-domains); for affinity and + for RequiredDuringScheduling pod anti-affinity, + empty topologyKey is not allowed. + type: str + automount_service_account_token: + description: + - AutomountServiceAccountToken indicates whether a service account + token should be automatically mounted. + type: bool + containers: + description: + - List of containers belonging to the pod. Containers cannot + currently be added or removed. There must be at least one + container in a Pod. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is\ + \ used if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a\ + \ variable cannot be resolved, the reference in the input\ + \ string will be unchanged. The $(VAR_NAME) syntax can\ + \ be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided.\ + \ Variable references $(VAR_NAME) are expanded using the\ + \ container's environment. If a variable cannot be resolved,\ + \ the reference in the input string will be unchanged.\ + \ The $(VAR_NAME) syntax can be escaped with a double\ + \ $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists\ + \ or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. + Cannot be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using + the previous defined environment variables in the + container and any service environment variables. If + a variable cannot be resolved, the reference in the + input string will be unchanged. The $(VAR_NAME) syntax + can be escaped with a double $$, ie: $$(VAR_NAME). + Escaped references will never be expanded, regardless + of whether the variable exists or not. Defaults to + "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot + be used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key + must be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, + requests.cpu and requests.memory) are currently + supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must + be a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must + be defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the + container. The keys defined within a source must be a + C_IDENTIFIER. All invalid keys will be reported as an + event when the container is starting. When a key exists + in multiple sources, the value associated with the last + source will take precedence. Values defined by an Env + with a duplicate key will take precedence. Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the + ConfigMap. Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. + Defaults to Always if :latest tag is specified, or IfNotPresent + otherwise. Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container + is created. If the handler fails, the container is + terminated and restarted according to its restart + policy. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is + terminated. The container is terminated after the + handler completes. The reason for termination is passed + to the handler. Regardless of the outcome of the handler, + the container is eventually terminated. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be + restarted if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be + updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a + port here gives the system additional information about + the network connections a container uses, but is primarily + informational. Not specifying a port here DOES NOT prevent + that port from being exposed. Any port which is listening + on the default "0.0.0.0" address inside a container will + be accessible from the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. + This must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, + this must be a valid port number, 0 < x < 65536. If + HostNetwork is specified, this must match ContainerPort. + Most containers do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have + a unique name. Name for the port that can be referred + to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to + "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container + will be removed from service endpoints if the probe fails. + Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be + updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted + by the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the + host. Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root + user. If true, the Kubelet will validate the image + at runtime to ensure that it does not run as UID 0 + (root) and fail to start the container if it does. + If unset or false, no such validation will be performed. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. + If unspecified, the container runtime will allocate + a random SELinux context for each container. May also + be set in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the + container. + type: str + role: + description: + - Role is a SELinux role label that applies to the + container. + type: str + type: + description: + - Type is a SELinux type label that applies to the + container. + type: str + user: + description: + - User is a SELinux user label that applies to the + container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from + stdin in the container will always result in EOF. Default + is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin + is true the stdin stream will remain open across multiple + attach sessions. If stdinOnce is set to true, stdin is + opened on container start, is empty until the first client + attaches to stdin, and then remains open and accepts data + until the client disconnects, at which time stdin is closed + and remains closed until the container is restarted. If + this flag is false, a container processes that reads from + stdin will never receive an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into\ + \ the container's filesystem. Message written is intended\ + \ to be brief final status, such as an assertion failure\ + \ message. Will be truncated by the node if greater than\ + \ 4096 bytes. The total message length across all containers\ + \ will be limited to 12kb. Defaults to /dev/termination-log.\ + \ Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to + populate the container status message on both success + and failure. FallbackToLogsOnError will use the last chunk + of container log output if the termination message file + is empty and the container exited with an error. The log + output is limited to 2048 bytes or 80 lines, whichever + is smaller. Defaults to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, + also requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. + Cannot be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should + be mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's + volume should be mounted. Defaults to "" (volume's + root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + dns_policy: + description: + - Set DNS policy for containers within the pod. One of 'ClusterFirstWithHostNet', + 'ClusterFirst' or 'Default'. Defaults to "ClusterFirst". To + have DNS options set along with hostNetwork, you have to specify + DNS policy explicitly to 'ClusterFirstWithHostNet'. + type: str + host_aliases: + description: + - HostAliases is an optional list of hosts and IPs that will + be injected into the pod's hosts file if specified. This is + only valid for non-hostNetwork pods. + type: list + contains: + hostnames: + description: + - Hostnames for the above IP address. + type: list + contains: str + ip: + description: + - IP address of the host file entry. + type: str + host_ipc: + description: + - "Use the host's ipc namespace. Optional: Default to false." + type: bool + host_network: + description: + - Host networking requested for this pod. Use the host's network + namespace. If this option is set, the ports that will be used + must be specified. Default to false. + type: bool + host_pid: + description: + - "Use the host's pid namespace. Optional: Default to false." + type: bool + hostname: + description: + - Specifies the hostname of the Pod If not specified, the pod's + hostname will be set to a system-defined value. + type: str + image_pull_secrets: + description: + - ImagePullSecrets is an optional list of references to secrets + in the same namespace to use for pulling any of the images + used by this PodSpec. If specified, these secrets will be + passed to individual puller implementations for them to use. + For example, in the case of docker, only DockerConfig type + secrets are honored. + type: list + contains: + name: + description: + - Name of the referent. + type: str + init_containers: + description: + - List of initialization containers belonging to the pod. Init + containers are executed in order prior to containers being + started. If any init container fails, the pod is considered + to have failed and is handled according to its restartPolicy. + The name for an init container or normal container must be + unique among all containers. Init containers may not have + Lifecycle actions, Readiness probes, or Liveness probes. The + resourceRequirements of an init container are taken into account + during scheduling by finding the highest request/limit for + each resource type, and then using the max of of that value + or the sum of the normal containers. Limits are applied to + init containers in a similar fashion. Init containers cannot + currently be added or removed. Cannot be updated. + type: list + contains: + args: + description: + - "Arguments to the entrypoint. The docker image's CMD is\ + \ used if this is not provided. Variable references $(VAR_NAME)\ + \ are expanded using the container's environment. If a\ + \ variable cannot be resolved, the reference in the input\ + \ string will be unchanged. The $(VAR_NAME) syntax can\ + \ be escaped with a double $$, ie: $$(VAR_NAME). Escaped\ + \ references will never be expanded, regardless of whether\ + \ the variable exists or not. Cannot be updated." + type: list + contains: str + command: + description: + - "Entrypoint array. Not executed within a shell. The docker\ + \ image's ENTRYPOINT is used if this is not provided.\ + \ Variable references $(VAR_NAME) are expanded using the\ + \ container's environment. If a variable cannot be resolved,\ + \ the reference in the input string will be unchanged.\ + \ The $(VAR_NAME) syntax can be escaped with a double\ + \ $$, ie: $$(VAR_NAME). Escaped references will never\ + \ be expanded, regardless of whether the variable exists\ + \ or not. Cannot be updated." + type: list + contains: str + env: + description: + - List of environment variables to set in the container. + Cannot be updated. + type: list + contains: + name: + description: + - Name of the environment variable. Must be a C_IDENTIFIER. + type: str + value: + description: + - 'Variable references $(VAR_NAME) are expanded using + the previous defined environment variables in the + container and any service environment variables. If + a variable cannot be resolved, the reference in the + input string will be unchanged. The $(VAR_NAME) syntax + can be escaped with a double $$, ie: $$(VAR_NAME). + Escaped references will never be expanded, regardless + of whether the variable exists or not. Defaults to + "".' + type: str + value_from: + description: + - Source for the environment variable's value. Cannot + be used if value is not empty. + type: complex + contains: + config_map_key_ref: + description: + - Selects a key of a ConfigMap. + type: complex + contains: + key: + description: + - The key to select. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's key + must be defined + type: bool + field_ref: + description: + - 'Selects a field of the pod: supports metadata.name, + metadata.namespace, metadata.labels, metadata.annotations, + spec.nodeName, spec.serviceAccountName, status.hostIP, + status.podIP.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, + requests.cpu and requests.memory) are currently + supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret_key_ref: + description: + - Selects a key of a secret in the pod's namespace + type: complex + contains: + key: + description: + - The key of the secret to select from. Must + be a valid secret key. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or it's key must + be defined + type: bool + env_from: + description: + - List of sources to populate environment variables in the + container. The keys defined within a source must be a + C_IDENTIFIER. All invalid keys will be reported as an + event when the container is starting. When a key exists + in multiple sources, the value associated with the last + source will take precedence. Values defined by an Env + with a duplicate key will take precedence. Cannot be updated. + type: list + contains: + config_map_ref: + description: + - The ConfigMap to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap must be defined + type: bool + prefix: + description: + - An optional identifer to prepend to each key in the + ConfigMap. Must be a C_IDENTIFIER. + type: str + secret_ref: + description: + - The Secret to select from + type: complex + contains: + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret must be defined + type: bool + image: + description: + - Docker image name. + type: str + image_pull_policy: + description: + - Image pull policy. One of Always, Never, IfNotPresent. + Defaults to Always if :latest tag is specified, or IfNotPresent + otherwise. Cannot be updated. + type: str + lifecycle: + description: + - Actions that the management system should take in response + to container lifecycle events. Cannot be updated. + type: complex + contains: + post_start: + description: + - PostStart is called immediately after a container + is created. If the handler fails, the container is + terminated and restarted according to its restart + policy. Other management of the container blocks until + the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + pre_stop: + description: + - PreStop is called immediately before a container is + terminated. The container is terminated after the + handler completes. The reason for termination is passed + to the handler. Regardless of the outcome of the handler, + the container is eventually terminated. Other management + of the container blocks until the hook completes. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the + command is root ('/') in the container's filesystem. + The command is simply exec'd, it is not run + inside a shell, so traditional shell instructions + ('|', etc) won't work. To use a shell, you + need to explicitly call out to that shell. + Exit status of 0 is treated as live/healthy + and non-zero is unhealthy. + type: list + contains: str + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod + IP. You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP + allows repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. + Defaults to HTTP. + type: str + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP + port. TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults + to the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the + container. Number must be in the range 1 to + 65535. Name must be an IANA_SVC_NAME. + type: str + liveness_probe: + description: + - Periodic probe of container liveness. Container will be + restarted if the probe fails. Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + name: + description: + - Name of the container specified as a DNS_LABEL. Each container + in a pod must have a unique name (DNS_LABEL). Cannot be + updated. + type: str + ports: + description: + - List of ports to expose from the container. Exposing a + port here gives the system additional information about + the network connections a container uses, but is primarily + informational. Not specifying a port here DOES NOT prevent + that port from being exposed. Any port which is listening + on the default "0.0.0.0" address inside a container will + be accessible from the network. Cannot be updated. + type: list + contains: + container_port: + description: + - Number of port to expose on the pod's IP address. + This must be a valid port number, 0 < x < 65536. + type: int + host_ip: + description: + - What host IP to bind the external port to. + type: str + host_port: + description: + - Number of port to expose on the host. If specified, + this must be a valid port number, 0 < x < 65536. If + HostNetwork is specified, this must match ContainerPort. + Most containers do not need this. + type: int + name: + description: + - If specified, this must be an IANA_SVC_NAME and unique + within the pod. Each named port in a pod must have + a unique name. Name for the port that can be referred + to by services. + type: str + protocol: + description: + - Protocol for port. Must be UDP or TCP. Defaults to + "TCP". + type: str + readiness_probe: + description: + - Periodic probe of container service readiness. Container + will be removed from service endpoints if the probe fails. + Cannot be updated. + type: complex + contains: + _exec: + description: + - One and only one of the following should be specified. + Exec specifies the action to take. + type: complex + contains: + command: + description: + - Command is the command line to execute inside + the container, the working directory for the command + is root ('/') in the container's filesystem. The + command is simply exec'd, it is not run inside + a shell, so traditional shell instructions ('|', + etc) won't work. To use a shell, you need to explicitly + call out to that shell. Exit status of 0 is treated + as live/healthy and non-zero is unhealthy. + type: list + contains: str + failure_threshold: + description: + - Minimum consecutive failures for the probe to be considered + failed after having succeeded. Defaults to 3. Minimum + value is 1. + type: int + http_get: + description: + - HTTPGet specifies the http request to perform. + type: complex + contains: + host: + description: + - Host name to connect to, defaults to the pod IP. + You probably want to set "Host" in httpHeaders + instead. + type: str + http_headers: + description: + - Custom headers to set in the request. HTTP allows + repeated headers. + type: list + contains: + name: + description: + - The header field name + type: str + value: + description: + - The header field value + type: str + path: + description: + - Path to access on the HTTP server. + type: str + port: + description: + - Name or number of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + scheme: + description: + - Scheme to use for connecting to the host. Defaults + to HTTP. + type: str + initial_delay_seconds: + description: + - Number of seconds after the container has started + before liveness probes are initiated. + type: int + period_seconds: + description: + - How often (in seconds) to perform the probe. Default + to 10 seconds. Minimum value is 1. + type: int + success_threshold: + description: + - Minimum consecutive successes for the probe to be + considered successful after having failed. Defaults + to 1. Must be 1 for liveness. Minimum value is 1. + type: int + tcp_socket: + description: + - TCPSocket specifies an action involving a TCP port. + TCP hooks not yet supported + type: complex + contains: + host: + description: + - 'Optional: Host name to connect to, defaults to + the pod IP.' + type: str + port: + description: + - Number or name of the port to access on the container. + Number must be in the range 1 to 65535. Name must + be an IANA_SVC_NAME. + type: str + timeout_seconds: + description: + - Number of seconds after which the probe times out. + Defaults to 1 second. Minimum value is 1. + type: int + resources: + description: + - Compute Resources required by this container. Cannot be + updated. + type: complex + contains: + limits: + description: + - Limits describes the maximum amount of compute resources + allowed. + type: complex + contains: str, str + requests: + description: + - Requests describes the minimum amount of compute resources + required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. + type: complex + contains: str, str + security_context: + description: + - 'Security options the pod should run with. More info:' + type: complex + contains: + capabilities: + description: + - The capabilities to add/drop when running containers. + Defaults to the default set of capabilities granted + by the container runtime. + type: complex + contains: + add: + description: + - Added capabilities + type: list + contains: str + drop: + description: + - Removed capabilities + type: list + contains: str + privileged: + description: + - Run container in privileged mode. Processes in privileged + containers are essentially equivalent to root on the + host. Defaults to false. + type: bool + read_only_root_filesystem: + description: + - Whether this container has a read-only root filesystem. + Default is false. + type: bool + run_as_non_root: + description: + - Indicates that the container must run as a non-root + user. If true, the Kubelet will validate the image + at runtime to ensure that it does not run as UID 0 + (root) and fail to start the container if it does. + If unset or false, no such validation will be performed. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in PodSecurityContext. If set in both + SecurityContext and PodSecurityContext, the value + specified in SecurityContext takes precedence. + type: int + se_linux_options: + description: + - The SELinux context to be applied to the container. + If unspecified, the container runtime will allocate + a random SELinux context for each container. May also + be set in PodSecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the + container. + type: str + role: + description: + - Role is a SELinux role label that applies to the + container. + type: str + type: + description: + - Type is a SELinux type label that applies to the + container. + type: str + user: + description: + - User is a SELinux user label that applies to the + container. + type: str + stdin: + description: + - Whether this container should allocate a buffer for stdin + in the container runtime. If this is not set, reads from + stdin in the container will always result in EOF. Default + is false. + type: bool + stdin_once: + description: + - Whether the container runtime should close the stdin channel + after it has been opened by a single attach. When stdin + is true the stdin stream will remain open across multiple + attach sessions. If stdinOnce is set to true, stdin is + opened on container start, is empty until the first client + attaches to stdin, and then remains open and accepts data + until the client disconnects, at which time stdin is closed + and remains closed until the container is restarted. If + this flag is false, a container processes that reads from + stdin will never receive an EOF. Default is false + type: bool + termination_message_path: + description: + - "Optional: Path at which the file to which the container's\ + \ termination message will be written is mounted into\ + \ the container's filesystem. Message written is intended\ + \ to be brief final status, such as an assertion failure\ + \ message. Will be truncated by the node if greater than\ + \ 4096 bytes. The total message length across all containers\ + \ will be limited to 12kb. Defaults to /dev/termination-log.\ + \ Cannot be updated." + type: str + termination_message_policy: + description: + - Indicate how the termination message should be populated. + File will use the contents of terminationMessagePath to + populate the container status message on both success + and failure. FallbackToLogsOnError will use the last chunk + of container log output if the termination message file + is empty and the container exited with an error. The log + output is limited to 2048 bytes or 80 lines, whichever + is smaller. Defaults to File. Cannot be updated. + type: str + tty: + description: + - Whether this container should allocate a TTY for itself, + also requires 'stdin' to be true. Default is false. + type: bool + volume_mounts: + description: + - Pod volumes to mount into the container's filesystem. + Cannot be updated. + type: list + contains: + mount_path: + description: + - Path within the container at which the volume should + be mounted. Must not contain ':'. + type: str + name: + description: + - This must match the Name of a Volume. + type: str + read_only: + description: + - Mounted read-only if true, read-write otherwise (false + or unspecified). Defaults to false. + type: bool + sub_path: + description: + - Path within the volume from which the container's + volume should be mounted. Defaults to "" (volume's + root). + type: str + working_dir: + description: + - Container's working directory. If not specified, the container + runtime's default will be used, which might be configured + in the container image. Cannot be updated. + type: str + node_name: + description: + - NodeName is a request to schedule this pod onto a specific + node. If it is non-empty, the scheduler simply schedules this + pod onto that node, assuming that it fits resource requirements. + type: str + node_selector: + description: + - NodeSelector is a selector which must be true for the pod + to fit on a node. Selector which must match a node's labels + for the pod to be scheduled on that node. + type: complex + contains: str, str + restart_policy: + description: + - Restart policy for all containers within the pod. One of Always, + OnFailure, Never. Default to Always. + type: str + scheduler_name: + description: + - If specified, the pod will be dispatched by specified scheduler. + If not specified, the pod will be dispatched by default scheduler. + type: str + security_context: + description: + - 'SecurityContext holds pod-level security attributes and common + container settings. Optional: Defaults to empty. See type + description for default values of each field.' + type: complex + contains: + fs_group: + description: + - "A special supplemental group that applies to all containers\ + \ in a pod. Some volume types allow the Kubelet to change\ + \ the ownership of that volume to be owned by the pod:\ + \ 1. The owning GID will be the FSGroup 2. The setgid\ + \ bit is set (new files created in the volume will be\ + \ owned by FSGroup) 3. The permission bits are OR'd with\ + \ rw-rw---- If unset, the Kubelet will not modify the\ + \ ownership and permissions of any volume." + type: int + run_as_non_root: + description: + - Indicates that the container must run as a non-root user. + If true, the Kubelet will validate the image at runtime + to ensure that it does not run as UID 0 (root) and fail + to start the container if it does. If unset or false, + no such validation will be performed. May also be set + in SecurityContext. If set in both SecurityContext and + PodSecurityContext, the value specified in SecurityContext + takes precedence. + type: bool + run_as_user: + description: + - The UID to run the entrypoint of the container process. + Defaults to user specified in image metadata if unspecified. + May also be set in SecurityContext. If set in both SecurityContext + and PodSecurityContext, the value specified in SecurityContext + takes precedence for that container. + type: int + se_linux_options: + description: + - The SELinux context to be applied to all containers. If + unspecified, the container runtime will allocate a random + SELinux context for each container. May also be set in + SecurityContext. If set in both SecurityContext and PodSecurityContext, + the value specified in SecurityContext takes precedence + for that container. + type: complex + contains: + level: + description: + - Level is SELinux level label that applies to the container. + type: str + role: + description: + - Role is a SELinux role label that applies to the container. + type: str + type: + description: + - Type is a SELinux type label that applies to the container. + type: str + user: + description: + - User is a SELinux user label that applies to the container. + type: str + supplemental_groups: + description: + - A list of groups applied to the first process run in each + container, in addition to the container's primary GID. + If unspecified, no groups will be added to any container. + type: list + contains: int + service_account: + description: + - 'DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. + Deprecated: Use serviceAccountName instead.' + type: str + service_account_name: + description: + - ServiceAccountName is the name of the ServiceAccount to use + to run this pod. + type: str + subdomain: + description: + - If specified, the fully qualified Pod hostname will be "...svc.". If not specified, the pod + will not have a domainname at all. + type: str + termination_grace_period_seconds: + description: + - Optional duration in seconds the pod needs to terminate gracefully. + May be decreased in delete request. Value must be non-negative + integer. The value zero indicates delete immediately. If this + value is nil, the default grace period will be used instead. + The grace period is the duration in seconds after the processes + running in the pod are sent a termination signal and the time + when the processes are forcibly halted with a kill signal. + Set this value longer than the expected cleanup time for your + process. Defaults to 30 seconds. + type: int + tolerations: + description: + - If specified, the pod's tolerations. + type: list + contains: + effect: + description: + - Effect indicates the taint effect to match. Empty means + match all taint effects. When specified, allowed values + are NoSchedule, PreferNoSchedule and NoExecute. + type: str + key: + description: + - Key is the taint key that the toleration applies to. Empty + means match all taint keys. If the key is empty, operator + must be Exists; this combination means to match all values + and all keys. + type: str + operator: + description: + - Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a + pod can tolerate all taints of a particular category. + type: str + toleration_seconds: + description: + - TolerationSeconds represents the period of time the toleration + (which must be of effect NoExecute, otherwise this field + is ignored) tolerates the taint. By default, it is not + set, which means tolerate the taint forever (do not evict). + Zero and negative values will be treated as 0 (evict immediately) + by the system. + type: int + value: + description: + - Value is the taint value the toleration matches to. If + the operator is Exists, the value should be empty, otherwise + just a regular string. + type: str + volumes: + description: + - List of volumes that can be mounted by containers belonging + to the pod. + type: list + contains: + aws_elastic_block_store: + description: + - AWSElasticBlockStore represents an AWS Disk resource that + is attached to a kubelet's host machine and then exposed + to the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. + If omitted, the default is to mount by volume name. + Examples: For volume /dev/sda1, you specify the partition + as "1". Similarly, the volume partition for /dev/sda + is "0" (or you can leave the property empty).' + type: int + read_only: + description: + - Specify "true" to force and set the ReadOnly property + in VolumeMounts to "true". If omitted, the default + is "false". + type: bool + volume_id: + description: + - Unique ID of the persistent disk resource in AWS (Amazon + EBS volume). + type: str + azure_disk: + description: + - AzureDisk represents an Azure Data Disk mount on the host + and bind mount to the pod. + type: complex + contains: + caching_mode: + description: + - 'Host Caching mode: None, Read Only, Read Write.' + type: str + disk_name: + description: + - The Name of the data disk in the blob storage + type: str + disk_uri: + description: + - The URI the data disk in the blob storage + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + kind: + description: + - 'Expected values Shared: mulitple blob disks per storage + account Dedicated: single blob disk per storage account + Managed: azure managed data disk (only in managed + availability set). defaults to shared' + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + azure_file: + description: + - AzureFile represents an Azure File Service mount on the + host and bind mount to the pod. + type: complex + contains: + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + secret_name: + description: + - the name of secret that contains Azure Storage Account + Name and Key + type: str + share_name: + description: + - Share Name + type: str + cephfs: + description: + - CephFS represents a Ceph FS mount on the host that shares + a pod's lifetime + type: complex + contains: + monitors: + description: + - 'Required: Monitors is a collection of Ceph monitors' + type: list + contains: str + path: + description: + - 'Optional: Used as the mounted root, rather than the + full Ceph tree, default is /' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_file: + description: + - 'Optional: SecretFile is the path to key ring for + User, default is /etc/ceph/user.secret' + type: str + secret_ref: + description: + - 'Optional: SecretRef is reference to the authentication + secret for User, default is empty.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - 'Optional: User is the rados user name, default is + admin' + type: str + cinder: + description: + - Cinder represents a cinder volume attached and mounted + on kubelets host machine + type: complex + contains: + fs_type: + description: + - 'Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Examples: + "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" + if unspecified.' + type: str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + volume_id: + description: + - volume id used to identify the volume in cinder + type: str + config_map: + description: + - ConfigMap represents a configMap that should populate + this volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this + setting. This might be in conflict with other options + that affect the file mode, like fsGroup, and the result + can be other mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced ConfigMap will be projected into + the volume as a file whose name is the key and content + is the value. If specified, the listed keys will be + projected into the specified paths, and unlisted keys + will not be present. If a key is specified which is + not present in the ConfigMap, the volume setup will + error unless it is marked optional. Paths must be + relative and may not contain the '..' path or start + with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must + be a value between 0 and 0777. If not specified, + the volume defaultMode will be used. This might + be in conflict with other options that affect + the file mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key to. + May not be an absolute path. May not contain the + path element '..'. May not start with the string + '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys must be + defined + type: bool + downward_api: + description: + - DownwardAPI represents downward API about the pod that + should populate this volume + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this + setting. This might be in conflict with other options + that affect the file mode, like fsGroup, and the result + can be other mode bits set.' + type: int + items: + description: + - Items is a list of downward API volume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: only annotations, + labels, name and namespace are supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath is written + in terms of, defaults to "v1". + type: str + field_path: + description: + - Path of the field to select in the specified + API version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must + be a value between 0 and 0777. If not specified, + the volume defaultMode will be used. This might + be in conflict with other options that affect + the file mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - "Required: Path is the relative path name of the\ + \ file to be created. Must not be absolute or\ + \ contain the '..' path. Must be utf-8 encoded.\ + \ The first item of the relative path must not\ + \ start with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: only resources + limits and requests (limits.cpu, limits.memory, + requests.cpu and requests.memory) are currently + supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, optional + for env vars' + type: str + divisor: + description: + - Specifies the output format of the exposed + resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + empty_dir: + description: + - EmptyDir represents a temporary directory that shares + a pod's lifetime. + type: complex + contains: + medium: + description: + - What type of storage medium should back this directory. + The default is "" which means to use the node's default + medium. Must be an empty string (default) or Memory. + type: str + size_limit: + description: + - Total amount of local storage required for this EmptyDir + volume. The size limit is also applicable for memory + medium. The maximum usage on memory medium EmptyDir + would be the minimum value between the SizeLimit specified + here and the sum of memory limits of all containers + in a pod. The default is nil which means that the + limit is undefined. + type: str + fc: + description: + - FC represents a Fibre Channel resource that is attached + to a kubelet's host machine and then exposed to the pod. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + lun: + description: + - 'Required: FC target lun number' + type: int + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + target_ww_ns: + description: + - 'Required: FC target worldwide names (WWNs)' + type: list + contains: str + flex_volume: + description: + - FlexVolume represents a generic volume resource that is + provisioned/attached using an exec based plugin. This + is an alpha feature and may change in future. + type: complex + contains: + driver: + description: + - Driver is the name of the driver to use for this volume. + type: str + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". The default filesystem depends on FlexVolume + script. + type: str + options: + description: + - 'Optional: Extra command options if any.' + type: complex + contains: str, str + read_only: + description: + - 'Optional: Defaults to false (read/write). ReadOnly + here will force the ReadOnly setting in VolumeMounts.' + type: bool + secret_ref: + description: + - 'Optional: SecretRef is reference to the secret object + containing sensitive information to pass to the plugin + scripts. This may be empty if no secret object is + specified. If the secret object contains more than + one secret, all secrets are passed to the plugin scripts.' + type: complex + contains: + name: + description: + - Name of the referent. + type: str + flocker: + description: + - Flocker represents a Flocker volume attached to a kubelet's + host machine. This depends on the Flocker control service + being running + type: complex + contains: + dataset_name: + description: + - Name of the dataset stored as metadata -> name on + the dataset for Flocker should be considered as deprecated + type: str + dataset_uuid: + description: + - UUID of the dataset. This is unique identifier of + a Flocker dataset + type: str + gce_persistent_disk: + description: + - GCEPersistentDisk represents a GCE Disk resource that + is attached to a kubelet's host machine and then exposed + to the pod. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + partition: + description: + - 'The partition in the volume that you want to mount. + If omitted, the default is to mount by volume name. + Examples: For volume /dev/sda1, you specify the partition + as "1". Similarly, the volume partition for /dev/sda + is "0" (or you can leave the property empty).' + type: int + pd_name: + description: + - Unique name of the PD resource in GCE. Used to identify + the disk in GCE. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + git_repo: + description: + - GitRepo represents a git repository at a particular revision. + type: complex + contains: + directory: + description: + - Target directory name. Must not contain or start with + '..'. If '.' is supplied, the volume directory will + be the git repository. Otherwise, if specified, the + volume will contain the git repository in the subdirectory + with the given name. + type: str + repository: + description: + - Repository URL + type: str + revision: + description: + - Commit hash for the specified revision. + type: str + glusterfs: + description: + - Glusterfs represents a Glusterfs mount on the host that + shares a pod's lifetime. + type: complex + contains: + endpoints: + description: + - EndpointsName is the endpoint name that details Glusterfs + topology. + type: str + path: + description: + - Path is the Glusterfs volume path. + type: str + read_only: + description: + - ReadOnly here will force the Glusterfs volume to be + mounted with read-only permissions. Defaults to false. + type: bool + host_path: + description: + - HostPath represents a pre-existing file or directory on + the host machine that is directly exposed to the container. + This is generally used for system agents or other privileged + things that are allowed to see the host machine. Most + containers will NOT need this. + type: complex + contains: + path: + description: + - Path of the directory on the host. + type: str + iscsi: + description: + - ISCSI represents an ISCSI Disk resource that is attached + to a kubelet's host machine and then exposed to the pod. + type: complex + contains: + chap_auth_discovery: + description: + - whether support iSCSI Discovery CHAP authentication + type: bool + chap_auth_session: + description: + - whether support iSCSI Session CHAP authentication + type: bool + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + iqn: + description: + - Target iSCSI Qualified Name. + type: str + iscsi_interface: + description: + - "Optional: Defaults to 'default' (tcp). iSCSI interface\ + \ name that uses an iSCSI transport." + type: str + lun: + description: + - iSCSI target lun number. + type: int + portals: + description: + - iSCSI target portal List. The portal is either an + IP or ip_addr:port if the port is other than default + (typically TCP ports 860 and 3260). + type: list + contains: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - CHAP secret for iSCSI target and initiator authentication + type: complex + contains: + name: + description: + - Name of the referent. + type: str + target_portal: + description: + - iSCSI target portal. The portal is either an IP or + ip_addr:port if the port is other than default (typically + TCP ports 860 and 3260). + type: str + name: + description: + - Volume's name. Must be a DNS_LABEL and unique within the + pod. + type: str + nfs: + description: + - NFS represents an NFS mount on the host that shares a + pod's lifetime + type: complex + contains: + path: + description: + - Path that is exported by the NFS server. + type: str + read_only: + description: + - ReadOnly here will force the NFS export to be mounted + with read-only permissions. Defaults to false. + type: bool + server: + description: + - Server is the hostname or IP address of the NFS server. + type: str + persistent_volume_claim: + description: + - PersistentVolumeClaimVolumeSource represents a reference + to a PersistentVolumeClaim in the same namespace. + type: complex + contains: + claim_name: + description: + - ClaimName is the name of a PersistentVolumeClaim in + the same namespace as the pod using this volume. + type: str + read_only: + description: + - Will force the ReadOnly setting in VolumeMounts. Default + false. + type: bool + photon_persistent_disk: + description: + - PhotonPersistentDisk represents a PhotonController persistent + disk attached and mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + pd_id: + description: + - ID that identifies Photon Controller persistent disk + type: str + portworx_volume: + description: + - PortworxVolume represents a portworx volume attached and + mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - FSType represents the filesystem type to mount Must + be a filesystem type supported by the host operating + system. Ex. "ext4", "xfs". Implicitly inferred to + be "ext4" if unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + volume_id: + description: + - VolumeID uniquely identifies a Portworx volume + type: str + projected: + description: + - Items for all in one resources secrets, configmaps, and + downward API + type: complex + contains: + default_mode: + description: + - Mode bits to use on created files by default. Must + be a value between 0 and 0777. Directories within + the path are not affected by this setting. This might + be in conflict with other options that affect the + file mode, like fsGroup, and the result can be other + mode bits set. + type: int + sources: + description: + - list of volume projections + type: list + contains: + config_map: + description: + - information about the configMap data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the + Data field of the referenced ConfigMap will + be projected into the volume as a file whose + name is the key and content is the value. + If specified, the listed keys will be projected + into the specified paths, and unlisted keys + will not be present. If a key is specified + which is not present in the ConfigMap, the + volume setup will error unless it is marked + optional. Paths must be relative and may not + contain the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If + not specified, the volume defaultMode + will be used. This might be in conflict + with other options that affect the file + mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the + key to. May not be an absolute path. May + not contain the path element '..'. May + not start with the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the ConfigMap or it's keys + must be defined + type: bool + downward_api: + description: + - information about the downwardAPI data to project + type: complex + contains: + items: + description: + - Items is a list of DownwardAPIVolume file + type: list + contains: + field_ref: + description: + - 'Required: Selects a field of the pod: + only annotations, labels, name and namespace + are supported.' + type: complex + contains: + api_version: + description: + - Version of the schema the FieldPath + is written in terms of, defaults to + "v1". + type: str + field_path: + description: + - Path of the field to select in the + specified API version. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If + not specified, the volume defaultMode + will be used. This might be in conflict + with other options that affect the file + mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - "Required: Path is the relative path name\ + \ of the file to be created. Must not\ + \ be absolute or contain the '..' path.\ + \ Must be utf-8 encoded. The first item\ + \ of the relative path must not start\ + \ with '..'" + type: str + resource_field_ref: + description: + - 'Selects a resource of the container: + only resources limits and requests (limits.cpu, + limits.memory, requests.cpu and requests.memory) + are currently supported.' + type: complex + contains: + container_name: + description: + - 'Container name: required for volumes, + optional for env vars' + type: str + divisor: + description: + - Specifies the output format of the + exposed resources, defaults to "1" + type: str + resource: + description: + - 'Required: resource to select' + type: str + secret: + description: + - information about the secret data to project + type: complex + contains: + items: + description: + - If unspecified, each key-value pair in the + Data field of the referenced Secret will be + projected into the volume as a file whose + name is the key and content is the value. + If specified, the listed keys will be projected + into the specified paths, and unlisted keys + will not be present. If a key is specified + which is not present in the Secret, the volume + setup will error unless it is marked optional. + Paths must be relative and may not contain + the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, + must be a value between 0 and 0777. If + not specified, the volume defaultMode + will be used. This might be in conflict + with other options that affect the file + mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the + key to. May not be an absolute path. May + not contain the path element '..'. May + not start with the string '..'. + type: str + name: + description: + - Name of the referent. + type: str + optional: + description: + - Specify whether the Secret or its key must + be defined + type: bool + quobyte: + description: + - Quobyte represents a Quobyte mount on the host that shares + a pod's lifetime + type: complex + contains: + group: + description: + - Group to map volume access to Default is no group + type: str + read_only: + description: + - ReadOnly here will force the Quobyte volume to be + mounted with read-only permissions. Defaults to false. + type: bool + registry: + description: + - Registry represents a single or multiple Quobyte Registry + services specified as a string as host:port pair (multiple + entries are separated with commas) which acts as the + central registry for volumes + type: str + user: + description: + - User to map volume access to Defaults to serivceaccount + user + type: str + volume: + description: + - Volume is a string that references an already created + Quobyte volume by name. + type: str + rbd: + description: + - RBD represents a Rados Block Device mount on the host + that shares a pod's lifetime. + type: complex + contains: + fs_type: + description: + - 'Filesystem type of the volume that you want to mount. + Tip: Ensure that the filesystem type is supported + by the host operating system. Examples: "ext4", "xfs", + "ntfs". Implicitly inferred to be "ext4" if unspecified.' + type: str + image: + description: + - The rados image name. + type: str + keyring: + description: + - Keyring is the path to key ring for RBDUser. Default + is /etc/ceph/keyring. + type: str + monitors: + description: + - A collection of Ceph monitors. + type: list + contains: str + pool: + description: + - The rados pool name. Default is rbd. + type: str + read_only: + description: + - ReadOnly here will force the ReadOnly setting in VolumeMounts. + Defaults to false. + type: bool + secret_ref: + description: + - SecretRef is name of the authentication secret for + RBDUser. If provided overrides keyring. Default is + nil. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + user: + description: + - The rados user name. Default is admin. + type: str + scale_io: + description: + - ScaleIO represents a ScaleIO persistent volume attached + and mounted on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + gateway: + description: + - The host address of the ScaleIO API Gateway. + type: str + protection_domain: + description: + - The name of the Protection Domain for the configured + storage (defaults to "default"). + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef references to the secret for ScaleIO user + and other sensitive information. If this is not provided, + Login operation will fail. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + ssl_enabled: + description: + - Flag to enable/disable SSL communication with Gateway, + default false + type: bool + storage_mode: + description: + - Indicates whether the storage for a volume should + be thick or thin (defaults to "thin"). + type: str + storage_pool: + description: + - The Storage Pool associated with the protection domain + (defaults to "default"). + type: str + system: + description: + - The name of the storage system as configured in ScaleIO. + type: str + volume_name: + description: + - The name of a volume already created in the ScaleIO + system that is associated with this volume source. + type: str + secret: + description: + - Secret represents a secret that should populate this volume. + type: complex + contains: + default_mode: + description: + - 'Optional: mode bits to use on created files by default. + Must be a value between 0 and 0777. Defaults to 0644. + Directories within the path are not affected by this + setting. This might be in conflict with other options + that affect the file mode, like fsGroup, and the result + can be other mode bits set.' + type: int + items: + description: + - If unspecified, each key-value pair in the Data field + of the referenced Secret will be projected into the + volume as a file whose name is the key and content + is the value. If specified, the listed keys will be + projected into the specified paths, and unlisted keys + will not be present. If a key is specified which is + not present in the Secret, the volume setup will error + unless it is marked optional. Paths must be relative + and may not contain the '..' path or start with '..'. + type: list + contains: + key: + description: + - The key to project. + type: str + mode: + description: + - 'Optional: mode bits to use on this file, must + be a value between 0 and 0777. If not specified, + the volume defaultMode will be used. This might + be in conflict with other options that affect + the file mode, like fsGroup, and the result can + be other mode bits set.' + type: int + path: + description: + - The relative path of the file to map the key to. + May not be an absolute path. May not contain the + path element '..'. May not start with the string + '..'. + type: str + optional: + description: + - Specify whether the Secret or it's keys must be defined + type: bool + secret_name: + description: + - Name of the secret in the pod's namespace to use. + type: str + storageos: + description: + - StorageOS represents a StorageOS volume attached and mounted + on Kubernetes nodes. + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + read_only: + description: + - Defaults to false (read/write). ReadOnly here will + force the ReadOnly setting in VolumeMounts. + type: bool + secret_ref: + description: + - SecretRef specifies the secret to use for obtaining + the StorageOS API credentials. If not specified, default + values will be attempted. + type: complex + contains: + name: + description: + - Name of the referent. + type: str + volume_name: + description: + - VolumeName is the human-readable name of the StorageOS + volume. Volume names are only unique within a namespace. + type: str + volume_namespace: + description: + - VolumeNamespace specifies the scope of the volume + within StorageOS. If no namespace is specified then + the Pod's namespace will be used. This allows the + Kubernetes name scoping to be mirrored within StorageOS + for tighter integration. Set VolumeName to any name + to override the default behaviour. Set to "default" + if you are not using namespaces within StorageOS. + Namespaces that do not pre-exist within StorageOS + will be created. + type: str + vsphere_volume: + description: + - VsphereVolume represents a vSphere volume attached and + mounted on kubelets host machine + type: complex + contains: + fs_type: + description: + - Filesystem type to mount. Must be a filesystem type + supported by the host operating system. Ex. "ext4", + "xfs", "ntfs". Implicitly inferred to be "ext4" if + unspecified. + type: str + storage_policy_id: + description: + - Storage Policy Based Management (SPBM) profile ID + associated with the StoragePolicyName. + type: str + storage_policy_name: + description: + - Storage Policy Based Management (SPBM) profile name. + type: str + volume_path: + description: + - Path that identifies vSphere volume vmdk + type: str + status: + description: + - Most recently observed status of the Deployment. + type: complex + contains: + available_replicas: + description: + - Total number of available pods (ready for at least minReadySeconds) + targeted by this deployment. + type: int + collision_count: + description: + - Count of hash collisions for the Deployment. The Deployment controller + uses this field as a collision avoidance mechanism when it needs to + create the name for the newest ReplicaSet. + type: int + conditions: + description: + - Represents the latest available observations of a deployment's current + state. + type: list + contains: + last_transition_time: + description: + - Last time the condition transitioned from one status to another. + type: complex + contains: {} + last_update_time: + description: + - The last time this condition was updated. + type: complex + contains: {} + message: + description: + - A human readable message indicating details about the transition. + type: str + reason: + description: + - The reason for the condition's last transition. + type: str + status: + description: + - Status of the condition, one of True, False, Unknown. + type: str + type: + description: + - Type of deployment condition. + type: str + observed_generation: + description: + - The generation observed by the deployment controller. + type: int + ready_replicas: + description: + - Total number of ready pods targeted by this deployment. + type: int + replicas: + description: + - Total number of non-terminated pods targeted by this deployment (their + labels match the selector). + type: int + unavailable_replicas: + description: + - Total number of unavailable pods targeted by this deployment. + type: int + updated_replicas: + description: + - Total number of non-terminated pods targeted by this deployment that + have the desired template spec. + type: int + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of this object that + can be used by clients to determine when objects have changed. Value must + be treated as opaque by clients and passed unmodified back to the server. + Populated by the system. Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. Read-only. + type: str +''' + + +def main(): + try: + module = KubernetesAnsibleModule('deployment_list', 'extensions_v1beta1') + except KubernetesAnsibleException as exc: + # The helper failed to init, so there is no module object. All we can do is raise the error. + raise Exception(exc.message) + + try: + module.execute_module() + except KubernetesAnsibleException as exc: + module.fail_json(msg="Module failed!", error=str(exc)) + + +if __name__ == '__main__': + main() diff --git a/library/k8s_extensions_v1beta1_scale.py b/library/k8s_extensions_v1beta1_scale.py new file mode 100644 index 00000000..d3552bbe --- /dev/null +++ b/library/k8s_extensions_v1beta1_scale.py @@ -0,0 +1,471 @@ +#!/usr/bin/env python + +from ansible.module_utils.k8s_common import KubernetesAnsibleModule, KubernetesAnsibleException + +DOCUMENTATION = ''' +module: k8s_extensions_v1beta1_scale +short_description: Kubernetes Scale +description: +- Manage the lifecycle of a scale object. Supports check mode, and attempts to to + be idempotent. +version_added: 2.3.0 +author: OpenShift (@openshift) +options: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that may + be set by external tools to store and retrieve arbitrary metadata. They are + not queryable and should be preserved when modifying objects. + type: dict + api_key: + description: + - Token used to connect to the API. + cert_file: + description: + - Path to a certificate used to authenticate with the API. + type: path + context: + description: + - The name of a context found in the Kubernetes config file. + debug: + description: + - Enable debug output from the OpenShift helper. Logging info is written to KubeObjHelper.log + default: false + type: bool + force: + description: + - If set to C(True), and I(state) is C(present), an existing object will updated, + and lists will be replaced, rather than merged. + default: false + type: bool + host: + description: + - Provide a URL for acessing the Kubernetes API. + key_file: + description: + - Path to a key file used to authenticate with the API. + type: path + kubeconfig: + description: + - Path to an existing Kubernetes config file. If not provided, and no other connection + options are provided, the openshift client will attempt to load the default + configuration file from I(~/.kube/config.json). + type: path + labels: + description: + - Map of string keys and values that can be used to organize and categorize (scope + and select) objects. May match selectors of replication controllers and services. + type: dict + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of an appropriate + name automatically. Name is primarily intended for creation idempotence and + configuration definition. Cannot be updated. + namespace: + description: + - Namespace defines the space within each name must be unique. An empty namespace + is equivalent to the "default" namespace, but "default" is the canonical representation. + Not all objects are required to be scoped to a namespace - the value of this + field for those objects will be empty. Must be a DNS_LABEL. Cannot be updated. + password: + description: + - Provide a password for connecting to the API. Use in conjunction with I(username). + spec_replicas: + description: + - desired number of instances for the scaled object. + aliases: + - replicas + type: int + ssl_ca_cert: + description: + - Path to a CA certificate used to authenticate with the API. + type: path + username: + description: + - Provide a username for connecting to the API. + verify_ssl: + description: + - Whether or not to verify the API server's SSL certificates. + type: bool +requirements: +- kubernetes == 3.0.0 +''' + +EXAMPLES = ''' +''' + +RETURN = ''' +api_version: + type: string + description: Requested API version +scale: + type: complex + returned: on success + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + type: str + kind: + description: + - Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. Cannot + be updated. In CamelCase. + type: str + metadata: + description: + - Standard object metadata; + type: complex + contains: + annotations: + description: + - Annotations is an unstructured key value map stored with a resource that + may be set by external tools to store and retrieve arbitrary metadata. + They are not queryable and should be preserved when modifying objects. + type: complex + contains: str, str + cluster_name: + description: + - The name of the cluster which the object belongs to. This is used to distinguish + resources with same name and namespace in different clusters. This field + is not set anywhere right now and apiserver is going to ignore it if set + in create or update request. + type: str + creation_timestamp: + description: + - CreationTimestamp is a timestamp representing the server time when this + object was created. It is not guaranteed to be set in happens-before order + across separate operations. Clients may not set this value. It is represented + in RFC3339 form and is in UTC. Populated by the system. Read-only. Null + for lists. + type: complex + contains: {} + deletion_grace_period_seconds: + description: + - Number of seconds allowed for this object to gracefully terminate before + it will be removed from the system. Only set when deletionTimestamp is + also set. May only be shortened. Read-only. + type: int + deletion_timestamp: + description: + - DeletionTimestamp is RFC 3339 date and time at which this resource will + be deleted. This field is set by the server when a graceful deletion is + requested by the user, and is not directly settable by a client. The resource + is expected to be deleted (no longer visible from resource lists, and + not reachable by name) after the time in this field. Once set, this value + may not be unset or be set further into the future, although it may be + shortened or the resource may be deleted prior to this time. For example, + a user may request that a pod is deleted in 30 seconds. The Kubelet will + react by sending a graceful termination signal to the containers in the + pod. After that 30 seconds, the Kubelet will send a hard termination signal + (SIGKILL) to the container and after cleanup, remove the pod from the + API. In the presence of network partitions, this object may still exist + after this timestamp, until an administrator or automated process can + determine the resource is fully terminated. If not set, graceful deletion + of the object has not been requested. Populated by the system when a graceful + deletion is requested. Read-only. + type: complex + contains: {} + finalizers: + description: + - Must be empty before the object is deleted from the registry. Each entry + is an identifier for the responsible component that will remove the entry + from the list. If the deletionTimestamp of the object is non-nil, entries + in this list can only be removed. + type: list + contains: str + generate_name: + description: + - GenerateName is an optional prefix, used by the server, to generate a + unique name ONLY IF the Name field has not been provided. If this field + is used, the name returned to the client will be different than the name + passed. This value will also be combined with a unique suffix. The provided + value has the same validation rules as the Name field, and may be truncated + by the length of the suffix required to make the value unique on the server. + If this field is specified and the generated name exists, the server will + NOT return a 409 - instead, it will either return 201 Created or 500 with + Reason ServerTimeout indicating a unique name could not be found in the + time allotted, and the client should retry (optionally after the time + indicated in the Retry-After header). Applied only if Name is not specified. + type: str + generation: + description: + - A sequence number representing a specific generation of the desired state. + Populated by the system. Read-only. + type: int + initializers: + description: + - An initializer is a controller which enforces some system invariant at + object creation time. This field is a list of initializers that have not + yet acted on this object. If nil or empty, this object has been completely + initialized. Otherwise, the object is considered uninitialized and is + hidden (in list/watch and get calls) from clients that haven't explicitly + asked to observe uninitialized objects. When an object is created, the + system will populate this list with the current set of initializers. Only + privileged users may set or modify this list. Once it is empty, it may + not be modified further by any user. + type: complex + contains: + pending: + description: + - Pending is a list of initializers that must execute in order before + this object is visible. When the last pending initializer is removed, + and no failing result is set, the initializers struct will be set + to nil and the object is considered as initialized and visible to + all clients. + type: list + contains: + name: + description: + - name of the process that is responsible for initializing this + object. + type: str + result: + description: + - If result is set with the Failure field, the object will be persisted + to storage and then deleted, ensuring that other clients can observe + the deletion. + type: complex + contains: + api_version: + description: + - APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the + latest internal value, and may reject unrecognized values. + type: str + code: + description: + - Suggested HTTP return code for this status, 0 if not set. + type: int + details: + description: + - Extended data associated with the reason. Each reason may define + its own extended details. This field is optional and the data + returned is not guaranteed to conform to any schema except that + defined by the reason type. + type: complex + contains: + causes: + description: + - The Causes array includes more details associated with the + StatusReason failure. Not all StatusReasons may provide detailed + causes. + type: list + contains: + field: + description: + - 'The field of the resource that has caused this error, + as named by its JSON serialization. May include dot and + postfix notation for nested attributes. Arrays are zero-indexed. + Fields may appear more than once in an array of causes + due to fields having multiple errors. Optional. Examples: + "name" - the field "name" on the current resource "items[0].name" + - the field "name" on the first array entry in "items"' + type: str + message: + description: + - A human-readable description of the cause of the error. + This field may be presented as-is to a reader. + type: str + reason: + description: + - A machine-readable description of the cause of the error. + If this value is empty there is no information available. + type: str + group: + description: + - The group attribute of the resource associated with the status + StatusReason. + type: str + kind: + description: + - The kind attribute of the resource associated with the status + StatusReason. On some operations may differ from the requested + resource Kind. + type: str + name: + description: + - The name attribute of the resource associated with the status + StatusReason (when there is a single name which can be described). + type: str + retry_after_seconds: + description: + - If specified, the time in seconds before the operation should + be retried. + type: int + uid: + description: + - UID of the resource. (when there is a single resource which + can be described). + type: str + kind: + description: + - Kind is a string value representing the REST resource this object + represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. + type: str + message: + description: + - A human-readable description of the status of this operation. + type: str + metadata: + description: + - Standard list metadata. + type: complex + contains: + resource_version: + description: + - String that identifies the server's internal version of this + object that can be used by clients to determine when objects + have changed. Value must be treated as opaque by clients and + passed unmodified back to the server. Populated by the system. + Read-only. + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the + system. Read-only. + type: str + reason: + description: + - A machine-readable description of why this operation is in the + "Failure" status. If this value is empty there is no information + available. A Reason clarifies an HTTP status code but does not + override it. + type: str + status: + description: + - 'Status of the operation. One of: "Success" or "Failure".' + type: str + labels: + description: + - Map of string keys and values that can be used to organize and categorize + (scope and select) objects. May match selectors of replication controllers + and services. + type: complex + contains: str, str + name: + description: + - Name must be unique within a namespace. Is required when creating resources, + although some resources may allow a client to request the generation of + an appropriate name automatically. Name is primarily intended for creation + idempotence and configuration definition. Cannot be updated. + type: str + namespace: + description: + - Namespace defines the space within each name must be unique. An empty + namespace is equivalent to the "default" namespace, but "default" is the + canonical representation. Not all objects are required to be scoped to + a namespace - the value of this field for those objects will be empty. + Must be a DNS_LABEL. Cannot be updated. + type: str + owner_references: + description: + - List of objects depended by this object. If ALL objects in the list have + been deleted, this object will be garbage collected. If this object is + managed by a controller, then an entry in this list will point to this + controller, with the controller field set to true. There cannot be more + than one managing controller. + type: list + contains: + api_version: + description: + - API version of the referent. + type: str + block_owner_deletion: + description: + - If true, AND if the owner has the "foregroundDeletion" finalizer, + then the owner cannot be deleted from the key-value store until this + reference is removed. Defaults to false. To set this field, a user + needs "delete" permission of the owner, otherwise 422 (Unprocessable + Entity) will be returned. + type: bool + controller: + description: + - If true, this reference points to the managing controller. + type: bool + kind: + description: + - Kind of the referent. + type: str + name: + description: + - Name of the referent. + type: str + uid: + description: + - UID of the referent. + type: str + resource_version: + description: + - An opaque value that represents the internal version of this object that + can be used by clients to determine when objects have changed. May be + used for optimistic concurrency, change detection, and the watch operation + on a resource or set of resources. Clients must treat these values as + opaque and passed unmodified back to the server. They may only be valid + for a particular resource or set of resources. Populated by the system. + Read-only. Value must be treated as opaque by clients and . + type: str + self_link: + description: + - SelfLink is a URL representing this object. Populated by the system. Read-only. + type: str + uid: + description: + - UID is the unique in time and space value for this object. It is typically + generated by the server on successful creation of a resource and is not + allowed to change on PUT operations. Populated by the system. Read-only. + type: str + spec: + description: + - defines the behavior of the scale. + type: complex + contains: + replicas: + description: + - desired number of instances for the scaled object. + type: int + status: + description: + - current status of the scale. + type: complex + contains: + replicas: + description: + - actual number of observed instances of the scaled object. + type: int + selector: + description: + - label query over pods that should match the replicas count. + type: complex + contains: str, str + target_selector: + description: + - label selector for pods that should match the replicas count. This is + a serializated version of both map-based and more expressive set-based + selectors. This is done to avoid introspection in the clients. The string + will be in the same format as the query-param syntax. If the target type + only supports map-based selectors, both this field and map-based selector + field are populated. + type: str +''' + + +def main(): + try: + module = KubernetesAnsibleModule('scale', 'extensions_v1beta1') + except KubernetesAnsibleException as exc: + # The helper failed to init, so there is no module object. All we can do is raise the error. + raise Exception(exc.message) + + try: + module.execute_module() + except KubernetesAnsibleException as exc: + module.fail_json(msg="Module failed!", error=str(exc)) + + +if __name__ == '__main__': + main() diff --git a/library/k8s_v1_binding.py b/library/k8s_v1_binding.py index 11c7bc68..7216d23f 100644 --- a/library/k8s_v1_binding.py +++ b/library/k8s_v1_binding.py @@ -499,7 +499,7 @@ binding: def main(): try: - module = KubernetesAnsibleModule('binding', 'V1') + module = KubernetesAnsibleModule('binding', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_component_status.py b/library/k8s_v1_component_status.py index c47632ba..ace40a96 100644 --- a/library/k8s_v1_component_status.py +++ b/library/k8s_v1_component_status.py @@ -446,7 +446,7 @@ component_status: def main(): try: - module = KubernetesAnsibleModule('component_status', 'V1') + module = KubernetesAnsibleModule('component_status', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_component_status_list.py b/library/k8s_v1_component_status_list.py index 734e21b6..b2637da1 100644 --- a/library/k8s_v1_component_status_list.py +++ b/library/k8s_v1_component_status_list.py @@ -463,7 +463,7 @@ component_status_list: def main(): try: - module = KubernetesAnsibleModule('component_status_list', 'V1') + module = KubernetesAnsibleModule('component_status_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_config_map.py b/library/k8s_v1_config_map.py index 0ce937e5..3896f357 100644 --- a/library/k8s_v1_config_map.py +++ b/library/k8s_v1_config_map.py @@ -453,7 +453,7 @@ config_map: def main(): try: - module = KubernetesAnsibleModule('config_map', 'V1') + module = KubernetesAnsibleModule('config_map', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_config_map_list.py b/library/k8s_v1_config_map_list.py index 31b67742..3b3aae0b 100644 --- a/library/k8s_v1_config_map_list.py +++ b/library/k8s_v1_config_map_list.py @@ -469,7 +469,7 @@ config_map_list: def main(): try: - module = KubernetesAnsibleModule('config_map_list', 'V1') + module = KubernetesAnsibleModule('config_map_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_endpoints.py b/library/k8s_v1_endpoints.py index 10c13532..d6a7085d 100644 --- a/library/k8s_v1_endpoints.py +++ b/library/k8s_v1_endpoints.py @@ -608,7 +608,7 @@ endpoints: def main(): try: - module = KubernetesAnsibleModule('endpoints', 'V1') + module = KubernetesAnsibleModule('endpoints', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_endpoints_list.py b/library/k8s_v1_endpoints_list.py index 44bfb4c2..354f8930 100644 --- a/library/k8s_v1_endpoints_list.py +++ b/library/k8s_v1_endpoints_list.py @@ -625,7 +625,7 @@ endpoints_list: def main(): try: - module = KubernetesAnsibleModule('endpoints_list', 'V1') + module = KubernetesAnsibleModule('endpoints_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_event.py b/library/k8s_v1_event.py index 31a7e6bf..09c26c58 100644 --- a/library/k8s_v1_event.py +++ b/library/k8s_v1_event.py @@ -596,7 +596,7 @@ event: def main(): try: - module = KubernetesAnsibleModule('event', 'V1') + module = KubernetesAnsibleModule('event', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_event_list.py b/library/k8s_v1_event_list.py index 598b6582..7022df9e 100644 --- a/library/k8s_v1_event_list.py +++ b/library/k8s_v1_event_list.py @@ -547,7 +547,7 @@ event_list: def main(): try: - module = KubernetesAnsibleModule('event_list', 'V1') + module = KubernetesAnsibleModule('event_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_horizontal_pod_autoscaler.py b/library/k8s_v1_horizontal_pod_autoscaler.py index 2389923b..25772ceb 100644 --- a/library/k8s_v1_horizontal_pod_autoscaler.py +++ b/library/k8s_v1_horizontal_pod_autoscaler.py @@ -556,7 +556,7 @@ horizontal_pod_autoscaler: def main(): try: - module = KubernetesAnsibleModule('horizontal_pod_autoscaler', 'V1') + module = KubernetesAnsibleModule('horizontal_pod_autoscaler', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_horizontal_pod_autoscaler_list.py b/library/k8s_v1_horizontal_pod_autoscaler_list.py index 39ee7ac4..d31bd515 100644 --- a/library/k8s_v1_horizontal_pod_autoscaler_list.py +++ b/library/k8s_v1_horizontal_pod_autoscaler_list.py @@ -532,7 +532,7 @@ horizontal_pod_autoscaler_list: def main(): try: - module = KubernetesAnsibleModule('horizontal_pod_autoscaler_list', 'V1') + module = KubernetesAnsibleModule('horizontal_pod_autoscaler_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_job.py b/library/k8s_v1_job.py index 0a3ca154..92652cb3 100644 --- a/library/k8s_v1_job.py +++ b/library/k8s_v1_job.py @@ -4640,7 +4640,7 @@ job: def main(): try: - module = KubernetesAnsibleModule('job', 'V1') + module = KubernetesAnsibleModule('job', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_job_list.py b/library/k8s_v1_job_list.py index 26f8286f..720b943c 100644 --- a/library/k8s_v1_job_list.py +++ b/library/k8s_v1_job_list.py @@ -4386,7 +4386,7 @@ job_list: def main(): try: - module = KubernetesAnsibleModule('job_list', 'V1') + module = KubernetesAnsibleModule('job_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_limit_range.py b/library/k8s_v1_limit_range.py index 150bc7ba..6aa35821 100644 --- a/library/k8s_v1_limit_range.py +++ b/library/k8s_v1_limit_range.py @@ -492,7 +492,7 @@ limit_range: def main(): try: - module = KubernetesAnsibleModule('limit_range', 'V1') + module = KubernetesAnsibleModule('limit_range', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_limit_range_list.py b/library/k8s_v1_limit_range_list.py index 948b3d1f..12120b5a 100644 --- a/library/k8s_v1_limit_range_list.py +++ b/library/k8s_v1_limit_range_list.py @@ -507,7 +507,7 @@ limit_range_list: def main(): try: - module = KubernetesAnsibleModule('limit_range_list', 'V1') + module = KubernetesAnsibleModule('limit_range_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_local_subject_access_review.py b/library/k8s_v1_local_subject_access_review.py index 89ffeeb2..8af85fb1 100644 --- a/library/k8s_v1_local_subject_access_review.py +++ b/library/k8s_v1_local_subject_access_review.py @@ -585,7 +585,7 @@ local_subject_access_review: def main(): try: - module = KubernetesAnsibleModule('local_subject_access_review', 'V1') + module = KubernetesAnsibleModule('local_subject_access_review', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_namespace.py b/library/k8s_v1_namespace.py index 0a01fe3a..861fd464 100644 --- a/library/k8s_v1_namespace.py +++ b/library/k8s_v1_namespace.py @@ -520,7 +520,7 @@ namespace: def main(): try: - module = KubernetesAnsibleModule('namespace', 'V1') + module = KubernetesAnsibleModule('namespace', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_namespace_list.py b/library/k8s_v1_namespace_list.py index bfb0a722..d0f2ba8f 100644 --- a/library/k8s_v1_namespace_list.py +++ b/library/k8s_v1_namespace_list.py @@ -483,7 +483,7 @@ namespace_list: def main(): try: - module = KubernetesAnsibleModule('namespace_list', 'V1') + module = KubernetesAnsibleModule('namespace_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_network_policy.py b/library/k8s_v1_network_policy.py index ee7d7787..3afbe8ec 100644 --- a/library/k8s_v1_network_policy.py +++ b/library/k8s_v1_network_policy.py @@ -638,7 +638,7 @@ network_policy: def main(): try: - module = KubernetesAnsibleModule('network_policy', 'V1') + module = KubernetesAnsibleModule('network_policy', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_network_policy_list.py b/library/k8s_v1_network_policy_list.py index a961ec93..998054e5 100644 --- a/library/k8s_v1_network_policy_list.py +++ b/library/k8s_v1_network_policy_list.py @@ -635,7 +635,7 @@ network_policy_list: def main(): try: - module = KubernetesAnsibleModule('network_policy_list', 'V1') + module = KubernetesAnsibleModule('network_policy_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_node.py b/library/k8s_v1_node.py index 5e2b084f..c866a958 100644 --- a/library/k8s_v1_node.py +++ b/library/k8s_v1_node.py @@ -680,7 +680,7 @@ node: def main(): try: - module = KubernetesAnsibleModule('node', 'V1') + module = KubernetesAnsibleModule('node', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_node_list.py b/library/k8s_v1_node_list.py index 9eca9eba..c9441afd 100644 --- a/library/k8s_v1_node_list.py +++ b/library/k8s_v1_node_list.py @@ -674,7 +674,7 @@ node_list: def main(): try: - module = KubernetesAnsibleModule('node_list', 'V1') + module = KubernetesAnsibleModule('node_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_persistent_volume.py b/library/k8s_v1_persistent_volume.py index 774b1fd8..de324dbf 100644 --- a/library/k8s_v1_persistent_volume.py +++ b/library/k8s_v1_persistent_volume.py @@ -1837,7 +1837,7 @@ persistent_volume: def main(): try: - module = KubernetesAnsibleModule('persistent_volume', 'V1') + module = KubernetesAnsibleModule('persistent_volume', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_persistent_volume_claim.py b/library/k8s_v1_persistent_volume_claim.py index 7c710071..dab1df1a 100644 --- a/library/k8s_v1_persistent_volume_claim.py +++ b/library/k8s_v1_persistent_volume_claim.py @@ -590,7 +590,7 @@ persistent_volume_claim: def main(): try: - module = KubernetesAnsibleModule('persistent_volume_claim', 'V1') + module = KubernetesAnsibleModule('persistent_volume_claim', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_persistent_volume_claim_list.py b/library/k8s_v1_persistent_volume_claim_list.py index 31ead83b..a3b15124 100644 --- a/library/k8s_v1_persistent_volume_claim_list.py +++ b/library/k8s_v1_persistent_volume_claim_list.py @@ -558,7 +558,7 @@ persistent_volume_claim_list: def main(): try: - module = KubernetesAnsibleModule('persistent_volume_claim_list', 'V1') + module = KubernetesAnsibleModule('persistent_volume_claim_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_persistent_volume_list.py b/library/k8s_v1_persistent_volume_list.py index fc7f7071..9a699511 100644 --- a/library/k8s_v1_persistent_volume_list.py +++ b/library/k8s_v1_persistent_volume_list.py @@ -1213,7 +1213,7 @@ persistent_volume_list: def main(): try: - module = KubernetesAnsibleModule('persistent_volume_list', 'V1') + module = KubernetesAnsibleModule('persistent_volume_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_pod.py b/library/k8s_v1_pod.py index 1a28df67..46318a2a 100644 --- a/library/k8s_v1_pod.py +++ b/library/k8s_v1_pod.py @@ -4339,7 +4339,7 @@ pod: def main(): try: - module = KubernetesAnsibleModule('pod', 'V1') + module = KubernetesAnsibleModule('pod', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_pod_list.py b/library/k8s_v1_pod_list.py index 28cabb69..3630e228 100644 --- a/library/k8s_v1_pod_list.py +++ b/library/k8s_v1_pod_list.py @@ -4142,7 +4142,7 @@ pod_list: def main(): try: - module = KubernetesAnsibleModule('pod_list', 'V1') + module = KubernetesAnsibleModule('pod_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_pod_template.py b/library/k8s_v1_pod_template.py index 1da66aaa..bae9cfef 100644 --- a/library/k8s_v1_pod_template.py +++ b/library/k8s_v1_pod_template.py @@ -4365,7 +4365,7 @@ pod_template: def main(): try: - module = KubernetesAnsibleModule('pod_template', 'V1') + module = KubernetesAnsibleModule('pod_template', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_pod_template_list.py b/library/k8s_v1_pod_template_list.py index c7def775..ef2d3f6b 100644 --- a/library/k8s_v1_pod_template_list.py +++ b/library/k8s_v1_pod_template_list.py @@ -4150,7 +4150,7 @@ pod_template_list: def main(): try: - module = KubernetesAnsibleModule('pod_template_list', 'V1') + module = KubernetesAnsibleModule('pod_template_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_replication_controller.py b/library/k8s_v1_replication_controller.py index 56a190bc..6342a07c 100644 --- a/library/k8s_v1_replication_controller.py +++ b/library/k8s_v1_replication_controller.py @@ -4559,7 +4559,7 @@ replication_controller: def main(): try: - module = KubernetesAnsibleModule('replication_controller', 'V1') + module = KubernetesAnsibleModule('replication_controller', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_replication_controller_list.py b/library/k8s_v1_replication_controller_list.py index e8009135..3c924bb4 100644 --- a/library/k8s_v1_replication_controller_list.py +++ b/library/k8s_v1_replication_controller_list.py @@ -4337,7 +4337,7 @@ replication_controller_list: def main(): try: - module = KubernetesAnsibleModule('replication_controller_list', 'V1') + module = KubernetesAnsibleModule('replication_controller_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_resource_quota.py b/library/k8s_v1_resource_quota.py index 77e4e7cc..23926b9e 100644 --- a/library/k8s_v1_resource_quota.py +++ b/library/k8s_v1_resource_quota.py @@ -486,7 +486,7 @@ resource_quota: def main(): try: - module = KubernetesAnsibleModule('resource_quota', 'V1') + module = KubernetesAnsibleModule('resource_quota', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_resource_quota_list.py b/library/k8s_v1_resource_quota_list.py index 3f559e9e..d4aa988d 100644 --- a/library/k8s_v1_resource_quota_list.py +++ b/library/k8s_v1_resource_quota_list.py @@ -494,7 +494,7 @@ resource_quota_list: def main(): try: - module = KubernetesAnsibleModule('resource_quota_list', 'V1') + module = KubernetesAnsibleModule('resource_quota_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_scale.py b/library/k8s_v1_scale.py index 9e08b6d4..b6b8fb91 100644 --- a/library/k8s_v1_scale.py +++ b/library/k8s_v1_scale.py @@ -449,7 +449,7 @@ scale: def main(): try: - module = KubernetesAnsibleModule('scale', 'V1') + module = KubernetesAnsibleModule('scale', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_secret.py b/library/k8s_v1_secret.py index bf7263d0..69260747 100644 --- a/library/k8s_v1_secret.py +++ b/library/k8s_v1_secret.py @@ -479,7 +479,7 @@ secret: def main(): try: - module = KubernetesAnsibleModule('secret', 'V1') + module = KubernetesAnsibleModule('secret', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_secret_list.py b/library/k8s_v1_secret_list.py index 07c6dcae..6ba040ae 100644 --- a/library/k8s_v1_secret_list.py +++ b/library/k8s_v1_secret_list.py @@ -483,7 +483,7 @@ secret_list: def main(): try: - module = KubernetesAnsibleModule('secret_list', 'V1') + module = KubernetesAnsibleModule('secret_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_self_subject_access_review.py b/library/k8s_v1_self_subject_access_review.py index 1dc7f38a..1cffafca 100644 --- a/library/k8s_v1_self_subject_access_review.py +++ b/library/k8s_v1_self_subject_access_review.py @@ -550,7 +550,7 @@ self_subject_access_review: def main(): try: - module = KubernetesAnsibleModule('self_subject_access_review', 'V1') + module = KubernetesAnsibleModule('self_subject_access_review', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_service.py b/library/k8s_v1_service.py index 1b1460a7..10786c98 100644 --- a/library/k8s_v1_service.py +++ b/library/k8s_v1_service.py @@ -774,7 +774,7 @@ service: def main(): try: - module = KubernetesAnsibleModule('service', 'V1') + module = KubernetesAnsibleModule('service', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_service_account.py b/library/k8s_v1_service_account.py index f65935a7..a55e57cb 100644 --- a/library/k8s_v1_service_account.py +++ b/library/k8s_v1_service_account.py @@ -519,7 +519,7 @@ service_account: def main(): try: - module = KubernetesAnsibleModule('service_account', 'V1') + module = KubernetesAnsibleModule('service_account', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_service_account_list.py b/library/k8s_v1_service_account_list.py index 62bbfcc0..b26e3bca 100644 --- a/library/k8s_v1_service_account_list.py +++ b/library/k8s_v1_service_account_list.py @@ -523,7 +523,7 @@ service_account_list: def main(): try: - module = KubernetesAnsibleModule('service_account_list', 'V1') + module = KubernetesAnsibleModule('service_account_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_service_list.py b/library/k8s_v1_service_list.py index 92c1f438..7527c58b 100644 --- a/library/k8s_v1_service_list.py +++ b/library/k8s_v1_service_list.py @@ -624,7 +624,7 @@ service_list: def main(): try: - module = KubernetesAnsibleModule('service_list', 'V1') + module = KubernetesAnsibleModule('service_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_status.py b/library/k8s_v1_status.py index 366b833e..23f0fc9c 100644 --- a/library/k8s_v1_status.py +++ b/library/k8s_v1_status.py @@ -226,7 +226,7 @@ status: def main(): try: - module = KubernetesAnsibleModule('status', 'V1') + module = KubernetesAnsibleModule('status', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_storage_class.py b/library/k8s_v1_storage_class.py index 6b172385..2cf2940b 100644 --- a/library/k8s_v1_storage_class.py +++ b/library/k8s_v1_storage_class.py @@ -460,7 +460,7 @@ storage_class: def main(): try: - module = KubernetesAnsibleModule('storage_class', 'V1') + module = KubernetesAnsibleModule('storage_class', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_storage_class_list.py b/library/k8s_v1_storage_class_list.py index d07bffe4..efa0e97e 100644 --- a/library/k8s_v1_storage_class_list.py +++ b/library/k8s_v1_storage_class_list.py @@ -473,7 +473,7 @@ storage_class_list: def main(): try: - module = KubernetesAnsibleModule('storage_class_list', 'V1') + module = KubernetesAnsibleModule('storage_class_list', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_subject_access_review.py b/library/k8s_v1_subject_access_review.py index ff6be0a6..e6e2c730 100644 --- a/library/k8s_v1_subject_access_review.py +++ b/library/k8s_v1_subject_access_review.py @@ -584,7 +584,7 @@ subject_access_review: def main(): try: - module = KubernetesAnsibleModule('subject_access_review', 'V1') + module = KubernetesAnsibleModule('subject_access_review', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1_token_review.py b/library/k8s_v1_token_review.py index 22260988..847b7c7d 100644 --- a/library/k8s_v1_token_review.py +++ b/library/k8s_v1_token_review.py @@ -470,7 +470,7 @@ token_review: def main(): try: - module = KubernetesAnsibleModule('token_review', 'V1') + module = KubernetesAnsibleModule('token_review', 'v1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_cluster_role.py b/library/k8s_v1alpha1_cluster_role.py index e064637d..f67e521d 100644 --- a/library/k8s_v1alpha1_cluster_role.py +++ b/library/k8s_v1alpha1_cluster_role.py @@ -488,7 +488,7 @@ cluster_role: def main(): try: - module = KubernetesAnsibleModule('cluster_role', 'V1alpha1') + module = KubernetesAnsibleModule('cluster_role', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_cluster_role_binding.py b/library/k8s_v1alpha1_cluster_role_binding.py index 5b6c6aac..b5d0af2a 100644 --- a/library/k8s_v1alpha1_cluster_role_binding.py +++ b/library/k8s_v1alpha1_cluster_role_binding.py @@ -506,7 +506,7 @@ cluster_role_binding: def main(): try: - module = KubernetesAnsibleModule('cluster_role_binding', 'V1alpha1') + module = KubernetesAnsibleModule('cluster_role_binding', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_cluster_role_binding_list.py b/library/k8s_v1alpha1_cluster_role_binding_list.py index 53099455..f6c2fb40 100644 --- a/library/k8s_v1alpha1_cluster_role_binding_list.py +++ b/library/k8s_v1alpha1_cluster_role_binding_list.py @@ -508,7 +508,7 @@ cluster_role_binding_list: def main(): try: - module = KubernetesAnsibleModule('cluster_role_binding_list', 'V1alpha1') + module = KubernetesAnsibleModule('cluster_role_binding_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_cluster_role_list.py b/library/k8s_v1alpha1_cluster_role_list.py index 0831eaa5..4575d74a 100644 --- a/library/k8s_v1alpha1_cluster_role_list.py +++ b/library/k8s_v1alpha1_cluster_role_list.py @@ -505,7 +505,7 @@ cluster_role_list: def main(): try: - module = KubernetesAnsibleModule('cluster_role_list', 'V1alpha1') + module = KubernetesAnsibleModule('cluster_role_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_external_admission_hook_configuration.py b/library/k8s_v1alpha1_external_admission_hook_configuration.py index bad88e0e..f30d364d 100644 --- a/library/k8s_v1alpha1_external_admission_hook_configuration.py +++ b/library/k8s_v1alpha1_external_admission_hook_configuration.py @@ -529,7 +529,7 @@ external_admission_hook_configuration: def main(): try: - module = KubernetesAnsibleModule('external_admission_hook_configuration', 'V1alpha1') + module = KubernetesAnsibleModule('external_admission_hook_configuration', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_external_admission_hook_configuration_list.py b/library/k8s_v1alpha1_external_admission_hook_configuration_list.py index 8c23c157..ffc8288d 100644 --- a/library/k8s_v1alpha1_external_admission_hook_configuration_list.py +++ b/library/k8s_v1alpha1_external_admission_hook_configuration_list.py @@ -546,7 +546,7 @@ external_admission_hook_configuration_list: def main(): try: - module = KubernetesAnsibleModule('external_admission_hook_configuration_list', 'V1alpha1') + module = KubernetesAnsibleModule('external_admission_hook_configuration_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_initializer_configuration.py b/library/k8s_v1alpha1_initializer_configuration.py index 0bcdd188..c3158ea0 100644 --- a/library/k8s_v1alpha1_initializer_configuration.py +++ b/library/k8s_v1alpha1_initializer_configuration.py @@ -504,7 +504,7 @@ initializer_configuration: def main(): try: - module = KubernetesAnsibleModule('initializer_configuration', 'V1alpha1') + module = KubernetesAnsibleModule('initializer_configuration', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_initializer_configuration_list.py b/library/k8s_v1alpha1_initializer_configuration_list.py index 0508b902..41ea275d 100644 --- a/library/k8s_v1alpha1_initializer_configuration_list.py +++ b/library/k8s_v1alpha1_initializer_configuration_list.py @@ -521,7 +521,7 @@ initializer_configuration_list: def main(): try: - module = KubernetesAnsibleModule('initializer_configuration_list', 'V1alpha1') + module = KubernetesAnsibleModule('initializer_configuration_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_pod_preset.py b/library/k8s_v1alpha1_pod_preset.py index a546ae88..787ceee3 100644 --- a/library/k8s_v1alpha1_pod_preset.py +++ b/library/k8s_v1alpha1_pod_preset.py @@ -1697,7 +1697,7 @@ pod_preset: def main(): try: - module = KubernetesAnsibleModule('pod_preset', 'V1alpha1') + module = KubernetesAnsibleModule('pod_preset', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_pod_preset_list.py b/library/k8s_v1alpha1_pod_preset_list.py index 39e6febe..6c6d9f6a 100644 --- a/library/k8s_v1alpha1_pod_preset_list.py +++ b/library/k8s_v1alpha1_pod_preset_list.py @@ -1695,7 +1695,7 @@ pod_preset_list: def main(): try: - module = KubernetesAnsibleModule('pod_preset_list', 'V1alpha1') + module = KubernetesAnsibleModule('pod_preset_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_role.py b/library/k8s_v1alpha1_role.py index 689b5cff..fe8fa8c2 100644 --- a/library/k8s_v1alpha1_role.py +++ b/library/k8s_v1alpha1_role.py @@ -488,7 +488,7 @@ role: def main(): try: - module = KubernetesAnsibleModule('role', 'V1alpha1') + module = KubernetesAnsibleModule('role', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_role_binding.py b/library/k8s_v1alpha1_role_binding.py index c00511af..0777d6b8 100644 --- a/library/k8s_v1alpha1_role_binding.py +++ b/library/k8s_v1alpha1_role_binding.py @@ -507,7 +507,7 @@ role_binding: def main(): try: - module = KubernetesAnsibleModule('role_binding', 'V1alpha1') + module = KubernetesAnsibleModule('role_binding', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_role_binding_list.py b/library/k8s_v1alpha1_role_binding_list.py index 3500497d..32f32ecb 100644 --- a/library/k8s_v1alpha1_role_binding_list.py +++ b/library/k8s_v1alpha1_role_binding_list.py @@ -509,7 +509,7 @@ role_binding_list: def main(): try: - module = KubernetesAnsibleModule('role_binding_list', 'V1alpha1') + module = KubernetesAnsibleModule('role_binding_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1alpha1_role_list.py b/library/k8s_v1alpha1_role_list.py index f72d47a8..71cad8ad 100644 --- a/library/k8s_v1alpha1_role_list.py +++ b/library/k8s_v1alpha1_role_list.py @@ -505,7 +505,7 @@ role_list: def main(): try: - module = KubernetesAnsibleModule('role_list', 'V1alpha1') + module = KubernetesAnsibleModule('role_list', 'v1alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_api_service.py b/library/k8s_v1beta1_api_service.py index bf05c129..0bce655c 100644 --- a/library/k8s_v1beta1_api_service.py +++ b/library/k8s_v1beta1_api_service.py @@ -591,7 +591,7 @@ api_service: def main(): try: - module = KubernetesAnsibleModule('api_service', 'V1beta1') + module = KubernetesAnsibleModule('api_service', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_api_service_list.py b/library/k8s_v1beta1_api_service_list.py index 7547b313..3a2dde86 100644 --- a/library/k8s_v1beta1_api_service_list.py +++ b/library/k8s_v1beta1_api_service_list.py @@ -553,7 +553,7 @@ api_service_list: def main(): try: - module = KubernetesAnsibleModule('api_service_list', 'V1beta1') + module = KubernetesAnsibleModule('api_service_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_certificate_signing_request.py b/library/k8s_v1beta1_certificate_signing_request.py index 485920db..3fdd4bbf 100644 --- a/library/k8s_v1beta1_certificate_signing_request.py +++ b/library/k8s_v1beta1_certificate_signing_request.py @@ -543,7 +543,7 @@ certificate_signing_request: def main(): try: - module = KubernetesAnsibleModule('certificate_signing_request', 'V1beta1') + module = KubernetesAnsibleModule('certificate_signing_request', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_certificate_signing_request_list.py b/library/k8s_v1beta1_certificate_signing_request_list.py index 1115753f..ad1698dd 100644 --- a/library/k8s_v1beta1_certificate_signing_request_list.py +++ b/library/k8s_v1beta1_certificate_signing_request_list.py @@ -529,7 +529,7 @@ certificate_signing_request_list: def main(): try: - module = KubernetesAnsibleModule('certificate_signing_request_list', 'V1beta1') + module = KubernetesAnsibleModule('certificate_signing_request_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_cluster_role.py b/library/k8s_v1beta1_cluster_role.py index 9f32fee6..07821357 100644 --- a/library/k8s_v1beta1_cluster_role.py +++ b/library/k8s_v1beta1_cluster_role.py @@ -486,7 +486,7 @@ cluster_role: def main(): try: - module = KubernetesAnsibleModule('cluster_role', 'V1beta1') + module = KubernetesAnsibleModule('cluster_role', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_cluster_role_binding.py b/library/k8s_v1beta1_cluster_role_binding.py index d4b3e4e8..ae48b40f 100644 --- a/library/k8s_v1beta1_cluster_role_binding.py +++ b/library/k8s_v1beta1_cluster_role_binding.py @@ -506,7 +506,7 @@ cluster_role_binding: def main(): try: - module = KubernetesAnsibleModule('cluster_role_binding', 'V1beta1') + module = KubernetesAnsibleModule('cluster_role_binding', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_cluster_role_binding_list.py b/library/k8s_v1beta1_cluster_role_binding_list.py index 0b9cb307..2bd12725 100644 --- a/library/k8s_v1beta1_cluster_role_binding_list.py +++ b/library/k8s_v1beta1_cluster_role_binding_list.py @@ -508,7 +508,7 @@ cluster_role_binding_list: def main(): try: - module = KubernetesAnsibleModule('cluster_role_binding_list', 'V1beta1') + module = KubernetesAnsibleModule('cluster_role_binding_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_cluster_role_list.py b/library/k8s_v1beta1_cluster_role_list.py index ed57975b..c398a1e5 100644 --- a/library/k8s_v1beta1_cluster_role_list.py +++ b/library/k8s_v1beta1_cluster_role_list.py @@ -503,7 +503,7 @@ cluster_role_list: def main(): try: - module = KubernetesAnsibleModule('cluster_role_list', 'V1beta1') + module = KubernetesAnsibleModule('cluster_role_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_controller_revision.py b/library/k8s_v1beta1_controller_revision.py index ead96bed..4b4f40de 100644 --- a/library/k8s_v1beta1_controller_revision.py +++ b/library/k8s_v1beta1_controller_revision.py @@ -464,7 +464,7 @@ controller_revision: def main(): try: - module = KubernetesAnsibleModule('controller_revision', 'V1beta1') + module = KubernetesAnsibleModule('controller_revision', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_controller_revision_list.py b/library/k8s_v1beta1_controller_revision_list.py index 2dd341a0..9294a1cb 100644 --- a/library/k8s_v1beta1_controller_revision_list.py +++ b/library/k8s_v1beta1_controller_revision_list.py @@ -476,7 +476,7 @@ controller_revision_list: def main(): try: - module = KubernetesAnsibleModule('controller_revision_list', 'V1beta1') + module = KubernetesAnsibleModule('controller_revision_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_daemon_set.py b/library/k8s_v1beta1_daemon_set.py index 69c276b0..dddfe111 100644 --- a/library/k8s_v1beta1_daemon_set.py +++ b/library/k8s_v1beta1_daemon_set.py @@ -4651,7 +4651,7 @@ daemon_set: def main(): try: - module = KubernetesAnsibleModule('daemon_set', 'V1beta1') + module = KubernetesAnsibleModule('daemon_set', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_daemon_set_list.py b/library/k8s_v1beta1_daemon_set_list.py index c4044a46..a6875410 100644 --- a/library/k8s_v1beta1_daemon_set_list.py +++ b/library/k8s_v1beta1_daemon_set_list.py @@ -4396,7 +4396,7 @@ daemon_set_list: def main(): try: - module = KubernetesAnsibleModule('daemon_set_list', 'V1beta1') + module = KubernetesAnsibleModule('daemon_set_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_eviction.py b/library/k8s_v1beta1_eviction.py index c19cc0dd..57f9b8e1 100644 --- a/library/k8s_v1beta1_eviction.py +++ b/library/k8s_v1beta1_eviction.py @@ -511,7 +511,7 @@ eviction: def main(): try: - module = KubernetesAnsibleModule('eviction', 'V1beta1') + module = KubernetesAnsibleModule('eviction', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_ingress.py b/library/k8s_v1beta1_ingress.py index 59c97ea9..f20884f2 100644 --- a/library/k8s_v1beta1_ingress.py +++ b/library/k8s_v1beta1_ingress.py @@ -592,7 +592,7 @@ ingress: def main(): try: - module = KubernetesAnsibleModule('ingress', 'V1beta1') + module = KubernetesAnsibleModule('ingress', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_ingress_list.py b/library/k8s_v1beta1_ingress_list.py index d1ace76b..d40051ab 100644 --- a/library/k8s_v1beta1_ingress_list.py +++ b/library/k8s_v1beta1_ingress_list.py @@ -588,7 +588,7 @@ ingress_list: def main(): try: - module = KubernetesAnsibleModule('ingress_list', 'V1beta1') + module = KubernetesAnsibleModule('ingress_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_local_subject_access_review.py b/library/k8s_v1beta1_local_subject_access_review.py index ebeb6ebb..3e96a40c 100644 --- a/library/k8s_v1beta1_local_subject_access_review.py +++ b/library/k8s_v1beta1_local_subject_access_review.py @@ -585,7 +585,7 @@ local_subject_access_review: def main(): try: - module = KubernetesAnsibleModule('local_subject_access_review', 'V1beta1') + module = KubernetesAnsibleModule('local_subject_access_review', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_network_policy.py b/library/k8s_v1beta1_network_policy.py index 30860769..29acbd65 100644 --- a/library/k8s_v1beta1_network_policy.py +++ b/library/k8s_v1beta1_network_policy.py @@ -637,7 +637,7 @@ network_policy: def main(): try: - module = KubernetesAnsibleModule('network_policy', 'V1beta1') + module = KubernetesAnsibleModule('network_policy', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_network_policy_list.py b/library/k8s_v1beta1_network_policy_list.py index 12997c13..b7a2c065 100644 --- a/library/k8s_v1beta1_network_policy_list.py +++ b/library/k8s_v1beta1_network_policy_list.py @@ -635,7 +635,7 @@ network_policy_list: def main(): try: - module = KubernetesAnsibleModule('network_policy_list', 'V1beta1') + module = KubernetesAnsibleModule('network_policy_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_pod_disruption_budget.py b/library/k8s_v1beta1_pod_disruption_budget.py index 088708da..f94d6a5f 100644 --- a/library/k8s_v1beta1_pod_disruption_budget.py +++ b/library/k8s_v1beta1_pod_disruption_budget.py @@ -571,7 +571,7 @@ pod_disruption_budget: def main(): try: - module = KubernetesAnsibleModule('pod_disruption_budget', 'V1beta1') + module = KubernetesAnsibleModule('pod_disruption_budget', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_pod_disruption_budget_list.py b/library/k8s_v1beta1_pod_disruption_budget_list.py index 468bcd3c..ac437ddf 100644 --- a/library/k8s_v1beta1_pod_disruption_budget_list.py +++ b/library/k8s_v1beta1_pod_disruption_budget_list.py @@ -559,7 +559,7 @@ pod_disruption_budget_list: def main(): try: - module = KubernetesAnsibleModule('pod_disruption_budget_list', 'V1beta1') + module = KubernetesAnsibleModule('pod_disruption_budget_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_pod_security_policy.py b/library/k8s_v1beta1_pod_security_policy.py index 72a31a87..60c9ba65 100644 --- a/library/k8s_v1beta1_pod_security_policy.py +++ b/library/k8s_v1beta1_pod_security_policy.py @@ -756,7 +756,7 @@ pod_security_policy: def main(): try: - module = KubernetesAnsibleModule('pod_security_policy', 'V1beta1') + module = KubernetesAnsibleModule('pod_security_policy', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_pod_security_policy_list.py b/library/k8s_v1beta1_pod_security_policy_list.py index b51004da..94f697ce 100644 --- a/library/k8s_v1beta1_pod_security_policy_list.py +++ b/library/k8s_v1beta1_pod_security_policy_list.py @@ -645,7 +645,7 @@ pod_security_policy_list: def main(): try: - module = KubernetesAnsibleModule('pod_security_policy_list', 'V1beta1') + module = KubernetesAnsibleModule('pod_security_policy_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_replica_set.py b/library/k8s_v1beta1_replica_set.py index 8050d600..a4006b7d 100644 --- a/library/k8s_v1beta1_replica_set.py +++ b/library/k8s_v1beta1_replica_set.py @@ -4605,7 +4605,7 @@ replica_set: def main(): try: - module = KubernetesAnsibleModule('replica_set', 'V1beta1') + module = KubernetesAnsibleModule('replica_set', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_replica_set_list.py b/library/k8s_v1beta1_replica_set_list.py index 745cb8a8..e74c370d 100644 --- a/library/k8s_v1beta1_replica_set_list.py +++ b/library/k8s_v1beta1_replica_set_list.py @@ -4363,7 +4363,7 @@ replica_set_list: def main(): try: - module = KubernetesAnsibleModule('replica_set_list', 'V1beta1') + module = KubernetesAnsibleModule('replica_set_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_role.py b/library/k8s_v1beta1_role.py index d3f47efe..7c157630 100644 --- a/library/k8s_v1beta1_role.py +++ b/library/k8s_v1beta1_role.py @@ -486,7 +486,7 @@ role: def main(): try: - module = KubernetesAnsibleModule('role', 'V1beta1') + module = KubernetesAnsibleModule('role', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_role_binding.py b/library/k8s_v1beta1_role_binding.py index c9bf45e6..dd81b131 100644 --- a/library/k8s_v1beta1_role_binding.py +++ b/library/k8s_v1beta1_role_binding.py @@ -507,7 +507,7 @@ role_binding: def main(): try: - module = KubernetesAnsibleModule('role_binding', 'V1beta1') + module = KubernetesAnsibleModule('role_binding', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_role_binding_list.py b/library/k8s_v1beta1_role_binding_list.py index 7a4a0119..6a6cf218 100644 --- a/library/k8s_v1beta1_role_binding_list.py +++ b/library/k8s_v1beta1_role_binding_list.py @@ -509,7 +509,7 @@ role_binding_list: def main(): try: - module = KubernetesAnsibleModule('role_binding_list', 'V1beta1') + module = KubernetesAnsibleModule('role_binding_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_role_list.py b/library/k8s_v1beta1_role_list.py index 694edfae..995689dd 100644 --- a/library/k8s_v1beta1_role_list.py +++ b/library/k8s_v1beta1_role_list.py @@ -503,7 +503,7 @@ role_list: def main(): try: - module = KubernetesAnsibleModule('role_list', 'V1beta1') + module = KubernetesAnsibleModule('role_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_self_subject_access_review.py b/library/k8s_v1beta1_self_subject_access_review.py index dca73a1a..7391555a 100644 --- a/library/k8s_v1beta1_self_subject_access_review.py +++ b/library/k8s_v1beta1_self_subject_access_review.py @@ -550,7 +550,7 @@ self_subject_access_review: def main(): try: - module = KubernetesAnsibleModule('self_subject_access_review', 'V1beta1') + module = KubernetesAnsibleModule('self_subject_access_review', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_stateful_set.py b/library/k8s_v1beta1_stateful_set.py index a0158419..4d7fecbb 100644 --- a/library/k8s_v1beta1_stateful_set.py +++ b/library/k8s_v1beta1_stateful_set.py @@ -5120,7 +5120,7 @@ stateful_set: def main(): try: - module = KubernetesAnsibleModule('stateful_set', 'V1beta1') + module = KubernetesAnsibleModule('stateful_set', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_stateful_set_list.py b/library/k8s_v1beta1_stateful_set_list.py index 14cb4426..b9fe1d92 100644 --- a/library/k8s_v1beta1_stateful_set_list.py +++ b/library/k8s_v1beta1_stateful_set_list.py @@ -4843,7 +4843,7 @@ stateful_set_list: def main(): try: - module = KubernetesAnsibleModule('stateful_set_list', 'V1beta1') + module = KubernetesAnsibleModule('stateful_set_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_storage_class.py b/library/k8s_v1beta1_storage_class.py index 8092ac7a..b8ad2c3a 100644 --- a/library/k8s_v1beta1_storage_class.py +++ b/library/k8s_v1beta1_storage_class.py @@ -460,7 +460,7 @@ storage_class: def main(): try: - module = KubernetesAnsibleModule('storage_class', 'V1beta1') + module = KubernetesAnsibleModule('storage_class', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_storage_class_list.py b/library/k8s_v1beta1_storage_class_list.py index 48adfba0..835cdfe2 100644 --- a/library/k8s_v1beta1_storage_class_list.py +++ b/library/k8s_v1beta1_storage_class_list.py @@ -473,7 +473,7 @@ storage_class_list: def main(): try: - module = KubernetesAnsibleModule('storage_class_list', 'V1beta1') + module = KubernetesAnsibleModule('storage_class_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_subject_access_review.py b/library/k8s_v1beta1_subject_access_review.py index 21bc772c..0d3021df 100644 --- a/library/k8s_v1beta1_subject_access_review.py +++ b/library/k8s_v1beta1_subject_access_review.py @@ -584,7 +584,7 @@ subject_access_review: def main(): try: - module = KubernetesAnsibleModule('subject_access_review', 'V1beta1') + module = KubernetesAnsibleModule('subject_access_review', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_third_party_resource.py b/library/k8s_v1beta1_third_party_resource.py index b3953b84..a789d931 100644 --- a/library/k8s_v1beta1_third_party_resource.py +++ b/library/k8s_v1beta1_third_party_resource.py @@ -462,7 +462,7 @@ third_party_resource: def main(): try: - module = KubernetesAnsibleModule('third_party_resource', 'V1beta1') + module = KubernetesAnsibleModule('third_party_resource', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_third_party_resource_list.py b/library/k8s_v1beta1_third_party_resource_list.py index 3a6b28b6..e846c68e 100644 --- a/library/k8s_v1beta1_third_party_resource_list.py +++ b/library/k8s_v1beta1_third_party_resource_list.py @@ -476,7 +476,7 @@ third_party_resource_list: def main(): try: - module = KubernetesAnsibleModule('third_party_resource_list', 'V1beta1') + module = KubernetesAnsibleModule('third_party_resource_list', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v1beta1_token_review.py b/library/k8s_v1beta1_token_review.py index b6ee3c1d..0c629a28 100644 --- a/library/k8s_v1beta1_token_review.py +++ b/library/k8s_v1beta1_token_review.py @@ -470,7 +470,7 @@ token_review: def main(): try: - module = KubernetesAnsibleModule('token_review', 'V1beta1') + module = KubernetesAnsibleModule('token_review', 'v1beta1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v2alpha1_cron_job.py b/library/k8s_v2alpha1_cron_job.py index 912e71ce..c0bd24a5 100644 --- a/library/k8s_v2alpha1_cron_job.py +++ b/library/k8s_v2alpha1_cron_job.py @@ -5283,7 +5283,7 @@ cron_job: def main(): try: - module = KubernetesAnsibleModule('cron_job', 'V2alpha1') + module = KubernetesAnsibleModule('cron_job', 'v2alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v2alpha1_cron_job_list.py b/library/k8s_v2alpha1_cron_job_list.py index dbe5c91e..23b721a2 100644 --- a/library/k8s_v2alpha1_cron_job_list.py +++ b/library/k8s_v2alpha1_cron_job_list.py @@ -5033,7 +5033,7 @@ cron_job_list: def main(): try: - module = KubernetesAnsibleModule('cron_job_list', 'V2alpha1') + module = KubernetesAnsibleModule('cron_job_list', 'v2alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v2alpha1_horizontal_pod_autoscaler.py b/library/k8s_v2alpha1_horizontal_pod_autoscaler.py index 8e3dd4e5..9f0cef43 100644 --- a/library/k8s_v2alpha1_horizontal_pod_autoscaler.py +++ b/library/k8s_v2alpha1_horizontal_pod_autoscaler.py @@ -747,7 +747,7 @@ horizontal_pod_autoscaler: def main(): try: - module = KubernetesAnsibleModule('horizontal_pod_autoscaler', 'V2alpha1') + module = KubernetesAnsibleModule('horizontal_pod_autoscaler', 'v2alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/k8s_v2alpha1_horizontal_pod_autoscaler_list.py b/library/k8s_v2alpha1_horizontal_pod_autoscaler_list.py index e38d27fd..b46b1406 100644 --- a/library/k8s_v2alpha1_horizontal_pod_autoscaler_list.py +++ b/library/k8s_v2alpha1_horizontal_pod_autoscaler_list.py @@ -735,7 +735,7 @@ horizontal_pod_autoscaler_list: def main(): try: - module = KubernetesAnsibleModule('horizontal_pod_autoscaler_list', 'V2alpha1') + module = KubernetesAnsibleModule('horizontal_pod_autoscaler_list', 'v2alpha1') except KubernetesAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_applied_cluster_resource_quota.py b/library/openshift_v1_applied_cluster_resource_quota.py index 20bab0d1..6786f926 100644 --- a/library/openshift_v1_applied_cluster_resource_quota.py +++ b/library/openshift_v1_applied_cluster_resource_quota.py @@ -118,7 +118,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -572,7 +572,7 @@ applied_cluster_resource_quota: def main(): try: - module = OpenShiftAnsibleModule('applied_cluster_resource_quota', 'V1') + module = OpenShiftAnsibleModule('applied_cluster_resource_quota', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_applied_cluster_resource_quota_list.py b/library/openshift_v1_applied_cluster_resource_quota_list.py index 0f8f00d4..cd03022a 100644 --- a/library/openshift_v1_applied_cluster_resource_quota_list.py +++ b/library/openshift_v1_applied_cluster_resource_quota_list.py @@ -61,7 +61,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -561,7 +561,7 @@ applied_cluster_resource_quota_list: def main(): try: - module = OpenShiftAnsibleModule('applied_cluster_resource_quota_list', 'V1') + module = OpenShiftAnsibleModule('applied_cluster_resource_quota_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_broker_template_instance.py b/library/openshift_v1_broker_template_instance.py index b99dbe80..c71a7b21 100644 --- a/library/openshift_v1_broker_template_instance.py +++ b/library/openshift_v1_broker_template_instance.py @@ -196,7 +196,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -626,7 +626,7 @@ broker_template_instance: def main(): try: - module = OpenShiftAnsibleModule('broker_template_instance', 'V1') + module = OpenShiftAnsibleModule('broker_template_instance', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_broker_template_instance_list.py b/library/openshift_v1_broker_template_instance_list.py index f5094bc6..9740095c 100644 --- a/library/openshift_v1_broker_template_instance_list.py +++ b/library/openshift_v1_broker_template_instance_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -558,7 +558,7 @@ broker_template_instance_list: def main(): try: - module = OpenShiftAnsibleModule('broker_template_instance_list', 'V1') + module = OpenShiftAnsibleModule('broker_template_instance_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_build.py b/library/openshift_v1_build.py index e4727371..6b5698d4 100644 --- a/library/openshift_v1_build.py +++ b/library/openshift_v1_build.py @@ -666,7 +666,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -2711,7 +2711,7 @@ build: def main(): try: - module = OpenShiftAnsibleModule('build', 'V1') + module = OpenShiftAnsibleModule('build', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_build_config.py b/library/openshift_v1_build_config.py index 9e2e71fc..d40664fe 100644 --- a/library/openshift_v1_build_config.py +++ b/library/openshift_v1_build_config.py @@ -688,7 +688,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -2423,7 +2423,7 @@ build_config: def main(): try: - module = OpenShiftAnsibleModule('build_config', 'V1') + module = OpenShiftAnsibleModule('build_config', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_build_config_list.py b/library/openshift_v1_build_config_list.py index c3ad7e9d..5e1d7e11 100644 --- a/library/openshift_v1_build_config_list.py +++ b/library/openshift_v1_build_config_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1900,7 +1900,7 @@ build_config_list: def main(): try: - module = OpenShiftAnsibleModule('build_config_list', 'V1') + module = OpenShiftAnsibleModule('build_config_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_build_list.py b/library/openshift_v1_build_list.py index 2ba9a092..11d51481 100644 --- a/library/openshift_v1_build_list.py +++ b/library/openshift_v1_build_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -2211,7 +2211,7 @@ build_list: def main(): try: - module = OpenShiftAnsibleModule('build_list', 'V1') + module = OpenShiftAnsibleModule('build_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_build_request.py b/library/openshift_v1_build_request.py index 4e79bf4f..69595ccf 100644 --- a/library/openshift_v1_build_request.py +++ b/library/openshift_v1_build_request.py @@ -245,7 +245,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1241,7 +1241,7 @@ build_request: def main(): try: - module = OpenShiftAnsibleModule('build_request', 'V1') + module = OpenShiftAnsibleModule('build_request', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_network.py b/library/openshift_v1_cluster_network.py index 23f8ac28..b0956f63 100644 --- a/library/openshift_v1_cluster_network.py +++ b/library/openshift_v1_cluster_network.py @@ -128,7 +128,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -498,7 +498,7 @@ cluster_network: def main(): try: - module = OpenShiftAnsibleModule('cluster_network', 'V1') + module = OpenShiftAnsibleModule('cluster_network', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_network_list.py b/library/openshift_v1_cluster_network_list.py index c85f7c1e..8d0bd6c0 100644 --- a/library/openshift_v1_cluster_network_list.py +++ b/library/openshift_v1_cluster_network_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -499,7 +499,7 @@ cluster_network_list: def main(): try: - module = OpenShiftAnsibleModule('cluster_network_list', 'V1') + module = OpenShiftAnsibleModule('cluster_network_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_resource_quota.py b/library/openshift_v1_cluster_resource_quota.py index 6bbd3a36..b1681d91 100644 --- a/library/openshift_v1_cluster_resource_quota.py +++ b/library/openshift_v1_cluster_resource_quota.py @@ -142,7 +142,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -596,7 +596,7 @@ cluster_resource_quota: def main(): try: - module = OpenShiftAnsibleModule('cluster_resource_quota', 'V1') + module = OpenShiftAnsibleModule('cluster_resource_quota', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_resource_quota_list.py b/library/openshift_v1_cluster_resource_quota_list.py index eb2665ca..e0509419 100644 --- a/library/openshift_v1_cluster_resource_quota_list.py +++ b/library/openshift_v1_cluster_resource_quota_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -585,7 +585,7 @@ cluster_resource_quota_list: def main(): try: - module = OpenShiftAnsibleModule('cluster_resource_quota_list', 'V1') + module = OpenShiftAnsibleModule('cluster_resource_quota_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_role.py b/library/openshift_v1_cluster_role.py index 44e3f0b5..aa4fd039 100644 --- a/library/openshift_v1_cluster_role.py +++ b/library/openshift_v1_cluster_role.py @@ -111,7 +111,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -497,7 +497,7 @@ cluster_role: def main(): try: - module = OpenShiftAnsibleModule('cluster_role', 'V1') + module = OpenShiftAnsibleModule('cluster_role', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_role_binding.py b/library/openshift_v1_cluster_role_binding.py index 215f5be7..c3fff0a6 100644 --- a/library/openshift_v1_cluster_role_binding.py +++ b/library/openshift_v1_cluster_role_binding.py @@ -169,7 +169,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -605,7 +605,7 @@ cluster_role_binding: def main(): try: - module = OpenShiftAnsibleModule('cluster_role_binding', 'V1') + module = OpenShiftAnsibleModule('cluster_role_binding', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_role_binding_list.py b/library/openshift_v1_cluster_role_binding_list.py index 03157f82..64f2498c 100644 --- a/library/openshift_v1_cluster_role_binding_list.py +++ b/library/openshift_v1_cluster_role_binding_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -567,7 +567,7 @@ cluster_role_binding_list: def main(): try: - module = OpenShiftAnsibleModule('cluster_role_binding_list', 'V1') + module = OpenShiftAnsibleModule('cluster_role_binding_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_cluster_role_list.py b/library/openshift_v1_cluster_role_list.py index 760f18e2..3817388f 100644 --- a/library/openshift_v1_cluster_role_list.py +++ b/library/openshift_v1_cluster_role_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -515,7 +515,7 @@ cluster_role_list: def main(): try: - module = OpenShiftAnsibleModule('cluster_role_list', 'V1') + module = OpenShiftAnsibleModule('cluster_role_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_deployment_config.py b/library/openshift_v1_deployment_config.py index f7411357..d29265de 100644 --- a/library/openshift_v1_deployment_config.py +++ b/library/openshift_v1_deployment_config.py @@ -172,8 +172,8 @@ options: description: - Type is the name of a deployment strategy. choices: - - Custom - Rolling + - Custom - Recreate aliases: - strategy_type @@ -548,7 +548,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -4910,7 +4910,7 @@ deployment_config: def main(): try: - module = OpenShiftAnsibleModule('deployment_config', 'V1') + module = OpenShiftAnsibleModule('deployment_config', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_deployment_config_list.py b/library/openshift_v1_deployment_config_list.py index 69720ba1..40f11470 100644 --- a/library/openshift_v1_deployment_config_list.py +++ b/library/openshift_v1_deployment_config_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -4516,7 +4516,7 @@ deployment_config_list: def main(): try: - module = OpenShiftAnsibleModule('deployment_config_list', 'V1') + module = OpenShiftAnsibleModule('deployment_config_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_deployment_config_rollback.py b/library/openshift_v1_deployment_config_rollback.py index e6d8b3d9..64dabc6e 100644 --- a/library/openshift_v1_deployment_config_rollback.py +++ b/library/openshift_v1_deployment_config_rollback.py @@ -139,7 +139,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -247,7 +247,7 @@ deployment_config_rollback: def main(): try: - module = OpenShiftAnsibleModule('deployment_config_rollback', 'V1') + module = OpenShiftAnsibleModule('deployment_config_rollback', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_egress_network_policy.py b/library/openshift_v1_egress_network_policy.py index d0b5feaf..821466fc 100644 --- a/library/openshift_v1_egress_network_policy.py +++ b/library/openshift_v1_egress_network_policy.py @@ -113,7 +113,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -477,7 +477,7 @@ egress_network_policy: def main(): try: - module = OpenShiftAnsibleModule('egress_network_policy', 'V1') + module = OpenShiftAnsibleModule('egress_network_policy', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_egress_network_policy_list.py b/library/openshift_v1_egress_network_policy_list.py index 05c4321b..82499484 100644 --- a/library/openshift_v1_egress_network_policy_list.py +++ b/library/openshift_v1_egress_network_policy_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -492,7 +492,7 @@ egress_network_policy_list: def main(): try: - module = OpenShiftAnsibleModule('egress_network_policy_list', 'V1') + module = OpenShiftAnsibleModule('egress_network_policy_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_group.py b/library/openshift_v1_group.py index 18854cfc..ce21ef5c 100644 --- a/library/openshift_v1_group.py +++ b/library/openshift_v1_group.py @@ -111,7 +111,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -451,7 +451,7 @@ group: def main(): try: - module = OpenShiftAnsibleModule('group', 'V1') + module = OpenShiftAnsibleModule('group', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_group_list.py b/library/openshift_v1_group_list.py index 7111817f..d140be47 100644 --- a/library/openshift_v1_group_list.py +++ b/library/openshift_v1_group_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -468,7 +468,7 @@ group_list: def main(): try: - module = OpenShiftAnsibleModule('group_list', 'V1') + module = OpenShiftAnsibleModule('group_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_host_subnet.py b/library/openshift_v1_host_subnet.py index 8d4dcc31..109d16f0 100644 --- a/library/openshift_v1_host_subnet.py +++ b/library/openshift_v1_host_subnet.py @@ -121,7 +121,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -477,7 +477,7 @@ host_subnet: def main(): try: - module = OpenShiftAnsibleModule('host_subnet', 'V1') + module = OpenShiftAnsibleModule('host_subnet', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_host_subnet_list.py b/library/openshift_v1_host_subnet_list.py index 3f1c019d..b5a3b098 100644 --- a/library/openshift_v1_host_subnet_list.py +++ b/library/openshift_v1_host_subnet_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -484,7 +484,7 @@ host_subnet_list: def main(): try: - module = OpenShiftAnsibleModule('host_subnet_list', 'V1') + module = OpenShiftAnsibleModule('host_subnet_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_identity.py b/library/openshift_v1_identity.py index 9183a1bc..b6426276 100644 --- a/library/openshift_v1_identity.py +++ b/library/openshift_v1_identity.py @@ -158,7 +158,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -547,7 +547,7 @@ identity: def main(): try: - module = OpenShiftAnsibleModule('identity', 'V1') + module = OpenShiftAnsibleModule('identity', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_identity_list.py b/library/openshift_v1_identity_list.py index e23f96a0..731fe2d7 100644 --- a/library/openshift_v1_identity_list.py +++ b/library/openshift_v1_identity_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -519,7 +519,7 @@ identity_list: def main(): try: - module = OpenShiftAnsibleModule('identity_list', 'V1') + module = OpenShiftAnsibleModule('identity_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image.py b/library/openshift_v1_image.py index 326db5c3..f4717653 100644 --- a/library/openshift_v1_image.py +++ b/library/openshift_v1_image.py @@ -144,7 +144,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -955,7 +955,7 @@ image: def main(): try: - module = OpenShiftAnsibleModule('image', 'V1') + module = OpenShiftAnsibleModule('image', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_list.py b/library/openshift_v1_image_list.py index bfed4118..877c3dc2 100644 --- a/library/openshift_v1_image_list.py +++ b/library/openshift_v1_image_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -947,7 +947,7 @@ image_list: def main(): try: - module = OpenShiftAnsibleModule('image_list', 'V1') + module = OpenShiftAnsibleModule('image_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_signature.py b/library/openshift_v1_image_signature.py index 80b02eda..73b1d56c 100644 --- a/library/openshift_v1_image_signature.py +++ b/library/openshift_v1_image_signature.py @@ -156,7 +156,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -580,7 +580,7 @@ image_signature: def main(): try: - module = OpenShiftAnsibleModule('image_signature', 'V1') + module = OpenShiftAnsibleModule('image_signature', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream.py b/library/openshift_v1_image_stream.py index 96563537..fea1d35d 100644 --- a/library/openshift_v1_image_stream.py +++ b/library/openshift_v1_image_stream.py @@ -131,7 +131,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -692,7 +692,7 @@ image_stream: def main(): try: - module = OpenShiftAnsibleModule('image_stream', 'V1') + module = OpenShiftAnsibleModule('image_stream', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream_image.py b/library/openshift_v1_image_stream_image.py index f247b36f..fd496130 100644 --- a/library/openshift_v1_image_stream_image.py +++ b/library/openshift_v1_image_stream_image.py @@ -173,7 +173,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1323,7 +1323,7 @@ image_stream_image: def main(): try: - module = OpenShiftAnsibleModule('image_stream_image', 'V1') + module = OpenShiftAnsibleModule('image_stream_image', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream_import.py b/library/openshift_v1_image_stream_import.py index 893b2c6c..43e608f9 100644 --- a/library/openshift_v1_image_stream_import.py +++ b/library/openshift_v1_image_stream_import.py @@ -172,7 +172,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -3417,7 +3417,7 @@ image_stream_import: def main(): try: - module = OpenShiftAnsibleModule('image_stream_import', 'V1') + module = OpenShiftAnsibleModule('image_stream_import', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream_list.py b/library/openshift_v1_image_stream_list.py index b2b10781..4038d9b2 100644 --- a/library/openshift_v1_image_stream_list.py +++ b/library/openshift_v1_image_stream_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -694,7 +694,7 @@ image_stream_list: def main(): try: - module = OpenShiftAnsibleModule('image_stream_list', 'V1') + module = OpenShiftAnsibleModule('image_stream_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream_mapping.py b/library/openshift_v1_image_stream_mapping.py index 18572c20..bfec723a 100644 --- a/library/openshift_v1_image_stream_mapping.py +++ b/library/openshift_v1_image_stream_mapping.py @@ -176,7 +176,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1330,7 +1330,7 @@ image_stream_mapping: def main(): try: - module = OpenShiftAnsibleModule('image_stream_mapping', 'V1') + module = OpenShiftAnsibleModule('image_stream_mapping', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream_tag.py b/library/openshift_v1_image_stream_tag.py index 59bd562a..51d68b30 100644 --- a/library/openshift_v1_image_stream_tag.py +++ b/library/openshift_v1_image_stream_tag.py @@ -319,7 +319,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1635,7 +1635,7 @@ image_stream_tag: def main(): try: - module = OpenShiftAnsibleModule('image_stream_tag', 'V1') + module = OpenShiftAnsibleModule('image_stream_tag', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_image_stream_tag_list.py b/library/openshift_v1_image_stream_tag_list.py index 1754b733..96fa9e69 100644 --- a/library/openshift_v1_image_stream_tag_list.py +++ b/library/openshift_v1_image_stream_tag_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1470,7 +1470,7 @@ image_stream_tag_list: def main(): try: - module = OpenShiftAnsibleModule('image_stream_tag_list', 'V1') + module = OpenShiftAnsibleModule('image_stream_tag_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_net_namespace.py b/library/openshift_v1_net_namespace.py index d8a0914e..cae8b767 100644 --- a/library/openshift_v1_net_namespace.py +++ b/library/openshift_v1_net_namespace.py @@ -122,7 +122,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -475,7 +475,7 @@ net_namespace: def main(): try: - module = OpenShiftAnsibleModule('net_namespace', 'V1') + module = OpenShiftAnsibleModule('net_namespace', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_net_namespace_list.py b/library/openshift_v1_net_namespace_list.py index 5ffb362d..7ec68ca0 100644 --- a/library/openshift_v1_net_namespace_list.py +++ b/library/openshift_v1_net_namespace_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -481,7 +481,7 @@ net_namespace_list: def main(): try: - module = OpenShiftAnsibleModule('net_namespace_list', 'V1') + module = OpenShiftAnsibleModule('net_namespace_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_access_token.py b/library/openshift_v1_o_auth_access_token.py index 77e6db8c..e723a9ff 100644 --- a/library/openshift_v1_o_auth_access_token.py +++ b/library/openshift_v1_o_auth_access_token.py @@ -133,7 +133,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -501,7 +501,7 @@ o_auth_access_token: def main(): try: - module = OpenShiftAnsibleModule('o_auth_access_token', 'V1') + module = OpenShiftAnsibleModule('o_auth_access_token', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_access_token_list.py b/library/openshift_v1_o_auth_access_token_list.py index 07477d4f..3ad16c0b 100644 --- a/library/openshift_v1_o_auth_access_token_list.py +++ b/library/openshift_v1_o_auth_access_token_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -496,7 +496,7 @@ o_auth_access_token_list: def main(): try: - module = OpenShiftAnsibleModule('o_auth_access_token_list', 'V1') + module = OpenShiftAnsibleModule('o_auth_access_token_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_authorize_token.py b/library/openshift_v1_o_auth_authorize_token.py index e465a2b9..454e6ecb 100644 --- a/library/openshift_v1_o_auth_authorize_token.py +++ b/library/openshift_v1_o_auth_authorize_token.py @@ -125,7 +125,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -500,7 +500,7 @@ o_auth_authorize_token: def main(): try: - module = OpenShiftAnsibleModule('o_auth_authorize_token', 'V1') + module = OpenShiftAnsibleModule('o_auth_authorize_token', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_authorize_token_list.py b/library/openshift_v1_o_auth_authorize_token_list.py index 9441c5ce..0e88f3fb 100644 --- a/library/openshift_v1_o_auth_authorize_token_list.py +++ b/library/openshift_v1_o_auth_authorize_token_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -503,7 +503,7 @@ o_auth_authorize_token_list: def main(): try: - module = OpenShiftAnsibleModule('o_auth_authorize_token_list', 'V1') + module = OpenShiftAnsibleModule('o_auth_authorize_token_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_client.py b/library/openshift_v1_o_auth_client.py index bb212c57..d3f2e5b3 100644 --- a/library/openshift_v1_o_auth_client.py +++ b/library/openshift_v1_o_auth_client.py @@ -143,7 +143,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -546,7 +546,7 @@ o_auth_client: def main(): try: - module = OpenShiftAnsibleModule('o_auth_client', 'V1') + module = OpenShiftAnsibleModule('o_auth_client', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_client_authorization.py b/library/openshift_v1_o_auth_client_authorization.py index bcb555fc..94836146 100644 --- a/library/openshift_v1_o_auth_client_authorization.py +++ b/library/openshift_v1_o_auth_client_authorization.py @@ -121,7 +121,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -474,7 +474,7 @@ o_auth_client_authorization: def main(): try: - module = OpenShiftAnsibleModule('o_auth_client_authorization', 'V1') + module = OpenShiftAnsibleModule('o_auth_client_authorization', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_client_authorization_list.py b/library/openshift_v1_o_auth_client_authorization_list.py index 0f43e09d..491b90c3 100644 --- a/library/openshift_v1_o_auth_client_authorization_list.py +++ b/library/openshift_v1_o_auth_client_authorization_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -481,7 +481,7 @@ o_auth_client_authorization_list: def main(): try: - module = OpenShiftAnsibleModule('o_auth_client_authorization_list', 'V1') + module = OpenShiftAnsibleModule('o_auth_client_authorization_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_o_auth_client_list.py b/library/openshift_v1_o_auth_client_list.py index 34bc07cd..19f332e2 100644 --- a/library/openshift_v1_o_auth_client_list.py +++ b/library/openshift_v1_o_auth_client_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -533,7 +533,7 @@ o_auth_client_list: def main(): try: - module = OpenShiftAnsibleModule('o_auth_client_list', 'V1') + module = OpenShiftAnsibleModule('o_auth_client_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_pod_security_policy_review.py b/library/openshift_v1_pod_security_policy_review.py index b5bfeb6d..c8c67980 100644 --- a/library/openshift_v1_pod_security_policy_review.py +++ b/library/openshift_v1_pod_security_policy_review.py @@ -390,7 +390,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -7974,7 +7974,7 @@ pod_security_policy_review: def main(): try: - module = OpenShiftAnsibleModule('pod_security_policy_review', 'V1') + module = OpenShiftAnsibleModule('pod_security_policy_review', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_pod_security_policy_self_subject_review.py b/library/openshift_v1_pod_security_policy_self_subject_review.py index ad519937..c9d7fc4f 100644 --- a/library/openshift_v1_pod_security_policy_self_subject_review.py +++ b/library/openshift_v1_pod_security_policy_self_subject_review.py @@ -381,7 +381,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -7844,7 +7844,7 @@ pod_security_policy_self_subject_review: def main(): try: - module = OpenShiftAnsibleModule('pod_security_policy_self_subject_review', 'V1') + module = OpenShiftAnsibleModule('pod_security_policy_self_subject_review', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_pod_security_policy_subject_review.py b/library/openshift_v1_pod_security_policy_subject_review.py index bc4d6075..19f8f90e 100644 --- a/library/openshift_v1_pod_security_policy_subject_review.py +++ b/library/openshift_v1_pod_security_policy_subject_review.py @@ -395,7 +395,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -7871,7 +7871,7 @@ pod_security_policy_subject_review: def main(): try: - module = OpenShiftAnsibleModule('pod_security_policy_subject_review', 'V1') + module = OpenShiftAnsibleModule('pod_security_policy_subject_review', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_project.py b/library/openshift_v1_project.py index 79164fd0..f7480665 100644 --- a/library/openshift_v1_project.py +++ b/library/openshift_v1_project.py @@ -120,7 +120,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -484,7 +484,7 @@ project: def main(): try: - module = OpenShiftAnsibleModule('project', 'V1') + module = OpenShiftAnsibleModule('project', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_project_list.py b/library/openshift_v1_project_list.py index c34e899f..9a87b9cb 100644 --- a/library/openshift_v1_project_list.py +++ b/library/openshift_v1_project_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -483,7 +483,7 @@ project_list: def main(): try: - module = OpenShiftAnsibleModule('project_list', 'V1') + module = OpenShiftAnsibleModule('project_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_role.py b/library/openshift_v1_role.py index 15078c6a..8b455939 100644 --- a/library/openshift_v1_role.py +++ b/library/openshift_v1_role.py @@ -111,7 +111,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -497,7 +497,7 @@ role: def main(): try: - module = OpenShiftAnsibleModule('role', 'V1') + module = OpenShiftAnsibleModule('role', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_role_binding.py b/library/openshift_v1_role_binding.py index 473589d7..b3d19f4c 100644 --- a/library/openshift_v1_role_binding.py +++ b/library/openshift_v1_role_binding.py @@ -169,7 +169,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -605,7 +605,7 @@ role_binding: def main(): try: - module = OpenShiftAnsibleModule('role_binding', 'V1') + module = OpenShiftAnsibleModule('role_binding', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_role_binding_list.py b/library/openshift_v1_role_binding_list.py index aac28a31..248754fb 100644 --- a/library/openshift_v1_role_binding_list.py +++ b/library/openshift_v1_role_binding_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -567,7 +567,7 @@ role_binding_list: def main(): try: - module = OpenShiftAnsibleModule('role_binding_list', 'V1') + module = OpenShiftAnsibleModule('role_binding_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_role_binding_restriction.py b/library/openshift_v1_role_binding_restriction.py index 05432b89..6abb9625 100644 --- a/library/openshift_v1_role_binding_restriction.py +++ b/library/openshift_v1_role_binding_restriction.py @@ -151,7 +151,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -616,7 +616,7 @@ role_binding_restriction: def main(): try: - module = OpenShiftAnsibleModule('role_binding_restriction', 'V1') + module = OpenShiftAnsibleModule('role_binding_restriction', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_role_binding_restriction_list.py b/library/openshift_v1_role_binding_restriction_list.py index f067f175..7890c9da 100644 --- a/library/openshift_v1_role_binding_restriction_list.py +++ b/library/openshift_v1_role_binding_restriction_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -596,7 +596,7 @@ role_binding_restriction_list: def main(): try: - module = OpenShiftAnsibleModule('role_binding_restriction_list', 'V1') + module = OpenShiftAnsibleModule('role_binding_restriction_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_role_list.py b/library/openshift_v1_role_list.py index 2862ac50..09b076aa 100644 --- a/library/openshift_v1_role_list.py +++ b/library/openshift_v1_role_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -515,7 +515,7 @@ role_list: def main(): try: - module = OpenShiftAnsibleModule('role_list', 'V1') + module = OpenShiftAnsibleModule('role_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_route.py b/library/openshift_v1_route.py index 4869fcdf..1f9b5138 100644 --- a/library/openshift_v1_route.py +++ b/library/openshift_v1_route.py @@ -198,7 +198,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -764,7 +764,7 @@ route: def main(): try: - module = OpenShiftAnsibleModule('route', 'V1') + module = OpenShiftAnsibleModule('route', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_route_list.py b/library/openshift_v1_route_list.py index 1d90fbb3..af994c45 100644 --- a/library/openshift_v1_route_list.py +++ b/library/openshift_v1_route_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -648,7 +648,7 @@ route_list: def main(): try: - module = OpenShiftAnsibleModule('route_list', 'V1') + module = OpenShiftAnsibleModule('route_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_security_context_constraints.py b/library/openshift_v1_security_context_constraints.py index ce55de9d..72d99ba9 100644 --- a/library/openshift_v1_security_context_constraints.py +++ b/library/openshift_v1_security_context_constraints.py @@ -272,7 +272,7 @@ options: allow all volumes you may use "*". To allow no volumes, set to ["none"]. type: list requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -813,7 +813,7 @@ security_context_constraints: def main(): try: - module = OpenShiftAnsibleModule('security_context_constraints', 'V1') + module = OpenShiftAnsibleModule('security_context_constraints', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_security_context_constraints_list.py b/library/openshift_v1_security_context_constraints_list.py index 4e3f9451..9d028643 100644 --- a/library/openshift_v1_security_context_constraints_list.py +++ b/library/openshift_v1_security_context_constraints_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -676,7 +676,7 @@ security_context_constraints_list: def main(): try: - module = OpenShiftAnsibleModule('security_context_constraints_list', 'V1') + module = OpenShiftAnsibleModule('security_context_constraints_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_self_subject_rules_review.py b/library/openshift_v1_self_subject_rules_review.py index 3f38e08e..c8ae0bbf 100644 --- a/library/openshift_v1_self_subject_rules_review.py +++ b/library/openshift_v1_self_subject_rules_review.py @@ -67,7 +67,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -173,7 +173,7 @@ self_subject_rules_review: def main(): try: - module = OpenShiftAnsibleModule('self_subject_rules_review', 'V1') + module = OpenShiftAnsibleModule('self_subject_rules_review', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_subject_rules_review.py b/library/openshift_v1_subject_rules_review.py index 0c2e363d..3aa5534d 100644 --- a/library/openshift_v1_subject_rules_review.py +++ b/library/openshift_v1_subject_rules_review.py @@ -79,7 +79,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -195,7 +195,7 @@ subject_rules_review: def main(): try: - module = OpenShiftAnsibleModule('subject_rules_review', 'V1') + module = OpenShiftAnsibleModule('subject_rules_review', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_template.py b/library/openshift_v1_template.py index a46d90da..3da2b2bc 100644 --- a/library/openshift_v1_template.py +++ b/library/openshift_v1_template.py @@ -127,7 +127,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -534,7 +534,7 @@ template: def main(): try: - module = OpenShiftAnsibleModule('template', 'V1') + module = OpenShiftAnsibleModule('template', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_template_instance.py b/library/openshift_v1_template_instance.py index d274e3f9..14599339 100644 --- a/library/openshift_v1_template_instance.py +++ b/library/openshift_v1_template_instance.py @@ -206,7 +206,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1079,7 +1079,7 @@ template_instance: def main(): try: - module = OpenShiftAnsibleModule('template_instance', 'V1') + module = OpenShiftAnsibleModule('template_instance', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_template_instance_list.py b/library/openshift_v1_template_instance_list.py index 48e6cfe4..6a00eb54 100644 --- a/library/openshift_v1_template_instance_list.py +++ b/library/openshift_v1_template_instance_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -1018,7 +1018,7 @@ template_instance_list: def main(): try: - module = OpenShiftAnsibleModule('template_instance_list', 'V1') + module = OpenShiftAnsibleModule('template_instance_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_template_list.py b/library/openshift_v1_template_list.py index a089c91b..ec82e88b 100644 --- a/library/openshift_v1_template_list.py +++ b/library/openshift_v1_template_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -536,7 +536,7 @@ template_list: def main(): try: - module = OpenShiftAnsibleModule('template_list', 'V1') + module = OpenShiftAnsibleModule('template_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_user.py b/library/openshift_v1_user.py index 295bbefc..d1ff5faa 100644 --- a/library/openshift_v1_user.py +++ b/library/openshift_v1_user.py @@ -120,7 +120,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -471,7 +471,7 @@ user: def main(): try: - module = OpenShiftAnsibleModule('user', 'V1') + module = OpenShiftAnsibleModule('user', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_user_identity_mapping.py b/library/openshift_v1_user_identity_mapping.py index 695afc33..454a57ae 100644 --- a/library/openshift_v1_user_identity_mapping.py +++ b/library/openshift_v1_user_identity_mapping.py @@ -189,7 +189,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -604,7 +604,7 @@ user_identity_mapping: def main(): try: - module = OpenShiftAnsibleModule('user_identity_mapping', 'V1') + module = OpenShiftAnsibleModule('user_identity_mapping', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message) diff --git a/library/openshift_v1_user_list.py b/library/openshift_v1_user_list.py index 6f08d4ff..96386ba4 100644 --- a/library/openshift_v1_user_list.py +++ b/library/openshift_v1_user_list.py @@ -85,7 +85,7 @@ options: - Whether or not to verify the API server's SSL certificates. type: bool requirements: -- openshift == 0.3.1 +- openshift == 0.3.3 ''' EXAMPLES = ''' @@ -479,7 +479,7 @@ user_list: def main(): try: - module = OpenShiftAnsibleModule('user_list', 'V1') + module = OpenShiftAnsibleModule('user_list', 'v1') except OpenShiftAnsibleException as exc: # The helper failed to init, so there is no module object. All we can do is raise the error. raise Exception(exc.message)