internet/kubernetes.core
3
0
Fork 0
mirror of https://github.com/ansible-collections/kubernetes.core.git synced 2026-06-10 10:36:16 +00:00
Code Issues Projects Releases Wiki Activity

update modules

Browse Source
This commit is contained in:
Fabian von Feilitzsch
2017-10-03 13:45:09 -04:00
parent a5b08f7c04
commit 91484a7a22
183 changed files with 95470 additions and 19548 deletions
Download Patch File Download Diff File Expand all files Collapse all files

213
library/openshift_v1_security_context_constraints.py
View File

@@ -45,6 +45,12 @@ options:
You must not list a capability in both AllowedCapabilities and RequiredDropCapabilities.
To allow all capabilities you may use '*'.
type: list
allowed_flex_volumes:
description:
- AllowedFlexVolumes is a whitelist of allowed Flexvolumes. Empty or nil indicates
that all Flexvolumes may be used. This parameter is effective only when the
usage of the Flexvolumes is allowed in the "Volumes" field.
type: list
annotations:
description:
- Annotations is an unstructured key value map stored with a resource that may
@@ -131,8 +137,10 @@ options:
description:
- Priority influences the sort order of SCCs when evaluating which SCCs to try
first for a given pod request based on access in the Users and Groups fields.
The higher the int, the higher priority. If scores for multiple SCCs are equal
they will be sorted by name.
The higher the int, the higher priority. An unset value is considered a 0 priority.
If scores for multiple SCCs are equal they will be sorted from most restrictive
to least restrictive. If both priorities and restrictions are equal the SCCs
will be sorted by name.
type: int
read_only_root_filesystem:
description:
@@ -147,6 +155,11 @@ options:
- RequiredDropCapabilities are the capabilities that will be dropped from the
container. These are required to be dropped and cannot be added.
type: list
resource_definition:
description:
- Provide the YAML definition for the object, bypassing any modules parameters
intended to define object attributes.
type: dict
run_as_user_type:
description:
- Type is the strategy that will dictate what RunAsUser is used in the SecurityContext.
@@ -204,10 +217,29 @@ options:
profiles. When used to generate a value for a pod the first non-wildcard profile
will be used as the default.
type: list
src:
description:
- Provide a path to a file containing the YAML definition of the object. Mutually
exclusive with I(resource_definition).
type: path
ssl_ca_cert:
description:
- Path to a CA certificate used to authenticate with the API.
type: path
state:
description:
- Determines if an object should be created, patched, or deleted. When set to
C(present), the object will be created, if it does not exist, or patched, if
parameter values differ from the existing object's attributes, and deleted,
if set to C(absent). A patch operation results in merging lists and updating
dictionaries, with lists being merged into a unique set of values. If a list
contains a dictionary with a I(name) or I(type) attribute, a strategic merge
is performed, where individual elements with a matching I(name_) or I(type)
are merged. To force the replacement of lists, set the I(force) option to C(True).
default: present
choices:
- present
- absent
supplemental_groups_ranges:
description:
- Ranges are the allowed ranges of supplemental groups. If you would like to force
@@ -237,10 +269,10 @@ options:
description:
- Volumes is a white list of allowed volume plugins. FSType corresponds directly
with the field names of a VolumeSource (azureFile, configMap, emptyDir). To
allow all volumes you may use '*'.
allow all volumes you may use "*". To allow no volumes, set to ["none"].
type: list
requirements:
- openshift == 1.0.0-snapshot
- openshift == 0.3.1
'''
EXAMPLES = '''
@@ -252,7 +284,7 @@ api_version:
description: Requested API version
security_context_constraints:
type: complex
returned: on success
returned: when I(state) = C(present)
contains:
allow_host_dir_volume_plugin:
description:
@@ -289,6 +321,17 @@ security_context_constraints:
RequiredDropCapabilities. To allow all capabilities you may use '*'.
type: list
contains: str
allowed_flex_volumes:
description:
- AllowedFlexVolumes is a whitelist of allowed Flexvolumes. Empty or nil indicates
that all Flexvolumes may be used. This parameter is effective only when the
usage of the Flexvolumes is allowed in the "Volumes" field.
type: list
contains:
driver:
description:
- Driver is the name of the Flexvolume driver.
type: str
api_version:
description:
- APIVersion defines the versioned schema of this representation of an object.
@@ -417,6 +460,150 @@ security_context_constraints:
- A sequence number representing a specific generation of the desired state.
Populated by the system. Read-only.
type: int
initializers:
description:
- An initializer is a controller which enforces some system invariant at
object creation time. This field is a list of initializers that have not
yet acted on this object. If nil or empty, this object has been completely
initialized. Otherwise, the object is considered uninitialized and is
hidden (in list/watch and get calls) from clients that haven't explicitly
asked to observe uninitialized objects. When an object is created, the
system will populate this list with the current set of initializers. Only
privileged users may set or modify this list. Once it is empty, it may
not be modified further by any user.
type: complex
contains:
pending:
description:
- Pending is a list of initializers that must execute in order before
this object is visible. When the last pending initializer is removed,
and no failing result is set, the initializers struct will be set
to nil and the object is considered as initialized and visible to
all clients.
type: list
contains:
name:
description:
- name of the process that is responsible for initializing this
object.
type: str
result:
description:
- If result is set with the Failure field, the object will be persisted
to storage and then deleted, ensuring that other clients can observe
the deletion.
type: complex
contains:
api_version:
description:
- APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the
latest internal value, and may reject unrecognized values.
type: str
code:
description:
- Suggested HTTP return code for this status, 0 if not set.
type: int
details:
description:
- Extended data associated with the reason. Each reason may define
its own extended details. This field is optional and the data
returned is not guaranteed to conform to any schema except that
defined by the reason type.
type: complex
contains:
causes:
description:
- The Causes array includes more details associated with the
StatusReason failure. Not all StatusReasons may provide detailed
causes.
type: list
contains:
field:
description:
- 'The field of the resource that has caused this error,
as named by its JSON serialization. May include dot and
postfix notation for nested attributes. Arrays are zero-indexed.
Fields may appear more than once in an array of causes
due to fields having multiple errors. Optional. Examples:
"name" - the field "name" on the current resource "items[0].name"
- the field "name" on the first array entry in "items"'
type: str
message:
description:
- A human-readable description of the cause of the error.
This field may be presented as-is to a reader.
type: str
reason:
description:
- A machine-readable description of the cause of the error.
If this value is empty there is no information available.
type: str
group:
description:
- The group attribute of the resource associated with the status
StatusReason.
type: str
kind:
description:
- The kind attribute of the resource associated with the status
StatusReason. On some operations may differ from the requested
resource Kind.
type: str
name:
description:
- The name attribute of the resource associated with the status
StatusReason (when there is a single name which can be described).
type: str
retry_after_seconds:
description:
- If specified, the time in seconds before the operation should
be retried.
type: int
uid:
description:
- UID of the resource. (when there is a single resource which
can be described).
type: str
kind:
description:
- Kind is a string value representing the REST resource this object
represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase.
type: str
message:
description:
- A human-readable description of the status of this operation.
type: str
metadata:
description:
- Standard list metadata.
type: complex
contains:
resource_version:
description:
- String that identifies the server's internal version of this
object that can be used by clients to determine when objects
have changed. Value must be treated as opaque by clients and
passed unmodified back to the server. Populated by the system.
Read-only.
type: str
self_link:
description:
- SelfLink is a URL representing this object. Populated by the
system. Read-only.
type: str
reason:
description:
- A machine-readable description of why this operation is in the
"Failure" status. If this value is empty there is no information
available. A Reason clarifies an HTTP status code but does not
override it.
type: str
status:
description:
- 'Status of the operation. One of: "Success" or "Failure".'
type: str
labels:
description:
- Map of string keys and values that can be used to organize and categorize
@@ -452,6 +639,14 @@ security_context_constraints:
description:
- API version of the referent.
type: str
block_owner_deletion:
description:
- If true, AND if the owner has the "foregroundDeletion" finalizer,
then the owner cannot be deleted from the key-value store until this
reference is removed. Defaults to false. To set this field, a user
needs "delete" permission of the owner, otherwise 422 (Unprocessable
Entity) will be returned.
type: bool
controller:
description:
- If true, this reference points to the managing controller.
@@ -492,8 +687,10 @@ security_context_constraints:
description:
- Priority influences the sort order of SCCs when evaluating which SCCs to try
first for a given pod request based on access in the Users and Groups fields.
The higher the int, the higher priority. If scores for multiple SCCs are equal
they will be sorted by name.
The higher the int, the higher priority. An unset value is considered a 0
priority. If scores for multiple SCCs are equal they will be sorted from most
restrictive to least restrictive. If both priorities and restrictions are
equal the SCCs will be sorted by name.
type: int
read_only_root_filesystem:
description:
@@ -608,7 +805,7 @@ security_context_constraints:
description:
- Volumes is a white list of allowed volume plugins. FSType corresponds directly
with the field names of a VolumeSource (azureFile, configMap, emptyDir). To
allow all volumes you may use '*'.
allow all volumes you may use "*". To allow no volumes, set to ["none"].
type: list
contains: str
'''