diff --git a/api/v1/bucket_types.go b/api/v1/bucket_types.go
index 939519ee..2c733a6c 100644
--- a/api/v1/bucket_types.go
+++ b/api/v1/bucket_types.go
@@ -21,7 +21,6 @@ import (
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
- "github.com/fluxcd/pkg/apis/acl"
"github.com/fluxcd/pkg/apis/meta"
)
@@ -141,12 +140,6 @@ type BucketSpec struct {
// Bucket.
// +optional
Suspend bool `json:"suspend,omitempty"`
-
- // AccessFrom specifies an Access Control List for allowing cross-namespace
- // references to this object.
- // NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092
- // +optional
- AccessFrom *acl.AccessFrom `json:"accessFrom,omitempty"`
}
// BucketSTSSpec specifies the required configuration to use a Security Token
diff --git a/api/v1/zz_generated.deepcopy.go b/api/v1/zz_generated.deepcopy.go
index 6326ea21..12e537fa 100644
--- a/api/v1/zz_generated.deepcopy.go
+++ b/api/v1/zz_generated.deepcopy.go
@@ -173,11 +173,6 @@ func (in *BucketSpec) DeepCopyInto(out *BucketSpec) {
*out = new(string)
**out = **in
}
- if in.AccessFrom != nil {
- in, out := &in.AccessFrom, &out.AccessFrom
- *out = new(acl.AccessFrom)
- (*in).DeepCopyInto(*out)
- }
}
// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new BucketSpec.
diff --git a/api/v1beta2/bucket_types.go b/api/v1beta2/bucket_types.go
index 612c6db0..a7641c75 100644
--- a/api/v1beta2/bucket_types.go
+++ b/api/v1beta2/bucket_types.go
@@ -33,21 +33,38 @@ const (
)
const (
+ // BucketProviderGeneric for any S3 API compatible storage Bucket.
+ BucketProviderGeneric string = "generic"
+ // BucketProviderAmazon for an AWS S3 object storage Bucket.
+ // Provides support for retrieving credentials from the AWS EC2 service.
+ BucketProviderAmazon string = "aws"
+ // BucketProviderGoogle for a Google Cloud Storage Bucket.
+ // Provides support for authentication using a workload identity.
+ BucketProviderGoogle string = "gcp"
+ // BucketProviderAzure for an Azure Blob Storage Bucket.
+ // Provides support for authentication using a Service Principal,
+ // Managed Identity or Shared Key.
+ BucketProviderAzure string = "azure"
+
// GenericBucketProvider for any S3 API compatible storage Bucket.
- // Deprecated: use v1.BucketProviderGeneric.
+ //
+ // Deprecated: use BucketProviderGeneric.
GenericBucketProvider string = apiv1.BucketProviderGeneric
// AmazonBucketProvider for an AWS S3 object storage Bucket.
// Provides support for retrieving credentials from the AWS EC2 service.
+ //
// Deprecated: use v1.BucketProviderAmazon.
AmazonBucketProvider string = apiv1.BucketProviderAmazon
// GoogleBucketProvider for a Google Cloud Storage Bucket.
// Provides support for authentication using a workload identity.
- // Deprecated: use v1.BucketProviderGoogle.
+ //
+ // Deprecated: use BucketProviderGoogle.
GoogleBucketProvider string = apiv1.BucketProviderGoogle
// AzureBucketProvider for an Azure Blob Storage Bucket.
// Provides support for authentication using a Service Principal,
// Managed Identity or Shared Key.
- // Deprecated: use v1.BucketProviderAzure.
+ //
+ // Deprecated: use BucketProviderAzure.
AzureBucketProvider string = apiv1.BucketProviderAzure
)
diff --git a/config/crd/bases/source.toolkit.fluxcd.io_buckets.yaml b/config/crd/bases/source.toolkit.fluxcd.io_buckets.yaml
index 969aaaa0..3d8f812c 100644
--- a/config/crd/bases/source.toolkit.fluxcd.io_buckets.yaml
+++ b/config/crd/bases/source.toolkit.fluxcd.io_buckets.yaml
@@ -54,34 +54,6 @@ spec:
BucketSpec specifies the required configuration to produce an Artifact for
an object storage bucket.
properties:
- accessFrom:
- description: |-
- AccessFrom specifies an Access Control List for allowing cross-namespace
- references to this object.
- NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092
- properties:
- namespaceSelectors:
- description: |-
- NamespaceSelectors is the list of namespace selectors to which this ACL applies.
- Items in this list are evaluated using a logical OR operation.
- items:
- description: |-
- NamespaceSelector selects the namespaces to which this ACL applies.
- An empty map of MatchLabels matches all namespaces in a cluster.
- properties:
- matchLabels:
- additionalProperties:
- type: string
- description: |-
- MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
- map is equivalent to an element of matchExpressions, whose key field is "key", the
- operator is "In", and the values array contains only "value". The requirements are ANDed.
- type: object
- type: object
- type: array
- required:
- - namespaceSelectors
- type: object
bucketName:
description: BucketName is the name of the object storage bucket.
type: string
diff --git a/docs/api/v1/source.md b/docs/api/v1/source.md
index 2fcce0d6..1424cdec 100644
--- a/docs/api/v1/source.md
+++ b/docs/api/v1/source.md
@@ -275,22 +275,6 @@ bool
Bucket.
-
-
-accessFrom
-
-
-github.com/fluxcd/pkg/apis/acl.AccessFrom
-
-
- |
-
-(Optional)
- AccessFrom specifies an Access Control List for allowing cross-namespace
-references to this object.
-NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092
- |
-
@@ -1421,22 +1405,6 @@ bool
Bucket.
-
-
-accessFrom
-
-
-github.com/fluxcd/pkg/apis/acl.AccessFrom
-
-
- |
-
-(Optional)
- AccessFrom specifies an Access Control List for allowing cross-namespace
-references to this object.
-NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092
- |
-