mirror of https://github.com/istio/api.git
47 lines
2.6 KiB
Go
47 lines
2.6 KiB
Go
// Code generated by protoc-gen-alias. DO NOT EDIT.
|
|
package v1
|
|
|
|
import "istio.io/api/security/v1beta1"
|
|
|
|
// <!-- crd generation tags
|
|
// +cue-gen:PeerAuthentication:groupName:security.istio.io
|
|
// +cue-gen:PeerAuthentication:versions:v1,v1beta1
|
|
// +cue-gen:PeerAuthentication:storageVersion
|
|
// +cue-gen:PeerAuthentication:annotations:helm.sh/resource-policy=keep
|
|
// +cue-gen:PeerAuthentication:labels:app=istio-pilot,chart=istio,istio=security,heritage=Tiller,release=istio
|
|
// +cue-gen:PeerAuthentication:subresource:status
|
|
// +cue-gen:PeerAuthentication:scope:Namespaced
|
|
// +cue-gen:PeerAuthentication:resource:categories=istio-io,security-istio-io,shortNames=pa
|
|
// +cue-gen:PeerAuthentication:preserveUnknownFields:false
|
|
// +cue-gen:PeerAuthentication:printerColumn:name=Mode,type=string,JSONPath=.spec.mtls.mode,description="Defines the mTLS mode used for peer authentication."
|
|
// +cue-gen:PeerAuthentication:printerColumn:name=Age,type=date,JSONPath=.metadata.creationTimestamp,description="CreationTimestamp is a timestamp
|
|
// representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations.
|
|
// Clients may not set this value. It is represented in RFC3339 form and is in UTC.
|
|
// Populated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#metadata"
|
|
// -->
|
|
//
|
|
// <!-- go code generation tags
|
|
// +kubetype-gen
|
|
// +kubetype-gen:groupVersion=security.istio.io/v1beta1
|
|
// +genclient
|
|
// +k8s:deepcopy-gen=true
|
|
// -->
|
|
// +kubebuilder:validation:XValidation:message="portLevelMtls requires selector",rule="has(self.portLevelMtls) ? self.index({}, selector, matchLabels).size() > 0 : true"
|
|
type PeerAuthentication = v1beta1.PeerAuthentication
|
|
|
|
// Mutual TLS settings.
|
|
type PeerAuthentication_MutualTLS = v1beta1.PeerAuthentication_MutualTLS
|
|
type PeerAuthentication_MutualTLS_Mode = v1beta1.PeerAuthentication_MutualTLS_Mode
|
|
|
|
// Inherit from parent, if has one. Otherwise treated as `PERMISSIVE`.
|
|
const PeerAuthentication_MutualTLS_UNSET PeerAuthentication_MutualTLS_Mode = v1beta1.PeerAuthentication_MutualTLS_UNSET
|
|
|
|
// Connection is not tunneled.
|
|
const PeerAuthentication_MutualTLS_DISABLE PeerAuthentication_MutualTLS_Mode = v1beta1.PeerAuthentication_MutualTLS_DISABLE
|
|
|
|
// Connection can be either plaintext or mTLS tunnel.
|
|
const PeerAuthentication_MutualTLS_PERMISSIVE PeerAuthentication_MutualTLS_Mode = v1beta1.PeerAuthentication_MutualTLS_PERMISSIVE
|
|
|
|
// Connection is an mTLS tunnel (TLS with client cert must be presented).
|
|
const PeerAuthentication_MutualTLS_STRICT PeerAuthentication_MutualTLS_Mode = v1beta1.PeerAuthentication_MutualTLS_STRICT
|