Skip to content

Compliant Kubernetes Apps Secrets Schema

Note

This is auto-generated documentation from a JSON schema that is under construction, this will improve over time.

https://raw.githubusercontent.com/elastisys/compliantkubernetes-apps/main/config/schemas/secrets.yaml

This describes the structure of the secrets for both the service and workload clusters.

Since these are intended to be encrypted each property should have the encrypted definition combined with anyOf oroneOf` with the actual format.

Abstract Extensible Status Identifiable Custom Properties Additional Properties Access Restrictions Defined In
Can be instantiated No Unknown status No Forbidden Allowed none config/schemas/secrets.yaml

TYPE:

object (Compliant Kubernetes Apps Secrets)

PROPERTIES:

Property Type Required Nullable Defined by
objectStorage object Optional cannot be null Compliant Kubernetes Apps Secrets
grafana object Optional cannot be null Compliant Kubernetes Apps Secrets
harbor object Optional cannot be null Compliant Kubernetes Apps Secrets
thanos object Optional cannot be null Compliant Kubernetes Apps Secrets
user object Optional cannot be null Compliant Kubernetes Apps Secrets
opensearch object Optional cannot be null Compliant Kubernetes Apps Secrets
kubeapiMetricsPassword string Optional cannot be null Compliant Kubernetes Apps Secrets
alerts object Optional cannot be null Compliant Kubernetes Apps Secrets
kured object Optional cannot be null Compliant Kubernetes Apps Secrets
dex object Optional cannot be null Compliant Kubernetes Apps Secrets
issuers object Optional cannot be null Compliant Kubernetes Apps Secrets
externalDns object Optional cannot be null Compliant Kubernetes Apps Secrets

objectStorage

Configuration options for using object storage in Compliant Kubernetes.

objectStorage

TYPE:

object (Object Storage Secrets)

grafana

Configure secrets for Grafana.

grafana

TYPE:

object (Grafana Secrets)

harbor

Secret configuration options for Harbor.

harbor

TYPE:

object (Harbor Secret Config)

thanos

Secrets for Thanos.

thanos

TYPE:

object (Thanos Secrets)

user

Admin password for user Grafana and user Alertmanager.

user

TYPE:

object (User Secret Config)

opensearch

Secrets for OpenSearch.

opensearch

TYPE:

object (OpenSearch Secrets)

kubeapiMetricsPassword

kubeapiMetricsPassword

TYPE:

string

alerts

Configure secrets for alerting.

alerts

TYPE:

object (Alerts Secrets)

kured

Notification secrets for Kured (Kubernetes Reboot Daemon).

kured

TYPE:

object (Kured Notification Secrets)

dex

Configure secrets for Dex.

dex

TYPE:

object (Dex Secrets)

issuers

Configure secrets for issuers.

issuers

TYPE:

object (Issuers Secrets)

externalDns

Configure secrets for External DNS.

externalDns

TYPE:

object (External DNS Secrets)

Definitions

encrypted

Reference this group by using

{"$ref":"https://raw.githubusercontent.com/elastisys/compliantkubernetes-apps/main/config/schemas/secrets.yaml#/$defs/encrypted"}
Property Type Required Nullable Defined by

password

Reference this group by using

{"$ref":"https://raw.githubusercontent.com/elastisys/compliantkubernetes-apps/main/config/schemas/secrets.yaml#/$defs/password"}
Property Type Required Nullable Defined by

token

Reference this group by using

{"$ref":"https://raw.githubusercontent.com/elastisys/compliantkubernetes-apps/main/config/schemas/secrets.yaml#/$defs/token"}
Property Type Required Nullable Defined by

Generated Sun Jun 16 03:48:27 UTC 2024 from elastisys/compliantkubernetes-apps@main