Clustertriggerauthentication v1alpha1

apiVersion string

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

kind string

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

metadata object

spec object required

TriggerAuthenticationSpec defines the various ways to authenticate

awsSecretManager object

AwsSecretManager is used to authenticate using AwsSecretManager

credentials object

accessKey object required

valueFrom object required

secretKeyRef object required

key string required

name string required

accessSecretKey object required

valueFrom object required

secretKeyRef object required

key string required

name string required

accessToken object

valueFrom object required

secretKeyRef object required

key string required

name string required

podIdentity object

AuthPodIdentity allows users to select the platform native identity mechanism

identityAuthorityHost string

Set identityAuthorityHost to override the default Azure authority host. If this is set, then the IdentityTenantID must also be set

identityId string

identityOwner string

IdentityOwner configures which identity has to be used during auto discovery, keda or the scaled workload. Mutually exclusive with roleArn

enum: keda, workload

identityTenantId string

Set identityTenantId to override the default Azure tenant id. If this is set, then the IdentityID must also be set

provider string required

PodIdentityProvider contains the list of providers

enum: azure-workload, gcp, aws, aws-eks, none

roleArn string

RoleArn sets the AWS RoleArn to be used. Mutually exclusive with IdentityOwner

region string

secrets []object required

name string required

parameter string required

secretKey string

versionId string

versionStage string

azureKeyVault object

AzureKeyVault is used to authenticate using Azure Key Vault

cloud object

activeDirectoryEndpoint string

keyVaultResourceURL string

type string required

credentials object

clientId string required

clientSecret object required

valueFrom object required

secretKeyRef object required

key string required

name string required

tenantId string required

podIdentity object

AuthPodIdentity allows users to select the platform native identity mechanism

identityAuthorityHost string

Set identityAuthorityHost to override the default Azure authority host. If this is set, then the IdentityTenantID must also be set

identityId string

identityOwner string

IdentityOwner configures which identity has to be used during auto discovery, keda or the scaled workload. Mutually exclusive with roleArn

enum: keda, workload

identityTenantId string

Set identityTenantId to override the default Azure tenant id. If this is set, then the IdentityID must also be set

provider string required

PodIdentityProvider contains the list of providers

enum: azure-workload, gcp, aws, aws-eks, none

roleArn string

RoleArn sets the AWS RoleArn to be used. Mutually exclusive with IdentityOwner

secrets []object required

name string required

parameter string required

version string

vaultUri string required

boundServiceAccountToken []object

parameter string required

serviceAccountName string required

configMapTargetRef []object

key string required

name string required

parameter string required

env []object

containerName string

name string required

parameter string required

filePath string

FilePath specifies a file containing auth parameters as JSON map[string]string. When set, auth params are read directly from this file instead.

gcpSecretManager object

credentials object

clientSecret object required

valueFrom object required

secretKeyRef object required

key string required

name string required

podIdentity object

AuthPodIdentity allows users to select the platform native identity mechanism

identityAuthorityHost string

Set identityAuthorityHost to override the default Azure authority host. If this is set, then the IdentityTenantID must also be set

identityId string

identityOwner string

IdentityOwner configures which identity has to be used during auto discovery, keda or the scaled workload. Mutually exclusive with roleArn

enum: keda, workload

identityTenantId string

Set identityTenantId to override the default Azure tenant id. If this is set, then the IdentityID must also be set

provider string required

PodIdentityProvider contains the list of providers

enum: azure-workload, gcp, aws, aws-eks, none

roleArn string

RoleArn sets the AWS RoleArn to be used. Mutually exclusive with IdentityOwner

secrets []object required

id string required

parameter string required

version string

hashiCorpVault object

HashiCorpVault is used to authenticate using Hashicorp Vault

address string required

authentication string required

VaultAuthentication contains the list of Hashicorp Vault authentication methods

credential object

Credential defines the Hashicorp Vault credentials depending on the authentication method

serviceAccount string

serviceAccountName string

token string

mount string

namespace string

role string

secrets []object required

key string required

parameter string required

path string required

pkiData object

altNames string

commonName string

format string

ipSans string

otherSans string

ttl string

uriSans string

type string

VaultSecretType defines the type of vault secret

podIdentity object

AuthPodIdentity allows users to select the platform native identity mechanism

identityAuthorityHost string

Set identityAuthorityHost to override the default Azure authority host. If this is set, then the IdentityTenantID must also be set

identityId string

identityOwner string

IdentityOwner configures which identity has to be used during auto discovery, keda or the scaled workload. Mutually exclusive with roleArn

enum: keda, workload

identityTenantId string

Set identityTenantId to override the default Azure tenant id. If this is set, then the IdentityID must also be set

provider string required

PodIdentityProvider contains the list of providers

enum: azure-workload, gcp, aws, aws-eks, none

roleArn string

RoleArn sets the AWS RoleArn to be used. Mutually exclusive with IdentityOwner

secretTargetRef []object

key string required

name string required

parameter string required

status object

TriggerAuthenticationStatus defines the observed state of TriggerAuthentication

scaledjobs string

scaledobjects string