Documentation
¶
Index ¶
- Constants
- Variables
- func CustomResourceDefinitions(include func(path string, crd *apiextensionsv1.CustomResourceDefinition) bool, ...) []crclient.Object
- func HyperShiftAPICriticalPriorityClass() *schedulingv1.PriorityClass
- func HyperShiftControlPlanePriorityClass() *schedulingv1.PriorityClass
- func HyperShiftEtcdPriorityClass() *schedulingv1.PriorityClass
- func HypershiftOperatorPriorityClass() *schedulingv1.PriorityClass
- type ExternalDNSClusterRole
- type ExternalDNSClusterRoleBinding
- type ExternalDNSCredsSecret
- type ExternalDNSDeployment
- type ExternalDNSPodMonitor
- type ExternalDNSProvider
- type ExternalDNSServiceAccount
- type HyperShiftClientClusterRole
- type HyperShiftClientClusterRoleBinding
- type HyperShiftClientServiceAccount
- type HyperShiftExtensionAPIServerAuthenticationReaderRoleBinding
- type HyperShiftMutatingWebhookConfiguration
- type HyperShiftNamespace
- type HyperShiftOperatorClusterRole
- type HyperShiftOperatorClusterRoleBinding
- type HyperShiftOperatorCredentialsSecret
- type HyperShiftOperatorDeployment
- type HyperShiftOperatorOIDCProviderS3Secret
- type HyperShiftOperatorPrometheusRoleBinding
- type HyperShiftOperatorRole
- type HyperShiftOperatorRoleBinding
- type HyperShiftOperatorService
- type HyperShiftOperatorServiceAccount
- type HyperShiftPrometheusRole
- type HyperShiftPullSecret
- type HyperShiftReaderClusterRole
- type HyperShiftReaderClusterRoleBinding
- type HyperShiftServiceMonitor
- type HyperShiftValidatingWebhookConfiguration
- type HypershiftAlertingRule
- type HypershiftRecordingRule
- type MonitoringDashboardTemplate
- type ScaleFromZeroCredentialsSecret
- type TechPreviewFeatureGateConfig
Constants ¶
View Source
const ( // HypershiftOperatorPriortyClass is the priority class for the HO HypershiftOperatorPriortyClass = "hypershift-operator" // EtcdPriorityClass is for etcd pods. EtcdPriorityClass = "hypershift-etcd" // APICriticalPriorityClass is for pods that are required for API calls and // resource admission to succeed. This includes pods like kube-apiserver, // aggregated API servers, and webhooks. APICriticalPriorityClass = "hypershift-api-critical" // DefaultPriorityClass is for pods in the Hypershift control plane that are // not API critical but still need elevated priority. DefaultPriorityClass = "hypershift-control-plane" // PullSecretName is the name for the Secret containing a user's pull secret PullSecretName = "pull-secret" )
View Source
const ( HypershiftOperatorName = "operator" ExternalDNSDeploymentName = "external-dns" HyperShiftInstallCLIVersionAnnotation = "hypershift.openshift.io/install-cli-version" )
Variables ¶
View Source
var CRDS embed.FS
Functions ¶
func CustomResourceDefinitions ¶
func CustomResourceDefinitions(include func(path string, crd *apiextensionsv1.CustomResourceDefinition) bool, transform func(*apiextensionsv1.CustomResourceDefinition)) []crclient.Object
CustomResourceDefinitions returns all existing CRDs as controller-runtime objects
func HyperShiftAPICriticalPriorityClass ¶
func HyperShiftAPICriticalPriorityClass() *schedulingv1.PriorityClass
func HyperShiftControlPlanePriorityClass ¶
func HyperShiftControlPlanePriorityClass() *schedulingv1.PriorityClass
func HyperShiftEtcdPriorityClass ¶
func HyperShiftEtcdPriorityClass() *schedulingv1.PriorityClass
func HypershiftOperatorPriorityClass ¶
func HypershiftOperatorPriorityClass() *schedulingv1.PriorityClass
Types ¶
type ExternalDNSClusterRole ¶
type ExternalDNSClusterRole struct{}
func (ExternalDNSClusterRole) Build ¶
func (o ExternalDNSClusterRole) Build() *rbacv1.ClusterRole
type ExternalDNSClusterRoleBinding ¶
type ExternalDNSClusterRoleBinding struct {
ClusterRole *rbacv1.ClusterRole
ServiceAccount *corev1.ServiceAccount
}
func (ExternalDNSClusterRoleBinding) Build ¶
func (o ExternalDNSClusterRoleBinding) Build() *rbacv1.ClusterRoleBinding
type ExternalDNSCredsSecret ¶
func (ExternalDNSCredsSecret) Build ¶
func (o ExternalDNSCredsSecret) Build() *corev1.Secret
type ExternalDNSDeployment ¶
type ExternalDNSDeployment struct {
Namespace *corev1.Namespace
Image string
ServiceAccount *corev1.ServiceAccount
Provider ExternalDNSProvider
DomainFilter string
CredentialsSecret *corev1.Secret
TxtOwnerId string
Proxy *configv1.Proxy
GoogleProject string
}
func (ExternalDNSDeployment) Build ¶
func (o ExternalDNSDeployment) Build() *appsv1.Deployment
type ExternalDNSPodMonitor ¶ added in v0.1.37
func (ExternalDNSPodMonitor) Build ¶ added in v0.1.37
func (o ExternalDNSPodMonitor) Build() *prometheusoperatorv1.PodMonitor
type ExternalDNSProvider ¶ added in v0.1.40
type ExternalDNSProvider string
const ( AWSExternalDNSProvider ExternalDNSProvider = "aws" AzureExternalDNSProvider ExternalDNSProvider = "azure" GCPExternalDNSProvider ExternalDNSProvider = "google" )
type ExternalDNSServiceAccount ¶
func (ExternalDNSServiceAccount) Build ¶
func (o ExternalDNSServiceAccount) Build() *corev1.ServiceAccount
type HyperShiftClientClusterRole ¶
type HyperShiftClientClusterRole struct{}
func (HyperShiftClientClusterRole) Build ¶
func (o HyperShiftClientClusterRole) Build() *rbacv1.ClusterRole
type HyperShiftClientClusterRoleBinding ¶
type HyperShiftClientClusterRoleBinding struct {
ClusterRole *rbacv1.ClusterRole
ServiceAccount *corev1.ServiceAccount
GroupName string
}
func (HyperShiftClientClusterRoleBinding) Build ¶
func (o HyperShiftClientClusterRoleBinding) Build() *rbacv1.ClusterRoleBinding
type HyperShiftClientServiceAccount ¶
func (HyperShiftClientServiceAccount) Build ¶
func (o HyperShiftClientServiceAccount) Build() *corev1.ServiceAccount
type HyperShiftExtensionAPIServerAuthenticationReaderRoleBinding ¶ added in v0.1.71
type HyperShiftExtensionAPIServerAuthenticationReaderRoleBinding struct{}
HyperShiftExtensionAPIServerAuthenticationReaderRoleBinding creates a RoleBinding in the kube-system namespace that grants service accounts read access to the extension-apiserver-authentication-reader Role.
This RoleBinding provides access to the client CA bundle used to verify client certificates for authentication. HyperShift components that serve metrics endpoints need this information to properly authenticate requests.
The subject is system:serviceaccounts because HyperShift instantiates multiple metrics-serving operators dynamically across many namespaces as hosted clusters are created. This is safe because the Role only grants read access to authentication configuration metadata, not write permissions. OpenShift clusters include this RoleBinding out of the box via cluster-kube-apiserver-operator.
func (HyperShiftExtensionAPIServerAuthenticationReaderRoleBinding) Build ¶ added in v0.1.71
func (o HyperShiftExtensionAPIServerAuthenticationReaderRoleBinding) Build() *rbacv1.RoleBinding
type HyperShiftMutatingWebhookConfiguration ¶ added in v0.1.10
type HyperShiftMutatingWebhookConfiguration struct {
Namespace *corev1.Namespace
EnableAuditLogPersistence bool
}
type HyperShiftNamespace ¶
func (HyperShiftNamespace) Build ¶
func (o HyperShiftNamespace) Build() *corev1.Namespace
type HyperShiftOperatorClusterRole ¶
type HyperShiftOperatorClusterRole struct {
EnableCVOManagementClusterMetricsAccess bool
ManagedService string
EnableAuditLogPersistence bool
}
func (HyperShiftOperatorClusterRole) Build ¶
func (o HyperShiftOperatorClusterRole) Build() *rbacv1.ClusterRole
type HyperShiftOperatorClusterRoleBinding ¶
type HyperShiftOperatorClusterRoleBinding struct {
ClusterRole *rbacv1.ClusterRole
ServiceAccount *corev1.ServiceAccount
}
func (HyperShiftOperatorClusterRoleBinding) Build ¶
func (o HyperShiftOperatorClusterRoleBinding) Build() *rbacv1.ClusterRoleBinding
type HyperShiftOperatorCredentialsSecret ¶
type HyperShiftOperatorCredentialsSecret struct {
Namespace *corev1.Namespace
CredsBytes []byte
CredsKey string
}
func (HyperShiftOperatorCredentialsSecret) Build ¶
func (o HyperShiftOperatorCredentialsSecret) Build() *corev1.Secret
type HyperShiftOperatorDeployment ¶
type HyperShiftOperatorDeployment struct {
AdditionalTrustBundle *corev1.ConfigMap
OpenShiftTrustBundle *corev1.ConfigMap
Namespace *corev1.Namespace
OperatorImage string
Images map[string]string
ServiceAccount *corev1.ServiceAccount
Replicas int32
EnableOCPClusterMonitoring bool
EnableCIDebugOutput bool
EnableWebhook bool
EnableValidatingWebhook bool
PrivatePlatform string
AWSPrivateSecret *corev1.Secret
AWSPrivateSecretKey string
AWSPrivateRegion string
OIDCBucketName string
OIDCBucketRegion string
OIDCStorageProviderS3Secret *corev1.Secret
OIDCStorageProviderS3SecretKey string
MetricsSet metrics.MetricsSet
IncludeVersion bool
UWMTelemetry bool
RHOBSMonitoring bool
MonitoringDashboards bool
CertRotationScale time.Duration
EnableCVOManagementClusterMetricsAccess bool
EnableDedicatedRequestServingIsolation bool
ManagedService string
EnableSizeTagging bool
EnableEtcdRecovery bool
EnableCPOOverrides bool
AdditionalOperatorEnvVars map[string]string
AROHCPKeyVaultUsersClientID string
TechPreviewNoUpgrade bool
RegistryOverrides string
PlatformsInstalled string
ImagePullPolicy string
EnableAuditLogPersistence bool
ScaleFromZeroSecret *corev1.Secret
ScaleFromZeroSecretKey string
ScaleFromZeroProvider string
}
func (HyperShiftOperatorDeployment) Build ¶
func (o HyperShiftOperatorDeployment) Build() *appsv1.Deployment
type HyperShiftOperatorOIDCProviderS3Secret ¶
type HyperShiftOperatorOIDCProviderS3Secret struct {
Namespace *corev1.Namespace
OIDCStorageProviderS3CredBytes []byte
CredsKey string
}
func (HyperShiftOperatorOIDCProviderS3Secret) Build ¶
func (o HyperShiftOperatorOIDCProviderS3Secret) Build() *corev1.Secret
type HyperShiftOperatorPrometheusRoleBinding ¶
type HyperShiftOperatorPrometheusRoleBinding struct {
Namespace *corev1.Namespace
Role *rbacv1.Role
EnableOCPClusterMonitoring bool
}
func (HyperShiftOperatorPrometheusRoleBinding) Build ¶
func (o HyperShiftOperatorPrometheusRoleBinding) Build() *rbacv1.RoleBinding
type HyperShiftOperatorRole ¶
func (HyperShiftOperatorRole) Build ¶
func (o HyperShiftOperatorRole) Build() *rbacv1.Role
type HyperShiftOperatorRoleBinding ¶
type HyperShiftOperatorRoleBinding struct {
Role *rbacv1.Role
ServiceAccount *corev1.ServiceAccount
}
func (HyperShiftOperatorRoleBinding) Build ¶
func (o HyperShiftOperatorRoleBinding) Build() *rbacv1.RoleBinding
type HyperShiftOperatorService ¶
func (HyperShiftOperatorService) Build ¶
func (o HyperShiftOperatorService) Build() *corev1.Service
type HyperShiftOperatorServiceAccount ¶
func (HyperShiftOperatorServiceAccount) Build ¶
func (o HyperShiftOperatorServiceAccount) Build() *corev1.ServiceAccount
type HyperShiftPrometheusRole ¶
func (HyperShiftPrometheusRole) Build ¶
func (o HyperShiftPrometheusRole) Build() *rbacv1.Role
type HyperShiftPullSecret ¶ added in v0.1.21
func (HyperShiftPullSecret) Build ¶ added in v0.1.21
func (o HyperShiftPullSecret) Build() *corev1.Secret
type HyperShiftReaderClusterRole ¶
type HyperShiftReaderClusterRole struct{}
func (HyperShiftReaderClusterRole) Build ¶
func (o HyperShiftReaderClusterRole) Build() *rbacv1.ClusterRole
type HyperShiftReaderClusterRoleBinding ¶
type HyperShiftReaderClusterRoleBinding struct {
ClusterRole *rbacv1.ClusterRole
GroupName string
}
func (HyperShiftReaderClusterRoleBinding) Build ¶
func (o HyperShiftReaderClusterRoleBinding) Build() *rbacv1.ClusterRoleBinding
type HyperShiftServiceMonitor ¶
func (HyperShiftServiceMonitor) Build ¶
func (o HyperShiftServiceMonitor) Build() *prometheusoperatorv1.ServiceMonitor
type HyperShiftValidatingWebhookConfiguration ¶
type HyperShiftValidatingWebhookConfiguration struct {
Namespace string
}
type HypershiftAlertingRule ¶ added in v0.1.10
func (HypershiftAlertingRule) Build ¶ added in v0.1.10
func (r HypershiftAlertingRule) Build() *prometheusoperatorv1.PrometheusRule
type HypershiftRecordingRule ¶
func (HypershiftRecordingRule) Build ¶
func (r HypershiftRecordingRule) Build() *prometheusoperatorv1.PrometheusRule
type MonitoringDashboardTemplate ¶ added in v0.1.10
type MonitoringDashboardTemplate struct {
Namespace string
}
func (MonitoringDashboardTemplate) Build ¶ added in v0.1.10
func (o MonitoringDashboardTemplate) Build() *corev1.ConfigMap
type ScaleFromZeroCredentialsSecret ¶ added in v0.1.72
type ScaleFromZeroCredentialsSecret struct {
Namespace *corev1.Namespace
CredsBytes []byte
CredsKey string
Provider string
}
func (ScaleFromZeroCredentialsSecret) Build ¶ added in v0.1.72
func (o ScaleFromZeroCredentialsSecret) Build() *corev1.Secret
type TechPreviewFeatureGateConfig ¶ added in v0.1.51
func (TechPreviewFeatureGateConfig) Build ¶ added in v0.1.51
func (o TechPreviewFeatureGateConfig) Build() *corev1.ConfigMap
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.