Kubernetes-Keystone-Webhook¶
There are various customizations you can do to tailor the deployment of OpenStack Kubernetes-Keystone-Webhook. You can find those below.
General Parameters¶
conf.policy[0].match[0].type
Type: string
Description:
“role”
conf.policy[0].match[0].values[0]
Type: string
Description:
“admin”
conf.policy[0].resource.namespace
Type: string
Description:
“*”
conf.policy[0].resource.resources[0]
Type: string
Description:
“*”
conf.policy[0].resource.verbs[0]
Type: string
Description:
“*”
conf.policy[0].resource.version
Type: string
Description:
“*”
conf.policy[10].match[0].type
Type: string
Description:
“role”
conf.policy[10].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[10].resource.namespace
Type: string
Description:
“*”
conf.policy[10].resource.resources[0]
Type: string
Description:
“horizontalpodautoscalers”
conf.policy[10].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[10].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[10].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[10].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[10].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[10].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[10].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[10].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[10].resource.version
Type: string
Description:
“autoscaling”
conf.policy[11].match[0].type
Type: string
Description:
“role”
conf.policy[11].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[11].resource.namespace
Type: string
Description:
“*”
conf.policy[11].resource.resources[0]
Type: string
Description:
“cronjobs”
conf.policy[11].resource.resources[1]
Type: string
Description:
“jobs”
conf.policy[11].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[11].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[11].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[11].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[11].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[11].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[11].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[11].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[11].resource.version
Type: string
Description:
“batch”
conf.policy[12].match[0].type
Type: string
Description:
“role”
conf.policy[12].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[12].resource.namespace
Type: string
Description:
“*”
conf.policy[12].resource.resources[0]
Type: string
Description:
“daemonsets”
conf.policy[12].resource.resources[1]
Type: string
Description:
“deployments”
conf.policy[12].resource.resources[2]
Type: string
Description:
“deployments/rollback”
conf.policy[12].resource.resources[3]
Type: string
Description:
“deployments/scale”
conf.policy[12].resource.resources[4]
Type: string
Description:
“ingresses”
conf.policy[12].resource.resources[5]
Type: string
Description:
“networkpolicies”
conf.policy[12].resource.resources[6]
Type: string
Description:
“replicasets”
conf.policy[12].resource.resources[7]
Type: string
Description:
“replicasets/scale”
conf.policy[12].resource.resources[8]
Type: string
Description:
“replicationcontrollers/scale”
conf.policy[12].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[12].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[12].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[12].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[12].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[12].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[12].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[12].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[12].resource.version
Type: string
Description:
“extensions”
conf.policy[13].match[0].type
Type: string
Description:
“role”
conf.policy[13].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[13].resource.namespace
Type: string
Description:
“*”
conf.policy[13].resource.resources[0]
Type: string
Description:
“poddisruptionbudgets”
conf.policy[13].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[13].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[13].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[13].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[13].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[13].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[13].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[13].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[13].resource.version
Type: string
Description:
“policy”
conf.policy[14].match[0].type
Type: string
Description:
“role”
conf.policy[14].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[14].resource.namespace
Type: string
Description:
“*”
conf.policy[14].resource.resources[0]
Type: string
Description:
“networkpolicies”
conf.policy[14].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[14].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[14].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[14].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[14].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[14].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[14].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[14].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[14].resource.version
Type: string
Description:
“networking.k8s.io”
conf.policy[15].match[0].type
Type: string
Description:
“role”
conf.policy[15].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[15].resource.namespace
Type: string
Description:
“*”
conf.policy[15].resource.resources[0]
Type: string
Description:
“configmaps”
conf.policy[15].resource.resources[10]
Type: string
Description:
“limitranges”
conf.policy[15].resource.resources[11]
Type: string
Description:
“namespaces/status”
conf.policy[15].resource.resources[12]
Type: string
Description:
“pods/log”
conf.policy[15].resource.resources[13]
Type: string
Description:
“pods/status”
conf.policy[15].resource.resources[14]
Type: string
Description:
“replicationcontrollers/status”
conf.policy[15].resource.resources[15]
Type: string
Description:
“resourcequotas”
conf.policy[15].resource.resources[16]
Type: string
Description:
“resourcequotas/status”
conf.policy[15].resource.resources[17]
Type: string
Description:
“namespaces”
conf.policy[15].resource.resources[1]
Type: string
Description:
“endpoints”
conf.policy[15].resource.resources[2]
Type: string
Description:
“persistentvolumeclaims”
conf.policy[15].resource.resources[3]
Type: string
Description:
“pods”
conf.policy[15].resource.resources[4]
Type: string
Description:
“replicationcontrollers”
conf.policy[15].resource.resources[5]
Type: string
Description:
“replicationcontrollers/scale”
conf.policy[15].resource.resources[6]
Type: string
Description:
“serviceaccounts”
conf.policy[15].resource.resources[7]
Type: string
Description:
“services”
conf.policy[15].resource.resources[8]
Type: string
Description:
“bindings”
conf.policy[15].resource.resources[9]
Type: string
Description:
“events”
conf.policy[15].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[15].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[15].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[15].resource.version
Type: string
Description:
“”
conf.policy[16].match[0].type
Type: string
Description:
“role”
conf.policy[16].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[16].resource.namespace
Type: string
Description:
“*”
conf.policy[16].resource.resources[0]
Type: string
Description:
“daemonsets”
conf.policy[16].resource.resources[1]
Type: string
Description:
“deployments”
conf.policy[16].resource.resources[2]
Type: string
Description:
“deployments/scale”
conf.policy[16].resource.resources[3]
Type: string
Description:
“replicasets”
conf.policy[16].resource.resources[4]
Type: string
Description:
“replicasets/scale”
conf.policy[16].resource.resources[5]
Type: string
Description:
“statefulsets”
conf.policy[16].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[16].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[16].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[16].resource.version
Type: string
Description:
“apps”
conf.policy[17].match[0].type
Type: string
Description:
“role”
conf.policy[17].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[17].resource.namespace
Type: string
Description:
“*”
conf.policy[17].resource.resources[0]
Type: string
Description:
“horizontalpodautoscalers”
conf.policy[17].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[17].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[17].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[17].resource.version
Type: string
Description:
“autoscaling”
conf.policy[18].match[0].type
Type: string
Description:
“role”
conf.policy[18].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[18].resource.namespace
Type: string
Description:
“*”
conf.policy[18].resource.resources[0]
Type: string
Description:
“cronjobs”
conf.policy[18].resource.resources[1]
Type: string
Description:
“jobs”
conf.policy[18].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[18].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[18].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[18].resource.version
Type: string
Description:
“batch”
conf.policy[19].match[0].type
Type: string
Description:
“role”
conf.policy[19].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[19].resource.namespace
Type: string
Description:
“*”
conf.policy[19].resource.resources[0]
Type: string
Description:
“daemonsets”
conf.policy[19].resource.resources[1]
Type: string
Description:
“deployments”
conf.policy[19].resource.resources[2]
Type: string
Description:
“deployments/scale”
conf.policy[19].resource.resources[3]
Type: string
Description:
“ingresses”
conf.policy[19].resource.resources[4]
Type: string
Description:
“networkpolicies”
conf.policy[19].resource.resources[5]
Type: string
Description:
“replicasets”
conf.policy[19].resource.resources[6]
Type: string
Description:
“replicasets/scale”
conf.policy[19].resource.resources[7]
Type: string
Description:
“replicationcontrollers/scale”
conf.policy[19].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[19].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[19].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[19].resource.version
Type: string
Description:
“extensions”
conf.policy[1].match[0].type
Type: string
Description:
“role”
conf.policy[1].match[0].values[0]
Type: string
Description:
“kube-system-admin”
conf.policy[1].resource.namespace
Type: string
Description:
“kube-system”
conf.policy[1].resource.resources[0]
Type: string
Description:
“*”
conf.policy[1].resource.verbs[0]
Type: string
Description:
“*”
conf.policy[1].resource.version
Type: string
Description:
“*”
conf.policy[20].match[0].type
Type: string
Description:
“role”
conf.policy[20].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[20].resource.namespace
Type: string
Description:
“*”
conf.policy[20].resource.resources[0]
Type: string
Description:
“poddisruptionbudgets”
conf.policy[20].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[20].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[20].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[20].resource.version
Type: string
Description:
“policy”
conf.policy[21].match[0].type
Type: string
Description:
“role”
conf.policy[21].match[0].values[0]
Type: string
Description:
“admin_k8cluster_viewer”
conf.policy[21].resource.namespace
Type: string
Description:
“*”
conf.policy[21].resource.resources[0]
Type: string
Description:
“networkpolicies”
conf.policy[21].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[21].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[21].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[21].resource.version
Type: string
Description:
“networking.k8s.io”
conf.policy[2].match[0].type
Type: string
Description:
“role”
conf.policy[2].match[0].values[0]
Type: string
Description:
“kube-system-viewer”
conf.policy[2].resource.namespace
Type: string
Description:
“kube-system”
conf.policy[2].resource.resources[0]
Type: string
Description:
“*”
conf.policy[2].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[2].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[2].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[2].resource.version
Type: string
Description:
“*”
conf.policy[3].match[0].type
Type: string
Description:
“project”
conf.policy[3].match[0].values[0]
Type: string
Description:
“openstack-system”
conf.policy[3].resource.namespace
Type: string
Description:
“openstack”
conf.policy[3].resource.resources[0]
Type: string
Description:
“*”
conf.policy[3].resource.verbs[0]
Type: string
Description:
“*”
conf.policy[3].resource.version
Type: string
Description:
“*”
conf.policy[4].match[0].type
Type: string
Description:
“role”
conf.policy[4].match[0].values[0]
Type: string
Description:
“admin_k8cluster”
conf.policy[4].resource.namespace
Type: string
Description:
“*”
conf.policy[4].resource.resources[0]
Type: string
Description:
“*”
conf.policy[4].resource.verbs[0]
Type: string
Description:
“*”
conf.policy[4].resource.version
Type: string
Description:
“*”
conf.policy[5].match[0].type
Type: string
Description:
“role”
conf.policy[5].match[0].values[0]
Type: string
Description:
“admin_k8cluster”
conf.policy[5].nonresource.path
Type: string
Description:
“*”
conf.policy[5].nonresource.verbs[0]
Type: string
Description:
“*”
conf.policy[6].match[0].type
Type: string
Description:
“role”
conf.policy[6].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[6].resource.namespace
Type: string
Description:
“*”
conf.policy[6].resource.resources[0]
Type: string
Description:
“pods”
conf.policy[6].resource.resources[10]
Type: string
Description:
“secrets”
conf.policy[6].resource.resources[11]
Type: string
Description:
“serviceaccounts”
conf.policy[6].resource.resources[12]
Type: string
Description:
“services”
conf.policy[6].resource.resources[13]
Type: string
Description:
“services/proxy”
conf.policy[6].resource.resources[1]
Type: string
Description:
“pods/attach”
conf.policy[6].resource.resources[2]
Type: string
Description:
“pods/exec”
conf.policy[6].resource.resources[3]
Type: string
Description:
“pods/portforward”
conf.policy[6].resource.resources[4]
Type: string
Description:
“pods/proxy”
conf.policy[6].resource.resources[5]
Type: string
Description:
“configmaps”
conf.policy[6].resource.resources[6]
Type: string
Description:
“endpoints”
conf.policy[6].resource.resources[7]
Type: string
Description:
“persistentvolumeclaims”
conf.policy[6].resource.resources[8]
Type: string
Description:
“replicationcontrollers”
conf.policy[6].resource.resources[9]
Type: string
Description:
“replicationcontrollers/scale”
conf.policy[6].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[6].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[6].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[6].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[6].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[6].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[6].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[6].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[6].resource.version
Type: string
Description:
“”
conf.policy[7].match[0].type
Type: string
Description:
“role”
conf.policy[7].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[7].resource.namespace
Type: string
Description:
“*”
conf.policy[7].resource.resources[0]
Type: string
Description:
“bindings”
conf.policy[7].resource.resources[1]
Type: string
Description:
“events”
conf.policy[7].resource.resources[2]
Type: string
Description:
“limitranges”
conf.policy[7].resource.resources[3]
Type: string
Description:
“namespaces/status”
conf.policy[7].resource.resources[4]
Type: string
Description:
“pods/log”
conf.policy[7].resource.resources[5]
Type: string
Description:
“pods/status”
conf.policy[7].resource.resources[6]
Type: string
Description:
“replicationcontrollers/status”
conf.policy[7].resource.resources[7]
Type: string
Description:
“resourcequotas”
conf.policy[7].resource.resources[8]
Type: string
Description:
“resourcequotas/status”
conf.policy[7].resource.resources[9]
Type: string
Description:
“namespaces”
conf.policy[7].resource.verbs[0]
Type: string
Description:
“get”
conf.policy[7].resource.verbs[1]
Type: string
Description:
“list”
conf.policy[7].resource.verbs[2]
Type: string
Description:
“watch”
conf.policy[7].resource.version
Type: string
Description:
“”
conf.policy[8].match[0].type
Type: string
Description:
“role”
conf.policy[8].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[8].resource.namespace
Type: string
Description:
“*”
conf.policy[8].resource.resources[0]
Type: string
Description:
“serviceaccounts”
conf.policy[8].resource.verbs[0]
Type: string
Description:
“impersonate”
conf.policy[8].resource.version
Type: string
Description:
“”
conf.policy[9].match[0].type
Type: string
Description:
“role”
conf.policy[9].match[0].values[0]
Type: string
Description:
“admin_k8cluster_editor”
conf.policy[9].resource.namespace
Type: string
Description:
“*”
conf.policy[9].resource.resources[0]
Type: string
Description:
“daemonsets”
conf.policy[9].resource.resources[1]
Type: string
Description:
“deployments”
conf.policy[9].resource.resources[2]
Type: string
Description:
“deployments/rollback”
conf.policy[9].resource.resources[3]
Type: string
Description:
“deployments/scale”
conf.policy[9].resource.resources[4]
Type: string
Description:
“replicasets”
conf.policy[9].resource.resources[5]
Type: string
Description:
“replicasets/scale”
conf.policy[9].resource.resources[6]
Type: string
Description:
“statefulsets”
conf.policy[9].resource.verbs[0]
Type: string
Description:
“create”
conf.policy[9].resource.verbs[1]
Type: string
Description:
“delete”
conf.policy[9].resource.verbs[2]
Type: string
Description:
“deletecollection”
conf.policy[9].resource.verbs[3]
Type: string
Description:
“get”
conf.policy[9].resource.verbs[4]
Type: string
Description:
“list”
conf.policy[9].resource.verbs[5]
Type: string
Description:
“patch”
conf.policy[9].resource.verbs[6]
Type: string
Description:
“update”
conf.policy[9].resource.verbs[7]
Type: string
Description:
“watch”
conf.policy[9].resource.version
Type: string
Description:
“apps”
dependencies.dynamic.common.local_image_registry.jobs[0]
Type: string
Description:
“k8sksauth-image-repo-sync”
dependencies.dynamic.common.local_image_registry.services[0].endpoint
Type: string
Description:
“node”
dependencies.dynamic.common.local_image_registry.services[0].service
Type: string
Description:
“local_image_registry”
dependencies.static.api.jobs
Type: string
Description:
nil
dependencies.static.api.services
Type: string
Description:
nil
endpoints.cluster_domain_suffix
Type: string
Description:
“cluster.local”
endpoints.identity.auth.admin.password
Type: string
Description:
“password”
endpoints.identity.auth.admin.project_domain_name
Type: string
Description:
“default”
endpoints.identity.auth.admin.project_name
Type: string
Description:
“admin”
endpoints.identity.auth.admin.region_name
Type: string
Description:
“RegionOne”
endpoints.identity.auth.admin.user_domain_name
Type: string
Description:
“default”
endpoints.identity.auth.admin.username
Type: string
Description:
“admin”
endpoints.identity.host_fqdn_override.default
Type: string
Description:
nil
endpoints.identity.hosts.default
Type: string
Description:
“keystone”
endpoints.identity.hosts.internal
Type: string
Description:
“keystone-api”
endpoints.identity.name
Type: string
Description:
“keystone”
endpoints.identity.namespace
Type: string
Description:
nil
endpoints.identity.path.default
Type: string
Description:
“/v3”
endpoints.identity.port.api.default
Type: int
Description:
80
endpoints.identity.port.api.internal
Type: int
Description:
5000
endpoints.identity.scheme.default
Type: string
Description:
“http”
endpoints.kubernetes.auth.api.tls.crt
Type: string
Description:
nil
endpoints.kubernetes.auth.api.tls.key
Type: string
Description:
nil
endpoints.kubernetes_keystone_webhook.host_fqdn_override.default
Type: string
Description:
nil
endpoints.kubernetes_keystone_webhook.hosts.default
Type: string
Description:
“k8sksauth-api”
endpoints.kubernetes_keystone_webhook.hosts.public
Type: string
Description:
“k8sksauth”
endpoints.kubernetes_keystone_webhook.name
Type: string
Description:
“k8sksauth”
endpoints.kubernetes_keystone_webhook.namespace
Type: string
Description:
nil
endpoints.kubernetes_keystone_webhook.path.default
Type: string
Description:
“/webhook”
endpoints.kubernetes_keystone_webhook.port.api.default
Type: int
Description:
8443
endpoints.kubernetes_keystone_webhook.port.api.public
Type: int
Description:
443
endpoints.kubernetes_keystone_webhook.scheme.default
Type: string
Description:
“https”
endpoints.oci_image_registry.auth.enabled
Type: bool
Description:
false
endpoints.oci_image_registry.auth.kubernetes-keystone-webhook.password
Type: string
Description:
“password”
endpoints.oci_image_registry.auth.kubernetes-keystone-webhook.username
Type: string
Description:
“kubernetes-keystone-webhook”
endpoints.oci_image_registry.host_fqdn_override.default
Type: string
Description:
nil
endpoints.oci_image_registry.hosts.default
Type: string
Description:
“localhost”
endpoints.oci_image_registry.name
Type: string
Description:
“oci-image-registry”
endpoints.oci_image_registry.namespace
Type: string
Description:
“oci-image-registry”
endpoints.oci_image_registry.port.registry.default
Type: string
Description:
nil
images.local_registry.active
Type: bool
Description:
false
images.local_registry.exclude[0]
Type: string
Description:
“dep_check”
images.local_registry.exclude[1]
Type: string
Description:
“image_repo_sync”
images.pull_policy
Type: string
Description:
“IfNotPresent”
images.tags.dep_check
Type: string
Description:
“quay.io/airshipit/kubernetes-entrypoint:latest-ubuntu_focal”
images.tags.image_repo_sync
Type: string
Description:
“docker.io/library/docker:17.07.0”
images.tags.kubernetes_keystone_webhook
Type: string
Description:
“docker.io/k8scloudprovider/k8s-keystone-auth:v1.19.0”
images.tags.scripted_test
Type: string
Description:
“docker.io/openstackhelm/heat:wallaby-ubuntu_focal”
labels.api.node_selector_key
Type: string
Description:
“openstack-control-plane”
labels.api.node_selector_value
Type: string
Description:
“enabled”
labels.test.node_selector_key
Type: string
Description:
“openstack-control-plane”
labels.test.node_selector_value
Type: string
Description:
“enabled”
manifests.api_secret
Type: bool
Description:
true
manifests.configmap_bin
Type: bool
Description:
true
manifests.configmap_etc
Type: bool
Description:
true
manifests.deployment
Type: bool
Description:
true
manifests.ingress_webhook
Type: bool
Description:
true
manifests.pod_test
Type: bool
Description:
true
manifests.secret_certificates
Type: bool
Description:
true
manifests.secret_keystone
Type: bool
Description:
true
manifests.secret_registry
Type: bool
Description:
true
manifests.service
Type: bool
Description:
true
manifests.service_ingress_api
Type: bool
Description:
true
network.api.external_policy_local
Type: bool
Description:
false
network.api.ingress.annotations.”nginx.ingress.kubernetes.io/rewrite-target”
Type: string
Description:
“/”
network.api.ingress.annotations.”nginx.ingress.kubernetes.io/secure-backends”
Type: string
Description:
“true”
network.api.ingress.classes.cluster
Type: string
Description:
“nginx-cluster”
network.api.ingress.classes.namespace
Type: string
Description:
“nginx”
network.api.ingress.public
Type: bool
Description:
true
network.api.node_port.enabled
Type: bool
Description:
false
network.api.node_port.port
Type: int
Description:
30601
pod.affinity.anti.topologyKey.default
Type: string
Description:
“kubernetes.io/hostname”
pod.affinity.anti.type.default
Type: string
Description:
“preferredDuringSchedulingIgnoredDuringExecution”
pod.affinity.anti.weight.default
Type: int
Description:
10
pod.mandatory_access_control.kubernetes-keystone-webhook.kubernetes-keystone-webhook
Type: string
Description:
“runtime/default”
pod.mandatory_access_control.type
Type: string
Description:
“apparmor”
pod.mounts.kubernetes_keystone_webhook_api.init_container
Type: string
Description:
nil
pod.mounts.kubernetes_keystone_webhook_api.kubernetes_keystone_webhook_api
Type: string
Description:
nil
pod.mounts.kubernetes_keystone_webhook_tests.init_container
Type: string
Description:
nil
pod.mounts.kubernetes_keystone_webhook_tests.kubernetes_keystone_webhook_tests
Type: string
Description:
nil
pod.replicas.api
Type: int
Description:
1
pod.resources.api.limits.cpu
Type: string
Description:
“200m”
pod.resources.api.limits.memory
Type: string
Description:
“256Mi”
pod.resources.api.requests.cpu
Type: string
Description:
“100m”
pod.resources.api.requests.memory
Type: string
Description:
“128Mi”
pod.resources.enabled
Type: bool
Description:
false
pod.resources.jobs.tests.limits.cpu
Type: string
Description:
“200m”
pod.resources.jobs.tests.limits.memory
Type: string
Description:
“256Mi”
pod.resources.jobs.tests.requests.cpu
Type: string
Description:
“100m”
pod.resources.jobs.tests.requests.memory
Type: string
Description:
“128Mi”
pod.security_context.kubernetes_keystone_webhook.container.kubernetes_keystone_webhook.allowPrivilegeEscalation
Type: bool
Description:
false
pod.security_context.kubernetes_keystone_webhook.container.kubernetes_keystone_webhook.readOnlyRootFilesystem
Type: bool
Description:
true
pod.security_context.kubernetes_keystone_webhook.pod.runAsUser
Type: int
Description:
65534
release_group
Type: string
Description:
nil
secrets.certificates.api
Type: string
Description:
“kubernetes-keystone-webhook-certs”
secrets.identity.admin
Type: string
Description:
“kubernetes-keystone-webhook-admin”
secrets.oci_image_registry.kubernetes-keystone-webhook
Type: string
Description:
“kubernetes-keystone-webhook-oci-image-registry-key”