diff --git a/docs/add-ons/kuberay-operator.md b/docs/add-ons/kuberay-operator.md
deleted file mode 100644
index 47f5478789..0000000000
--- a/docs/add-ons/kuberay-operator.md
+++ /dev/null
@@ -1,24 +0,0 @@
-# KubeRay Operator
-
-[KubeRay](https://github.com/ray-project/kuberay) is an open source toolkit to run [Ray](https://www.ray.io/) applications on Kubernetes. For details on its design, please refer to the KubeRay [documentation](https://ray-project.github.io/kuberay/).
-
-> 🛑 This add-on should be considered as experimental and should only be used for proof of concept.
-
-
-## Usage
-
-KubeRay operator can be deployed by enabling the add-on via the following.
-
-### Basic Example
-
-```hcl
-enable_kuberay_operator = true
-```
-
-### Advanced Example
-
-Advanced example of KubeRay operator add-on is not currently supported as the upstream project does not publish a [Helm chart yet]. Please 👍 this [issue](https://github.com/ray-project/kuberay/issues/475).
-
-### GitOps Configuration
-
-GitOps is not currently supported due to lack of a published Helm chart upstream. Please 👍 this [issue](https://github.com/ray-project/kuberay/issues/475).
diff --git a/modules/kubernetes-addons/README.md b/modules/kubernetes-addons/README.md
index b3ea443c0c..82f63618cb 100644
--- a/modules/kubernetes-addons/README.md
+++ b/modules/kubernetes-addons/README.md
@@ -66,7 +66,6 @@
| [kube\_prometheus\_stack](#module\_kube\_prometheus\_stack) | ./kube-prometheus-stack | n/a |
| [kube\_state\_metrics](#module\_kube\_state\_metrics) | ./kube-state-metrics | n/a |
| [kubecost](#module\_kubecost) | ./kubecost | n/a |
-| [kuberay\_operator](#module\_kuberay\_operator) | ./kuberay-operator | n/a |
| [kubernetes\_dashboard](#module\_kubernetes\_dashboard) | ./kubernetes-dashboard | n/a |
| [kyverno](#module\_kyverno) | ./kyverno | n/a |
| [local\_volume\_provisioner](#module\_local\_volume\_provisioner) | ./local-volume-provisioner | n/a |
@@ -228,7 +227,6 @@
| [enable\_kube\_prometheus\_stack](#input\_enable\_kube\_prometheus\_stack) | Enable Community kube-prometheus-stack add-on | `bool` | `false` | no |
| [enable\_kube\_state\_metrics](#input\_enable\_kube\_state\_metrics) | Enable Kube State Metrics add-on | `bool` | `false` | no |
| [enable\_kubecost](#input\_enable\_kubecost) | Enable Kubecost add-on | `bool` | `false` | no |
-| [enable\_kuberay\_operator](#input\_enable\_kuberay\_operator) | Enable KubeRay Operator add-on | `bool` | `false` | no |
| [enable\_kubernetes\_dashboard](#input\_enable\_kubernetes\_dashboard) | Enable Kubernetes Dashboard add-on | `bool` | `false` | no |
| [enable\_kyverno](#input\_enable\_kyverno) | Enable Kyverno add-on | `bool` | `false` | no |
| [enable\_kyverno\_policies](#input\_enable\_kyverno\_policies) | Enable Kyverno policies. Requires `enable_kyverno` to be `true` | `bool` | `false` | no |
@@ -283,7 +281,6 @@
| [kube\_prometheus\_stack\_helm\_config](#input\_kube\_prometheus\_stack\_helm\_config) | Community kube-prometheus-stack Helm Chart config | `any` | `{}` | no |
| [kube\_state\_metrics\_helm\_config](#input\_kube\_state\_metrics\_helm\_config) | Kube State Metrics Helm Chart config | `any` | `{}` | no |
| [kubecost\_helm\_config](#input\_kubecost\_helm\_config) | Kubecost Helm Chart config | `any` | `{}` | no |
-| [kuberay\_operator\_helm\_config](#input\_kuberay\_operator\_helm\_config) | KubeRay Operator Helm Chart config | `any` | `{}` | no |
| [kubernetes\_dashboard\_helm\_config](#input\_kubernetes\_dashboard\_helm\_config) | Kubernetes Dashboard Helm Chart config | `any` | `null` | no |
| [kyverno\_helm\_config](#input\_kyverno\_helm\_config) | Kyverno Helm Chart config | `any` | `{}` | no |
| [kyverno\_policies\_helm\_config](#input\_kyverno\_policies\_helm\_config) | Kyverno policies Helm Chart config | `any` | `{}` | no |
diff --git a/modules/kubernetes-addons/kuberay-operator/README.md b/modules/kubernetes-addons/kuberay-operator/README.md
deleted file mode 100644
index 06c8d9b41b..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/README.md
+++ /dev/null
@@ -1,46 +0,0 @@
-# KubeRay Operator
-
-See [docs](../../../docs/add-ons/kuberay-operator.md)
-
-
-## Requirements
-
-| Name | Version |
-|------|---------|
-| [terraform](#requirement\_terraform) | >= 1.0.0 |
-| [kubernetes](#requirement\_kubernetes) | >= 2.10 |
-
-## Providers
-
-| Name | Version |
-|------|---------|
-| [kubernetes](#provider\_kubernetes) | >= 2.10 |
-
-## Modules
-
-| Name | Source | Version |
-|------|--------|---------|
-| [helm\_addon](#module\_helm\_addon) | ../helm-addon | n/a |
-
-## Resources
-
-| Name | Type |
-|------|------|
-| [kubernetes_namespace_v1.this](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/namespace_v1) | resource |
-
-## Inputs
-
-| Name | Description | Type | Default | Required |
-|------|-------------|------|---------|:--------:|
-| [addon\_context](#input\_addon\_context) | Input configuration for the addon | object({
aws_caller_identity_account_id = string
aws_caller_identity_arn = string
aws_eks_cluster_endpoint = string
aws_partition_id = string
aws_region_name = string
eks_cluster_id = string
eks_oidc_issuer_url = string
eks_oidc_provider_arn = string
irsa_iam_permissions_boundary = string
irsa_iam_role_path = string
tags = map(string)
}) | n/a | yes |
-| [helm\_config](#input\_helm\_config) | Helm Config for KubeRay Operator | `any` | `{}` | no |
-
-## Outputs
-
-| Name | Description |
-|------|-------------|
-| [irsa\_arn](#output\_irsa\_arn) | IAM role ARN for the service account |
-| [irsa\_name](#output\_irsa\_name) | IAM role name for the service account |
-| [release\_metadata](#output\_release\_metadata) | Map of attributes of the Helm release metadata |
-| [service\_account](#output\_service\_account) | Name of Kubernetes service account |
-
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/Chart.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/Chart.yaml
deleted file mode 100644
index fbb732a3be..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/Chart.yaml
+++ /dev/null
@@ -1,7 +0,0 @@
-apiVersion: v2
-appVersion: "1.0"
-description: A Helm chart for Kubernetes
-name: kuberay-operator
-version: 0.1.0
-icon: https://github.com/ray-project/ray/raw/master/doc/source/images/ray_header_logo.png
-type: application
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/README.md b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/README.md
deleted file mode 100644
index 0ece34d914..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/README.md
+++ /dev/null
@@ -1,46 +0,0 @@
-# KubeRay Operator (Alpha)
-
-Kuberay-operator: A simple Helm chart
-
-Run a deployment of Ray Operator.
-
-Deploy ray operator first, then deploy ray cluster.
-
-## Helm
-
-Make sure helm version is v3+
-```console
-$ helm version
-version.BuildInfo{Version:"v3.6.2", GitCommit:"ee407bdf364942bcb8e8c665f82e15aa28009b71", GitTreeState:"dirty", GoVersion:"go1.16.5"}
-```
-
-## Installing the Chart
-
-To avoid duplicate CRD definitions in this repo, we reuse CRD config in `ray-operator`:
-```console
-$ kubectl apply -k "github.com/ray-project/kuberay/ray-operator/config/crd?ref=v0.3.0"
-```
-
-Please use command below:
-```console
-$ helm install kuberay-operator --namespace ray-system --create-namespace $(curl -s https://api.github.com/repos/ray-project/kuberay/releases/latest | grep '"browser_download_url":' | sort | grep -om1 'https.*helm-chart-kuberay-operator.*tgz')
-```
-
-## List the Chart
-
-To list the `my-release` deployment:
-
-```console
-$ helm list -n kuberay-operator
-```
-
-## Uninstalling the Chart
-
-To uninstall/delete the `my-release` deployment:
-
-```console
-$ helm delete kuberay-operator -n ray-system
-```
-
-The command removes nearly all the Kubernetes components associated with the
-chart and deletes the release.
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayclusters.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayclusters.yaml
deleted file mode 100644
index cb5045c81a..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayclusters.yaml
+++ /dev/null
@@ -1,11026 +0,0 @@
-
----
-apiVersion: apiextensions.k8s.io/v1
-kind: CustomResourceDefinition
-metadata:
- annotations:
- controller-gen.kubebuilder.io/version: v0.6.0
- creationTimestamp: null
- name: rayclusters.ray.io
-spec:
- group: ray.io
- names:
- kind: RayCluster
- listKind: RayClusterList
- plural: rayclusters
- singular: raycluster
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- description: RayCluster is the Schema for the RayClusters API
- properties:
- apiVersion:
- description: APIVersion defines the versioned schema of this representation
- of an object.
- type: string
- kind:
- description: Kind is a string value representing the REST resource this
- object represents.
- type: string
- metadata:
- type: object
- spec:
- description: Specification of the desired behavior of the RayCluster.
- properties:
- autoscalerOptions:
- description: AutoscalerOptions specifies optional configuration for
- the Ray autoscaler.
- properties:
- idleTimeoutSeconds:
- description: IdleTimeoutSeconds is the number of seconds to wait
- before scaling down a worker pod which is not us
- format: int32
- type: integer
- image:
- description: Image optionally overrides the autoscaler's container
- image.
- type: string
- imagePullPolicy:
- description: ImagePullPolicy optionally overrides the autoscaler
- container's image pull policy.
- type: string
- resources:
- description: Resources specifies resource requests and limits
- for the autoscaler container.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum amount of compute
- resources allowed. More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum amount of compute
- resources required.
- type: object
- type: object
- upscalingMode:
- description: UpscalineMode is "Default" or "Aggressive.
- enum:
- - Default
- - Aggressive
- type: string
- type: object
- enableInTreeAutoscaling:
- description: EnableInTreeAutoscaling indicates whether operator should
- create in tree autoscaling configs
- type: boolean
- headGroupSpec:
- description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
- Important: Run "make" to regenerate code af'
- properties:
- enableIngress:
- description: EnableIngress indicates whether operator should create
- ingress object for head service or not.
- type: boolean
- rayStartParams:
- additionalProperties:
- type: string
- description: 'RayStartParams are the params of the start command:
- node-manager-port, object-store-memory, ...'
- type: object
- replicas:
- description: HeadGroupSpec.Replicas is deprecated and ignored;
- there can only be one head pod per Ray cluster.
- format: int32
- type: integer
- serviceType:
- description: ServiceType is Kubernetes service type of the head
- service.
- type: string
- template:
- description: Template is the eaxct pod template used in K8s depoyments,
- statefulsets, etc.
- properties:
- metadata:
- description: 'Standard object''s metadata. More info: https://git.k8s.'
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- finalizers:
- items:
- type: string
- type: array
- labels:
- additionalProperties:
- type: string
- type: object
- name:
- type: string
- namespace:
- type: string
- type: object
- spec:
- description: 'Specification of the desired behavior of the
- pod. More info: https://git.k8s.'
- properties:
- activeDeadlineSeconds:
- description: Optional duration in seconds the pod may
- be active on the node relative to StartTime before the
- syst
- format: int64
- type: integer
- affinity:
- description: If specified, the pod's scheduling constraints
- properties:
- nodeAffinity:
- description: Describes node affinity scheduling rules
- for the pod.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to schedule
- pods to nodes that satisfy the affinity expressions
- specified '
- items:
- description: An empty preferred scheduling term
- matches all objects with implicit weight 0
- (i.e. it's a no-op).
- properties:
- preference:
- description: A node selector term, associated
- with the corresponding weight.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is In
- or NotIn, the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is In
- or NotIn, the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- weight:
- description: Weight associated with matching
- the corresponding nodeSelectorTerm, in
- the range 1-100.
- format: int32
- type: integer
- required:
- - preference
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements specified
- by this field are not met at scheduling time,
- the pod will no
- properties:
- nodeSelectorTerms:
- description: Required. A list of node selector
- terms. The terms are ORed.
- items:
- description: A null or empty node selector
- term matches no objects. The requirements
- of them are ANDed.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is In
- or NotIn, the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is In
- or NotIn, the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- type: array
- required:
- - nodeSelectorTerms
- type: object
- type: object
- podAffinity:
- description: Describes pod affinity scheduling rules
- (e.g. co-locate this pod in the same node, zone,
- etc.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to schedule
- pods to nodes that satisfy the affinity expressions
- specified '
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added per-node
- to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity term,
- associated with the corresponding weight.
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a
- static list of namespace names that
- the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with matching
- the corresponding podAffinityTerm, in
- the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements specified
- by this field are not met at scheduling time,
- the pod will no
- items:
- description: Defines a set of pods (namely those
- matching the labelSelector relative to the
- given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set of
- resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is a list
- of label selector requirements. The
- requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a set
- of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map of
- {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the set
- of namespaces that the term applies to.
- properties:
- matchExpressions:
- description: matchExpressions is a list
- of label selector requirements. The
- requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a set
- of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map of
- {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a static
- list of namespace names that the term
- applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- podAntiAffinity:
- description: Describes pod anti-affinity scheduling
- rules (e.g.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: The scheduler will prefer to schedule
- pods to nodes that satisfy the anti-affinity
- expressions speci
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added per-node
- to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity term,
- associated with the corresponding weight.
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a
- static list of namespace names that
- the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with matching
- the corresponding podAffinityTerm, in
- the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the anti-affinity requirements
- specified by this field are not met at scheduling
- time, the pod wi
- items:
- description: Defines a set of pods (namely those
- matching the labelSelector relative to the
- given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set of
- resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is a list
- of label selector requirements. The
- requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a set
- of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map of
- {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the set
- of namespaces that the term applies to.
- properties:
- matchExpressions:
- description: matchExpressions is a list
- of label selector requirements. The
- requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a set
- of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map of
- {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a static
- list of namespace names that the term
- applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- type: object
- automountServiceAccountToken:
- description: AutomountServiceAccountToken indicates whether
- a service account token should be automatically mount
- type: boolean
- containers:
- description: List of containers belonging to the pod.
- Containers cannot currently be added or removed.
- items:
- description: A single application container that you
- want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The docker
- image's CMD is used if this is not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed within
- a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to set
- in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment variable's
- value. Cannot be used if value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- or its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the pod:
- supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to
- select in the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of the
- container: only resources limits and
- requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name: required
- for volumes, optional for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource to
- select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the source
- of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend
- to each key in the ConfigMap. Must be a
- C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info: https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always, Never,
- IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately before
- a container is terminated due to an API request
- or management e
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified as
- a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose on the
- pod's IP address. This must be a valid port
- number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the external
- port to.
- type: string
- hostPort:
- description: Number of port to expose on the
- host. If specified, this must be a valid
- port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be an
- IANA_SVC_NAME and unique within the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be UDP,
- TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by this
- container. Cannot be updated. More info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum amount
- of compute resources allowed. More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop when
- running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged mode.
- type: boolean
- procMount:
- description: procMount denotes the type of proc
- mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has a read-only
- root filesystem. Default is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by this
- container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a
- container should be run as a 'Host Process'
- container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the Pod
- has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been opened
- by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file to
- which the container''s termination message will
- be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to be
- true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will be
- mapped to.
- type: string
- name:
- description: name must match the name of a
- persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container at
- which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines how
- mounts are propagated from the host to container
- and the other way a
- type: string
- name:
- description: This must match the Name of a
- Volume.
- type: string
- readOnly:
- description: Mounted read-only if true, read-write
- otherwise (false or unspecified). Defaults
- to false.
- type: boolean
- subPath:
- description: Path within the volume from which
- the container's volume should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the volume
- from which the container's volume should
- be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- dnsConfig:
- description: Specifies the DNS parameters of a pod.
- properties:
- nameservers:
- description: A list of DNS name server IP addresses.
- items:
- type: string
- type: array
- options:
- description: A list of DNS resolver options. This
- will be merged with the base options generated from
- DNSPolicy.
- items:
- description: PodDNSConfigOption defines DNS resolver
- options of a pod.
- properties:
- name:
- description: Required.
- type: string
- value:
- type: string
- type: object
- type: array
- searches:
- description: A list of DNS search domains for host-name
- lookup.
- items:
- type: string
- type: array
- type: object
- dnsPolicy:
- description: Set DNS policy for the pod. Defaults to "ClusterFirst".
- type: string
- enableServiceLinks:
- description: EnableServiceLinks indicates whether information
- about services should be injected into pod's enviro
- type: boolean
- ephemeralContainers:
- description: List of ephemeral containers run in this
- pod.
- items:
- description: An EphemeralContainer is a temporary container
- that you may add to an existing Pod for user-initiate
- properties:
- args:
- description: Arguments to the entrypoint. The docker
- image's CMD is used if this is not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed within
- a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to set
- in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment variable's
- value. Cannot be used if value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- or its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the pod:
- supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to
- select in the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of the
- container: only resources limits and
- requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name: required
- for volumes, optional for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource to
- select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the source
- of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend
- to each key in the ConfigMap. Must be a
- C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always, Never,
- IfNotPresent.
- type: string
- lifecycle:
- description: Lifecycle is not allowed for ephemeral
- containers.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately before
- a container is terminated due to an API request
- or management e
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the ephemeral container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: Ports are not allowed for ephemeral
- containers.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose on the
- pod's IP address. This must be a valid port
- number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the external
- port to.
- type: string
- hostPort:
- description: Number of port to expose on the
- host. If specified, this must be a valid
- port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be an
- IANA_SVC_NAME and unique within the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be UDP,
- TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: Resources are not allowed for ephemeral
- containers.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum amount
- of compute resources allowed. More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: 'Optional: SecurityContext defines
- the security options the ephemeral container should
- be run with.'
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop when
- running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged mode.
- type: boolean
- procMount:
- description: procMount denotes the type of proc
- mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has a read-only
- root filesystem. Default is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by this
- container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a
- container should be run as a 'Host Process'
- container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container process.
- type: string
- type: object
- type: object
- startupProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been opened
- by a single at
- type: boolean
- targetContainerName:
- description: If set, the name of the container from
- PodSpec that this ephemeral container targets.
- type: string
- terminationMessagePath:
- description: 'Optional: Path at which the file to
- which the container''s termination message will
- be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to be
- true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will be
- mapped to.
- type: string
- name:
- description: name must match the name of a
- persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container at
- which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines how
- mounts are propagated from the host to container
- and the other way a
- type: string
- name:
- description: This must match the Name of a
- Volume.
- type: string
- readOnly:
- description: Mounted read-only if true, read-write
- otherwise (false or unspecified). Defaults
- to false.
- type: boolean
- subPath:
- description: Path within the volume from which
- the container's volume should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the volume
- from which the container's volume should
- be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- hostAliases:
- description: 'HostAliases is an optional list of hosts
- and IPs that will be injected into the pod''s hosts
- file if '
- items:
- description: 'HostAlias holds the mapping between IP
- and hostnames that will be injected as an entry in
- the pod''s '
- properties:
- hostnames:
- description: Hostnames for the above IP address.
- items:
- type: string
- type: array
- ip:
- description: IP address of the host file entry.
- type: string
- type: object
- type: array
- hostIPC:
- description: 'Use the host''s ipc namespace. Optional:
- Default to false.'
- type: boolean
- hostNetwork:
- description: Host networking requested for this pod. Use
- the host's network namespace.
- type: boolean
- hostPID:
- description: 'Use the host''s pid namespace. Optional:
- Default to false.'
- type: boolean
- hostname:
- description: Specifies the hostname of the Pod If not
- specified, the pod's hostname will be set to a system-defin
- type: string
- imagePullSecrets:
- description: ImagePullSecrets is an optional list of references
- to secrets in the same namespace to use for pulli
- items:
- description: 'LocalObjectReference contains enough information
- to let you locate the referenced object inside the '
- properties:
- name:
- description: 'Name of the referent. More info: https://kubernetes.'
- type: string
- type: object
- type: array
- initContainers:
- description: List of initialization containers belonging
- to the pod.
- items:
- description: A single application container that you
- want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The docker
- image's CMD is used if this is not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed within
- a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to set
- in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment variable's
- value. Cannot be used if value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- or its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the pod:
- supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to
- select in the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of the
- container: only resources limits and
- requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name: required
- for volumes, optional for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource to
- select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the source
- of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend
- to each key in the ConfigMap. Must be a
- C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info: https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always, Never,
- IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately before
- a container is terminated due to an API request
- or management e
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified as
- a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose on the
- pod's IP address. This must be a valid port
- number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the external
- port to.
- type: string
- hostPort:
- description: Number of port to expose on the
- host. If specified, this must be a valid
- port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be an
- IANA_SVC_NAME and unique within the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be UDP,
- TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by this
- container. Cannot be updated. More info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum amount
- of compute resources allowed. More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop when
- running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged mode.
- type: boolean
- procMount:
- description: procMount denotes the type of proc
- mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has a read-only
- root filesystem. Default is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by this
- container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a
- container should be run as a 'Host Process'
- container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the Pod
- has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the working
- directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures for
- the probe to be considered failed after having
- succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to, defaults
- to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in the
- request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a custom
- header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes for
- the probe to be considered successful after
- having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action involving
- a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the
- pod needs to terminate gracefully upon probe
- failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which the
- probe times out. Defaults to 1 second. Minimum
- value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been opened
- by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file to
- which the container''s termination message will
- be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to be
- true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will be
- mapped to.
- type: string
- name:
- description: name must match the name of a
- persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container at
- which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines how
- mounts are propagated from the host to container
- and the other way a
- type: string
- name:
- description: This must match the Name of a
- Volume.
- type: string
- readOnly:
- description: Mounted read-only if true, read-write
- otherwise (false or unspecified). Defaults
- to false.
- type: boolean
- subPath:
- description: Path within the volume from which
- the container's volume should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the volume
- from which the container's volume should
- be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- nodeName:
- description: NodeName is a request to schedule this pod
- onto a specific node.
- type: string
- nodeSelector:
- additionalProperties:
- type: string
- description: NodeSelector is a selector which must be
- true for the pod to fit on a node.
- type: object
- x-kubernetes-map-type: atomic
- os:
- description: Specifies the OS of the containers in the
- pod.
- properties:
- name:
- description: Name is the name of the operating system.
- The currently supported values are linux and windows.
- type: string
- required:
- - name
- type: object
- overhead:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Overhead represents the resource overhead
- associated with running a pod for a given RuntimeClass.
- type: object
- preemptionPolicy:
- description: PreemptionPolicy is the Policy for preempting
- pods with lower priority.
- type: string
- priority:
- description: The priority value. Various system components
- use this field to find the priority of the pod.
- format: int32
- type: integer
- priorityClassName:
- description: If specified, indicates the pod's priority.
- type: string
- readinessGates:
- description: If specified, all readiness gates will be
- evaluated for pod readiness.
- items:
- description: PodReadinessGate contains the reference
- to a pod condition
- properties:
- conditionType:
- description: ConditionType refers to a condition
- in the pod's condition list with matching type.
- type: string
- required:
- - conditionType
- type: object
- type: array
- restartPolicy:
- description: Restart policy for all containers within
- the pod. One of Always, OnFailure, Never.
- type: string
- runtimeClassName:
- description: RuntimeClassName refers to a RuntimeClass
- object in the node.k8s.
- type: string
- schedulerName:
- description: If specified, the pod will be dispatched
- by specified scheduler.
- type: string
- securityContext:
- description: SecurityContext holds pod-level security
- attributes and common container settings.
- properties:
- fsGroup:
- description: A special supplemental group that applies
- to all containers in a pod.
- format: int64
- type: integer
- fsGroupChangePolicy:
- description: fsGroupChangePolicy defines behavior
- of changing ownership and permission of the volume
- before being
- type: string
- runAsGroup:
- description: The GID to run the entrypoint of the
- container process. Uses runtime default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must run
- as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of the
- container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied to
- all containers.
- properties:
- level:
- description: Level is SELinux level label that
- applies to the container.
- type: string
- role:
- description: Role is a SELinux role label that
- applies to the container.
- type: string
- type:
- description: Type is a SELinux type label that
- applies to the container.
- type: string
- user:
- description: User is a SELinux user label that
- applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by the containers
- in this pod.
- properties:
- localhostProfile:
- description: localhostProfile indicates a profile
- defined in a file on the node should be used.
- type: string
- type:
- description: type indicates which kind of seccomp
- profile will be applied.
- type: string
- required:
- - type
- type: object
- supplementalGroups:
- description: 'A list of groups applied to the first
- process run in each container, in addition to the
- container''s '
- items:
- format: int64
- type: integer
- type: array
- sysctls:
- description: Sysctls hold a list of namespaced sysctls
- used for the pod.
- items:
- description: Sysctl defines a kernel parameter to
- be set
- properties:
- name:
- description: Name of a property to set
- type: string
- value:
- description: Value of a property to set
- type: string
- required:
- - name
- - value
- type: object
- type: array
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where the GMSA
- admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the name
- of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a container
- should be run as a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to run the
- entrypoint of the container process.
- type: string
- type: object
- type: object
- serviceAccount:
- description: DeprecatedServiceAccount is a depreciated
- alias for ServiceAccountName.
- type: string
- serviceAccountName:
- description: ServiceAccountName is the name of the ServiceAccount
- to use to run this pod.
- type: string
- setHostnameAsFQDN:
- description: If true the pod's hostname will be configured
- as the pod's FQDN, rather than the leaf name (the defa
- type: boolean
- shareProcessNamespace:
- description: Share a single process namespace between
- all of the containers in a pod.
- type: boolean
- subdomain:
- description: If specified, the fully qualified Pod hostname
- will be "...svc.
- type: string
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the pod needs
- to terminate gracefully.
- format: int64
- type: integer
- tolerations:
- description: If specified, the pod's tolerations.
- items:
- description: The pod this Toleration is attached to
- tolerates any taint that matches the triple name on the dataset for Flocker should
- be considered as de
- type: string
- datasetUUID:
- description: UUID of the dataset. This is unique
- identifier of a Flocker dataset
- type: string
- type: object
- gcePersistentDisk:
- description: GCEPersistentDisk represents a GCE
- Disk resource that is attached to a kubelet's
- host machine and th
- properties:
- fsType:
- description: Filesystem type of the volume that
- you want to mount.
- type: string
- partition:
- description: The partition in the volume that
- you want to mount.
- format: int32
- type: integer
- pdName:
- description: Unique name of the PD resource
- in GCE. Used to identify the disk in GCE.
- type: string
- readOnly:
- description: ReadOnly here will force the ReadOnly
- setting in VolumeMounts. Defaults to false.
- type: boolean
- required:
- - pdName
- type: object
- gitRepo:
- description: 'GitRepo represents a git repository
- at a particular revision. DEPRECATED: GitRepo
- is deprecated.'
- properties:
- directory:
- description: Target directory name. Must not
- contain or start with '..'. If '.
- type: string
- repository:
- description: Repository URL
- type: string
- revision:
- description: Commit hash for the specified revision.
- type: string
- required:
- - repository
- type: object
- glusterfs:
- description: Glusterfs represents a Glusterfs mount
- on the host that shares a pod's lifetime.
- properties:
- endpoints:
- description: 'EndpointsName is the endpoint
- name that details Glusterfs topology. More
- info: https://examples.k8s.'
- type: string
- path:
- description: 'Path is the Glusterfs volume path.
- More info: https://examples.k8s.io/volumes/glusterfs/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the Glusterfs
- volume to be mounted with read-only permissions.
- type: boolean
- required:
- - endpoints
- - path
- type: object
- hostPath:
- description: HostPath represents a pre-existing
- file or directory on the host machine that is
- directly exposed to
- properties:
- path:
- description: Path of the directory on the host.
- type: string
- type:
- description: 'Type for HostPath Volume Defaults
- to "" More info: https://kubernetes.'
- type: string
- required:
- - path
- type: object
- iscsi:
- description: ISCSI represents an ISCSI Disk resource
- that is attached to a kubelet's host machine and
- then expose
- properties:
- chapAuthDiscovery:
- description: whether support iSCSI Discovery
- CHAP authentication
- type: boolean
- chapAuthSession:
- description: whether support iSCSI Session CHAP
- authentication
- type: boolean
- fsType:
- description: Filesystem type of the volume that
- you want to mount.
- type: string
- initiatorName:
- description: Custom iSCSI Initiator Name.
- type: string
- iqn:
- description: Target iSCSI Qualified Name.
- type: string
- iscsiInterface:
- description: iSCSI Interface Name that uses
- an iSCSI transport. Defaults to 'default'
- (tcp).
- type: string
- lun:
- description: iSCSI Target Lun number.
- format: int32
- type: integer
- portals:
- description: iSCSI Target Portal List.
- items:
- type: string
- type: array
- readOnly:
- description: ReadOnly here will force the ReadOnly
- setting in VolumeMounts. Defaults to false.
- type: boolean
- secretRef:
- description: CHAP Secret for iSCSI target and
- initiator authentication
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- targetPortal:
- description: iSCSI Target Portal.
- type: string
- required:
- - iqn
- - lun
- - targetPortal
- type: object
- name:
- description: 'Volume''s name. Must be a DNS_LABEL
- and unique within the pod. More info: https://kubernetes.'
- type: string
- nfs:
- description: 'NFS represents an NFS mount on the
- host that shares a pod''s lifetime More info:
- https://kubernetes.'
- properties:
- path:
- description: 'Path that is exported by the NFS
- server. More info: https://kubernetes.'
- type: string
- readOnly:
- description: ReadOnly here will force the NFS
- export to be mounted with read-only permissions.
- Defaults to false.
- type: boolean
- server:
- description: 'Server is the hostname or IP address
- of the NFS server. More info: https://kubernetes.'
- type: string
- required:
- - path
- - server
- type: object
- persistentVolumeClaim:
- description: PersistentVolumeClaimVolumeSource represents
- a reference to a PersistentVolumeClaim in the
- same name
- properties:
- claimName:
- description: ClaimName is the name of a PersistentVolumeClaim
- in the same namespace as the pod using this
- volume.
- type: string
- readOnly:
- description: Will force the ReadOnly setting
- in VolumeMounts. Default false.
- type: boolean
- required:
- - claimName
- type: object
- photonPersistentDisk:
- description: 'PhotonPersistentDisk represents a
- PhotonController persistent disk attached and
- mounted on kubelets '
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- pdID:
- description: ID that identifies Photon Controller
- persistent disk
- type: string
- required:
- - pdID
- type: object
- portworxVolume:
- description: PortworxVolume represents a portworx
- volume attached and mounted on kubelets host machine
- properties:
- fsType:
- description: FSType represents the filesystem
- type to mount Must be a filesystem type supported
- by the host opera
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly setting
- in VolumeMounts.
- type: boolean
- volumeID:
- description: VolumeID uniquely identifies a
- Portworx volume
- type: string
- required:
- - volumeID
- type: object
- projected:
- description: Items for all in one resources secrets,
- configmaps, and downward API
- properties:
- defaultMode:
- description: Mode bits used to set permissions
- on created files by default.
- format: int32
- type: integer
- sources:
- description: list of volume projections
- items:
- description: Projection that may be projected
- along with other supported volume types
- properties:
- configMap:
- description: information about the configMap
- data to project
- properties:
- items:
- description: 'If unspecified, each
- key-value pair in the Data field
- of the referenced ConfigMap will
- be projected '
- items:
- description: Maps a string key to
- a path within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode
- bits used to set permissions
- on this file.'
- format: int32
- type: integer
- path:
- description: The relative path
- of the file to map the key
- to. May not be an absolute
- path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- or its keys must be defined
- type: boolean
- type: object
- downwardAPI:
- description: information about the downwardAPI
- data to project
- properties:
- items:
- description: Items is a list of DownwardAPIVolume
- file
- items:
- description: DownwardAPIVolumeFile
- represents information to create
- the file containing the pod field
- properties:
- fieldRef:
- description: 'Required: Selects
- a field of the pod: only annotations,
- labels, name and namespace
- are supported.'
- properties:
- apiVersion:
- description: Version of
- the schema the FieldPath
- is written in terms of,
- defaults to "v1".
- type: string
- fieldPath:
- description: Path of the
- field to select in the
- specified API version.
- type: string
- required:
- - fieldPath
- type: object
- mode:
- description: 'Optional: mode
- bits used to set permissions
- on this file, must be an octal
- value between 0000 and 07'
- format: int32
- type: integer
- path:
- description: 'Required: Path
- is the relative path name
- of the file to be created.'
- type: string
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container
- name: required for volumes,
- optional for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the
- output format of the exposed
- resources, defaults to
- "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required:
- resource to select'
- type: string
- required:
- - resource
- type: object
- required:
- - path
- type: object
- type: array
- type: object
- secret:
- description: information about the secret
- data to project
- properties:
- items:
- description: If unspecified, each
- key-value pair in the Data field
- of the referenced Secret will be
- projected int
- items:
- description: Maps a string key to
- a path within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode
- bits used to set permissions
- on this file.'
- format: int32
- type: integer
- path:
- description: The relative path
- of the file to map the key
- to. May not be an absolute
- path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- or its key must be defined
- type: boolean
- type: object
- serviceAccountToken:
- description: information about the serviceAccountToken
- data to project
- properties:
- audience:
- description: Audience is the intended
- audience of the token.
- type: string
- expirationSeconds:
- description: ExpirationSeconds is
- the requested duration of validity
- of the service account token.
- format: int64
- type: integer
- path:
- description: Path is the path relative
- to the mount point of the file to
- project the token into.
- type: string
- required:
- - path
- type: object
- type: object
- type: array
- type: object
- quobyte:
- description: Quobyte represents a Quobyte mount
- on the host that shares a pod's lifetime
- properties:
- group:
- description: Group to map volume access to Default
- is no group
- type: string
- readOnly:
- description: ReadOnly here will force the Quobyte
- volume to be mounted with read-only permissions.
- type: boolean
- registry:
- description: Registry represents a single or
- multiple Quobyte Registry services specified
- as a string as host:por
- type: string
- tenant:
- description: Tenant owning the given Quobyte
- volume in the Backend Used with dynamically
- provisioned Quobyte volu
- type: string
- user:
- description: User to map volume access to Defaults
- to serivceaccount user
- type: string
- volume:
- description: Volume is a string that references
- an already created Quobyte volume by name.
- type: string
- required:
- - registry
- - volume
- type: object
- rbd:
- description: RBD represents a Rados Block Device
- mount on the host that shares a pod's lifetime.
- properties:
- fsType:
- description: Filesystem type of the volume that
- you want to mount.
- type: string
- image:
- description: 'The rados image name. More info:
- https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'
- type: string
- keyring:
- description: Keyring is the path to key ring
- for RBDUser. Default is /etc/ceph/keyring.
- type: string
- monitors:
- description: 'A collection of Ceph monitors.
- More info: https://examples.k8s.io/volumes/rbd/README.'
- items:
- type: string
- type: array
- pool:
- description: 'The rados pool name. Default is
- rbd. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the ReadOnly
- setting in VolumeMounts. Defaults to false.
- type: boolean
- secretRef:
- description: SecretRef is name of the authentication
- secret for RBDUser. If provided overrides
- keyring.
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- user:
- description: 'The rados user name. Default is
- admin. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- required:
- - image
- - monitors
- type: object
- scaleIO:
- description: ScaleIO represents a ScaleIO persistent
- volume attached and mounted on Kubernetes nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- gateway:
- description: The host address of the ScaleIO
- API Gateway.
- type: string
- protectionDomain:
- description: The name of the ScaleIO Protection
- Domain for the configured storage.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly setting
- in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef references to the secret
- for ScaleIO user and other sensitive information.
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- sslEnabled:
- description: Flag to enable/disable SSL communication
- with Gateway, default false
- type: boolean
- storageMode:
- description: Indicates whether the storage for
- a volume should be ThickProvisioned or ThinProvisioned.
- type: string
- storagePool:
- description: The ScaleIO Storage Pool associated
- with the protection domain.
- type: string
- system:
- description: The name of the storage system
- as configured in ScaleIO.
- type: string
- volumeName:
- description: The name of a volume already created
- in the ScaleIO system that is associated with
- this volume sourc
- type: string
- required:
- - gateway
- - secretRef
- - system
- type: object
- secret:
- description: 'Secret represents a secret that should
- populate this volume. More info: https://kubernetes.'
- properties:
- defaultMode:
- description: 'Optional: mode bits used to set
- permissions on created files by default.'
- format: int32
- type: integer
- items:
- description: If unspecified, each key-value
- pair in the Data field of the referenced Secret
- will be projected int
- items:
- description: Maps a string key to a path within
- a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode bits used
- to set permissions on this file.'
- format: int32
- type: integer
- path:
- description: The relative path of the
- file to map the key to. May not be an
- absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- optional:
- description: Specify whether the Secret or its
- keys must be defined
- type: boolean
- secretName:
- description: 'Name of the secret in the pod''s
- namespace to use. More info: https://kubernetes.'
- type: string
- type: object
- storageos:
- description: StorageOS represents a StorageOS volume
- attached and mounted on Kubernetes nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly setting
- in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef specifies the secret
- to use for obtaining the StorageOS API credentials.
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- volumeName:
- description: VolumeName is the human-readable
- name of the StorageOS volume.
- type: string
- volumeNamespace:
- description: VolumeNamespace specifies the scope
- of the volume within StorageOS.
- type: string
- type: object
- vsphereVolume:
- description: VsphereVolume represents a vSphere
- volume attached and mounted on kubelets host machine
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- storagePolicyID:
- description: Storage Policy Based Management
- (SPBM) profile ID associated with the StoragePolicyName.
- type: string
- storagePolicyName:
- description: Storage Policy Based Management
- (SPBM) profile name.
- type: string
- volumePath:
- description: Path that identifies vSphere volume
- vmdk
- type: string
- required:
- - volumePath
- type: object
- required:
- - name
- type: object
- type: array
- required:
- - containers
- type: object
- type: object
- required:
- - rayStartParams
- - serviceType
- - template
- type: object
- rayVersion:
- description: RayVersion is the version of ray being used. this affects
- the command used to start ray
- type: string
- workerGroupSpecs:
- description: WorkerGroupSpecs are the specs for the worker pods
- items:
- description: WorkerGroupSpec are the specs for the worker pods
- properties:
- groupName:
- description: we can have multiple worker groups, we distinguish
- them by name
- type: string
- maxReplicas:
- description: MaxReplicas defaults to maxInt32
- format: int32
- type: integer
- minReplicas:
- description: MinReplicas defaults to 1
- format: int32
- type: integer
- rayStartParams:
- additionalProperties:
- type: string
- description: 'RayStartParams are the params of the start command:
- address, object-store-memory, ...'
- type: object
- replicas:
- description: Replicas Number of desired pods in this pod group.
- format: int32
- type: integer
- scaleStrategy:
- description: ScaleStrategy defines which pods to remove
- properties:
- workersToDelete:
- description: WorkersToDelete workers to be deleted
- items:
- type: string
- type: array
- type: object
- template:
- description: Template a pod template for the worker
- properties:
- metadata:
- description: 'Standard object''s metadata. More info: https://git.k8s.'
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- finalizers:
- items:
- type: string
- type: array
- labels:
- additionalProperties:
- type: string
- type: object
- name:
- type: string
- namespace:
- type: string
- type: object
- spec:
- description: 'Specification of the desired behavior of the
- pod. More info: https://git.k8s.'
- properties:
- activeDeadlineSeconds:
- description: Optional duration in seconds the pod may
- be active on the node relative to StartTime before
- the syst
- format: int64
- type: integer
- affinity:
- description: If specified, the pod's scheduling constraints
- properties:
- nodeAffinity:
- description: Describes node affinity scheduling
- rules for the pod.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to schedule
- pods to nodes that satisfy the affinity expressions
- specified '
- items:
- description: An empty preferred scheduling
- term matches all objects with implicit weight
- 0 (i.e. it's a no-op).
- properties:
- preference:
- description: A node selector term, associated
- with the corresponding weight.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is
- In or NotIn, the values array
- must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is
- In or NotIn, the values array
- must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- weight:
- description: Weight associated with matching
- the corresponding nodeSelectorTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - preference
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements specified
- by this field are not met at scheduling time,
- the pod will no
- properties:
- nodeSelectorTerms:
- description: Required. A list of node selector
- terms. The terms are ORed.
- items:
- description: A null or empty node selector
- term matches no objects. The requirements
- of them are ANDed.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is
- In or NotIn, the values array
- must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector requirement
- is a selector that contains values,
- a key, and an operator that relates '
- properties:
- key:
- description: The label key that
- the selector applies to.
- type: string
- operator:
- description: Represents a key's
- relationship to a set of values.
- type: string
- values:
- description: An array of string
- values. If the operator is
- In or NotIn, the values array
- must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- type: array
- required:
- - nodeSelectorTerms
- type: object
- type: object
- podAffinity:
- description: Describes pod affinity scheduling rules
- (e.g. co-locate this pod in the same node, zone,
- etc.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to schedule
- pods to nodes that satisfy the affinity expressions
- specified '
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added
- per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over a
- set of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term
- applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with matching
- the corresponding podAffinityTerm, in
- the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements specified
- by this field are not met at scheduling time,
- the pod will no
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is a
- list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a
- set of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the set
- of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is a
- list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a
- set of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a static
- list of namespace names that the term
- applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- podAntiAffinity:
- description: Describes pod anti-affinity scheduling
- rules (e.g.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: The scheduler will prefer to schedule
- pods to nodes that satisfy the anti-affinity
- expressions speci
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added
- per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over a
- set of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term
- applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with matching
- the corresponding podAffinityTerm, in
- the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the anti-affinity requirements
- specified by this field are not met at scheduling
- time, the pod wi
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is a
- list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a
- set of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the set
- of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is a
- list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector requirement
- is a selector that contains values,
- a key, and an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to a
- set of values.
- type: string
- values:
- description: values is an array
- of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a static
- list of namespace names that the term
- applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- type: object
- automountServiceAccountToken:
- description: AutomountServiceAccountToken indicates
- whether a service account token should be automatically
- mount
- type: boolean
- containers:
- description: List of containers belonging to the pod.
- Containers cannot currently be added or removed.
- items:
- description: A single application container that you
- want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed within
- a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if value
- is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to
- select in the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name: required
- for volumes, optional for env
- vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the source
- of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend
- to each key in the ConfigMap. Must be
- a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info: https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified as
- a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the
- container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose on
- the pod's IP address. This must be a valid
- port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the external
- port to.
- type: string
- hostPort:
- description: Number of port to expose on
- the host. If specified, this must be a
- valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by this
- container. Cannot be updated. More info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged mode.
- type: boolean
- procMount:
- description: procMount denotes the type of
- proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has a
- read-only root filesystem. Default is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by
- this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is
- the name of the GMSA credential spec
- to use.
- type: string
- hostProcess:
- description: HostProcess determines if
- a container should be run as a 'Host
- Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the Pod
- has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been opened
- by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to be
- true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name of
- a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container at
- which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name of
- a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should be
- mounted.
- type: string
- subPathExpr:
- description: Expanded path within the volume
- from which the container's volume should
- be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- dnsConfig:
- description: Specifies the DNS parameters of a pod.
- properties:
- nameservers:
- description: A list of DNS name server IP addresses.
- items:
- type: string
- type: array
- options:
- description: A list of DNS resolver options. This
- will be merged with the base options generated
- from DNSPolicy.
- items:
- description: PodDNSConfigOption defines DNS resolver
- options of a pod.
- properties:
- name:
- description: Required.
- type: string
- value:
- type: string
- type: object
- type: array
- searches:
- description: A list of DNS search domains for host-name
- lookup.
- items:
- type: string
- type: array
- type: object
- dnsPolicy:
- description: Set DNS policy for the pod. Defaults to
- "ClusterFirst".
- type: string
- enableServiceLinks:
- description: EnableServiceLinks indicates whether information
- about services should be injected into pod's enviro
- type: boolean
- ephemeralContainers:
- description: List of ephemeral containers run in this
- pod.
- items:
- description: An EphemeralContainer is a temporary
- container that you may add to an existing Pod for
- user-initiate
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed within
- a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if value
- is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to
- select in the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name: required
- for volumes, optional for env
- vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the source
- of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend
- to each key in the ConfigMap. Must be
- a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Lifecycle is not allowed for ephemeral
- containers.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the ephemeral container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: Ports are not allowed for ephemeral
- containers.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose on
- the pod's IP address. This must be a valid
- port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the external
- port to.
- type: string
- hostPort:
- description: Number of port to expose on
- the host. If specified, this must be a
- valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: Resources are not allowed for ephemeral
- containers.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: 'Optional: SecurityContext defines
- the security options the ephemeral container
- should be run with.'
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged mode.
- type: boolean
- procMount:
- description: procMount denotes the type of
- proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has a
- read-only root filesystem. Default is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by
- this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is
- the name of the GMSA credential spec
- to use.
- type: string
- hostProcess:
- description: HostProcess determines if
- a container should be run as a 'Host
- Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been opened
- by a single at
- type: boolean
- targetContainerName:
- description: If set, the name of the container
- from PodSpec that this ephemeral container targets.
- type: string
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to be
- true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name of
- a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container at
- which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name of
- a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should be
- mounted.
- type: string
- subPathExpr:
- description: Expanded path within the volume
- from which the container's volume should
- be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- hostAliases:
- description: 'HostAliases is an optional list of hosts
- and IPs that will be injected into the pod''s hosts
- file if '
- items:
- description: 'HostAlias holds the mapping between
- IP and hostnames that will be injected as an entry
- in the pod''s '
- properties:
- hostnames:
- description: Hostnames for the above IP address.
- items:
- type: string
- type: array
- ip:
- description: IP address of the host file entry.
- type: string
- type: object
- type: array
- hostIPC:
- description: 'Use the host''s ipc namespace. Optional:
- Default to false.'
- type: boolean
- hostNetwork:
- description: Host networking requested for this pod.
- Use the host's network namespace.
- type: boolean
- hostPID:
- description: 'Use the host''s pid namespace. Optional:
- Default to false.'
- type: boolean
- hostname:
- description: Specifies the hostname of the Pod If not
- specified, the pod's hostname will be set to a system-defin
- type: string
- imagePullSecrets:
- description: ImagePullSecrets is an optional list of
- references to secrets in the same namespace to use
- for pulli
- items:
- description: 'LocalObjectReference contains enough
- information to let you locate the referenced object
- inside the '
- properties:
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- type: object
- type: array
- initContainers:
- description: List of initialization containers belonging
- to the pod.
- items:
- description: A single application container that you
- want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed within
- a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if value
- is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to
- select in the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name: required
- for volumes, optional for env
- vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the source
- of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend
- to each key in the ConfigMap. Must be
- a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info: https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified as
- a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the
- container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose on
- the pod's IP address. This must be a valid
- port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the external
- port to.
- type: string
- hostPort:
- description: Number of port to expose on
- the host. If specified, this must be a
- valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by this
- container. Cannot be updated. More info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent POSIX
- capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged mode.
- type: boolean
- procMount:
- description: procMount denotes the type of
- proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has a
- read-only root filesystem. Default is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by
- this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is
- the name of the GMSA credential spec
- to use.
- type: string
- hostProcess:
- description: HostProcess determines if
- a container should be run as a 'Host
- Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the Pod
- has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command line
- to execute inside the container, the
- working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed after
- having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC service.
- Number must be in the range 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of the
- service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http request
- to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated headers.
- items:
- description: HTTPHeader describes a
- custom header to be used in HTTP probes
- properties:
- name:
- description: The header field name
- type: string
- value:
- description: The header field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the container
- has started before liveness probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to connect
- to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number must
- be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully upon
- probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been opened
- by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to be
- true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name of
- a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container at
- which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name of
- a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should be
- mounted.
- type: string
- subPathExpr:
- description: Expanded path within the volume
- from which the container's volume should
- be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- nodeName:
- description: NodeName is a request to schedule this
- pod onto a specific node.
- type: string
- nodeSelector:
- additionalProperties:
- type: string
- description: NodeSelector is a selector which must be
- true for the pod to fit on a node.
- type: object
- x-kubernetes-map-type: atomic
- os:
- description: Specifies the OS of the containers in the
- pod.
- properties:
- name:
- description: Name is the name of the operating system.
- The currently supported values are linux and windows.
- type: string
- required:
- - name
- type: object
- overhead:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Overhead represents the resource overhead
- associated with running a pod for a given RuntimeClass.
- type: object
- preemptionPolicy:
- description: PreemptionPolicy is the Policy for preempting
- pods with lower priority.
- type: string
- priority:
- description: The priority value. Various system components
- use this field to find the priority of the pod.
- format: int32
- type: integer
- priorityClassName:
- description: If specified, indicates the pod's priority.
- type: string
- readinessGates:
- description: If specified, all readiness gates will
- be evaluated for pod readiness.
- items:
- description: PodReadinessGate contains the reference
- to a pod condition
- properties:
- conditionType:
- description: ConditionType refers to a condition
- in the pod's condition list with matching type.
- type: string
- required:
- - conditionType
- type: object
- type: array
- restartPolicy:
- description: Restart policy for all containers within
- the pod. One of Always, OnFailure, Never.
- type: string
- runtimeClassName:
- description: RuntimeClassName refers to a RuntimeClass
- object in the node.k8s.
- type: string
- schedulerName:
- description: If specified, the pod will be dispatched
- by specified scheduler.
- type: string
- securityContext:
- description: SecurityContext holds pod-level security
- attributes and common container settings.
- properties:
- fsGroup:
- description: A special supplemental group that applies
- to all containers in a pod.
- format: int64
- type: integer
- fsGroupChangePolicy:
- description: fsGroupChangePolicy defines behavior
- of changing ownership and permission of the volume
- before being
- type: string
- runAsGroup:
- description: The GID to run the entrypoint of the
- container process. Uses runtime default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must run
- as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of the
- container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied to
- all containers.
- properties:
- level:
- description: Level is SELinux level label that
- applies to the container.
- type: string
- role:
- description: Role is a SELinux role label that
- applies to the container.
- type: string
- type:
- description: Type is a SELinux type label that
- applies to the container.
- type: string
- user:
- description: User is a SELinux user label that
- applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by the containers
- in this pod.
- properties:
- localhostProfile:
- description: localhostProfile indicates a profile
- defined in a file on the node should be used.
- type: string
- type:
- description: type indicates which kind of seccomp
- profile will be applied.
- type: string
- required:
- - type
- type: object
- supplementalGroups:
- description: 'A list of groups applied to the first
- process run in each container, in addition to
- the container''s '
- items:
- format: int64
- type: integer
- type: array
- sysctls:
- description: Sysctls hold a list of namespaced sysctls
- used for the pod.
- items:
- description: Sysctl defines a kernel parameter
- to be set
- properties:
- name:
- description: Name of a property to set
- type: string
- value:
- description: Value of a property to set
- type: string
- required:
- - name
- - value
- type: object
- type: array
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where the
- GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the name
- of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a container
- should be run as a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to run
- the entrypoint of the container process.
- type: string
- type: object
- type: object
- serviceAccount:
- description: DeprecatedServiceAccount is a depreciated
- alias for ServiceAccountName.
- type: string
- serviceAccountName:
- description: ServiceAccountName is the name of the ServiceAccount
- to use to run this pod.
- type: string
- setHostnameAsFQDN:
- description: If true the pod's hostname will be configured
- as the pod's FQDN, rather than the leaf name (the
- defa
- type: boolean
- shareProcessNamespace:
- description: Share a single process namespace between
- all of the containers in a pod.
- type: boolean
- subdomain:
- description: If specified, the fully qualified Pod hostname
- will be "...svc.
- type: string
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the pod needs
- to terminate gracefully.
- format: int64
- type: integer
- tolerations:
- description: If specified, the pod's tolerations.
- items:
- description: The pod this Toleration is attached to
- tolerates any taint that matches the triple name on the dataset for Flocker
- should be considered as de
- type: string
- datasetUUID:
- description: UUID of the dataset. This is
- unique identifier of a Flocker dataset
- type: string
- type: object
- gcePersistentDisk:
- description: GCEPersistentDisk represents a GCE
- Disk resource that is attached to a kubelet's
- host machine and th
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- partition:
- description: The partition in the volume that
- you want to mount.
- format: int32
- type: integer
- pdName:
- description: Unique name of the PD resource
- in GCE. Used to identify the disk in GCE.
- type: string
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- required:
- - pdName
- type: object
- gitRepo:
- description: 'GitRepo represents a git repository
- at a particular revision. DEPRECATED: GitRepo
- is deprecated.'
- properties:
- directory:
- description: Target directory name. Must not
- contain or start with '..'. If '.
- type: string
- repository:
- description: Repository URL
- type: string
- revision:
- description: Commit hash for the specified
- revision.
- type: string
- required:
- - repository
- type: object
- glusterfs:
- description: Glusterfs represents a Glusterfs
- mount on the host that shares a pod's lifetime.
- properties:
- endpoints:
- description: 'EndpointsName is the endpoint
- name that details Glusterfs topology. More
- info: https://examples.k8s.'
- type: string
- path:
- description: 'Path is the Glusterfs volume
- path. More info: https://examples.k8s.io/volumes/glusterfs/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- Glusterfs volume to be mounted with read-only
- permissions.
- type: boolean
- required:
- - endpoints
- - path
- type: object
- hostPath:
- description: HostPath represents a pre-existing
- file or directory on the host machine that is
- directly exposed to
- properties:
- path:
- description: Path of the directory on the
- host.
- type: string
- type:
- description: 'Type for HostPath Volume Defaults
- to "" More info: https://kubernetes.'
- type: string
- required:
- - path
- type: object
- iscsi:
- description: ISCSI represents an ISCSI Disk resource
- that is attached to a kubelet's host machine
- and then expose
- properties:
- chapAuthDiscovery:
- description: whether support iSCSI Discovery
- CHAP authentication
- type: boolean
- chapAuthSession:
- description: whether support iSCSI Session
- CHAP authentication
- type: boolean
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- initiatorName:
- description: Custom iSCSI Initiator Name.
- type: string
- iqn:
- description: Target iSCSI Qualified Name.
- type: string
- iscsiInterface:
- description: iSCSI Interface Name that uses
- an iSCSI transport. Defaults to 'default'
- (tcp).
- type: string
- lun:
- description: iSCSI Target Lun number.
- format: int32
- type: integer
- portals:
- description: iSCSI Target Portal List.
- items:
- type: string
- type: array
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- secretRef:
- description: CHAP Secret for iSCSI target
- and initiator authentication
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- targetPortal:
- description: iSCSI Target Portal.
- type: string
- required:
- - iqn
- - lun
- - targetPortal
- type: object
- name:
- description: 'Volume''s name. Must be a DNS_LABEL
- and unique within the pod. More info: https://kubernetes.'
- type: string
- nfs:
- description: 'NFS represents an NFS mount on the
- host that shares a pod''s lifetime More info:
- https://kubernetes.'
- properties:
- path:
- description: 'Path that is exported by the
- NFS server. More info: https://kubernetes.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- NFS export to be mounted with read-only
- permissions. Defaults to false.
- type: boolean
- server:
- description: 'Server is the hostname or IP
- address of the NFS server. More info: https://kubernetes.'
- type: string
- required:
- - path
- - server
- type: object
- persistentVolumeClaim:
- description: PersistentVolumeClaimVolumeSource
- represents a reference to a PersistentVolumeClaim
- in the same name
- properties:
- claimName:
- description: ClaimName is the name of a PersistentVolumeClaim
- in the same namespace as the pod using this
- volume.
- type: string
- readOnly:
- description: Will force the ReadOnly setting
- in VolumeMounts. Default false.
- type: boolean
- required:
- - claimName
- type: object
- photonPersistentDisk:
- description: 'PhotonPersistentDisk represents
- a PhotonController persistent disk attached
- and mounted on kubelets '
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- pdID:
- description: ID that identifies Photon Controller
- persistent disk
- type: string
- required:
- - pdID
- type: object
- portworxVolume:
- description: PortworxVolume represents a portworx
- volume attached and mounted on kubelets host
- machine
- properties:
- fsType:
- description: FSType represents the filesystem
- type to mount Must be a filesystem type
- supported by the host opera
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly setting
- in VolumeMounts.
- type: boolean
- volumeID:
- description: VolumeID uniquely identifies
- a Portworx volume
- type: string
- required:
- - volumeID
- type: object
- projected:
- description: Items for all in one resources secrets,
- configmaps, and downward API
- properties:
- defaultMode:
- description: Mode bits used to set permissions
- on created files by default.
- format: int32
- type: integer
- sources:
- description: list of volume projections
- items:
- description: Projection that may be projected
- along with other supported volume types
- properties:
- configMap:
- description: information about the configMap
- data to project
- properties:
- items:
- description: 'If unspecified, each
- key-value pair in the Data field
- of the referenced ConfigMap will
- be projected '
- items:
- description: Maps a string key
- to a path within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode
- bits used to set permissions
- on this file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to map
- the key to. May not be an
- absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its keys must be
- defined
- type: boolean
- type: object
- downwardAPI:
- description: information about the downwardAPI
- data to project
- properties:
- items:
- description: Items is a list of
- DownwardAPIVolume file
- items:
- description: DownwardAPIVolumeFile
- represents information to create
- the file containing the pod
- field
- properties:
- fieldRef:
- description: 'Required: Selects
- a field of the pod: only
- annotations, labels, name
- and namespace are supported.'
- properties:
- apiVersion:
- description: Version of
- the schema the FieldPath
- is written in terms
- of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the
- field to select in the
- specified API version.
- type: string
- required:
- - fieldPath
- type: object
- mode:
- description: 'Optional: mode
- bits used to set permissions
- on this file, must be an
- octal value between 0000
- and 07'
- format: int32
- type: integer
- path:
- description: 'Required: Path
- is the relative path name
- of the file to be created.'
- type: string
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container
- name: required for volumes,
- optional for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies
- the output format of
- the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required:
- resource to select'
- type: string
- required:
- - resource
- type: object
- required:
- - path
- type: object
- type: array
- type: object
- secret:
- description: information about the secret
- data to project
- properties:
- items:
- description: If unspecified, each
- key-value pair in the Data field
- of the referenced Secret will
- be projected int
- items:
- description: Maps a string key
- to a path within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode
- bits used to set permissions
- on this file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to map
- the key to. May not be an
- absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- type: object
- serviceAccountToken:
- description: information about the serviceAccountToken
- data to project
- properties:
- audience:
- description: Audience is the intended
- audience of the token.
- type: string
- expirationSeconds:
- description: ExpirationSeconds is
- the requested duration of validity
- of the service account token.
- format: int64
- type: integer
- path:
- description: Path is the path relative
- to the mount point of the file
- to project the token into.
- type: string
- required:
- - path
- type: object
- type: object
- type: array
- type: object
- quobyte:
- description: Quobyte represents a Quobyte mount
- on the host that shares a pod's lifetime
- properties:
- group:
- description: Group to map volume access to
- Default is no group
- type: string
- readOnly:
- description: ReadOnly here will force the
- Quobyte volume to be mounted with read-only
- permissions.
- type: boolean
- registry:
- description: Registry represents a single
- or multiple Quobyte Registry services specified
- as a string as host:por
- type: string
- tenant:
- description: Tenant owning the given Quobyte
- volume in the Backend Used with dynamically
- provisioned Quobyte volu
- type: string
- user:
- description: User to map volume access to
- Defaults to serivceaccount user
- type: string
- volume:
- description: Volume is a string that references
- an already created Quobyte volume by name.
- type: string
- required:
- - registry
- - volume
- type: object
- rbd:
- description: RBD represents a Rados Block Device
- mount on the host that shares a pod's lifetime.
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- image:
- description: 'The rados image name. More info:
- https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'
- type: string
- keyring:
- description: Keyring is the path to key ring
- for RBDUser. Default is /etc/ceph/keyring.
- type: string
- monitors:
- description: 'A collection of Ceph monitors.
- More info: https://examples.k8s.io/volumes/rbd/README.'
- items:
- type: string
- type: array
- pool:
- description: 'The rados pool name. Default
- is rbd. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- secretRef:
- description: SecretRef is name of the authentication
- secret for RBDUser. If provided overrides
- keyring.
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- user:
- description: 'The rados user name. Default
- is admin. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- required:
- - image
- - monitors
- type: object
- scaleIO:
- description: ScaleIO represents a ScaleIO persistent
- volume attached and mounted on Kubernetes nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- gateway:
- description: The host address of the ScaleIO
- API Gateway.
- type: string
- protectionDomain:
- description: The name of the ScaleIO Protection
- Domain for the configured storage.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly setting
- in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef references to the secret
- for ScaleIO user and other sensitive information.
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- sslEnabled:
- description: Flag to enable/disable SSL communication
- with Gateway, default false
- type: boolean
- storageMode:
- description: Indicates whether the storage
- for a volume should be ThickProvisioned
- or ThinProvisioned.
- type: string
- storagePool:
- description: The ScaleIO Storage Pool associated
- with the protection domain.
- type: string
- system:
- description: The name of the storage system
- as configured in ScaleIO.
- type: string
- volumeName:
- description: The name of a volume already
- created in the ScaleIO system that is associated
- with this volume sourc
- type: string
- required:
- - gateway
- - secretRef
- - system
- type: object
- secret:
- description: 'Secret represents a secret that
- should populate this volume. More info: https://kubernetes.'
- properties:
- defaultMode:
- description: 'Optional: mode bits used to
- set permissions on created files by default.'
- format: int32
- type: integer
- items:
- description: If unspecified, each key-value
- pair in the Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string key to a path
- within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode bits used
- to set permissions on this file.'
- format: int32
- type: integer
- path:
- description: The relative path of the
- file to map the key to. May not be
- an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- optional:
- description: Specify whether the Secret or
- its keys must be defined
- type: boolean
- secretName:
- description: 'Name of the secret in the pod''s
- namespace to use. More info: https://kubernetes.'
- type: string
- type: object
- storageos:
- description: StorageOS represents a StorageOS
- volume attached and mounted on Kubernetes nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly setting
- in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef specifies the secret
- to use for obtaining the StorageOS API credentials.
- properties:
- name:
- description: 'Name of the referent. More
- info: https://kubernetes.'
- type: string
- type: object
- volumeName:
- description: VolumeName is the human-readable
- name of the StorageOS volume.
- type: string
- volumeNamespace:
- description: VolumeNamespace specifies the
- scope of the volume within StorageOS.
- type: string
- type: object
- vsphereVolume:
- description: VsphereVolume represents a vSphere
- volume attached and mounted on kubelets host
- machine
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the host
- operating system. Ex.
- type: string
- storagePolicyID:
- description: Storage Policy Based Management
- (SPBM) profile ID associated with the StoragePolicyName.
- type: string
- storagePolicyName:
- description: Storage Policy Based Management
- (SPBM) profile name.
- type: string
- volumePath:
- description: Path that identifies vSphere
- volume vmdk
- type: string
- required:
- - volumePath
- type: object
- required:
- - name
- type: object
- type: array
- required:
- - containers
- type: object
- type: object
- required:
- - groupName
- - maxReplicas
- - minReplicas
- - rayStartParams
- - replicas
- - template
- type: object
- type: array
- required:
- - headGroupSpec
- type: object
- status:
- description: RayClusterStatus defines the observed state of RayCluster
- properties:
- availableWorkerReplicas:
- description: AvailableWorkerReplicas indicates how many replicas are
- available in the cluster
- format: int32
- type: integer
- desiredWorkerReplicas:
- description: DesiredWorkerReplicas indicates overall desired replicas
- claimed by the user at the cluster level.
- format: int32
- type: integer
- endpoints:
- additionalProperties:
- type: string
- description: Service Endpoints
- type: object
- lastUpdateTime:
- description: LastUpdateTime indicates last update timestamp for this
- cluster status.
- format: date-time
- nullable: true
- type: string
- maxWorkerReplicas:
- description: MaxWorkerReplicas indicates sum of maximum replicas of
- each node group.
- format: int32
- type: integer
- minWorkerReplicas:
- description: MinWorkerReplicas indicates sum of minimum replicas of
- each node group.
- format: int32
- type: integer
- state:
- description: 'INSERT ADDITIONAL STATUS FIELD - define observed state
- of cluster Important: Run "make" to regenerat'
- type: string
- type: object
- type: object
- served: true
- storage: true
- subresources:
- status: {}
-status:
- acceptedNames:
- kind: ""
- plural: ""
- conditions: []
- storedVersions: []
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayjobs.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayjobs.yaml
deleted file mode 100644
index 1170f048b3..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayjobs.yaml
+++ /dev/null
@@ -1,11723 +0,0 @@
-# Make sure to increase resource requests and limits before using this example in production.
-# For examples with more realistic resource configuration, see
-# ray-cluster.complete.large.yaml and
-# ray-cluster.autoscaler.large.yaml.
----
-apiVersion: apiextensions.k8s.io/v1
-kind: CustomResourceDefinition
-metadata:
- annotations:
- controller-gen.kubebuilder.io/version: v0.6.0
- creationTimestamp: null
- name: rayjobs.ray.io
-spec:
- group: ray.io
- names:
- kind: RayJob
- listKind: RayJobList
- plural: rayjobs
- singular: rayjob
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- description: RayJob is the Schema for the rayjobs API
- properties:
- apiVersion:
- description: APIVersion defines the versioned schema of this representation
- of an object.
- type: string
- kind:
- description: Kind is a string value representing the REST resource this
- object represents.
- type: string
- metadata:
- type: object
- spec:
- description: RayJobSpec defines the desired state of RayJob
- properties:
- clusterSelector:
- additionalProperties:
- type: string
- description: clusterSelector is used to select running rayclusters
- by labels
- type: object
- entrypoint:
- description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
- Important: Run "make" to regenerate code af'
- type: string
- jobId:
- description: If jobId is not set, a new jobId will be auto-generated.
- type: string
- metadata:
- additionalProperties:
- type: string
- description: Metadata is data to store along with this job.
- type: object
- rayClusterSpec:
- description: RayClusterSpec is the cluster template to run the job
- properties:
- autoscalerOptions:
- description: AutoscalerOptions specifies optional configuration
- for the Ray autoscaler.
- properties:
- env:
- description: Optional list of environment variables to set
- in the autoscaler container.
- items:
- description: EnvVar represents an environment variable present
- in a Container.
- properties:
- name:
- description: Name of the environment variable. Must
- be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME) are expanded
- using the previously defined environment variables
- in t
- type: string
- valueFrom:
- description: Source for the environment variable's value.
- Cannot be used if value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap or
- its key must be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the pod: supports
- metadata.name, metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the schema the FieldPath
- is written in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field to select in
- the specified API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of the container:
- only resources limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name: required for volumes,
- optional for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output format of
- the exposed resources, defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret in the pod's
- namespace
- properties:
- key:
- description: The key of the secret to select
- from. Must be a valid secret key.
- type: string
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret or its
- key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: Optional list of sources to populate environment
- variables in the autoscaler container.
- items:
- description: EnvFromSource represents the source of a set
- of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent. More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap must
- be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to prepend to each
- key in the ConfigMap. Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent. More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret must be
- defined
- type: boolean
- type: object
- type: object
- type: array
- idleTimeoutSeconds:
- description: IdleTimeoutSeconds is the number of seconds to
- wait before scaling down a worker pod which is not us
- format: int32
- type: integer
- image:
- description: Image optionally overrides the autoscaler's container
- image.
- type: string
- imagePullPolicy:
- description: ImagePullPolicy optionally overrides the autoscaler
- container's image pull policy.
- type: string
- resources:
- description: Resources specifies optional resource request
- and limit overrides for the autoscaler container.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum amount of compute
- resources allowed. More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum amount of
- compute resources required.
- type: object
- type: object
- upscalingMode:
- description: UpscalingMode is "Conservative", "Default", or
- "Aggressive.
- enum:
- - Default
- - Aggressive
- - Conservative
- type: string
- type: object
- enableInTreeAutoscaling:
- description: EnableInTreeAutoscaling indicates whether operator
- should create in tree autoscaling configs
- type: boolean
- headGroupSpec:
- description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of
- cluster Important: Run "make" to regenerate code af'
- properties:
- enableIngress:
- description: EnableIngress indicates whether operator should
- create ingress object for head service or not.
- type: boolean
- rayStartParams:
- additionalProperties:
- type: string
- description: 'RayStartParams are the params of the start command:
- node-manager-port, object-store-memory, ...'
- type: object
- replicas:
- description: HeadGroupSpec.Replicas is deprecated and ignored;
- there can only be one head pod per Ray cluster.
- format: int32
- type: integer
- serviceType:
- description: ServiceType is Kubernetes service type of the
- head service.
- type: string
- template:
- description: Template is the eaxct pod template used in K8s
- depoyments, statefulsets, etc.
- properties:
- metadata:
- description: 'Standard object''s metadata. More info:
- https://git.k8s.'
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- finalizers:
- items:
- type: string
- type: array
- labels:
- additionalProperties:
- type: string
- type: object
- name:
- type: string
- namespace:
- type: string
- type: object
- spec:
- description: 'Specification of the desired behavior of
- the pod. More info: https://git.k8s.'
- properties:
- activeDeadlineSeconds:
- description: Optional duration in seconds the pod
- may be active on the node relative to StartTime
- before the syst
- format: int64
- type: integer
- affinity:
- description: If specified, the pod's scheduling constraints
- properties:
- nodeAffinity:
- description: Describes node affinity scheduling
- rules for the pod.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to
- schedule pods to nodes that satisfy the
- affinity expressions specified '
- items:
- description: An empty preferred scheduling
- term matches all objects with implicit
- weight 0 (i.e. it's a no-op).
- properties:
- preference:
- description: A node selector term, associated
- with the corresponding weight.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- weight:
- description: Weight associated with
- matching the corresponding nodeSelectorTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - preference
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at scheduling
- time, the pod will no
- properties:
- nodeSelectorTerms:
- description: Required. A list of node
- selector terms. The terms are ORed.
- items:
- description: A null or empty node selector
- term matches no objects. The requirements
- of them are ANDed.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- type: array
- required:
- - nodeSelectorTerms
- type: object
- type: object
- podAffinity:
- description: Describes pod affinity scheduling
- rules (e.g. co-locate this pod in the same node,
- zone, etc.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to
- schedule pods to nodes that satisfy the
- affinity expressions specified '
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added
- per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this case
- pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not co-located
- (anti-affinity) with the pods
- matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at scheduling
- time, the pod will no
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a
- static list of namespace names that
- the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- podAntiAffinity:
- description: Describes pod anti-affinity scheduling
- rules (e.g.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: The scheduler will prefer to
- schedule pods to nodes that satisfy the
- anti-affinity expressions speci
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added
- per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this case
- pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not co-located
- (anti-affinity) with the pods
- matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the anti-affinity requirements
- specified by this field are not met at scheduling
- time, the pod wi
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a
- static list of namespace names that
- the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- type: object
- automountServiceAccountToken:
- description: AutomountServiceAccountToken indicates
- whether a service account token should be automatically
- mount
- type: boolean
- containers:
- description: List of containers belonging to the pod.
- Containers cannot currently be added or removed.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not
- provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be
- defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in
- terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to
- prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the
- container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must be
- a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More info:
- https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default is
- false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as a
- 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been
- opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to
- be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should
- be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's volume
- should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- dnsConfig:
- description: Specifies the DNS parameters of a pod.
- properties:
- nameservers:
- description: A list of DNS name server IP addresses.
- items:
- type: string
- type: array
- options:
- description: A list of DNS resolver options. This
- will be merged with the base options generated
- from DNSPolicy.
- items:
- description: PodDNSConfigOption defines DNS
- resolver options of a pod.
- properties:
- name:
- description: Required.
- type: string
- value:
- type: string
- type: object
- type: array
- searches:
- description: A list of DNS search domains for
- host-name lookup.
- items:
- type: string
- type: array
- type: object
- dnsPolicy:
- description: Set DNS policy for the pod. Defaults
- to "ClusterFirst".
- type: string
- enableServiceLinks:
- description: EnableServiceLinks indicates whether
- information about services should be injected into
- pod's enviro
- type: boolean
- ephemeralContainers:
- description: List of ephemeral containers run in this
- pod.
- items:
- description: An EphemeralContainer is a temporary
- container that you may add to an existing Pod
- for user-initiate
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not
- provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be
- defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in
- terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to
- prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.io/docs/concepts/containers/images'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Lifecycle is not allowed for ephemeral
- containers.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the ephemeral container
- specified as a DNS_LABEL.
- type: string
- ports:
- description: Ports are not allowed for ephemeral
- containers.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must be
- a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: Resources are not allowed for ephemeral
- containers.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: 'Optional: SecurityContext defines
- the security options the ephemeral container
- should be run with.'
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default is
- false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as a
- 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been
- opened by a single at
- type: boolean
- targetContainerName:
- description: If set, the name of the container
- from PodSpec that this ephemeral container
- targets.
- type: string
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to
- be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should
- be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's volume
- should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- hostAliases:
- description: 'HostAliases is an optional list of hosts
- and IPs that will be injected into the pod''s hosts
- file if '
- items:
- description: 'HostAlias holds the mapping between
- IP and hostnames that will be injected as an entry
- in the pod''s '
- properties:
- hostnames:
- description: Hostnames for the above IP address.
- items:
- type: string
- type: array
- ip:
- description: IP address of the host file entry.
- type: string
- type: object
- type: array
- hostIPC:
- description: 'Use the host''s ipc namespace. Optional:
- Default to false.'
- type: boolean
- hostNetwork:
- description: Host networking requested for this pod.
- Use the host's network namespace.
- type: boolean
- hostPID:
- description: 'Use the host''s pid namespace. Optional:
- Default to false.'
- type: boolean
- hostname:
- description: Specifies the hostname of the Pod If
- not specified, the pod's hostname will be set to
- a system-defin
- type: string
- imagePullSecrets:
- description: ImagePullSecrets is an optional list
- of references to secrets in the same namespace to
- use for pulli
- items:
- description: 'LocalObjectReference contains enough
- information to let you locate the referenced object
- inside the '
- properties:
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- type: object
- type: array
- initContainers:
- description: List of initialization containers belonging
- to the pod.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not
- provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be
- defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in
- terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to
- prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the
- container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must be
- a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More info:
- https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default is
- false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as a
- 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been
- opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to
- be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should
- be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's volume
- should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- nodeName:
- description: NodeName is a request to schedule this
- pod onto a specific node.
- type: string
- nodeSelector:
- additionalProperties:
- type: string
- description: NodeSelector is a selector which must
- be true for the pod to fit on a node.
- type: object
- x-kubernetes-map-type: atomic
- os:
- description: Specifies the OS of the containers in
- the pod.
- properties:
- name:
- description: Name is the name of the operating
- system. The currently supported values are linux
- and windows.
- type: string
- required:
- - name
- type: object
- overhead:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Overhead represents the resource overhead
- associated with running a pod for a given RuntimeClass.
- type: object
- preemptionPolicy:
- description: PreemptionPolicy is the Policy for preempting
- pods with lower priority.
- type: string
- priority:
- description: The priority value. Various system components
- use this field to find the priority of the pod.
- format: int32
- type: integer
- priorityClassName:
- description: If specified, indicates the pod's priority.
- type: string
- readinessGates:
- description: If specified, all readiness gates will
- be evaluated for pod readiness.
- items:
- description: PodReadinessGate contains the reference
- to a pod condition
- properties:
- conditionType:
- description: ConditionType refers to a condition
- in the pod's condition list with matching
- type.
- type: string
- required:
- - conditionType
- type: object
- type: array
- restartPolicy:
- description: Restart policy for all containers within
- the pod. One of Always, OnFailure, Never.
- type: string
- runtimeClassName:
- description: RuntimeClassName refers to a RuntimeClass
- object in the node.k8s.
- type: string
- schedulerName:
- description: If specified, the pod will be dispatched
- by specified scheduler.
- type: string
- securityContext:
- description: SecurityContext holds pod-level security
- attributes and common container settings.
- properties:
- fsGroup:
- description: A special supplemental group that
- applies to all containers in a pod.
- format: int64
- type: integer
- fsGroupChangePolicy:
- description: fsGroupChangePolicy defines behavior
- of changing ownership and permission of the
- volume before being
- type: string
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to all containers.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by the
- containers in this pod.
- properties:
- localhostProfile:
- description: localhostProfile indicates a
- profile defined in a file on the node should
- be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- supplementalGroups:
- description: 'A list of groups applied to the
- first process run in each container, in addition
- to the container''s '
- items:
- format: int64
- type: integer
- type: array
- sysctls:
- description: Sysctls hold a list of namespaced
- sysctls used for the pod.
- items:
- description: Sysctl defines a kernel parameter
- to be set
- properties:
- name:
- description: Name of a property to set
- type: string
- value:
- description: Value of a property to set
- type: string
- required:
- - name
- - value
- type: object
- type: array
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where the
- GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a container
- should be run as a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to run
- the entrypoint of the container process.
- type: string
- type: object
- type: object
- serviceAccount:
- description: DeprecatedServiceAccount is a depreciated
- alias for ServiceAccountName.
- type: string
- serviceAccountName:
- description: ServiceAccountName is the name of the
- ServiceAccount to use to run this pod.
- type: string
- setHostnameAsFQDN:
- description: If true the pod's hostname will be configured
- as the pod's FQDN, rather than the leaf name (the
- defa
- type: boolean
- shareProcessNamespace:
- description: Share a single process namespace between
- all of the containers in a pod.
- type: boolean
- subdomain:
- description: If specified, the fully qualified Pod
- hostname will be "...svc.
- type: string
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the pod
- needs to terminate gracefully.
- format: int64
- type: integer
- tolerations:
- description: If specified, the pod's tolerations.
- items:
- description: The pod this Toleration is attached
- to tolerates any taint that matches the triple
- name on the dataset for
- Flocker should be considered as de
- type: string
- datasetUUID:
- description: UUID of the dataset. This is
- unique identifier of a Flocker dataset
- type: string
- type: object
- gcePersistentDisk:
- description: GCEPersistentDisk represents a
- GCE Disk resource that is attached to a kubelet's
- host machine and th
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- partition:
- description: The partition in the volume
- that you want to mount.
- format: int32
- type: integer
- pdName:
- description: Unique name of the PD resource
- in GCE. Used to identify the disk in GCE.
- type: string
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- required:
- - pdName
- type: object
- gitRepo:
- description: 'GitRepo represents a git repository
- at a particular revision. DEPRECATED: GitRepo
- is deprecated.'
- properties:
- directory:
- description: Target directory name. Must
- not contain or start with '..'. If '.
- type: string
- repository:
- description: Repository URL
- type: string
- revision:
- description: Commit hash for the specified
- revision.
- type: string
- required:
- - repository
- type: object
- glusterfs:
- description: Glusterfs represents a Glusterfs
- mount on the host that shares a pod's lifetime.
- properties:
- endpoints:
- description: 'EndpointsName is the endpoint
- name that details Glusterfs topology.
- More info: https://examples.k8s.'
- type: string
- path:
- description: 'Path is the Glusterfs volume
- path. More info: https://examples.k8s.io/volumes/glusterfs/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- Glusterfs volume to be mounted with read-only
- permissions.
- type: boolean
- required:
- - endpoints
- - path
- type: object
- hostPath:
- description: HostPath represents a pre-existing
- file or directory on the host machine that
- is directly exposed to
- properties:
- path:
- description: Path of the directory on the
- host.
- type: string
- type:
- description: 'Type for HostPath Volume Defaults
- to "" More info: https://kubernetes.'
- type: string
- required:
- - path
- type: object
- iscsi:
- description: ISCSI represents an ISCSI Disk
- resource that is attached to a kubelet's host
- machine and then expose
- properties:
- chapAuthDiscovery:
- description: whether support iSCSI Discovery
- CHAP authentication
- type: boolean
- chapAuthSession:
- description: whether support iSCSI Session
- CHAP authentication
- type: boolean
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- initiatorName:
- description: Custom iSCSI Initiator Name.
- type: string
- iqn:
- description: Target iSCSI Qualified Name.
- type: string
- iscsiInterface:
- description: iSCSI Interface Name that uses
- an iSCSI transport. Defaults to 'default'
- (tcp).
- type: string
- lun:
- description: iSCSI Target Lun number.
- format: int32
- type: integer
- portals:
- description: iSCSI Target Portal List.
- items:
- type: string
- type: array
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- secretRef:
- description: CHAP Secret for iSCSI target
- and initiator authentication
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- targetPortal:
- description: iSCSI Target Portal.
- type: string
- required:
- - iqn
- - lun
- - targetPortal
- type: object
- name:
- description: 'Volume''s name. Must be a DNS_LABEL
- and unique within the pod. More info: https://kubernetes.'
- type: string
- nfs:
- description: 'NFS represents an NFS mount on
- the host that shares a pod''s lifetime More
- info: https://kubernetes.'
- properties:
- path:
- description: 'Path that is exported by the
- NFS server. More info: https://kubernetes.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- NFS export to be mounted with read-only
- permissions. Defaults to false.
- type: boolean
- server:
- description: 'Server is the hostname or
- IP address of the NFS server. More info:
- https://kubernetes.'
- type: string
- required:
- - path
- - server
- type: object
- persistentVolumeClaim:
- description: PersistentVolumeClaimVolumeSource
- represents a reference to a PersistentVolumeClaim
- in the same name
- properties:
- claimName:
- description: ClaimName is the name of a
- PersistentVolumeClaim in the same namespace
- as the pod using this volume.
- type: string
- readOnly:
- description: Will force the ReadOnly setting
- in VolumeMounts. Default false.
- type: boolean
- required:
- - claimName
- type: object
- photonPersistentDisk:
- description: 'PhotonPersistentDisk represents
- a PhotonController persistent disk attached
- and mounted on kubelets '
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- pdID:
- description: ID that identifies Photon Controller
- persistent disk
- type: string
- required:
- - pdID
- type: object
- portworxVolume:
- description: PortworxVolume represents a portworx
- volume attached and mounted on kubelets host
- machine
- properties:
- fsType:
- description: FSType represents the filesystem
- type to mount Must be a filesystem type
- supported by the host opera
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- volumeID:
- description: VolumeID uniquely identifies
- a Portworx volume
- type: string
- required:
- - volumeID
- type: object
- projected:
- description: Items for all in one resources
- secrets, configmaps, and downward API
- properties:
- defaultMode:
- description: Mode bits used to set permissions
- on created files by default.
- format: int32
- type: integer
- sources:
- description: list of volume projections
- items:
- description: Projection that may be projected
- along with other supported volume types
- properties:
- configMap:
- description: information about the
- configMap data to project
- properties:
- items:
- description: 'If unspecified,
- each key-value pair in the Data
- field of the referenced ConfigMap
- will be projected '
- items:
- description: Maps a string key
- to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to map
- the key to. May not be
- an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its keys must be
- defined
- type: boolean
- type: object
- downwardAPI:
- description: information about the
- downwardAPI data to project
- properties:
- items:
- description: Items is a list of
- DownwardAPIVolume file
- items:
- description: DownwardAPIVolumeFile
- represents information to
- create the file containing
- the pod field
- properties:
- fieldRef:
- description: 'Required:
- Selects a field of the
- pod: only annotations,
- labels, name and namespace
- are supported.'
- properties:
- apiVersion:
- description: Version
- of the schema the
- FieldPath is written
- in terms of, defaults
- to "v1".
- type: string
- fieldPath:
- description: Path of
- the field to select
- in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this file,
- must be an octal value
- between 0000 and 07'
- format: int32
- type: integer
- path:
- description: 'Required:
- Path is the relative
- path name of the file
- to be created.'
- type: string
- resourceFieldRef:
- description: 'Selects a
- resource of the container:
- only resources limits
- and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container
- name: required for
- volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies
- the output format
- of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required:
- resource to select'
- type: string
- required:
- - resource
- type: object
- required:
- - path
- type: object
- type: array
- type: object
- secret:
- description: information about the
- secret data to project
- properties:
- items:
- description: If unspecified, each
- key-value pair in the Data field
- of the referenced Secret will
- be projected int
- items:
- description: Maps a string key
- to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to map
- the key to. May not be
- an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- type: object
- serviceAccountToken:
- description: information about the
- serviceAccountToken data to project
- properties:
- audience:
- description: Audience is the intended
- audience of the token.
- type: string
- expirationSeconds:
- description: ExpirationSeconds
- is the requested duration of
- validity of the service account
- token.
- format: int64
- type: integer
- path:
- description: Path is the path
- relative to the mount point
- of the file to project the token
- into.
- type: string
- required:
- - path
- type: object
- type: object
- type: array
- type: object
- quobyte:
- description: Quobyte represents a Quobyte mount
- on the host that shares a pod's lifetime
- properties:
- group:
- description: Group to map volume access
- to Default is no group
- type: string
- readOnly:
- description: ReadOnly here will force the
- Quobyte volume to be mounted with read-only
- permissions.
- type: boolean
- registry:
- description: Registry represents a single
- or multiple Quobyte Registry services
- specified as a string as host:por
- type: string
- tenant:
- description: Tenant owning the given Quobyte
- volume in the Backend Used with dynamically
- provisioned Quobyte volu
- type: string
- user:
- description: User to map volume access to
- Defaults to serivceaccount user
- type: string
- volume:
- description: Volume is a string that references
- an already created Quobyte volume by name.
- type: string
- required:
- - registry
- - volume
- type: object
- rbd:
- description: RBD represents a Rados Block Device
- mount on the host that shares a pod's lifetime.
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- image:
- description: 'The rados image name. More
- info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'
- type: string
- keyring:
- description: Keyring is the path to key
- ring for RBDUser. Default is /etc/ceph/keyring.
- type: string
- monitors:
- description: 'A collection of Ceph monitors.
- More info: https://examples.k8s.io/volumes/rbd/README.'
- items:
- type: string
- type: array
- pool:
- description: 'The rados pool name. Default
- is rbd. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- secretRef:
- description: SecretRef is name of the authentication
- secret for RBDUser. If provided overrides
- keyring.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- user:
- description: 'The rados user name. Default
- is admin. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- required:
- - image
- - monitors
- type: object
- scaleIO:
- description: ScaleIO represents a ScaleIO persistent
- volume attached and mounted on Kubernetes
- nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- gateway:
- description: The host address of the ScaleIO
- API Gateway.
- type: string
- protectionDomain:
- description: The name of the ScaleIO Protection
- Domain for the configured storage.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef references to the
- secret for ScaleIO user and other sensitive
- information.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- sslEnabled:
- description: Flag to enable/disable SSL
- communication with Gateway, default false
- type: boolean
- storageMode:
- description: Indicates whether the storage
- for a volume should be ThickProvisioned
- or ThinProvisioned.
- type: string
- storagePool:
- description: The ScaleIO Storage Pool associated
- with the protection domain.
- type: string
- system:
- description: The name of the storage system
- as configured in ScaleIO.
- type: string
- volumeName:
- description: The name of a volume already
- created in the ScaleIO system that is
- associated with this volume sourc
- type: string
- required:
- - gateway
- - secretRef
- - system
- type: object
- secret:
- description: 'Secret represents a secret that
- should populate this volume. More info: https://kubernetes.'
- properties:
- defaultMode:
- description: 'Optional: mode bits used to
- set permissions on created files by default.'
- format: int32
- type: integer
- items:
- description: If unspecified, each key-value
- pair in the Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string key to a path
- within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode bits
- used to set permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative path of
- the file to map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- optional:
- description: Specify whether the Secret
- or its keys must be defined
- type: boolean
- secretName:
- description: 'Name of the secret in the
- pod''s namespace to use. More info: https://kubernetes.'
- type: string
- type: object
- storageos:
- description: StorageOS represents a StorageOS
- volume attached and mounted on Kubernetes
- nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef specifies the secret
- to use for obtaining the StorageOS API
- credentials.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- volumeName:
- description: VolumeName is the human-readable
- name of the StorageOS volume.
- type: string
- volumeNamespace:
- description: VolumeNamespace specifies the
- scope of the volume within StorageOS.
- type: string
- type: object
- vsphereVolume:
- description: VsphereVolume represents a vSphere
- volume attached and mounted on kubelets host
- machine
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- storagePolicyID:
- description: Storage Policy Based Management
- (SPBM) profile ID associated with the
- StoragePolicyName.
- type: string
- storagePolicyName:
- description: Storage Policy Based Management
- (SPBM) profile name.
- type: string
- volumePath:
- description: Path that identifies vSphere
- volume vmdk
- type: string
- required:
- - volumePath
- type: object
- required:
- - name
- type: object
- type: array
- required:
- - containers
- type: object
- type: object
- required:
- - rayStartParams
- - serviceType
- - template
- type: object
- rayVersion:
- description: RayVersion is the version of ray being used. this
- affects the command used to start ray
- type: string
- workerGroupSpecs:
- description: WorkerGroupSpecs are the specs for the worker pods
- items:
- description: WorkerGroupSpec are the specs for the worker pods
- properties:
- groupName:
- description: we can have multiple worker groups, we distinguish
- them by name
- type: string
- maxReplicas:
- description: MaxReplicas defaults to maxInt32
- format: int32
- type: integer
- minReplicas:
- description: MinReplicas defaults to 1
- format: int32
- type: integer
- rayStartParams:
- additionalProperties:
- type: string
- description: 'RayStartParams are the params of the start
- command: address, object-store-memory, ...'
- type: object
- replicas:
- description: Replicas Number of desired pods in this pod
- group.
- format: int32
- type: integer
- scaleStrategy:
- description: ScaleStrategy defines which pods to remove
- properties:
- workersToDelete:
- description: WorkersToDelete workers to be deleted
- items:
- type: string
- type: array
- type: object
- template:
- description: Template a pod template for the worker
- properties:
- metadata:
- description: 'Standard object''s metadata. More info:
- https://git.k8s.'
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- finalizers:
- items:
- type: string
- type: array
- labels:
- additionalProperties:
- type: string
- type: object
- name:
- type: string
- namespace:
- type: string
- type: object
- spec:
- description: 'Specification of the desired behavior
- of the pod. More info: https://git.k8s.'
- properties:
- activeDeadlineSeconds:
- description: Optional duration in seconds the pod
- may be active on the node relative to StartTime
- before the syst
- format: int64
- type: integer
- affinity:
- description: If specified, the pod's scheduling
- constraints
- properties:
- nodeAffinity:
- description: Describes node affinity scheduling
- rules for the pod.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer
- to schedule pods to nodes that satisfy
- the affinity expressions specified '
- items:
- description: An empty preferred scheduling
- term matches all objects with implicit
- weight 0 (i.e. it's a no-op).
- properties:
- preference:
- description: A node selector term,
- associated with the corresponding
- weight.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- weight:
- description: Weight associated with
- matching the corresponding nodeSelectorTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - preference
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at
- scheduling time, the pod will no
- properties:
- nodeSelectorTerms:
- description: Required. A list of node
- selector terms. The terms are ORed.
- items:
- description: A null or empty node
- selector term matches no objects.
- The requirements of them are ANDed.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- type: array
- required:
- - nodeSelectorTerms
- type: object
- type: object
- podAffinity:
- description: Describes pod affinity scheduling
- rules (e.g. co-locate this pod in the same
- node, zone, etc.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer
- to schedule pods to nodes that satisfy
- the affinity expressions specified '
- items:
- description: The weights of all of the
- matched WeightedPodAffinityTerm fields
- are added per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this
- case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not
- co-located (anti-affinity) with
- the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at
- scheduling time, the pod will no
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a
- set of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term
- applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- podAntiAffinity:
- description: Describes pod anti-affinity scheduling
- rules (e.g.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: The scheduler will prefer to
- schedule pods to nodes that satisfy the
- anti-affinity expressions speci
- items:
- description: The weights of all of the
- matched WeightedPodAffinityTerm fields
- are added per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this
- case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not
- co-located (anti-affinity) with
- the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the anti-affinity requirements
- specified by this field are not met at
- scheduling time, the pod wi
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a
- set of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term
- applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- type: object
- automountServiceAccountToken:
- description: AutomountServiceAccountToken indicates
- whether a service account token should be automatically
- mount
- type: boolean
- containers:
- description: List of containers belonging to the
- pod. Containers cannot currently be added or removed.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint.
- The docker image's CMD is used if this is
- not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables
- to set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment
- variable. Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously
- defined environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a
- ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of
- the pod: supports metadata.name,
- metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the
- schema the FieldPath is written
- in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a
- secret in the pod's namespace
- properties:
- key:
- description: The key of the
- secret to select from. Must
- be a valid secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select
- from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier
- to prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due
- to an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe
- fails.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from
- the container.
- items:
- description: ContainerPort represents a
- network port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must
- be an IANA_SVC_NAME and unique within
- the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must
- be UDP, TCP, or SCTP. Defaults to
- "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More
- info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed.
- More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation
- controls whether a process can gain
- more privileges than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default
- is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be
- applied to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which
- kind of seccomp profile will be
- applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is
- where the GMSA admission webhook
- (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as
- a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should
- allocate a buffer for stdin in the container
- runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime
- should close the stdin channel after it
- has been opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the
- file to which the container''s termination
- message will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination
- message should be populated.
- type: string
- tty:
- description: Whether this container should
- allocate a TTY for itself, also requires
- 'stdin' to be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of
- block devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path
- inside of the container that the device
- will be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the
- pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the
- container's filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the
- host to container and the other way
- a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume
- from which the container's volume
- should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's
- volume should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- dnsConfig:
- description: Specifies the DNS parameters of a pod.
- properties:
- nameservers:
- description: A list of DNS name server IP addresses.
- items:
- type: string
- type: array
- options:
- description: A list of DNS resolver options.
- This will be merged with the base options
- generated from DNSPolicy.
- items:
- description: PodDNSConfigOption defines DNS
- resolver options of a pod.
- properties:
- name:
- description: Required.
- type: string
- value:
- type: string
- type: object
- type: array
- searches:
- description: A list of DNS search domains for
- host-name lookup.
- items:
- type: string
- type: array
- type: object
- dnsPolicy:
- description: Set DNS policy for the pod. Defaults
- to "ClusterFirst".
- type: string
- enableServiceLinks:
- description: EnableServiceLinks indicates whether
- information about services should be injected
- into pod's enviro
- type: boolean
- ephemeralContainers:
- description: List of ephemeral containers run in
- this pod.
- items:
- description: An EphemeralContainer is a temporary
- container that you may add to an existing Pod
- for user-initiate
- properties:
- args:
- description: Arguments to the entrypoint.
- The docker image's CMD is used if this is
- not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables
- to set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment
- variable. Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously
- defined environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a
- ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of
- the pod: supports metadata.name,
- metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the
- schema the FieldPath is written
- in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a
- secret in the pod's namespace
- properties:
- key:
- description: The key of the
- secret to select from. Must
- be a valid secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select
- from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier
- to prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.io/docs/concepts/containers/images'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Lifecycle is not allowed for
- ephemeral containers.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due
- to an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the ephemeral container
- specified as a DNS_LABEL.
- type: string
- ports:
- description: Ports are not allowed for ephemeral
- containers.
- items:
- description: ContainerPort represents a
- network port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must
- be an IANA_SVC_NAME and unique within
- the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must
- be UDP, TCP, or SCTP. Defaults to
- "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: Resources are not allowed for
- ephemeral containers.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed.
- More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: 'Optional: SecurityContext defines
- the security options the ephemeral container
- should be run with.'
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation
- controls whether a process can gain
- more privileges than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default
- is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be
- applied to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which
- kind of seccomp profile will be
- applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is
- where the GMSA admission webhook
- (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as
- a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should
- allocate a buffer for stdin in the container
- runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime
- should close the stdin channel after it
- has been opened by a single at
- type: boolean
- targetContainerName:
- description: If set, the name of the container
- from PodSpec that this ephemeral container
- targets.
- type: string
- terminationMessagePath:
- description: 'Optional: Path at which the
- file to which the container''s termination
- message will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination
- message should be populated.
- type: string
- tty:
- description: Whether this container should
- allocate a TTY for itself, also requires
- 'stdin' to be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of
- block devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path
- inside of the container that the device
- will be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the
- pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the
- container's filesystem.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the
- host to container and the other way
- a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume
- from which the container's volume
- should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's
- volume should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- hostAliases:
- description: 'HostAliases is an optional list of
- hosts and IPs that will be injected into the pod''s
- hosts file if '
- items:
- description: 'HostAlias holds the mapping between
- IP and hostnames that will be injected as an
- entry in the pod''s '
- properties:
- hostnames:
- description: Hostnames for the above IP address.
- items:
- type: string
- type: array
- ip:
- description: IP address of the host file entry.
- type: string
- type: object
- type: array
- hostIPC:
- description: 'Use the host''s ipc namespace. Optional:
- Default to false.'
- type: boolean
- hostNetwork:
- description: Host networking requested for this
- pod. Use the host's network namespace.
- type: boolean
- hostPID:
- description: 'Use the host''s pid namespace. Optional:
- Default to false.'
- type: boolean
- hostname:
- description: Specifies the hostname of the Pod If
- not specified, the pod's hostname will be set
- to a system-defin
- type: string
- imagePullSecrets:
- description: ImagePullSecrets is an optional list
- of references to secrets in the same namespace
- to use for pulli
- items:
- description: 'LocalObjectReference contains enough
- information to let you locate the referenced
- object inside the '
- properties:
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- type: object
- type: array
- initContainers:
- description: List of initialization containers belonging
- to the pod.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint.
- The docker image's CMD is used if this is
- not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables
- to set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment
- variable. Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously
- defined environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a
- ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of
- the pod: supports metadata.name,
- metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the
- schema the FieldPath is written
- in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a
- secret in the pod's namespace
- properties:
- key:
- description: The key of the
- secret to select from. Must
- be a valid secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select
- from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier
- to prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due
- to an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe
- fails.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from
- the container.
- items:
- description: ContainerPort represents a
- network port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must
- be an IANA_SVC_NAME and unique within
- the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must
- be UDP, TCP, or SCTP. Defaults to
- "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More
- info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed.
- More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation
- controls whether a process can gain
- more privileges than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default
- is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be
- applied to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which
- kind of seccomp profile will be
- applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is
- where the GMSA admission webhook
- (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as
- a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should
- allocate a buffer for stdin in the container
- runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime
- should close the stdin channel after it
- has been opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the
- file to which the container''s termination
- message will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination
- message should be populated.
- type: string
- tty:
- description: Whether this container should
- allocate a TTY for itself, also requires
- 'stdin' to be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of
- block devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path
- inside of the container that the device
- will be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the
- pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the
- container's filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the
- host to container and the other way
- a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume
- from which the container's volume
- should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's
- volume should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- nodeName:
- description: NodeName is a request to schedule this
- pod onto a specific node.
- type: string
- nodeSelector:
- additionalProperties:
- type: string
- description: NodeSelector is a selector which must
- be true for the pod to fit on a node.
- type: object
- x-kubernetes-map-type: atomic
- os:
- description: Specifies the OS of the containers
- in the pod.
- properties:
- name:
- description: Name is the name of the operating
- system. The currently supported values are
- linux and windows.
- type: string
- required:
- - name
- type: object
- overhead:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Overhead represents the resource overhead
- associated with running a pod for a given RuntimeClass.
- type: object
- preemptionPolicy:
- description: PreemptionPolicy is the Policy for
- preempting pods with lower priority.
- type: string
- priority:
- description: The priority value. Various system
- components use this field to find the priority
- of the pod.
- format: int32
- type: integer
- priorityClassName:
- description: If specified, indicates the pod's priority.
- type: string
- readinessGates:
- description: If specified, all readiness gates will
- be evaluated for pod readiness.
- items:
- description: PodReadinessGate contains the reference
- to a pod condition
- properties:
- conditionType:
- description: ConditionType refers to a condition
- in the pod's condition list with matching
- type.
- type: string
- required:
- - conditionType
- type: object
- type: array
- restartPolicy:
- description: Restart policy for all containers within
- the pod. One of Always, OnFailure, Never.
- type: string
- runtimeClassName:
- description: RuntimeClassName refers to a RuntimeClass
- object in the node.k8s.
- type: string
- schedulerName:
- description: If specified, the pod will be dispatched
- by specified scheduler.
- type: string
- securityContext:
- description: SecurityContext holds pod-level security
- attributes and common container settings.
- properties:
- fsGroup:
- description: A special supplemental group that
- applies to all containers in a pod.
- format: int64
- type: integer
- fsGroupChangePolicy:
- description: fsGroupChangePolicy defines behavior
- of changing ownership and permission of the
- volume before being
- type: string
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to all containers.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by the
- containers in this pod.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- supplementalGroups:
- description: 'A list of groups applied to the
- first process run in each container, in addition
- to the container''s '
- items:
- format: int64
- type: integer
- type: array
- sysctls:
- description: Sysctls hold a list of namespaced
- sysctls used for the pod.
- items:
- description: Sysctl defines a kernel parameter
- to be set
- properties:
- name:
- description: Name of a property to set
- type: string
- value:
- description: Value of a property to set
- type: string
- required:
- - name
- - value
- type: object
- type: array
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a
- container should be run as a 'Host Process'
- container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container process.
- type: string
- type: object
- type: object
- serviceAccount:
- description: DeprecatedServiceAccount is a depreciated
- alias for ServiceAccountName.
- type: string
- serviceAccountName:
- description: ServiceAccountName is the name of the
- ServiceAccount to use to run this pod.
- type: string
- setHostnameAsFQDN:
- description: If true the pod's hostname will be
- configured as the pod's FQDN, rather than the
- leaf name (the defa
- type: boolean
- shareProcessNamespace:
- description: Share a single process namespace between
- all of the containers in a pod.
- type: boolean
- subdomain:
- description: If specified, the fully qualified Pod
- hostname will be "...svc.
- type: string
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the pod
- needs to terminate gracefully.
- format: int64
- type: integer
- tolerations:
- description: If specified, the pod's tolerations.
- items:
- description: The pod this Toleration is attached
- to tolerates any taint that matches the triple
- name on the dataset for
- Flocker should be considered as de
- type: string
- datasetUUID:
- description: UUID of the dataset. This
- is unique identifier of a Flocker dataset
- type: string
- type: object
- gcePersistentDisk:
- description: GCEPersistentDisk represents
- a GCE Disk resource that is attached to
- a kubelet's host machine and th
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- partition:
- description: The partition in the volume
- that you want to mount.
- format: int32
- type: integer
- pdName:
- description: Unique name of the PD resource
- in GCE. Used to identify the disk in
- GCE.
- type: string
- readOnly:
- description: ReadOnly here will force
- the ReadOnly setting in VolumeMounts.
- Defaults to false.
- type: boolean
- required:
- - pdName
- type: object
- gitRepo:
- description: 'GitRepo represents a git repository
- at a particular revision. DEPRECATED: GitRepo
- is deprecated.'
- properties:
- directory:
- description: Target directory name. Must
- not contain or start with '..'. If
- '.
- type: string
- repository:
- description: Repository URL
- type: string
- revision:
- description: Commit hash for the specified
- revision.
- type: string
- required:
- - repository
- type: object
- glusterfs:
- description: Glusterfs represents a Glusterfs
- mount on the host that shares a pod's lifetime.
- properties:
- endpoints:
- description: 'EndpointsName is the endpoint
- name that details Glusterfs topology.
- More info: https://examples.k8s.'
- type: string
- path:
- description: 'Path is the Glusterfs volume
- path. More info: https://examples.k8s.io/volumes/glusterfs/README.'
- type: string
- readOnly:
- description: ReadOnly here will force
- the Glusterfs volume to be mounted with
- read-only permissions.
- type: boolean
- required:
- - endpoints
- - path
- type: object
- hostPath:
- description: HostPath represents a pre-existing
- file or directory on the host machine that
- is directly exposed to
- properties:
- path:
- description: Path of the directory on
- the host.
- type: string
- type:
- description: 'Type for HostPath Volume
- Defaults to "" More info: https://kubernetes.'
- type: string
- required:
- - path
- type: object
- iscsi:
- description: ISCSI represents an ISCSI Disk
- resource that is attached to a kubelet's
- host machine and then expose
- properties:
- chapAuthDiscovery:
- description: whether support iSCSI Discovery
- CHAP authentication
- type: boolean
- chapAuthSession:
- description: whether support iSCSI Session
- CHAP authentication
- type: boolean
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- initiatorName:
- description: Custom iSCSI Initiator Name.
- type: string
- iqn:
- description: Target iSCSI Qualified Name.
- type: string
- iscsiInterface:
- description: iSCSI Interface Name that
- uses an iSCSI transport. Defaults to
- 'default' (tcp).
- type: string
- lun:
- description: iSCSI Target Lun number.
- format: int32
- type: integer
- portals:
- description: iSCSI Target Portal List.
- items:
- type: string
- type: array
- readOnly:
- description: ReadOnly here will force
- the ReadOnly setting in VolumeMounts.
- Defaults to false.
- type: boolean
- secretRef:
- description: CHAP Secret for iSCSI target
- and initiator authentication
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- targetPortal:
- description: iSCSI Target Portal.
- type: string
- required:
- - iqn
- - lun
- - targetPortal
- type: object
- name:
- description: 'Volume''s name. Must be a DNS_LABEL
- and unique within the pod. More info: https://kubernetes.'
- type: string
- nfs:
- description: 'NFS represents an NFS mount
- on the host that shares a pod''s lifetime
- More info: https://kubernetes.'
- properties:
- path:
- description: 'Path that is exported by
- the NFS server. More info: https://kubernetes.'
- type: string
- readOnly:
- description: ReadOnly here will force
- the NFS export to be mounted with read-only
- permissions. Defaults to false.
- type: boolean
- server:
- description: 'Server is the hostname or
- IP address of the NFS server. More info:
- https://kubernetes.'
- type: string
- required:
- - path
- - server
- type: object
- persistentVolumeClaim:
- description: PersistentVolumeClaimVolumeSource
- represents a reference to a PersistentVolumeClaim
- in the same name
- properties:
- claimName:
- description: ClaimName is the name of
- a PersistentVolumeClaim in the same
- namespace as the pod using this volume.
- type: string
- readOnly:
- description: Will force the ReadOnly setting
- in VolumeMounts. Default false.
- type: boolean
- required:
- - claimName
- type: object
- photonPersistentDisk:
- description: 'PhotonPersistentDisk represents
- a PhotonController persistent disk attached
- and mounted on kubelets '
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- pdID:
- description: ID that identifies Photon
- Controller persistent disk
- type: string
- required:
- - pdID
- type: object
- portworxVolume:
- description: PortworxVolume represents a portworx
- volume attached and mounted on kubelets
- host machine
- properties:
- fsType:
- description: FSType represents the filesystem
- type to mount Must be a filesystem type
- supported by the host opera
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- volumeID:
- description: VolumeID uniquely identifies
- a Portworx volume
- type: string
- required:
- - volumeID
- type: object
- projected:
- description: Items for all in one resources
- secrets, configmaps, and downward API
- properties:
- defaultMode:
- description: Mode bits used to set permissions
- on created files by default.
- format: int32
- type: integer
- sources:
- description: list of volume projections
- items:
- description: Projection that may be
- projected along with other supported
- volume types
- properties:
- configMap:
- description: information about the
- configMap data to project
- properties:
- items:
- description: 'If unspecified,
- each key-value pair in the
- Data field of the referenced
- ConfigMap will be projected '
- items:
- description: Maps a string
- key to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to
- map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its keys
- must be defined
- type: boolean
- type: object
- downwardAPI:
- description: information about the
- downwardAPI data to project
- properties:
- items:
- description: Items is a list
- of DownwardAPIVolume file
- items:
- description: DownwardAPIVolumeFile
- represents information to
- create the file containing
- the pod field
- properties:
- fieldRef:
- description: 'Required:
- Selects a field of the
- pod: only annotations,
- labels, name and namespace
- are supported.'
- properties:
- apiVersion:
- description: Version
- of the schema the
- FieldPath is written
- in terms of, defaults
- to "v1".
- type: string
- fieldPath:
- description: Path
- of the field to
- select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this
- file, must be an octal
- value between 0000 and
- 07'
- format: int32
- type: integer
- path:
- description: 'Required:
- Path is the relative
- path name of the file
- to be created.'
- type: string
- resourceFieldRef:
- description: 'Selects
- a resource of the container:
- only resources limits
- and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container
- name: required for
- volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies
- the output format
- of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required:
- resource to select'
- type: string
- required:
- - resource
- type: object
- required:
- - path
- type: object
- type: array
- type: object
- secret:
- description: information about the
- secret data to project
- properties:
- items:
- description: If unspecified,
- each key-value pair in the
- Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string
- key to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to
- map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- type: object
- serviceAccountToken:
- description: information about the
- serviceAccountToken data to project
- properties:
- audience:
- description: Audience is the
- intended audience of the token.
- type: string
- expirationSeconds:
- description: ExpirationSeconds
- is the requested duration
- of validity of the service
- account token.
- format: int64
- type: integer
- path:
- description: Path is the path
- relative to the mount point
- of the file to project the
- token into.
- type: string
- required:
- - path
- type: object
- type: object
- type: array
- type: object
- quobyte:
- description: Quobyte represents a Quobyte
- mount on the host that shares a pod's lifetime
- properties:
- group:
- description: Group to map volume access
- to Default is no group
- type: string
- readOnly:
- description: ReadOnly here will force
- the Quobyte volume to be mounted with
- read-only permissions.
- type: boolean
- registry:
- description: Registry represents a single
- or multiple Quobyte Registry services
- specified as a string as host:por
- type: string
- tenant:
- description: Tenant owning the given Quobyte
- volume in the Backend Used with dynamically
- provisioned Quobyte volu
- type: string
- user:
- description: User to map volume access
- to Defaults to serivceaccount user
- type: string
- volume:
- description: Volume is a string that references
- an already created Quobyte volume by
- name.
- type: string
- required:
- - registry
- - volume
- type: object
- rbd:
- description: RBD represents a Rados Block
- Device mount on the host that shares a pod's
- lifetime.
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- image:
- description: 'The rados image name. More
- info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'
- type: string
- keyring:
- description: Keyring is the path to key
- ring for RBDUser. Default is /etc/ceph/keyring.
- type: string
- monitors:
- description: 'A collection of Ceph monitors.
- More info: https://examples.k8s.io/volumes/rbd/README.'
- items:
- type: string
- type: array
- pool:
- description: 'The rados pool name. Default
- is rbd. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- readOnly:
- description: ReadOnly here will force
- the ReadOnly setting in VolumeMounts.
- Defaults to false.
- type: boolean
- secretRef:
- description: SecretRef is name of the
- authentication secret for RBDUser. If
- provided overrides keyring.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- user:
- description: 'The rados user name. Default
- is admin. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- required:
- - image
- - monitors
- type: object
- scaleIO:
- description: ScaleIO represents a ScaleIO
- persistent volume attached and mounted on
- Kubernetes nodes.
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- gateway:
- description: The host address of the ScaleIO
- API Gateway.
- type: string
- protectionDomain:
- description: The name of the ScaleIO Protection
- Domain for the configured storage.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef references to the
- secret for ScaleIO user and other sensitive
- information.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- sslEnabled:
- description: Flag to enable/disable SSL
- communication with Gateway, default
- false
- type: boolean
- storageMode:
- description: Indicates whether the storage
- for a volume should be ThickProvisioned
- or ThinProvisioned.
- type: string
- storagePool:
- description: The ScaleIO Storage Pool
- associated with the protection domain.
- type: string
- system:
- description: The name of the storage system
- as configured in ScaleIO.
- type: string
- volumeName:
- description: The name of a volume already
- created in the ScaleIO system that is
- associated with this volume sourc
- type: string
- required:
- - gateway
- - secretRef
- - system
- type: object
- secret:
- description: 'Secret represents a secret that
- should populate this volume. More info:
- https://kubernetes.'
- properties:
- defaultMode:
- description: 'Optional: mode bits used
- to set permissions on created files
- by default.'
- format: int32
- type: integer
- items:
- description: If unspecified, each key-value
- pair in the Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string key to a
- path within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode bits
- used to set permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative path of
- the file to map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- optional:
- description: Specify whether the Secret
- or its keys must be defined
- type: boolean
- secretName:
- description: 'Name of the secret in the
- pod''s namespace to use. More info:
- https://kubernetes.'
- type: string
- type: object
- storageos:
- description: StorageOS represents a StorageOS
- volume attached and mounted on Kubernetes
- nodes.
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef specifies the secret
- to use for obtaining the StorageOS API
- credentials.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- volumeName:
- description: VolumeName is the human-readable
- name of the StorageOS volume.
- type: string
- volumeNamespace:
- description: VolumeNamespace specifies
- the scope of the volume within StorageOS.
- type: string
- type: object
- vsphereVolume:
- description: VsphereVolume represents a vSphere
- volume attached and mounted on kubelets
- host machine
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- storagePolicyID:
- description: Storage Policy Based Management
- (SPBM) profile ID associated with the
- StoragePolicyName.
- type: string
- storagePolicyName:
- description: Storage Policy Based Management
- (SPBM) profile name.
- type: string
- volumePath:
- description: Path that identifies vSphere
- volume vmdk
- type: string
- required:
- - volumePath
- type: object
- required:
- - name
- type: object
- type: array
- required:
- - containers
- type: object
- type: object
- required:
- - groupName
- - maxReplicas
- - minReplicas
- - rayStartParams
- - replicas
- - template
- type: object
- type: array
- required:
- - headGroupSpec
- type: object
- runtimeEnv:
- description: RuntimeEnv is base64 encoded.
- type: string
- shutdownAfterJobFinishes:
- description: ShutdownAfterJobFinishes will determine whether to delete
- the ray cluster once rayJob succeed or fai
- type: boolean
- ttlSecondsAfterFinished:
- description: TTLSecondsAfterFinished is the TTL to clean up RayCluster.
- format: int32
- type: integer
- required:
- - entrypoint
- type: object
- status:
- description: RayJobStatus defines the observed state of RayJob
- properties:
- dashboardURL:
- type: string
- endTime:
- description: Represents time when the job was ended.
- format: date-time
- type: string
- jobDeploymentStatus:
- description: JobDeploymentStatus indicates RayJob status including
- RayCluster lifecycle management and Job submis
- type: string
- jobId:
- description: 'INSERT ADDITIONAL STATUS FIELD - define observed state
- of cluster Important: Run "make" to regenerat'
- type: string
- jobStatus:
- description: JobStatus is the Ray Job Status. https://docs.ray.io/en/latest/cluster/jobs-package-ref.
- type: string
- message:
- type: string
- rayClusterName:
- type: string
- rayClusterStatus:
- description: RayClusterStatus defines the observed state of RayCluster
- properties:
- availableWorkerReplicas:
- description: AvailableWorkerReplicas indicates how many replicas
- are available in the cluster
- format: int32
- type: integer
- desiredWorkerReplicas:
- description: DesiredWorkerReplicas indicates overall desired replicas
- claimed by the user at the cluster level.
- format: int32
- type: integer
- endpoints:
- additionalProperties:
- type: string
- description: Service Endpoints
- type: object
- lastUpdateTime:
- description: LastUpdateTime indicates last update timestamp for
- this cluster status.
- format: date-time
- nullable: true
- type: string
- maxWorkerReplicas:
- description: MaxWorkerReplicas indicates sum of maximum replicas
- of each node group.
- format: int32
- type: integer
- minWorkerReplicas:
- description: MinWorkerReplicas indicates sum of minimum replicas
- of each node group.
- format: int32
- type: integer
- state:
- description: 'INSERT ADDITIONAL STATUS FIELD - define observed
- state of cluster Important: Run "make" to regenerat'
- type: string
- type: object
- startTime:
- description: Represents time when the job was acknowledged by the
- Ray cluster.
- format: date-time
- type: string
- type: object
- type: object
- served: true
- storage: true
- subresources:
- status: {}
-status:
- acceptedNames:
- kind: ""
- plural: ""
- conditions: []
- storedVersions: []
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayservices.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayservices.yaml
deleted file mode 100644
index 3c50e92036..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/crds/ray.io_rayservices.yaml
+++ /dev/null
@@ -1,11755 +0,0 @@
-
----
-apiVersion: apiextensions.k8s.io/v1
-kind: CustomResourceDefinition
-metadata:
- annotations:
- controller-gen.kubebuilder.io/version: v0.6.0
- creationTimestamp: null
- name: rayservices.ray.io
-spec:
- group: ray.io
- names:
- kind: RayService
- listKind: RayServiceList
- plural: rayservices
- singular: rayservice
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- description: RayService is the Schema for the rayservices API
- properties:
- apiVersion:
- description: APIVersion defines the versioned schema of this representation
- of an object.
- type: string
- kind:
- description: Kind is a string value representing the REST resource this
- object represents.
- type: string
- metadata:
- type: object
- spec:
- description: RayServiceSpec defines the desired state of RayService
- properties:
- rayClusterConfig:
- description: 'EDIT THIS FILE! THIS IS SCAFFOLDING FOR YOU TO OWN!
- NOTE: json tags are required.'
- properties:
- autoscalerOptions:
- description: AutoscalerOptions specifies optional configuration
- for the Ray autoscaler.
- properties:
- idleTimeoutSeconds:
- description: IdleTimeoutSeconds is the number of seconds to
- wait before scaling down a worker pod which is not us
- format: int32
- type: integer
- image:
- description: Image optionally overrides the autoscaler's container
- image.
- type: string
- imagePullPolicy:
- description: ImagePullPolicy optionally overrides the autoscaler
- container's image pull policy.
- type: string
- resources:
- description: Resources specifies resource requests and limits
- for the autoscaler container.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum amount of compute
- resources allowed. More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum amount of
- compute resources required.
- type: object
- type: object
- upscalingMode:
- description: UpscalineMode is "Default" or "Aggressive.
- enum:
- - Default
- - Aggressive
- type: string
- type: object
- enableInTreeAutoscaling:
- description: EnableInTreeAutoscaling indicates whether operator
- should create in tree autoscaling configs
- type: boolean
- headGroupSpec:
- description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of
- cluster Important: Run "make" to regenerate code af'
- properties:
- enableIngress:
- description: EnableIngress indicates whether operator should
- create ingress object for head service or not.
- type: boolean
- rayStartParams:
- additionalProperties:
- type: string
- description: 'RayStartParams are the params of the start command:
- node-manager-port, object-store-memory, ...'
- type: object
- replicas:
- description: HeadGroupSpec.Replicas is deprecated and ignored;
- there can only be one head pod per Ray cluster.
- format: int32
- type: integer
- serviceType:
- description: ServiceType is Kubernetes service type of the
- head service.
- type: string
- template:
- description: Template is the eaxct pod template used in K8s
- depoyments, statefulsets, etc.
- properties:
- metadata:
- description: 'Standard object''s metadata. More info:
- https://git.k8s.'
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- finalizers:
- items:
- type: string
- type: array
- labels:
- additionalProperties:
- type: string
- type: object
- name:
- type: string
- namespace:
- type: string
- type: object
- spec:
- description: 'Specification of the desired behavior of
- the pod. More info: https://git.k8s.'
- properties:
- activeDeadlineSeconds:
- description: Optional duration in seconds the pod
- may be active on the node relative to StartTime
- before the syst
- format: int64
- type: integer
- affinity:
- description: If specified, the pod's scheduling constraints
- properties:
- nodeAffinity:
- description: Describes node affinity scheduling
- rules for the pod.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to
- schedule pods to nodes that satisfy the
- affinity expressions specified '
- items:
- description: An empty preferred scheduling
- term matches all objects with implicit
- weight 0 (i.e. it's a no-op).
- properties:
- preference:
- description: A node selector term, associated
- with the corresponding weight.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- weight:
- description: Weight associated with
- matching the corresponding nodeSelectorTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - preference
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at scheduling
- time, the pod will no
- properties:
- nodeSelectorTerms:
- description: Required. A list of node
- selector terms. The terms are ORed.
- items:
- description: A null or empty node selector
- term matches no objects. The requirements
- of them are ANDed.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents a
- key's relationship to a
- set of values.
- type: string
- values:
- description: An array of string
- values. If the operator
- is In or NotIn, the values
- array must be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- type: array
- required:
- - nodeSelectorTerms
- type: object
- type: object
- podAffinity:
- description: Describes pod affinity scheduling
- rules (e.g. co-locate this pod in the same node,
- zone, etc.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer to
- schedule pods to nodes that satisfy the
- affinity expressions specified '
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added
- per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this case
- pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not co-located
- (anti-affinity) with the pods
- matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at scheduling
- time, the pod will no
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a
- static list of namespace names that
- the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- podAntiAffinity:
- description: Describes pod anti-affinity scheduling
- rules (e.g.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: The scheduler will prefer to
- schedule pods to nodes that satisfy the
- anti-affinity expressions speci
- items:
- description: The weights of all of the matched
- WeightedPodAffinityTerm fields are added
- per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this case
- pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a
- key, and an operator that
- relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator
- represents a key's relationship
- to a set of values.
- type: string
- values:
- description: values is
- an array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not co-located
- (anti-affinity) with the pods
- matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the anti-affinity requirements
- specified by this field are not met at scheduling
- time, the pod wi
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a set
- of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term applies
- to.
- properties:
- matchExpressions:
- description: matchExpressions is
- a list of label selector requirements.
- The requirements are ANDed.
- items:
- description: A label selector
- requirement is a selector that
- contains values, a key, and
- an operator that relates
- properties:
- key:
- description: key is the label
- key that the selector applies
- to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a map
- of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies a
- static list of namespace names that
- the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- type: object
- automountServiceAccountToken:
- description: AutomountServiceAccountToken indicates
- whether a service account token should be automatically
- mount
- type: boolean
- containers:
- description: List of containers belonging to the pod.
- Containers cannot currently be added or removed.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not
- provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be
- defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in
- terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to
- prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the
- container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must be
- a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More info:
- https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default is
- false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as a
- 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been
- opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to
- be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should
- be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's volume
- should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- dnsConfig:
- description: Specifies the DNS parameters of a pod.
- properties:
- nameservers:
- description: A list of DNS name server IP addresses.
- items:
- type: string
- type: array
- options:
- description: A list of DNS resolver options. This
- will be merged with the base options generated
- from DNSPolicy.
- items:
- description: PodDNSConfigOption defines DNS
- resolver options of a pod.
- properties:
- name:
- description: Required.
- type: string
- value:
- type: string
- type: object
- type: array
- searches:
- description: A list of DNS search domains for
- host-name lookup.
- items:
- type: string
- type: array
- type: object
- dnsPolicy:
- description: Set DNS policy for the pod. Defaults
- to "ClusterFirst".
- type: string
- enableServiceLinks:
- description: EnableServiceLinks indicates whether
- information about services should be injected into
- pod's enviro
- type: boolean
- ephemeralContainers:
- description: List of ephemeral containers run in this
- pod.
- items:
- description: An EphemeralContainer is a temporary
- container that you may add to an existing Pod
- for user-initiate
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not
- provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be
- defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in
- terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to
- prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.io/docs/concepts/containers/images'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Lifecycle is not allowed for ephemeral
- containers.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the ephemeral container
- specified as a DNS_LABEL.
- type: string
- ports:
- description: Ports are not allowed for ephemeral
- containers.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must be
- a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: Resources are not allowed for ephemeral
- containers.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: 'Optional: SecurityContext defines
- the security options the ephemeral container
- should be run with.'
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default is
- false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as a
- 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been
- opened by a single at
- type: boolean
- targetContainerName:
- description: If set, the name of the container
- from PodSpec that this ephemeral container
- targets.
- type: string
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to
- be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should
- be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's volume
- should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- hostAliases:
- description: 'HostAliases is an optional list of hosts
- and IPs that will be injected into the pod''s hosts
- file if '
- items:
- description: 'HostAlias holds the mapping between
- IP and hostnames that will be injected as an entry
- in the pod''s '
- properties:
- hostnames:
- description: Hostnames for the above IP address.
- items:
- type: string
- type: array
- ip:
- description: IP address of the host file entry.
- type: string
- type: object
- type: array
- hostIPC:
- description: 'Use the host''s ipc namespace. Optional:
- Default to false.'
- type: boolean
- hostNetwork:
- description: Host networking requested for this pod.
- Use the host's network namespace.
- type: boolean
- hostPID:
- description: 'Use the host''s pid namespace. Optional:
- Default to false.'
- type: boolean
- hostname:
- description: Specifies the hostname of the Pod If
- not specified, the pod's hostname will be set to
- a system-defin
- type: string
- imagePullSecrets:
- description: ImagePullSecrets is an optional list
- of references to secrets in the same namespace to
- use for pulli
- items:
- description: 'LocalObjectReference contains enough
- information to let you locate the referenced object
- inside the '
- properties:
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- type: object
- type: array
- initContainers:
- description: List of initialization containers belonging
- to the pod.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint. The
- docker image's CMD is used if this is not
- provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables to
- set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment variable.
- Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously defined
- environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its key must be
- defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of the
- pod: supports metadata.name, metadata.namespace,
- `metadata.'
- properties:
- apiVersion:
- description: Version of the schema
- the FieldPath is written in
- terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource of
- the container: only resources limits
- and requests (limits.cpu, limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a secret
- in the pod's namespace
- properties:
- key:
- description: The key of the secret
- to select from. Must be a valid
- secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the ConfigMap
- must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier to
- prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the Secret
- must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due to
- an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1
- to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe fails.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from the
- container.
- items:
- description: ContainerPort represents a network
- port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must be
- a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must be
- an IANA_SVC_NAME and unique within the
- pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must be
- UDP, TCP, or SCTP. Defaults to "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More info:
- https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed. More
- info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation controls
- whether a process can gain more privileges
- than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default is
- false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which kind
- of seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as a
- 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action to
- take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action involving
- a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC HealthCheckRequest
- (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect to,
- defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set in
- the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in HTTP
- probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the HTTP
- server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to perform
- the probe. Default to 10 seconds. Minimum
- value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name to
- connect to, defaults to the pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the port
- to access on the container. Number
- must be in the range 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should allocate
- a buffer for stdin in the container runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime should
- close the stdin channel after it has been
- opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the file
- to which the container''s termination message
- will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination message
- should be populated.
- type: string
- tty:
- description: Whether this container should allocate
- a TTY for itself, also requires 'stdin' to
- be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of block
- devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path inside
- of the container that the device will
- be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the container's
- filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the host
- to container and the other way a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume from
- which the container's volume should
- be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's volume
- should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- nodeName:
- description: NodeName is a request to schedule this
- pod onto a specific node.
- type: string
- nodeSelector:
- additionalProperties:
- type: string
- description: NodeSelector is a selector which must
- be true for the pod to fit on a node.
- type: object
- x-kubernetes-map-type: atomic
- os:
- description: Specifies the OS of the containers in
- the pod.
- properties:
- name:
- description: Name is the name of the operating
- system. The currently supported values are linux
- and windows.
- type: string
- required:
- - name
- type: object
- overhead:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Overhead represents the resource overhead
- associated with running a pod for a given RuntimeClass.
- type: object
- preemptionPolicy:
- description: PreemptionPolicy is the Policy for preempting
- pods with lower priority.
- type: string
- priority:
- description: The priority value. Various system components
- use this field to find the priority of the pod.
- format: int32
- type: integer
- priorityClassName:
- description: If specified, indicates the pod's priority.
- type: string
- readinessGates:
- description: If specified, all readiness gates will
- be evaluated for pod readiness.
- items:
- description: PodReadinessGate contains the reference
- to a pod condition
- properties:
- conditionType:
- description: ConditionType refers to a condition
- in the pod's condition list with matching
- type.
- type: string
- required:
- - conditionType
- type: object
- type: array
- restartPolicy:
- description: Restart policy for all containers within
- the pod. One of Always, OnFailure, Never.
- type: string
- runtimeClassName:
- description: RuntimeClassName refers to a RuntimeClass
- object in the node.k8s.
- type: string
- schedulerName:
- description: If specified, the pod will be dispatched
- by specified scheduler.
- type: string
- securityContext:
- description: SecurityContext holds pod-level security
- attributes and common container settings.
- properties:
- fsGroup:
- description: A special supplemental group that
- applies to all containers in a pod.
- format: int64
- type: integer
- fsGroupChangePolicy:
- description: fsGroupChangePolicy defines behavior
- of changing ownership and permission of the
- volume before being
- type: string
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to all containers.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by the
- containers in this pod.
- properties:
- localhostProfile:
- description: localhostProfile indicates a
- profile defined in a file on the node should
- be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- supplementalGroups:
- description: 'A list of groups applied to the
- first process run in each container, in addition
- to the container''s '
- items:
- format: int64
- type: integer
- type: array
- sysctls:
- description: Sysctls hold a list of namespaced
- sysctls used for the pod.
- items:
- description: Sysctl defines a kernel parameter
- to be set
- properties:
- name:
- description: Name of a property to set
- type: string
- value:
- description: Value of a property to set
- type: string
- required:
- - name
- - value
- type: object
- type: array
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where the
- GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a container
- should be run as a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to run
- the entrypoint of the container process.
- type: string
- type: object
- type: object
- serviceAccount:
- description: DeprecatedServiceAccount is a depreciated
- alias for ServiceAccountName.
- type: string
- serviceAccountName:
- description: ServiceAccountName is the name of the
- ServiceAccount to use to run this pod.
- type: string
- setHostnameAsFQDN:
- description: If true the pod's hostname will be configured
- as the pod's FQDN, rather than the leaf name (the
- defa
- type: boolean
- shareProcessNamespace:
- description: Share a single process namespace between
- all of the containers in a pod.
- type: boolean
- subdomain:
- description: If specified, the fully qualified Pod
- hostname will be "...svc.
- type: string
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the pod
- needs to terminate gracefully.
- format: int64
- type: integer
- tolerations:
- description: If specified, the pod's tolerations.
- items:
- description: The pod this Toleration is attached
- to tolerates any taint that matches the triple
- name on the dataset for
- Flocker should be considered as de
- type: string
- datasetUUID:
- description: UUID of the dataset. This is
- unique identifier of a Flocker dataset
- type: string
- type: object
- gcePersistentDisk:
- description: GCEPersistentDisk represents a
- GCE Disk resource that is attached to a kubelet's
- host machine and th
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- partition:
- description: The partition in the volume
- that you want to mount.
- format: int32
- type: integer
- pdName:
- description: Unique name of the PD resource
- in GCE. Used to identify the disk in GCE.
- type: string
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- required:
- - pdName
- type: object
- gitRepo:
- description: 'GitRepo represents a git repository
- at a particular revision. DEPRECATED: GitRepo
- is deprecated.'
- properties:
- directory:
- description: Target directory name. Must
- not contain or start with '..'. If '.
- type: string
- repository:
- description: Repository URL
- type: string
- revision:
- description: Commit hash for the specified
- revision.
- type: string
- required:
- - repository
- type: object
- glusterfs:
- description: Glusterfs represents a Glusterfs
- mount on the host that shares a pod's lifetime.
- properties:
- endpoints:
- description: 'EndpointsName is the endpoint
- name that details Glusterfs topology.
- More info: https://examples.k8s.'
- type: string
- path:
- description: 'Path is the Glusterfs volume
- path. More info: https://examples.k8s.io/volumes/glusterfs/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- Glusterfs volume to be mounted with read-only
- permissions.
- type: boolean
- required:
- - endpoints
- - path
- type: object
- hostPath:
- description: HostPath represents a pre-existing
- file or directory on the host machine that
- is directly exposed to
- properties:
- path:
- description: Path of the directory on the
- host.
- type: string
- type:
- description: 'Type for HostPath Volume Defaults
- to "" More info: https://kubernetes.'
- type: string
- required:
- - path
- type: object
- iscsi:
- description: ISCSI represents an ISCSI Disk
- resource that is attached to a kubelet's host
- machine and then expose
- properties:
- chapAuthDiscovery:
- description: whether support iSCSI Discovery
- CHAP authentication
- type: boolean
- chapAuthSession:
- description: whether support iSCSI Session
- CHAP authentication
- type: boolean
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- initiatorName:
- description: Custom iSCSI Initiator Name.
- type: string
- iqn:
- description: Target iSCSI Qualified Name.
- type: string
- iscsiInterface:
- description: iSCSI Interface Name that uses
- an iSCSI transport. Defaults to 'default'
- (tcp).
- type: string
- lun:
- description: iSCSI Target Lun number.
- format: int32
- type: integer
- portals:
- description: iSCSI Target Portal List.
- items:
- type: string
- type: array
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- secretRef:
- description: CHAP Secret for iSCSI target
- and initiator authentication
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- targetPortal:
- description: iSCSI Target Portal.
- type: string
- required:
- - iqn
- - lun
- - targetPortal
- type: object
- name:
- description: 'Volume''s name. Must be a DNS_LABEL
- and unique within the pod. More info: https://kubernetes.'
- type: string
- nfs:
- description: 'NFS represents an NFS mount on
- the host that shares a pod''s lifetime More
- info: https://kubernetes.'
- properties:
- path:
- description: 'Path that is exported by the
- NFS server. More info: https://kubernetes.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- NFS export to be mounted with read-only
- permissions. Defaults to false.
- type: boolean
- server:
- description: 'Server is the hostname or
- IP address of the NFS server. More info:
- https://kubernetes.'
- type: string
- required:
- - path
- - server
- type: object
- persistentVolumeClaim:
- description: PersistentVolumeClaimVolumeSource
- represents a reference to a PersistentVolumeClaim
- in the same name
- properties:
- claimName:
- description: ClaimName is the name of a
- PersistentVolumeClaim in the same namespace
- as the pod using this volume.
- type: string
- readOnly:
- description: Will force the ReadOnly setting
- in VolumeMounts. Default false.
- type: boolean
- required:
- - claimName
- type: object
- photonPersistentDisk:
- description: 'PhotonPersistentDisk represents
- a PhotonController persistent disk attached
- and mounted on kubelets '
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- pdID:
- description: ID that identifies Photon Controller
- persistent disk
- type: string
- required:
- - pdID
- type: object
- portworxVolume:
- description: PortworxVolume represents a portworx
- volume attached and mounted on kubelets host
- machine
- properties:
- fsType:
- description: FSType represents the filesystem
- type to mount Must be a filesystem type
- supported by the host opera
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- volumeID:
- description: VolumeID uniquely identifies
- a Portworx volume
- type: string
- required:
- - volumeID
- type: object
- projected:
- description: Items for all in one resources
- secrets, configmaps, and downward API
- properties:
- defaultMode:
- description: Mode bits used to set permissions
- on created files by default.
- format: int32
- type: integer
- sources:
- description: list of volume projections
- items:
- description: Projection that may be projected
- along with other supported volume types
- properties:
- configMap:
- description: information about the
- configMap data to project
- properties:
- items:
- description: 'If unspecified,
- each key-value pair in the Data
- field of the referenced ConfigMap
- will be projected '
- items:
- description: Maps a string key
- to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to map
- the key to. May not be
- an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap or its keys must be
- defined
- type: boolean
- type: object
- downwardAPI:
- description: information about the
- downwardAPI data to project
- properties:
- items:
- description: Items is a list of
- DownwardAPIVolume file
- items:
- description: DownwardAPIVolumeFile
- represents information to
- create the file containing
- the pod field
- properties:
- fieldRef:
- description: 'Required:
- Selects a field of the
- pod: only annotations,
- labels, name and namespace
- are supported.'
- properties:
- apiVersion:
- description: Version
- of the schema the
- FieldPath is written
- in terms of, defaults
- to "v1".
- type: string
- fieldPath:
- description: Path of
- the field to select
- in the specified API
- version.
- type: string
- required:
- - fieldPath
- type: object
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this file,
- must be an octal value
- between 0000 and 07'
- format: int32
- type: integer
- path:
- description: 'Required:
- Path is the relative
- path name of the file
- to be created.'
- type: string
- resourceFieldRef:
- description: 'Selects a
- resource of the container:
- only resources limits
- and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container
- name: required for
- volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies
- the output format
- of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required:
- resource to select'
- type: string
- required:
- - resource
- type: object
- required:
- - path
- type: object
- type: array
- type: object
- secret:
- description: information about the
- secret data to project
- properties:
- items:
- description: If unspecified, each
- key-value pair in the Data field
- of the referenced Secret will
- be projected int
- items:
- description: Maps a string key
- to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to map
- the key to. May not be
- an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret or its key must be defined
- type: boolean
- type: object
- serviceAccountToken:
- description: information about the
- serviceAccountToken data to project
- properties:
- audience:
- description: Audience is the intended
- audience of the token.
- type: string
- expirationSeconds:
- description: ExpirationSeconds
- is the requested duration of
- validity of the service account
- token.
- format: int64
- type: integer
- path:
- description: Path is the path
- relative to the mount point
- of the file to project the token
- into.
- type: string
- required:
- - path
- type: object
- type: object
- type: array
- type: object
- quobyte:
- description: Quobyte represents a Quobyte mount
- on the host that shares a pod's lifetime
- properties:
- group:
- description: Group to map volume access
- to Default is no group
- type: string
- readOnly:
- description: ReadOnly here will force the
- Quobyte volume to be mounted with read-only
- permissions.
- type: boolean
- registry:
- description: Registry represents a single
- or multiple Quobyte Registry services
- specified as a string as host:por
- type: string
- tenant:
- description: Tenant owning the given Quobyte
- volume in the Backend Used with dynamically
- provisioned Quobyte volu
- type: string
- user:
- description: User to map volume access to
- Defaults to serivceaccount user
- type: string
- volume:
- description: Volume is a string that references
- an already created Quobyte volume by name.
- type: string
- required:
- - registry
- - volume
- type: object
- rbd:
- description: RBD represents a Rados Block Device
- mount on the host that shares a pod's lifetime.
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- image:
- description: 'The rados image name. More
- info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'
- type: string
- keyring:
- description: Keyring is the path to key
- ring for RBDUser. Default is /etc/ceph/keyring.
- type: string
- monitors:
- description: 'A collection of Ceph monitors.
- More info: https://examples.k8s.io/volumes/rbd/README.'
- items:
- type: string
- type: array
- pool:
- description: 'The rados pool name. Default
- is rbd. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- readOnly:
- description: ReadOnly here will force the
- ReadOnly setting in VolumeMounts. Defaults
- to false.
- type: boolean
- secretRef:
- description: SecretRef is name of the authentication
- secret for RBDUser. If provided overrides
- keyring.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- user:
- description: 'The rados user name. Default
- is admin. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- required:
- - image
- - monitors
- type: object
- scaleIO:
- description: ScaleIO represents a ScaleIO persistent
- volume attached and mounted on Kubernetes
- nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- gateway:
- description: The host address of the ScaleIO
- API Gateway.
- type: string
- protectionDomain:
- description: The name of the ScaleIO Protection
- Domain for the configured storage.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef references to the
- secret for ScaleIO user and other sensitive
- information.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- sslEnabled:
- description: Flag to enable/disable SSL
- communication with Gateway, default false
- type: boolean
- storageMode:
- description: Indicates whether the storage
- for a volume should be ThickProvisioned
- or ThinProvisioned.
- type: string
- storagePool:
- description: The ScaleIO Storage Pool associated
- with the protection domain.
- type: string
- system:
- description: The name of the storage system
- as configured in ScaleIO.
- type: string
- volumeName:
- description: The name of a volume already
- created in the ScaleIO system that is
- associated with this volume sourc
- type: string
- required:
- - gateway
- - secretRef
- - system
- type: object
- secret:
- description: 'Secret represents a secret that
- should populate this volume. More info: https://kubernetes.'
- properties:
- defaultMode:
- description: 'Optional: mode bits used to
- set permissions on created files by default.'
- format: int32
- type: integer
- items:
- description: If unspecified, each key-value
- pair in the Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string key to a path
- within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode bits
- used to set permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative path of
- the file to map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- optional:
- description: Specify whether the Secret
- or its keys must be defined
- type: boolean
- secretName:
- description: 'Name of the secret in the
- pod''s namespace to use. More info: https://kubernetes.'
- type: string
- type: object
- storageos:
- description: StorageOS represents a StorageOS
- volume attached and mounted on Kubernetes
- nodes.
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef specifies the secret
- to use for obtaining the StorageOS API
- credentials.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- volumeName:
- description: VolumeName is the human-readable
- name of the StorageOS volume.
- type: string
- volumeNamespace:
- description: VolumeNamespace specifies the
- scope of the volume within StorageOS.
- type: string
- type: object
- vsphereVolume:
- description: VsphereVolume represents a vSphere
- volume attached and mounted on kubelets host
- machine
- properties:
- fsType:
- description: Filesystem type to mount. Must
- be a filesystem type supported by the
- host operating system. Ex.
- type: string
- storagePolicyID:
- description: Storage Policy Based Management
- (SPBM) profile ID associated with the
- StoragePolicyName.
- type: string
- storagePolicyName:
- description: Storage Policy Based Management
- (SPBM) profile name.
- type: string
- volumePath:
- description: Path that identifies vSphere
- volume vmdk
- type: string
- required:
- - volumePath
- type: object
- required:
- - name
- type: object
- type: array
- required:
- - containers
- type: object
- type: object
- required:
- - rayStartParams
- - serviceType
- - template
- type: object
- rayVersion:
- description: RayVersion is the version of ray being used. this
- affects the command used to start ray
- type: string
- workerGroupSpecs:
- description: WorkerGroupSpecs are the specs for the worker pods
- items:
- description: WorkerGroupSpec are the specs for the worker pods
- properties:
- groupName:
- description: we can have multiple worker groups, we distinguish
- them by name
- type: string
- maxReplicas:
- description: MaxReplicas defaults to maxInt32
- format: int32
- type: integer
- minReplicas:
- description: MinReplicas defaults to 1
- format: int32
- type: integer
- rayStartParams:
- additionalProperties:
- type: string
- description: 'RayStartParams are the params of the start
- command: address, object-store-memory, ...'
- type: object
- replicas:
- description: Replicas Number of desired pods in this pod
- group.
- format: int32
- type: integer
- scaleStrategy:
- description: ScaleStrategy defines which pods to remove
- properties:
- workersToDelete:
- description: WorkersToDelete workers to be deleted
- items:
- type: string
- type: array
- type: object
- template:
- description: Template a pod template for the worker
- properties:
- metadata:
- description: 'Standard object''s metadata. More info:
- https://git.k8s.'
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- finalizers:
- items:
- type: string
- type: array
- labels:
- additionalProperties:
- type: string
- type: object
- name:
- type: string
- namespace:
- type: string
- type: object
- spec:
- description: 'Specification of the desired behavior
- of the pod. More info: https://git.k8s.'
- properties:
- activeDeadlineSeconds:
- description: Optional duration in seconds the pod
- may be active on the node relative to StartTime
- before the syst
- format: int64
- type: integer
- affinity:
- description: If specified, the pod's scheduling
- constraints
- properties:
- nodeAffinity:
- description: Describes node affinity scheduling
- rules for the pod.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer
- to schedule pods to nodes that satisfy
- the affinity expressions specified '
- items:
- description: An empty preferred scheduling
- term matches all objects with implicit
- weight 0 (i.e. it's a no-op).
- properties:
- preference:
- description: A node selector term,
- associated with the corresponding
- weight.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- weight:
- description: Weight associated with
- matching the corresponding nodeSelectorTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - preference
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at
- scheduling time, the pod will no
- properties:
- nodeSelectorTerms:
- description: Required. A list of node
- selector terms. The terms are ORed.
- items:
- description: A null or empty node
- selector term matches no objects.
- The requirements of them are ANDed.
- properties:
- matchExpressions:
- description: A list of node selector
- requirements by node's labels.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchFields:
- description: A list of node selector
- requirements by node's fields.
- items:
- description: 'A node selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates '
- properties:
- key:
- description: The label key
- that the selector applies
- to.
- type: string
- operator:
- description: Represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: An array of
- string values. If the
- operator is In or NotIn,
- the values array must
- be non-empty.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- type: object
- type: array
- required:
- - nodeSelectorTerms
- type: object
- type: object
- podAffinity:
- description: Describes pod affinity scheduling
- rules (e.g. co-locate this pod in the same
- node, zone, etc.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: 'The scheduler will prefer
- to schedule pods to nodes that satisfy
- the affinity expressions specified '
- items:
- description: The weights of all of the
- matched WeightedPodAffinityTerm fields
- are added per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this
- case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not
- co-located (anti-affinity) with
- the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the affinity requirements
- specified by this field are not met at
- scheduling time, the pod will no
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a
- set of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term
- applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- podAntiAffinity:
- description: Describes pod anti-affinity scheduling
- rules (e.g.
- properties:
- preferredDuringSchedulingIgnoredDuringExecution:
- description: The scheduler will prefer to
- schedule pods to nodes that satisfy the
- anti-affinity expressions speci
- items:
- description: The weights of all of the
- matched WeightedPodAffinityTerm fields
- are added per-node to find the most
- properties:
- podAffinityTerm:
- description: Required. A pod affinity
- term, associated with the corresponding
- weight.
- properties:
- labelSelector:
- description: A label query over
- a set of resources, in this
- case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over
- the set of namespaces that the
- term applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values,
- a key, and an operator
- that relates
- properties:
- key:
- description: key is
- the label key that
- the selector applies
- to.
- type: string
- operator:
- description: operator
- represents a key's
- relationship to a
- set of values.
- type: string
- values:
- description: values
- is an array of string
- values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is
- a map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be
- co-located (affinity) or not
- co-located (anti-affinity) with
- the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- weight:
- description: weight associated with
- matching the corresponding podAffinityTerm,
- in the range 1-100.
- format: int32
- type: integer
- required:
- - podAffinityTerm
- - weight
- type: object
- type: array
- requiredDuringSchedulingIgnoredDuringExecution:
- description: If the anti-affinity requirements
- specified by this field are not met at
- scheduling time, the pod wi
- items:
- description: Defines a set of pods (namely
- those matching the labelSelector relative
- to the given namespace(s)) t
- properties:
- labelSelector:
- description: A label query over a
- set of resources, in this case pods.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaceSelector:
- description: A label query over the
- set of namespaces that the term
- applies to.
- properties:
- matchExpressions:
- description: matchExpressions
- is a list of label selector
- requirements. The requirements
- are ANDed.
- items:
- description: A label selector
- requirement is a selector
- that contains values, a key,
- and an operator that relates
- properties:
- key:
- description: key is the
- label key that the selector
- applies to.
- type: string
- operator:
- description: operator represents
- a key's relationship to
- a set of values.
- type: string
- values:
- description: values is an
- array of string values.
- items:
- type: string
- type: array
- required:
- - key
- - operator
- type: object
- type: array
- matchLabels:
- additionalProperties:
- type: string
- description: matchLabels is a
- map of {key,value} pairs.
- type: object
- type: object
- namespaces:
- description: namespaces specifies
- a static list of namespace names
- that the term applies to.
- items:
- type: string
- type: array
- topologyKey:
- description: This pod should be co-located
- (affinity) or not co-located (anti-affinity)
- with the pods matching th
- type: string
- required:
- - topologyKey
- type: object
- type: array
- type: object
- type: object
- automountServiceAccountToken:
- description: AutomountServiceAccountToken indicates
- whether a service account token should be automatically
- mount
- type: boolean
- containers:
- description: List of containers belonging to the
- pod. Containers cannot currently be added or removed.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint.
- The docker image's CMD is used if this is
- not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables
- to set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment
- variable. Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously
- defined environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a
- ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of
- the pod: supports metadata.name,
- metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the
- schema the FieldPath is written
- in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a
- secret in the pod's namespace
- properties:
- key:
- description: The key of the
- secret to select from. Must
- be a valid secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select
- from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier
- to prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due
- to an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe
- fails.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from
- the container.
- items:
- description: ContainerPort represents a
- network port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must
- be an IANA_SVC_NAME and unique within
- the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must
- be UDP, TCP, or SCTP. Defaults to
- "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More
- info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed.
- More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation
- controls whether a process can gain
- more privileges than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default
- is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be
- applied to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which
- kind of seccomp profile will be
- applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is
- where the GMSA admission webhook
- (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as
- a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should
- allocate a buffer for stdin in the container
- runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime
- should close the stdin channel after it
- has been opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the
- file to which the container''s termination
- message will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination
- message should be populated.
- type: string
- tty:
- description: Whether this container should
- allocate a TTY for itself, also requires
- 'stdin' to be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of
- block devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path
- inside of the container that the device
- will be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the
- pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the
- container's filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the
- host to container and the other way
- a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume
- from which the container's volume
- should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's
- volume should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- dnsConfig:
- description: Specifies the DNS parameters of a pod.
- properties:
- nameservers:
- description: A list of DNS name server IP addresses.
- items:
- type: string
- type: array
- options:
- description: A list of DNS resolver options.
- This will be merged with the base options
- generated from DNSPolicy.
- items:
- description: PodDNSConfigOption defines DNS
- resolver options of a pod.
- properties:
- name:
- description: Required.
- type: string
- value:
- type: string
- type: object
- type: array
- searches:
- description: A list of DNS search domains for
- host-name lookup.
- items:
- type: string
- type: array
- type: object
- dnsPolicy:
- description: Set DNS policy for the pod. Defaults
- to "ClusterFirst".
- type: string
- enableServiceLinks:
- description: EnableServiceLinks indicates whether
- information about services should be injected
- into pod's enviro
- type: boolean
- ephemeralContainers:
- description: List of ephemeral containers run in
- this pod.
- items:
- description: An EphemeralContainer is a temporary
- container that you may add to an existing Pod
- for user-initiate
- properties:
- args:
- description: Arguments to the entrypoint.
- The docker image's CMD is used if this is
- not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables
- to set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment
- variable. Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously
- defined environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a
- ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of
- the pod: supports metadata.name,
- metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the
- schema the FieldPath is written
- in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a
- secret in the pod's namespace
- properties:
- key:
- description: The key of the
- secret to select from. Must
- be a valid secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select
- from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier
- to prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.io/docs/concepts/containers/images'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Lifecycle is not allowed for
- ephemeral containers.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due
- to an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the ephemeral container
- specified as a DNS_LABEL.
- type: string
- ports:
- description: Ports are not allowed for ephemeral
- containers.
- items:
- description: ContainerPort represents a
- network port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must
- be an IANA_SVC_NAME and unique within
- the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must
- be UDP, TCP, or SCTP. Defaults to
- "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: Resources are not allowed for
- ephemeral containers.
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed.
- More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: 'Optional: SecurityContext defines
- the security options the ephemeral container
- should be run with.'
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation
- controls whether a process can gain
- more privileges than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default
- is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be
- applied to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which
- kind of seccomp profile will be
- applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is
- where the GMSA admission webhook
- (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as
- a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: Probes are not allowed for ephemeral
- containers.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should
- allocate a buffer for stdin in the container
- runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime
- should close the stdin channel after it
- has been opened by a single at
- type: boolean
- targetContainerName:
- description: If set, the name of the container
- from PodSpec that this ephemeral container
- targets.
- type: string
- terminationMessagePath:
- description: 'Optional: Path at which the
- file to which the container''s termination
- message will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination
- message should be populated.
- type: string
- tty:
- description: Whether this container should
- allocate a TTY for itself, also requires
- 'stdin' to be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of
- block devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path
- inside of the container that the device
- will be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the
- pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the
- container's filesystem.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the
- host to container and the other way
- a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume
- from which the container's volume
- should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's
- volume should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- hostAliases:
- description: 'HostAliases is an optional list of
- hosts and IPs that will be injected into the pod''s
- hosts file if '
- items:
- description: 'HostAlias holds the mapping between
- IP and hostnames that will be injected as an
- entry in the pod''s '
- properties:
- hostnames:
- description: Hostnames for the above IP address.
- items:
- type: string
- type: array
- ip:
- description: IP address of the host file entry.
- type: string
- type: object
- type: array
- hostIPC:
- description: 'Use the host''s ipc namespace. Optional:
- Default to false.'
- type: boolean
- hostNetwork:
- description: Host networking requested for this
- pod. Use the host's network namespace.
- type: boolean
- hostPID:
- description: 'Use the host''s pid namespace. Optional:
- Default to false.'
- type: boolean
- hostname:
- description: Specifies the hostname of the Pod If
- not specified, the pod's hostname will be set
- to a system-defin
- type: string
- imagePullSecrets:
- description: ImagePullSecrets is an optional list
- of references to secrets in the same namespace
- to use for pulli
- items:
- description: 'LocalObjectReference contains enough
- information to let you locate the referenced
- object inside the '
- properties:
- name:
- description: 'Name of the referent. More info:
- https://kubernetes.'
- type: string
- type: object
- type: array
- initContainers:
- description: List of initialization containers belonging
- to the pod.
- items:
- description: A single application container that
- you want to run within a pod.
- properties:
- args:
- description: Arguments to the entrypoint.
- The docker image's CMD is used if this is
- not provided.
- items:
- type: string
- type: array
- command:
- description: Entrypoint array. Not executed
- within a shell.
- items:
- type: string
- type: array
- env:
- description: List of environment variables
- to set in the container. Cannot be updated.
- items:
- description: EnvVar represents an environment
- variable present in a Container.
- properties:
- name:
- description: Name of the environment
- variable. Must be a C_IDENTIFIER.
- type: string
- value:
- description: Variable references $(VAR_NAME)
- are expanded using the previously
- defined environment variables in t
- type: string
- valueFrom:
- description: Source for the environment
- variable's value. Cannot be used if
- value is not empty.
- properties:
- configMapKeyRef:
- description: Selects a key of a
- ConfigMap.
- properties:
- key:
- description: The key to select.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- fieldRef:
- description: 'Selects a field of
- the pod: supports metadata.name,
- metadata.namespace, `metadata.'
- properties:
- apiVersion:
- description: Version of the
- schema the FieldPath is written
- in terms of, defaults to "v1".
- type: string
- fieldPath:
- description: Path of the field
- to select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- resourceFieldRef:
- description: 'Selects a resource
- of the container: only resources
- limits and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container name:
- required for volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies the output
- format of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required: resource
- to select'
- type: string
- required:
- - resource
- type: object
- secretKeyRef:
- description: Selects a key of a
- secret in the pod's namespace
- properties:
- key:
- description: The key of the
- secret to select from. Must
- be a valid secret key.
- type: string
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- required:
- - key
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- envFrom:
- description: List of sources to populate environment
- variables in the container.
- items:
- description: EnvFromSource represents the
- source of a set of ConfigMaps
- properties:
- configMapRef:
- description: The ConfigMap to select
- from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- ConfigMap must be defined
- type: boolean
- type: object
- prefix:
- description: An optional identifier
- to prepend to each key in the ConfigMap.
- Must be a C_IDENTIFIER.
- type: string
- secretRef:
- description: The Secret to select from
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether the
- Secret must be defined
- type: boolean
- type: object
- type: object
- type: array
- image:
- description: 'Docker image name. More info:
- https://kubernetes.'
- type: string
- imagePullPolicy:
- description: Image pull policy. One of Always,
- Never, IfNotPresent.
- type: string
- lifecycle:
- description: Actions that the management system
- should take in response to container lifecycle
- events.
- properties:
- postStart:
- description: PostStart is called immediately
- after a container is created.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- preStop:
- description: PreStop is called immediately
- before a container is terminated due
- to an API request or management e
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the
- command '
- items:
- type: string
- type: array
- type: object
- httpGet:
- description: HTTPGet specifies the
- http request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to
- set in the request. HTTP allows
- repeated headers.
- items:
- description: HTTPHeader describes
- a custom header to be used
- in HTTP probes
- properties:
- name:
- description: The header
- field name
- type: string
- value:
- description: The header
- field value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on
- the HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for
- connecting to the host. Defaults
- to HTTP.
- type: string
- required:
- - port
- type: object
- tcpSocket:
- description: Deprecated.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the
- pod IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of
- the port to access on the container.
- Number must be in the range
- 1 to 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- type: object
- type: object
- livenessProbe:
- description: Periodic probe of container liveness.
- Container will be restarted if the probe
- fails.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- name:
- description: Name of the container specified
- as a DNS_LABEL.
- type: string
- ports:
- description: List of ports to expose from
- the container.
- items:
- description: ContainerPort represents a
- network port in a single container.
- properties:
- containerPort:
- description: Number of port to expose
- on the pod's IP address. This must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- hostIP:
- description: What host IP to bind the
- external port to.
- type: string
- hostPort:
- description: Number of port to expose
- on the host. If specified, this must
- be a valid port number, 0 < x < 65536.
- format: int32
- type: integer
- name:
- description: If specified, this must
- be an IANA_SVC_NAME and unique within
- the pod.
- type: string
- protocol:
- default: TCP
- description: Protocol for port. Must
- be UDP, TCP, or SCTP. Defaults to
- "TCP".
- type: string
- required:
- - containerPort
- type: object
- type: array
- x-kubernetes-list-map-keys:
- - containerPort
- - protocol
- x-kubernetes-list-type: map
- readinessProbe:
- description: Periodic probe of container service
- readiness.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- resources:
- description: 'Compute Resources required by
- this container. Cannot be updated. More
- info: https://kubernetes.'
- properties:
- limits:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: 'Limits describes the maximum
- amount of compute resources allowed.
- More info: https://kubernetes.'
- type: object
- requests:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Requests describes the minimum
- amount of compute resources required.
- type: object
- type: object
- securityContext:
- description: SecurityContext defines the security
- options the container should be run with.
- properties:
- allowPrivilegeEscalation:
- description: AllowPrivilegeEscalation
- controls whether a process can gain
- more privileges than its parent process
- type: boolean
- capabilities:
- description: The capabilities to add/drop
- when running containers.
- properties:
- add:
- description: Added capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- drop:
- description: Removed capabilities
- items:
- description: Capability represent
- POSIX capabilities type
- type: string
- type: array
- type: object
- privileged:
- description: Run container in privileged
- mode.
- type: boolean
- procMount:
- description: procMount denotes the type
- of proc mount to use for the containers.
- type: string
- readOnlyRootFilesystem:
- description: Whether this container has
- a read-only root filesystem. Default
- is false.
- type: boolean
- runAsGroup:
- description: The GID to run the entrypoint
- of the container process. Uses runtime
- default if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container
- must run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint
- of the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be
- applied to the container.
- properties:
- level:
- description: Level is SELinux level
- label that applies to the container.
- type: string
- role:
- description: Role is a SELinux role
- label that applies to the container.
- type: string
- type:
- description: Type is a SELinux type
- label that applies to the container.
- type: string
- user:
- description: User is a SELinux user
- label that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use
- by this container.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the
- node should be used.
- type: string
- type:
- description: type indicates which
- kind of seccomp profile will be
- applied.
- type: string
- required:
- - type
- type: object
- windowsOptions:
- description: The Windows specific settings
- applied to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is
- where the GMSA admission webhook
- (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName
- is the name of the GMSA credential
- spec to use.
- type: string
- hostProcess:
- description: HostProcess determines
- if a container should be run as
- a 'Host Process' container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows
- to run the entrypoint of the container
- process.
- type: string
- type: object
- type: object
- startupProbe:
- description: StartupProbe indicates that the
- Pod has successfully initialized.
- properties:
- exec:
- description: Exec specifies the action
- to take.
- properties:
- command:
- description: 'Command is the command
- line to execute inside the container,
- the working directory for the command '
- items:
- type: string
- type: array
- type: object
- failureThreshold:
- description: Minimum consecutive failures
- for the probe to be considered failed
- after having succeeded.
- format: int32
- type: integer
- grpc:
- description: GRPC specifies an action
- involving a GRPC port.
- properties:
- port:
- description: Port number of the gRPC
- service. Number must be in the range
- 1 to 65535.
- format: int32
- type: integer
- service:
- description: Service is the name of
- the service to place in the gRPC
- HealthCheckRequest (see https://github.
- type: string
- required:
- - port
- type: object
- httpGet:
- description: HTTPGet specifies the http
- request to perform.
- properties:
- host:
- description: Host name to connect
- to, defaults to the pod IP.
- type: string
- httpHeaders:
- description: Custom headers to set
- in the request. HTTP allows repeated
- headers.
- items:
- description: HTTPHeader describes
- a custom header to be used in
- HTTP probes
- properties:
- name:
- description: The header field
- name
- type: string
- value:
- description: The header field
- value
- type: string
- required:
- - name
- - value
- type: object
- type: array
- path:
- description: Path to access on the
- HTTP server.
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Name or number of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- scheme:
- description: Scheme to use for connecting
- to the host. Defaults to HTTP.
- type: string
- required:
- - port
- type: object
- initialDelaySeconds:
- description: Number of seconds after the
- container has started before liveness
- probes are initiated.
- format: int32
- type: integer
- periodSeconds:
- description: How often (in seconds) to
- perform the probe. Default to 10 seconds.
- Minimum value is 1.
- format: int32
- type: integer
- successThreshold:
- description: Minimum consecutive successes
- for the probe to be considered successful
- after having failed.
- format: int32
- type: integer
- tcpSocket:
- description: TCPSocket specifies an action
- involving a TCP port.
- properties:
- host:
- description: 'Optional: Host name
- to connect to, defaults to the pod
- IP.'
- type: string
- port:
- anyOf:
- - type: integer
- - type: string
- description: Number or name of the
- port to access on the container.
- Number must be in the range 1 to
- 65535.
- x-kubernetes-int-or-string: true
- required:
- - port
- type: object
- terminationGracePeriodSeconds:
- description: Optional duration in seconds
- the pod needs to terminate gracefully
- upon probe failure.
- format: int64
- type: integer
- timeoutSeconds:
- description: Number of seconds after which
- the probe times out. Defaults to 1 second.
- Minimum value is 1.
- format: int32
- type: integer
- type: object
- stdin:
- description: Whether this container should
- allocate a buffer for stdin in the container
- runtime.
- type: boolean
- stdinOnce:
- description: Whether the container runtime
- should close the stdin channel after it
- has been opened by a single at
- type: boolean
- terminationMessagePath:
- description: 'Optional: Path at which the
- file to which the container''s termination
- message will be written is mou'
- type: string
- terminationMessagePolicy:
- description: Indicate how the termination
- message should be populated.
- type: string
- tty:
- description: Whether this container should
- allocate a TTY for itself, also requires
- 'stdin' to be true.
- type: boolean
- volumeDevices:
- description: volumeDevices is the list of
- block devices to be used by the container.
- items:
- description: volumeDevice describes a mapping
- of a raw block device within a container.
- properties:
- devicePath:
- description: devicePath is the path
- inside of the container that the device
- will be mapped to.
- type: string
- name:
- description: name must match the name
- of a persistentVolumeClaim in the
- pod
- type: string
- required:
- - devicePath
- - name
- type: object
- type: array
- volumeMounts:
- description: Pod volumes to mount into the
- container's filesystem. Cannot be updated.
- items:
- description: VolumeMount describes a mounting
- of a Volume within a container.
- properties:
- mountPath:
- description: Path within the container
- at which the volume should be mounted. Must
- not contain ':'.
- type: string
- mountPropagation:
- description: mountPropagation determines
- how mounts are propagated from the
- host to container and the other way
- a
- type: string
- name:
- description: This must match the Name
- of a Volume.
- type: string
- readOnly:
- description: Mounted read-only if true,
- read-write otherwise (false or unspecified).
- Defaults to false.
- type: boolean
- subPath:
- description: Path within the volume
- from which the container's volume
- should be mounted.
- type: string
- subPathExpr:
- description: Expanded path within the
- volume from which the container's
- volume should be mounted.
- type: string
- required:
- - mountPath
- - name
- type: object
- type: array
- workingDir:
- description: Container's working directory.
- type: string
- required:
- - name
- type: object
- type: array
- nodeName:
- description: NodeName is a request to schedule this
- pod onto a specific node.
- type: string
- nodeSelector:
- additionalProperties:
- type: string
- description: NodeSelector is a selector which must
- be true for the pod to fit on a node.
- type: object
- x-kubernetes-map-type: atomic
- os:
- description: Specifies the OS of the containers
- in the pod.
- properties:
- name:
- description: Name is the name of the operating
- system. The currently supported values are
- linux and windows.
- type: string
- required:
- - name
- type: object
- overhead:
- additionalProperties:
- anyOf:
- - type: integer
- - type: string
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- description: Overhead represents the resource overhead
- associated with running a pod for a given RuntimeClass.
- type: object
- preemptionPolicy:
- description: PreemptionPolicy is the Policy for
- preempting pods with lower priority.
- type: string
- priority:
- description: The priority value. Various system
- components use this field to find the priority
- of the pod.
- format: int32
- type: integer
- priorityClassName:
- description: If specified, indicates the pod's priority.
- type: string
- readinessGates:
- description: If specified, all readiness gates will
- be evaluated for pod readiness.
- items:
- description: PodReadinessGate contains the reference
- to a pod condition
- properties:
- conditionType:
- description: ConditionType refers to a condition
- in the pod's condition list with matching
- type.
- type: string
- required:
- - conditionType
- type: object
- type: array
- restartPolicy:
- description: Restart policy for all containers within
- the pod. One of Always, OnFailure, Never.
- type: string
- runtimeClassName:
- description: RuntimeClassName refers to a RuntimeClass
- object in the node.k8s.
- type: string
- schedulerName:
- description: If specified, the pod will be dispatched
- by specified scheduler.
- type: string
- securityContext:
- description: SecurityContext holds pod-level security
- attributes and common container settings.
- properties:
- fsGroup:
- description: A special supplemental group that
- applies to all containers in a pod.
- format: int64
- type: integer
- fsGroupChangePolicy:
- description: fsGroupChangePolicy defines behavior
- of changing ownership and permission of the
- volume before being
- type: string
- runAsGroup:
- description: The GID to run the entrypoint of
- the container process. Uses runtime default
- if unset.
- format: int64
- type: integer
- runAsNonRoot:
- description: Indicates that the container must
- run as a non-root user.
- type: boolean
- runAsUser:
- description: The UID to run the entrypoint of
- the container process.
- format: int64
- type: integer
- seLinuxOptions:
- description: The SELinux context to be applied
- to all containers.
- properties:
- level:
- description: Level is SELinux level label
- that applies to the container.
- type: string
- role:
- description: Role is a SELinux role label
- that applies to the container.
- type: string
- type:
- description: Type is a SELinux type label
- that applies to the container.
- type: string
- user:
- description: User is a SELinux user label
- that applies to the container.
- type: string
- type: object
- seccompProfile:
- description: The seccomp options to use by the
- containers in this pod.
- properties:
- localhostProfile:
- description: localhostProfile indicates
- a profile defined in a file on the node
- should be used.
- type: string
- type:
- description: type indicates which kind of
- seccomp profile will be applied.
- type: string
- required:
- - type
- type: object
- supplementalGroups:
- description: 'A list of groups applied to the
- first process run in each container, in addition
- to the container''s '
- items:
- format: int64
- type: integer
- type: array
- sysctls:
- description: Sysctls hold a list of namespaced
- sysctls used for the pod.
- items:
- description: Sysctl defines a kernel parameter
- to be set
- properties:
- name:
- description: Name of a property to set
- type: string
- value:
- description: Value of a property to set
- type: string
- required:
- - name
- - value
- type: object
- type: array
- windowsOptions:
- description: The Windows specific settings applied
- to all containers.
- properties:
- gmsaCredentialSpec:
- description: GMSACredentialSpec is where
- the GMSA admission webhook (https://github.
- type: string
- gmsaCredentialSpecName:
- description: GMSACredentialSpecName is the
- name of the GMSA credential spec to use.
- type: string
- hostProcess:
- description: HostProcess determines if a
- container should be run as a 'Host Process'
- container.
- type: boolean
- runAsUserName:
- description: The UserName in Windows to
- run the entrypoint of the container process.
- type: string
- type: object
- type: object
- serviceAccount:
- description: DeprecatedServiceAccount is a depreciated
- alias for ServiceAccountName.
- type: string
- serviceAccountName:
- description: ServiceAccountName is the name of the
- ServiceAccount to use to run this pod.
- type: string
- setHostnameAsFQDN:
- description: If true the pod's hostname will be
- configured as the pod's FQDN, rather than the
- leaf name (the defa
- type: boolean
- shareProcessNamespace:
- description: Share a single process namespace between
- all of the containers in a pod.
- type: boolean
- subdomain:
- description: If specified, the fully qualified Pod
- hostname will be "...svc.
- type: string
- terminationGracePeriodSeconds:
- description: Optional duration in seconds the pod
- needs to terminate gracefully.
- format: int64
- type: integer
- tolerations:
- description: If specified, the pod's tolerations.
- items:
- description: The pod this Toleration is attached
- to tolerates any taint that matches the triple
- name on the dataset for
- Flocker should be considered as de
- type: string
- datasetUUID:
- description: UUID of the dataset. This
- is unique identifier of a Flocker dataset
- type: string
- type: object
- gcePersistentDisk:
- description: GCEPersistentDisk represents
- a GCE Disk resource that is attached to
- a kubelet's host machine and th
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- partition:
- description: The partition in the volume
- that you want to mount.
- format: int32
- type: integer
- pdName:
- description: Unique name of the PD resource
- in GCE. Used to identify the disk in
- GCE.
- type: string
- readOnly:
- description: ReadOnly here will force
- the ReadOnly setting in VolumeMounts.
- Defaults to false.
- type: boolean
- required:
- - pdName
- type: object
- gitRepo:
- description: 'GitRepo represents a git repository
- at a particular revision. DEPRECATED: GitRepo
- is deprecated.'
- properties:
- directory:
- description: Target directory name. Must
- not contain or start with '..'. If
- '.
- type: string
- repository:
- description: Repository URL
- type: string
- revision:
- description: Commit hash for the specified
- revision.
- type: string
- required:
- - repository
- type: object
- glusterfs:
- description: Glusterfs represents a Glusterfs
- mount on the host that shares a pod's lifetime.
- properties:
- endpoints:
- description: 'EndpointsName is the endpoint
- name that details Glusterfs topology.
- More info: https://examples.k8s.'
- type: string
- path:
- description: 'Path is the Glusterfs volume
- path. More info: https://examples.k8s.io/volumes/glusterfs/README.'
- type: string
- readOnly:
- description: ReadOnly here will force
- the Glusterfs volume to be mounted with
- read-only permissions.
- type: boolean
- required:
- - endpoints
- - path
- type: object
- hostPath:
- description: HostPath represents a pre-existing
- file or directory on the host machine that
- is directly exposed to
- properties:
- path:
- description: Path of the directory on
- the host.
- type: string
- type:
- description: 'Type for HostPath Volume
- Defaults to "" More info: https://kubernetes.'
- type: string
- required:
- - path
- type: object
- iscsi:
- description: ISCSI represents an ISCSI Disk
- resource that is attached to a kubelet's
- host machine and then expose
- properties:
- chapAuthDiscovery:
- description: whether support iSCSI Discovery
- CHAP authentication
- type: boolean
- chapAuthSession:
- description: whether support iSCSI Session
- CHAP authentication
- type: boolean
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- initiatorName:
- description: Custom iSCSI Initiator Name.
- type: string
- iqn:
- description: Target iSCSI Qualified Name.
- type: string
- iscsiInterface:
- description: iSCSI Interface Name that
- uses an iSCSI transport. Defaults to
- 'default' (tcp).
- type: string
- lun:
- description: iSCSI Target Lun number.
- format: int32
- type: integer
- portals:
- description: iSCSI Target Portal List.
- items:
- type: string
- type: array
- readOnly:
- description: ReadOnly here will force
- the ReadOnly setting in VolumeMounts.
- Defaults to false.
- type: boolean
- secretRef:
- description: CHAP Secret for iSCSI target
- and initiator authentication
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- targetPortal:
- description: iSCSI Target Portal.
- type: string
- required:
- - iqn
- - lun
- - targetPortal
- type: object
- name:
- description: 'Volume''s name. Must be a DNS_LABEL
- and unique within the pod. More info: https://kubernetes.'
- type: string
- nfs:
- description: 'NFS represents an NFS mount
- on the host that shares a pod''s lifetime
- More info: https://kubernetes.'
- properties:
- path:
- description: 'Path that is exported by
- the NFS server. More info: https://kubernetes.'
- type: string
- readOnly:
- description: ReadOnly here will force
- the NFS export to be mounted with read-only
- permissions. Defaults to false.
- type: boolean
- server:
- description: 'Server is the hostname or
- IP address of the NFS server. More info:
- https://kubernetes.'
- type: string
- required:
- - path
- - server
- type: object
- persistentVolumeClaim:
- description: PersistentVolumeClaimVolumeSource
- represents a reference to a PersistentVolumeClaim
- in the same name
- properties:
- claimName:
- description: ClaimName is the name of
- a PersistentVolumeClaim in the same
- namespace as the pod using this volume.
- type: string
- readOnly:
- description: Will force the ReadOnly setting
- in VolumeMounts. Default false.
- type: boolean
- required:
- - claimName
- type: object
- photonPersistentDisk:
- description: 'PhotonPersistentDisk represents
- a PhotonController persistent disk attached
- and mounted on kubelets '
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- pdID:
- description: ID that identifies Photon
- Controller persistent disk
- type: string
- required:
- - pdID
- type: object
- portworxVolume:
- description: PortworxVolume represents a portworx
- volume attached and mounted on kubelets
- host machine
- properties:
- fsType:
- description: FSType represents the filesystem
- type to mount Must be a filesystem type
- supported by the host opera
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- volumeID:
- description: VolumeID uniquely identifies
- a Portworx volume
- type: string
- required:
- - volumeID
- type: object
- projected:
- description: Items for all in one resources
- secrets, configmaps, and downward API
- properties:
- defaultMode:
- description: Mode bits used to set permissions
- on created files by default.
- format: int32
- type: integer
- sources:
- description: list of volume projections
- items:
- description: Projection that may be
- projected along with other supported
- volume types
- properties:
- configMap:
- description: information about the
- configMap data to project
- properties:
- items:
- description: 'If unspecified,
- each key-value pair in the
- Data field of the referenced
- ConfigMap will be projected '
- items:
- description: Maps a string
- key to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to
- map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the ConfigMap or its keys
- must be defined
- type: boolean
- type: object
- downwardAPI:
- description: information about the
- downwardAPI data to project
- properties:
- items:
- description: Items is a list
- of DownwardAPIVolume file
- items:
- description: DownwardAPIVolumeFile
- represents information to
- create the file containing
- the pod field
- properties:
- fieldRef:
- description: 'Required:
- Selects a field of the
- pod: only annotations,
- labels, name and namespace
- are supported.'
- properties:
- apiVersion:
- description: Version
- of the schema the
- FieldPath is written
- in terms of, defaults
- to "v1".
- type: string
- fieldPath:
- description: Path
- of the field to
- select in the specified
- API version.
- type: string
- required:
- - fieldPath
- type: object
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this
- file, must be an octal
- value between 0000 and
- 07'
- format: int32
- type: integer
- path:
- description: 'Required:
- Path is the relative
- path name of the file
- to be created.'
- type: string
- resourceFieldRef:
- description: 'Selects
- a resource of the container:
- only resources limits
- and requests (limits.cpu,
- limits.'
- properties:
- containerName:
- description: 'Container
- name: required for
- volumes, optional
- for env vars'
- type: string
- divisor:
- anyOf:
- - type: integer
- - type: string
- description: Specifies
- the output format
- of the exposed resources,
- defaults to "1"
- pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
- x-kubernetes-int-or-string: true
- resource:
- description: 'Required:
- resource to select'
- type: string
- required:
- - resource
- type: object
- required:
- - path
- type: object
- type: array
- type: object
- secret:
- description: information about the
- secret data to project
- properties:
- items:
- description: If unspecified,
- each key-value pair in the
- Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string
- key to a path within a volume.
- properties:
- key:
- description: The key to
- project.
- type: string
- mode:
- description: 'Optional:
- mode bits used to set
- permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative
- path of the file to
- map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- optional:
- description: Specify whether
- the Secret or its key must
- be defined
- type: boolean
- type: object
- serviceAccountToken:
- description: information about the
- serviceAccountToken data to project
- properties:
- audience:
- description: Audience is the
- intended audience of the token.
- type: string
- expirationSeconds:
- description: ExpirationSeconds
- is the requested duration
- of validity of the service
- account token.
- format: int64
- type: integer
- path:
- description: Path is the path
- relative to the mount point
- of the file to project the
- token into.
- type: string
- required:
- - path
- type: object
- type: object
- type: array
- type: object
- quobyte:
- description: Quobyte represents a Quobyte
- mount on the host that shares a pod's lifetime
- properties:
- group:
- description: Group to map volume access
- to Default is no group
- type: string
- readOnly:
- description: ReadOnly here will force
- the Quobyte volume to be mounted with
- read-only permissions.
- type: boolean
- registry:
- description: Registry represents a single
- or multiple Quobyte Registry services
- specified as a string as host:por
- type: string
- tenant:
- description: Tenant owning the given Quobyte
- volume in the Backend Used with dynamically
- provisioned Quobyte volu
- type: string
- user:
- description: User to map volume access
- to Defaults to serivceaccount user
- type: string
- volume:
- description: Volume is a string that references
- an already created Quobyte volume by
- name.
- type: string
- required:
- - registry
- - volume
- type: object
- rbd:
- description: RBD represents a Rados Block
- Device mount on the host that shares a pod's
- lifetime.
- properties:
- fsType:
- description: Filesystem type of the volume
- that you want to mount.
- type: string
- image:
- description: 'The rados image name. More
- info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'
- type: string
- keyring:
- description: Keyring is the path to key
- ring for RBDUser. Default is /etc/ceph/keyring.
- type: string
- monitors:
- description: 'A collection of Ceph monitors.
- More info: https://examples.k8s.io/volumes/rbd/README.'
- items:
- type: string
- type: array
- pool:
- description: 'The rados pool name. Default
- is rbd. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- readOnly:
- description: ReadOnly here will force
- the ReadOnly setting in VolumeMounts.
- Defaults to false.
- type: boolean
- secretRef:
- description: SecretRef is name of the
- authentication secret for RBDUser. If
- provided overrides keyring.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- user:
- description: 'The rados user name. Default
- is admin. More info: https://examples.k8s.io/volumes/rbd/README.'
- type: string
- required:
- - image
- - monitors
- type: object
- scaleIO:
- description: ScaleIO represents a ScaleIO
- persistent volume attached and mounted on
- Kubernetes nodes.
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- gateway:
- description: The host address of the ScaleIO
- API Gateway.
- type: string
- protectionDomain:
- description: The name of the ScaleIO Protection
- Domain for the configured storage.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef references to the
- secret for ScaleIO user and other sensitive
- information.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- sslEnabled:
- description: Flag to enable/disable SSL
- communication with Gateway, default
- false
- type: boolean
- storageMode:
- description: Indicates whether the storage
- for a volume should be ThickProvisioned
- or ThinProvisioned.
- type: string
- storagePool:
- description: The ScaleIO Storage Pool
- associated with the protection domain.
- type: string
- system:
- description: The name of the storage system
- as configured in ScaleIO.
- type: string
- volumeName:
- description: The name of a volume already
- created in the ScaleIO system that is
- associated with this volume sourc
- type: string
- required:
- - gateway
- - secretRef
- - system
- type: object
- secret:
- description: 'Secret represents a secret that
- should populate this volume. More info:
- https://kubernetes.'
- properties:
- defaultMode:
- description: 'Optional: mode bits used
- to set permissions on created files
- by default.'
- format: int32
- type: integer
- items:
- description: If unspecified, each key-value
- pair in the Data field of the referenced
- Secret will be projected int
- items:
- description: Maps a string key to a
- path within a volume.
- properties:
- key:
- description: The key to project.
- type: string
- mode:
- description: 'Optional: mode bits
- used to set permissions on this
- file.'
- format: int32
- type: integer
- path:
- description: The relative path of
- the file to map the key to. May
- not be an absolute path.
- type: string
- required:
- - key
- - path
- type: object
- type: array
- optional:
- description: Specify whether the Secret
- or its keys must be defined
- type: boolean
- secretName:
- description: 'Name of the secret in the
- pod''s namespace to use. More info:
- https://kubernetes.'
- type: string
- type: object
- storageos:
- description: StorageOS represents a StorageOS
- volume attached and mounted on Kubernetes
- nodes.
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- readOnly:
- description: Defaults to false (read/write).
- ReadOnly here will force the ReadOnly
- setting in VolumeMounts.
- type: boolean
- secretRef:
- description: SecretRef specifies the secret
- to use for obtaining the StorageOS API
- credentials.
- properties:
- name:
- description: 'Name of the referent.
- More info: https://kubernetes.'
- type: string
- type: object
- volumeName:
- description: VolumeName is the human-readable
- name of the StorageOS volume.
- type: string
- volumeNamespace:
- description: VolumeNamespace specifies
- the scope of the volume within StorageOS.
- type: string
- type: object
- vsphereVolume:
- description: VsphereVolume represents a vSphere
- volume attached and mounted on kubelets
- host machine
- properties:
- fsType:
- description: Filesystem type to mount.
- Must be a filesystem type supported
- by the host operating system. Ex.
- type: string
- storagePolicyID:
- description: Storage Policy Based Management
- (SPBM) profile ID associated with the
- StoragePolicyName.
- type: string
- storagePolicyName:
- description: Storage Policy Based Management
- (SPBM) profile name.
- type: string
- volumePath:
- description: Path that identifies vSphere
- volume vmdk
- type: string
- required:
- - volumePath
- type: object
- required:
- - name
- type: object
- type: array
- required:
- - containers
- type: object
- type: object
- required:
- - groupName
- - maxReplicas
- - minReplicas
- - rayStartParams
- - replicas
- - template
- type: object
- type: array
- required:
- - headGroupSpec
- type: object
- serveDeploymentGraphConfig:
- description: 'Important: Run "make" to regenerate code after modifying
- this file'
- properties:
- importPath:
- type: string
- runtimeEnv:
- type: string
- serveConfigs:
- items:
- description: ServeConfigSpec defines the desired state of RayService
- Reference to http://rayserve.org
- properties:
- autoscalingConfig:
- type: string
- gracefulShutdownTimeoutS:
- format: int32
- type: integer
- gracefulShutdownWaitLoopS:
- format: int32
- type: integer
- healthCheckPeriodS:
- format: int32
- type: integer
- healthCheckTimeoutS:
- format: int32
- type: integer
- maxConcurrentQueries:
- format: int32
- type: integer
- name:
- type: string
- numReplicas:
- format: int32
- type: integer
- rayActorOptions:
- description: RayActorOptionSpec defines the desired state
- of RayActor
- properties:
- acceleratorType:
- type: string
- memory:
- format: int32
- type: integer
- numCpus:
- type: number
- numGpus:
- type: number
- objectStoreMemory:
- format: int32
- type: integer
- resources:
- type: string
- runtimeEnv:
- type: string
- type: object
- routePrefix:
- type: string
- userConfig:
- type: string
- required:
- - name
- type: object
- type: array
- required:
- - importPath
- type: object
- type: object
- status:
- description: RayServiceStatuses defines the observed state of RayService
- properties:
- activeServiceStatus:
- properties:
- appStatus:
- description: 'Important: Run "make" to regenerate code after modifying
- this file'
- properties:
- healthLastUpdateTime:
- description: Keep track of how long the service is healthy.
- format: date-time
- type: string
- lastUpdateTime:
- format: date-time
- type: string
- message:
- type: string
- status:
- type: string
- type: object
- dashboardStatus:
- description: DashboardStatus defines the current states of Ray
- Dashboard
- properties:
- healthLastUpdateTime:
- description: Keep track of how long the dashboard is healthy.
- format: date-time
- type: string
- isHealthy:
- type: boolean
- lastUpdateTime:
- format: date-time
- type: string
- type: object
- rayClusterName:
- type: string
- rayClusterStatus:
- description: RayClusterStatus defines the observed state of RayCluster
- properties:
- availableWorkerReplicas:
- description: AvailableWorkerReplicas indicates how many replicas
- are available in the cluster
- format: int32
- type: integer
- desiredWorkerReplicas:
- description: DesiredWorkerReplicas indicates overall desired
- replicas claimed by the user at the cluster level.
- format: int32
- type: integer
- endpoints:
- additionalProperties:
- type: string
- description: Service Endpoints
- type: object
- lastUpdateTime:
- description: LastUpdateTime indicates last update timestamp
- for this cluster status.
- format: date-time
- nullable: true
- type: string
- maxWorkerReplicas:
- description: MaxWorkerReplicas indicates sum of maximum replicas
- of each node group.
- format: int32
- type: integer
- minWorkerReplicas:
- description: MinWorkerReplicas indicates sum of minimum replicas
- of each node group.
- format: int32
- type: integer
- state:
- description: 'INSERT ADDITIONAL STATUS FIELD - define observed
- state of cluster Important: Run "make" to regenerat'
- type: string
- type: object
- serveDeploymentStatuses:
- items:
- description: ServeDeploymentStatus defines the current state
- of Serve Deployment
- properties:
- healthLastUpdateTime:
- description: Keep track of how long the service is healthy.
- format: date-time
- type: string
- lastUpdateTime:
- format: date-time
- type: string
- message:
- type: string
- name:
- description: Name, Status, Message are from Ray Dashboard
- to represent the state of a serve deployment.
- type: string
- status:
- description: 'TODO: change status type to enum'
- type: string
- type: object
- type: array
- type: object
- pendingServiceStatus:
- description: Pending Service Status indicates a RayCluster will be
- created or is being created.
- properties:
- appStatus:
- description: 'Important: Run "make" to regenerate code after modifying
- this file'
- properties:
- healthLastUpdateTime:
- description: Keep track of how long the service is healthy.
- format: date-time
- type: string
- lastUpdateTime:
- format: date-time
- type: string
- message:
- type: string
- status:
- type: string
- type: object
- dashboardStatus:
- description: DashboardStatus defines the current states of Ray
- Dashboard
- properties:
- healthLastUpdateTime:
- description: Keep track of how long the dashboard is healthy.
- format: date-time
- type: string
- isHealthy:
- type: boolean
- lastUpdateTime:
- format: date-time
- type: string
- type: object
- rayClusterName:
- type: string
- rayClusterStatus:
- description: RayClusterStatus defines the observed state of RayCluster
- properties:
- availableWorkerReplicas:
- description: AvailableWorkerReplicas indicates how many replicas
- are available in the cluster
- format: int32
- type: integer
- desiredWorkerReplicas:
- description: DesiredWorkerReplicas indicates overall desired
- replicas claimed by the user at the cluster level.
- format: int32
- type: integer
- endpoints:
- additionalProperties:
- type: string
- description: Service Endpoints
- type: object
- lastUpdateTime:
- description: LastUpdateTime indicates last update timestamp
- for this cluster status.
- format: date-time
- nullable: true
- type: string
- maxWorkerReplicas:
- description: MaxWorkerReplicas indicates sum of maximum replicas
- of each node group.
- format: int32
- type: integer
- minWorkerReplicas:
- description: MinWorkerReplicas indicates sum of minimum replicas
- of each node group.
- format: int32
- type: integer
- state:
- description: 'INSERT ADDITIONAL STATUS FIELD - define observed
- state of cluster Important: Run "make" to regenerat'
- type: string
- type: object
- serveDeploymentStatuses:
- items:
- description: ServeDeploymentStatus defines the current state
- of Serve Deployment
- properties:
- healthLastUpdateTime:
- description: Keep track of how long the service is healthy.
- format: date-time
- type: string
- lastUpdateTime:
- format: date-time
- type: string
- message:
- type: string
- name:
- description: Name, Status, Message are from Ray Dashboard
- to represent the state of a serve deployment.
- type: string
- status:
- description: 'TODO: change status type to enum'
- type: string
- type: object
- type: array
- type: object
- serviceStatus:
- description: ServiceStatus indicates the current RayService status.
- type: string
- type: object
- type: object
- served: true
- storage: true
- subresources:
- status: {}
-status:
- acceptedNames:
- kind: ""
- plural: ""
- conditions: []
- storedVersions: []
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/_helpers.tpl b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/_helpers.tpl
deleted file mode 100644
index 040cdd9e44..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/_helpers.tpl
+++ /dev/null
@@ -1,56 +0,0 @@
-{{/* vim: set filetype=mustache: */}}
-{{/*
-Expand the name of the chart.
-*/}}
-{{- define "kuberay-operator.name" -}}
-{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Create a default fully qualified app name.
-We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
-If release name contains chart name it will be used as a full name.
-*/}}
-{{- define "kuberay-operator.fullname" -}}
-{{- if .Values.fullnameOverride -}}
-{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- $name := default .Chart.Name .Values.nameOverride -}}
-{{- if contains $name .Release.Name -}}
-{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
-{{- else -}}
-{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-{{- end -}}
-{{- end -}}
-
-{{/*
-Create chart name and version as used by the chart label.
-*/}}
-{{- define "kuberay-operator.chart" -}}
-{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
-{{/*
-Common labels
-*/}}
-{{- define "kuberay-operator.labels" -}}
-app.kubernetes.io/name: {{ include "kuberay-operator.name" . }}
-helm.sh/chart: {{ include "kuberay-operator.chart" . }}
-app.kubernetes.io/instance: {{ .Release.Name }}
-{{- if .Chart.AppVersion }}
-app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
-{{- end }}
-app.kubernetes.io/managed-by: {{ .Release.Service }}
-{{- end -}}
-
-{{/*
-Create the name of the service account to use
-*/}}
-{{- define "kuberay-operator.serviceAccountName" -}}
-{{- if .Values.serviceAccount.create -}}
- {{ default (include "kuberay-operator.fullname" .) .Values.serviceAccount.name }}
-{{- else -}}
- {{ default "default" .Values.serviceAccount.name }}
-{{- end -}}
-{{- end -}}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/deployment.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/deployment.yaml
deleted file mode 100644
index f41959adb9..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/deployment.yaml
+++ /dev/null
@@ -1,68 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
- name: {{ include "kuberay-operator.fullname" . }}
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
-spec:
- replicas: {{ .Values.replicaCount }}
- selector:
- matchLabels:
- app.kubernetes.io/name: {{ include "kuberay-operator.name" . }}
- app.kubernetes.io/instance: {{ .Release.Name }}
- template:
- metadata:
- labels:
- app.kubernetes.io/name: {{ include "kuberay-operator.name" . }}
- app.kubernetes.io/instance: {{ .Release.Name }}
- spec:
- {{- with .Values.imagePullSecrets }}
- imagePullSecrets:
- {{- toYaml . | nindent 8 }}
- {{- end }}
- serviceAccountName: {{ .Values.serviceAccount.name }}
- volumes: []
- securityContext:
- {{- toYaml .Values.podSecurityContext | nindent 8 }}
- containers:
- - name: {{ .Chart.Name }}
- securityContext:
- {{- toYaml .Values.securityContext | nindent 12 }}
- image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
- imagePullPolicy: {{ .Values.image.pullPolicy }}
- volumeMounts: []
- command:
- - /manager
- ports:
- - name: http
- containerPort: 8080
- protocol: TCP
- env: []
- livenessProbe:
- httpGet:
- path: /metrics
- port: http
- initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
- periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
- failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
- readinessProbe:
- httpGet:
- path: /metrics
- port: http
- initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
- periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
- failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
- resources:
- {{- toYaml .Values.resources | nindent 12 }}
- {{- with .Values.nodeSelector }}
- nodeSelector:
- {{- toYaml . | nindent 8 }}
- {{- end }}
- {{- with .Values.affinity }}
- affinity:
- {{- toYaml . | nindent 8 }}
- {{- end }}
- {{- with .Values.tolerations }}
- tolerations:
- {{- toYaml . | nindent 8 }}
- {{- end }}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/leader-role.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/leader-role.yaml
deleted file mode 100644
index c86852eb1f..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/leader-role.yaml
+++ /dev/null
@@ -1,35 +0,0 @@
-{{- if .Values.rbacEnable }}
-kind: Role
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
- name: {{ include "kuberay-operator.fullname" . }}
-rules:
-- apiGroups:
- - ""
- resources:
- - configmaps
- verbs:
- - get
- - list
- - watch
- - create
- - update
- - patch
- - delete
-- apiGroups:
- - ""
- resources:
- - configmaps/status
- verbs:
- - get
- - update
- - patch
-- apiGroups:
- - ""
- resources:
- - events
- verbs:
- - create
-{{- end }}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/leader-rolebinding.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/leader-rolebinding.yaml
deleted file mode 100644
index bf7c5db169..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/leader-rolebinding.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-{{- if .Values.rbacEnable }}
-kind: RoleBinding
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
- name: {{ include "kuberay-operator.fullname" . }}
-subjects:
-- kind: ServiceAccount
- name: {{ .Values.serviceAccount.name }}
- namespace: {{ .Release.Namespace }}
-roleRef:
- kind: Role
- name: {{ include "kuberay-operator.fullname" . }}
- apiGroup: rbac.authorization.k8s.io
-{{- end }}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/role.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/role.yaml
deleted file mode 100644
index 3e2a79259c..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/role.yaml
+++ /dev/null
@@ -1,236 +0,0 @@
-{{- if .Values.rbacEnable }}
-kind: ClusterRole
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
- name: {{ include "kuberay-operator.fullname" . }}
-rules:
-- apiGroups:
- - coordination.k8s.io
- resources:
- - leases
- verbs:
- - create
- - get
- - list
- - update
-- apiGroups:
- - ""
- resources:
- - events
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ""
- resources:
- - pods
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ""
- resources:
- - pods/status
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ""
- resources:
- - serviceaccounts
- verbs:
- - create
- - delete
- - get
- - list
- - watch
-- apiGroups:
- - ""
- resources:
- - services
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ""
- resources:
- - services/status
- verbs:
- - get
- - patch
- - update
-- apiGroups:
- - extensions
- resources:
- - ingresses
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - networking.k8s.io
- resources:
- - ingressclasses
- verbs:
- - get
- - list
- - watch
-- apiGroups:
- - networking.k8s.io
- resources:
- - ingresses
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ray.io
- resources:
- - rayclusters
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ray.io
- resources:
- - rayclusters/finalizer
- verbs:
- - update
-- apiGroups:
- - ray.io
- resources:
- - rayclusters/status
- verbs:
- - get
- - patch
- - update
-- apiGroups:
- - ray.io
- resources:
- - rayservices
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ray.io
- resources:
- - rayservices/finalizers
- verbs:
- - update
-- apiGroups:
- - ray.io
- resources:
- - rayservices/status
- verbs:
- - get
- - patch
- - update
-- apiGroups:
- - rbac.authorization.k8s.io
- resources:
- - rolebindings
- verbs:
- - create
- - delete
- - get
- - list
- - watch
-- apiGroups:
- - rbac.authorization.k8s.io
- resources:
- - roles
- verbs:
- - create
- - delete
- - get
- - list
- - update
- - watch
-- apiGroups:
- - ray.io
- resources:
- - rayjobs
- verbs:
- - create
- - delete
- - get
- - list
- - patch
- - update
- - watch
-- apiGroups:
- - ray.io
- resources:
- - rayjobs/finalizers
- verbs:
- - update
-- apiGroups:
- - ray.io
- resources:
- - rayjobs/status
- verbs:
- - get
- - patch
- - update
-- apiGroups:
- - rbac.authorization.k8s.io
- resources:
- - rolebindings
- verbs:
- - create
- - delete
- - get
- - list
- - watch
-- apiGroups:
- - rbac.authorization.k8s.io
- resources:
- - roles
- verbs:
- - create
- - delete
- - get
- - list
- - update
- - watch
-{{- end }}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/rolebinding.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/rolebinding.yaml
deleted file mode 100644
index cfa1d0cf80..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/rolebinding.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-{{- if .Values.rbacEnable }}
-kind: ClusterRoleBinding
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
- name: {{ include "kuberay-operator.fullname" . }}
-subjects:
-- kind: ServiceAccount
- name: {{ .Values.serviceAccount.name }}
- namespace: {{ .Release.Namespace }}
-roleRef:
- kind: ClusterRole
- name: {{ include "kuberay-operator.fullname" . }}
- apiGroup: rbac.authorization.k8s.io
-{{- end }}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/service.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/service.yaml
deleted file mode 100644
index 7756d6e647..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/service.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
- name: {{ include "kuberay-operator.fullname" . }}
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
-spec:
- type: {{ .Values.service.type }}
- ports:
- - port: {{ .Values.service.port }}
- targetPort: http
- protocol: TCP
- name: http
- selector:
- app.kubernetes.io/name: {{ include "kuberay-operator.name" . }}
- app.kubernetes.io/instance: {{ .Release.Name }}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/serviceaccount.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/serviceaccount.yaml
deleted file mode 100644
index 1d63ff56a9..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/templates/serviceaccount.yaml
+++ /dev/null
@@ -1,8 +0,0 @@
-{{- if .Values.serviceAccount.create -}}
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- name: {{ template "kuberay-operator.serviceAccountName" . }}
- labels:
-{{ include "kuberay-operator.labels" . | indent 4 }}
-{{- end -}}
diff --git a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/values.yaml b/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/values.yaml
deleted file mode 100644
index 6c230594e7..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/kuberay-operator-config/values.yaml
+++ /dev/null
@@ -1,57 +0,0 @@
-# Default values for kuberay-operator.
-# This is a YAML-formatted file.
-# Declare variables to be passed into your templates.
-
-replicaCount: 1
-
-image:
- repository: kuberay/operator
- tag: nightly
- pullPolicy: IfNotPresent
-
-nameOverride: "kuberay-operator"
-fullnameOverride: "kuberay-operator"
-
-## Install Default RBAC roles and bindings
-rbac:
- create: true
- apiVersion: v1
-
-serviceAccount:
- # Specifies whether a service account should be created
- create: true
- # The name of the service account to use.
- # If not set and create is true, a name is generated using the fullname template
- name: "kuberay-operator"
-
-service:
- type: ClusterIP
- port: 8080
-
-ingress:
- enabled: false
-
-resources:
- # We usually recommend not to specify default resources and to leave this as a conscious
- # choice for the user. This also increases chances charts run on environments with little
- # resources, such as Minikube. If you do whelm to specify resources, uncomment the following
- # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
- limits:
- cpu: 100m
- memory: 128Mi
- # requests:
- # cpu: 100m
- # memory: 128Mi
-
-livenessProbe:
- initialDelaySeconds: 10
- periodSeconds: 5
- failureThreshold: 5
-
-readinessProbe:
- initialDelaySeconds: 10
- periodSeconds: 5
- failureThreshold: 5
-
-createCustomResource: true
-rbacEnable: true
diff --git a/modules/kubernetes-addons/kuberay-operator/main.tf b/modules/kubernetes-addons/kuberay-operator/main.tf
deleted file mode 100644
index bd263daf8e..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/main.tf
+++ /dev/null
@@ -1,28 +0,0 @@
-locals {
- name = "kuberay-operator"
- namespace = try(var.helm_config.namespace, local.name)
-}
-
-resource "kubernetes_namespace_v1" "this" {
- metadata {
- name = local.namespace
- }
-}
-
-module "helm_addon" {
- source = "../helm-addon"
-
- # https://github.com/ray-project/kuberay/blob/master/helm-chart/kuberay-operator/Chart.yaml
- helm_config = merge(
- {
- name = local.name
- chart = "${path.module}/kuberay-operator-config"
- version = "0.3.0"
- namespace = kubernetes_namespace_v1.this.metadata[0].name
- description = "KubeRay Operator Helm Chart deployment configuration"
- },
- var.helm_config
- )
-
- addon_context = var.addon_context
-}
diff --git a/modules/kubernetes-addons/kuberay-operator/outputs.tf b/modules/kubernetes-addons/kuberay-operator/outputs.tf
deleted file mode 100644
index 37b305f9b1..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/outputs.tf
+++ /dev/null
@@ -1,19 +0,0 @@
-output "release_metadata" {
- description = "Map of attributes of the Helm release metadata"
- value = module.helm_addon.release_metadata
-}
-
-output "irsa_arn" {
- description = "IAM role ARN for the service account"
- value = module.helm_addon.irsa_arn
-}
-
-output "irsa_name" {
- description = "IAM role name for the service account"
- value = module.helm_addon.irsa_name
-}
-
-output "service_account" {
- description = "Name of Kubernetes service account"
- value = module.helm_addon.service_account
-}
diff --git a/modules/kubernetes-addons/kuberay-operator/variables.tf b/modules/kubernetes-addons/kuberay-operator/variables.tf
deleted file mode 100644
index 187a4e407a..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/variables.tf
+++ /dev/null
@@ -1,22 +0,0 @@
-variable "helm_config" {
- description = "Helm Config for KubeRay Operator"
- type = any
- default = {}
-}
-
-variable "addon_context" {
- description = "Input configuration for the addon"
- type = object({
- aws_caller_identity_account_id = string
- aws_caller_identity_arn = string
- aws_eks_cluster_endpoint = string
- aws_partition_id = string
- aws_region_name = string
- eks_cluster_id = string
- eks_oidc_issuer_url = string
- eks_oidc_provider_arn = string
- irsa_iam_permissions_boundary = string
- irsa_iam_role_path = string
- tags = map(string)
- })
-}
diff --git a/modules/kubernetes-addons/kuberay-operator/versions.tf b/modules/kubernetes-addons/kuberay-operator/versions.tf
deleted file mode 100644
index 55fba733ab..0000000000
--- a/modules/kubernetes-addons/kuberay-operator/versions.tf
+++ /dev/null
@@ -1,10 +0,0 @@
-terraform {
- required_version = ">= 1.0.0"
-
- required_providers {
- kubernetes = {
- source = "hashicorp/kubernetes"
- version = ">= 2.10"
- }
- }
-}
diff --git a/modules/kubernetes-addons/main.tf b/modules/kubernetes-addons/main.tf
index 8f301570db..01fe8a3aad 100644
--- a/modules/kubernetes-addons/main.tf
+++ b/modules/kubernetes-addons/main.tf
@@ -639,15 +639,6 @@ module "adot_collector_nginx" {
]
}
-module "kuberay_operator" {
- source = "./kuberay-operator"
-
- count = var.enable_kuberay_operator ? 1 : 0
-
- helm_config = var.kuberay_operator_helm_config
- addon_context = local.addon_context
-}
-
module "external_secrets" {
source = "./external-secrets"
diff --git a/modules/kubernetes-addons/variables.tf b/modules/kubernetes-addons/variables.tf
index 868e618501..8561e88945 100644
--- a/modules/kubernetes-addons/variables.tf
+++ b/modules/kubernetes-addons/variables.tf
@@ -1210,19 +1210,6 @@ variable "grafana_irsa_policies" {
default = []
}
-#-----------KUBERAY OPERATOR-------------
-variable "enable_kuberay_operator" {
- description = "Enable KubeRay Operator add-on"
- type = bool
- default = false
-}
-
-variable "kuberay_operator_helm_config" {
- description = "KubeRay Operator Helm Chart config"
- type = any
- default = {}
-}
-
#----------- Reloader Addon-------------
variable "enable_reloader" {
description = "Enable Reloader add-on"