com.pulumi.kubernetes.certificates.v1alpha1.ClusterTrustBundle Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of kubernetes Show documentation
Show all versions of kubernetes Show documentation
A Pulumi package for creating and managing Kubernetes resources.
// *** WARNING: this file was generated by pulumi-java-gen. ***
// *** Do not edit by hand unless you're certain you know what you are doing! ***
package com.pulumi.kubernetes.certificates.v1alpha1;
import com.pulumi.core.Output;
import com.pulumi.core.annotations.Export;
import com.pulumi.core.annotations.ResourceType;
import com.pulumi.core.internal.Codegen;
import com.pulumi.kubernetes.Utilities;
import com.pulumi.kubernetes.certificates.v1alpha1.ClusterTrustBundleArgs;
import com.pulumi.kubernetes.certificates.v1alpha1.outputs.ClusterTrustBundleSpec;
import com.pulumi.kubernetes.meta.v1.outputs.ObjectMeta;
import java.lang.String;
import javax.annotation.Nullable;
/**
* ClusterTrustBundle is a cluster-scoped container for X.509 trust anchors (root certificates).
*
* ClusterTrustBundle objects are considered to be readable by any authenticated user in the cluster, because they can be mounted by pods using the `clusterTrustBundle` projection. All service accounts have read access to ClusterTrustBundles by default. Users who only have namespace-level access to a cluster can read ClusterTrustBundles by impersonating a serviceaccount that they have access to.
*
* It can be optionally associated with a particular assigner, in which case it contains one valid set of trust anchors for that signer. Signers may have multiple associated ClusterTrustBundles; each is an independent set of trust anchors for that signer. Admission control is used to enforce that only users with permissions on the signer can create or modify the corresponding bundle.
*
*/
@ResourceType(type="kubernetes:certificates.k8s.io/v1alpha1:ClusterTrustBundle")
public class ClusterTrustBundle extends com.pulumi.resources.CustomResource {
/**
* APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
*
*/
@Export(name="apiVersion", refs={String.class}, tree="[0]")
private Output apiVersion;
/**
* @return APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
*
*/
public Output apiVersion() {
return this.apiVersion;
}
/**
* Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
*
*/
@Export(name="kind", refs={String.class}, tree="[0]")
private Output kind;
/**
* @return Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
*
*/
public Output kind() {
return this.kind;
}
/**
* metadata contains the object metadata.
*
*/
@Export(name="metadata", refs={ObjectMeta.class}, tree="[0]")
private Output metadata;
/**
* @return metadata contains the object metadata.
*
*/
public Output metadata() {
return this.metadata;
}
/**
* spec contains the signer (if any) and trust anchors.
*
*/
@Export(name="spec", refs={ClusterTrustBundleSpec.class}, tree="[0]")
private Output spec;
/**
* @return spec contains the signer (if any) and trust anchors.
*
*/
public Output spec() {
return this.spec;
}
/**
*
* @param name The _unique_ name of the resulting resource.
*/
public ClusterTrustBundle(String name) {
this(name, ClusterTrustBundleArgs.Empty);
}
/**
*
* @param name The _unique_ name of the resulting resource.
* @param args The arguments to use to populate this resource's properties.
*/
public ClusterTrustBundle(String name, ClusterTrustBundleArgs args) {
this(name, args, null);
}
/**
*
* @param name The _unique_ name of the resulting resource.
* @param args The arguments to use to populate this resource's properties.
* @param options A bag of options that control this resource's behavior.
*/
public ClusterTrustBundle(String name, ClusterTrustBundleArgs args, @Nullable com.pulumi.resources.CustomResourceOptions options) {
super("kubernetes:certificates.k8s.io/v1alpha1:ClusterTrustBundle", name, makeArgs(args, options), makeResourceOptions(options, Codegen.empty()));
}
private ClusterTrustBundle(String name, Output id, @Nullable com.pulumi.resources.CustomResourceOptions options) {
super("kubernetes:certificates.k8s.io/v1alpha1:ClusterTrustBundle", name, null, makeResourceOptions(options, id));
}
private static ClusterTrustBundleArgs makeArgs(ClusterTrustBundleArgs args, @Nullable com.pulumi.resources.CustomResourceOptions options) {
if (options != null && options.getUrn().isPresent()) {
return null;
}
var builder = args == null ? ClusterTrustBundleArgs.builder() : ClusterTrustBundleArgs.builder(args);
return builder
.apiVersion("certificates.k8s.io/v1alpha1")
.kind("ClusterTrustBundle")
.build();
}
private static com.pulumi.resources.CustomResourceOptions makeResourceOptions(@Nullable com.pulumi.resources.CustomResourceOptions options, @Nullable Output id) {
var defaultOptions = com.pulumi.resources.CustomResourceOptions.builder()
.version(Utilities.getVersion())
.build();
return com.pulumi.resources.CustomResourceOptions.merge(defaultOptions, options, id);
}
/**
* Get an existing Host resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param options Optional settings to control the behavior of the CustomResource.
*/
public static ClusterTrustBundle get(String name, Output id, @Nullable com.pulumi.resources.CustomResourceOptions options) {
return new ClusterTrustBundle(name, id, options);
}
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy