From 8275df68a0121bf4381f362ef0d6a444a2a11aa1 Mon Sep 17 00:00:00 2001 From: Martin Montes Date: Mon, 7 Oct 2024 14:23:03 +0000 Subject: [PATCH] operator mariadb-operator-enterprise(0.34.0) Signed-off-by: Martin Montes --- .../manifests/k8s.mariadb.com_backups.yaml | 917 +++ .../k8s.mariadb.com_connections.yaml | 246 + .../manifests/k8s.mariadb.com_databases.yaml | 180 + .../manifests/k8s.mariadb.com_grants.yaml | 197 + .../manifests/k8s.mariadb.com_mariadbs.yaml | 4935 +++++++++++++++++ .../manifests/k8s.mariadb.com_maxscales.yaml | 2051 +++++++ .../manifests/k8s.mariadb.com_restores.yaml | 789 +++ .../manifests/k8s.mariadb.com_sqljobs.yaml | 633 +++ .../manifests/k8s.mariadb.com_users.yaml | 237 + ...ator-enterprise.clusterserviceversion.yaml | 4528 +++++++++++++++ ...b-operator-webhook-service_v1_service.yaml | 14 + .../0.34.0/metadata/annotations.yaml | 18 + .../0.34.0/tests/scorecard/config.yaml | 70 + operators/mariadb-operator-enterprise/ci.yaml | 1 + 14 files changed, 14816 insertions(+) create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_backups.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_connections.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_databases.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_grants.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_mariadbs.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_maxscales.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_restores.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_sqljobs.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_users.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-enterprise.clusterserviceversion.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-webhook-service_v1_service.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/metadata/annotations.yaml create mode 100644 operators/mariadb-operator-enterprise/0.34.0/tests/scorecard/config.yaml create mode 100644 operators/mariadb-operator-enterprise/ci.yaml diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_backups.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_backups.yaml new file mode 100644 index 00000000000..5be7775a269 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_backups.yaml @@ -0,0 +1,917 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: backups.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: Backup + listKind: BackupList + plural: backups + shortNames: + - bmdb + singular: backup + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Complete")].status + name: Complete + type: string + - jsonPath: .status.conditions[?(@.type=="Complete")].message + name: Status + type: string + - jsonPath: .spec.mariaDbRef.name + name: MariaDB + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: Backup is the Schema for the backups API. It is used to define + backup jobs and its storage. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: BackupSpec defines the desired state of Backup + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are + ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that + the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the + selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + args: + description: Args to be used in the Container. + items: + type: string + type: array + backoffLimit: + description: BackoffLimit defines the maximum number of attempts to + successfully take a Backup. + format: int32 + type: integer + compression: + description: Compression algorithm to be used in the Backup. + enum: + - none + - bzip2 + - gzip + type: string + databases: + description: Databases defines the logical databases to be backed + up. If not provided, all databases are backed up. + items: + type: string + type: array + failedJobsHistoryLimit: + description: FailedJobsHistoryLimit defines the maximum number of + failed Jobs to be displayed. + format: int32 + minimum: 0 + type: integer + ignoreGlobalPriv: + description: |- + IgnoreGlobalPriv indicates to ignore the mysql.global_priv in backups. + If not provided, it will default to true when the referred MariaDB instance has Galera enabled and otherwise to false. + See: https://github.com/mariadb-operator/mariadb-operator/issues/556 + type: boolean + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets to be used + to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + inheritMetadata: + description: InheritMetadata defines the metadata to be inherited + by children resources. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + logLevel: + default: info + description: LogLevel to be used n the Backup Job. It defaults to + 'info'. + type: string + mariaDbRef: + description: MariaDBRef is a reference to a MariaDB object. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + maxRetention: + description: |- + MaxRetention defines the retention policy for backups. Old backups will be cleaned up by the Backup Job. + It defaults to 30 days. + type: string + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes and + common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's AppArmor + settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied to the + container + properties: + level: + description: Level is SELinux level label that applies to + the container. + type: string + role: + description: Role is a SELinux role label that applies to + the container. + type: string + type: + description: Type is a SELinux type label that applies to + the container. + type: string + user: + description: User is a SELinux user label that applies to + the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + restartPolicy: + default: OnFailure + description: RestartPolicy to be added to the Backup Pod. + enum: + - Always + - OnFailure + - Never + type: string + schedule: + description: Schedule defines when the Backup will be taken. + properties: + cron: + description: Cron is a cron expression that defines the schedule. + type: string + suspend: + default: false + description: Suspend defines whether the schedule is active or + not. + type: boolean + required: + - cron + type: object + securityContext: + description: SecurityContext holds security configuration that will + be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from running + containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + serviceAccountName: + description: ServiceAccountName is the name of the ServiceAccount + to be used by the Pods. + type: string + storage: + description: Storage to be used in the Backup. + properties: + persistentVolumeClaim: + description: PersistentVolumeClaim is a Kubernetes PVC specification. + properties: + accessModes: + items: + type: string + type: array + x-kubernetes-list-type: atomic + resources: + description: VolumeResourceRequirements describes the storage + resource requirements for a volume. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Limits describes the maximum amount of compute resources allowed. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Requests describes the minimum amount of compute resources required. + If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. Requests cannot exceed Limits. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + type: object + selector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + storageClassName: + type: string + type: object + s3: + description: S3 defines the configuration to store backups in + a S3 compatible storage. + properties: + accessKeyIdSecretKeyRef: + description: AccessKeyIdSecretKeyRef is a reference to a Secret + key containing the S3 access key id. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + bucket: + description: Bucket is the name Name of the bucket to store + backups. + type: string + endpoint: + description: Endpoint is the S3 API endpoint without scheme. + type: string + prefix: + description: 'Prefix indicates a folder/subfolder in the bucket. + For example: mariadb/ or mariadb/backups. A trailing slash + ''/'' is added if not provided.' + type: string + region: + description: Region is the S3 region name to use. + type: string + secretAccessKeySecretKeyRef: + description: AccessKeyIdSecretKeyRef is a reference to a Secret + key containing the S3 secret key. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + sessionTokenSecretKeyRef: + description: SessionTokenSecretKeyRef is a reference to a + Secret key containing the S3 session token. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + tls: + description: TLS provides the configuration required to establish + TLS connections with S3. + properties: + caSecretKeyRef: + description: |- + CASecretKeyRef is a reference to a Secret key containing a CA bundle in PEM format used to establish TLS connections with S3. + By default, the system trust chain will be used, but you can use this field to add more CAs to the bundle. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + enabled: + description: Enabled is a flag to enable TLS. + type: boolean + type: object + required: + - accessKeyIdSecretKeyRef + - bucket + - endpoint + - secretAccessKeySecretKeyRef + type: object + volume: + description: Volume is a Kubernetes volume specification. + properties: + csi: + description: Represents a source location of a volume to mount, + managed by an external CSI driver + properties: + driver: + description: |- + driver is the name of the CSI driver that handles this volume. + Consult with your admin for the correct name as registered in the cluster. + type: string + fsType: + description: |- + fsType to mount. Ex. "ext4", "xfs", "ntfs". + If not provided, the empty value is passed to the associated CSI driver + which will determine the default filesystem to apply. + type: string + nodePublishSecretRef: + description: |- + nodePublishSecretRef is a reference to the secret object containing + sensitive information to pass to the CSI driver to complete the CSI + NodePublishVolume and NodeUnpublishVolume calls. + This field is optional, and may be empty if no secret is required. If the + secret object contains more than one secret, all secret references are passed. + properties: + name: + default: "" + description: |- + Name of the referent. + This field is effectively required, but due to backwards compatibility is + allowed to be empty. Instances of this type with an empty value here are + almost certainly wrong. + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + type: object + x-kubernetes-map-type: atomic + readOnly: + description: |- + readOnly specifies a read-only configuration for the volume. + Defaults to false (read/write). + type: boolean + volumeAttributes: + additionalProperties: + type: string + description: |- + volumeAttributes stores driver-specific properties that are passed to the CSI + driver. Consult your driver's documentation for supported values. + type: object + required: + - driver + type: object + emptyDir: + description: |- + Represents an empty directory for a pod. + Empty directory volumes support ownership management and SELinux relabeling. + properties: + medium: + description: |- + medium represents what type of storage medium should back this directory. + The default is "" which means to use the node's default medium. + Must be an empty string (default) or Memory. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + type: string + sizeLimit: + anyOf: + - type: integer + - type: string + description: |- + sizeLimit is the total amount of local storage required for this EmptyDir volume. + The size limit is also applicable for memory medium. + The maximum usage on memory medium EmptyDir would be the minimum value between + the SizeLimit specified here and the sum of memory limits of all containers in a pod. + The default is nil which means that the limit is undefined. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + nfs: + description: |- + Represents an NFS mount that lasts the lifetime of a pod. + NFS volumes do not support ownership management or SELinux relabeling. + properties: + path: + description: |- + path that is exported by the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + readOnly: + description: |- + readOnly here will force the NFS export to be mounted with read-only permissions. + Defaults to false. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: boolean + server: + description: |- + server is the hostname or IP address of the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + required: + - path + - server + type: object + persistentVolumeClaim: + description: |- + PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. + This volume finds the bound PV and mounts that volume for the pod. A + PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another + type of volume that is owned by someone else (the system). + properties: + claimName: + description: |- + claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. + More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims + type: string + readOnly: + description: |- + readOnly Will force the ReadOnly setting in VolumeMounts. + Default false. + type: boolean + required: + - claimName + type: object + type: object + type: object + successfulJobsHistoryLimit: + description: SuccessfulJobsHistoryLimit defines the maximum number + of successful Jobs to be displayed. + format: int32 + minimum: 0 + type: integer + timeZone: + description: TimeZone defines the timezone associated with the cron + expression. + type: string + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + required: + - mariaDbRef + - storage + type: object + status: + description: BackupStatus defines the observed state of Backup + properties: + conditions: + description: Conditions for the Backup object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_connections.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_connections.yaml new file mode 100644 index 00000000000..2add70086df --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_connections.yaml @@ -0,0 +1,246 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: connections.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: Connection + listKind: ConnectionList + plural: connections + shortNames: + - cmdb + singular: connection + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: Ready + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].message + name: Status + type: string + - jsonPath: .spec.secretName + name: Secret + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: Connection is the Schema for the connections API. It is used + to configure connection strings for the applications connecting to MariaDB. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: ConnectionSpec defines the desired state of Connection + properties: + database: + description: Database to use when configuring the Connection. + type: string + healthCheck: + description: HealthCheck to be used in the Connection. + properties: + interval: + description: Interval used to perform health checks. + type: string + retryInterval: + description: RetryInterval is the interval used to perform health + check retries. + type: string + type: object + host: + description: Host to connect to. If not provided, it defaults to the + MariaDB host or to the MaxScale host. + type: string + mariaDbRef: + description: MariaDBRef is a reference to the MariaDB to connect to. + Either MariaDBRef or MaxScaleRef must be provided. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + maxScaleRef: + description: MaxScaleRef is a reference to the MaxScale to connect + to. Either MariaDBRef or MaxScaleRef must be provided. + properties: + name: + type: string + namespace: + type: string + type: object + params: + additionalProperties: + type: string + description: Params to be used in the Connection. + type: object + passwordSecretKeyRef: + description: |- + PasswordSecretKeyRef is a reference to the password to use for configuring the Connection. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + port: + description: Port to connect to. If not provided, it defaults to the + MariaDB port or to the first MaxScale listener. + format: int32 + type: integer + secretName: + description: SecretName to be used in the Connection. + type: string + secretTemplate: + description: SecretTemplate to be used in the Connection. + properties: + databaseKey: + description: DatabaseKey to be used in the Secret. + type: string + format: + description: Format to be used in the Secret. + type: string + hostKey: + description: HostKey to be used in the Secret. + type: string + key: + description: Key to be used in the Secret. + type: string + metadata: + description: Metadata to be added to the Secret object. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + passwordKey: + description: PasswordKey to be used in the Secret. + type: string + portKey: + description: PortKey to be used in the Secret. + type: string + usernameKey: + description: UsernameKey to be used in the Secret. + type: string + type: object + serviceName: + description: ServiceName to be used in the Connection. + type: string + username: + description: Username to use for configuring the Connection. + type: string + required: + - passwordSecretKeyRef + - username + type: object + status: + description: ConnectionStatus defines the observed state of Connection + properties: + conditions: + description: Conditions for the Connection object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_databases.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_databases.yaml new file mode 100644 index 00000000000..a875261f81d --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_databases.yaml @@ -0,0 +1,180 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: databases.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: Database + listKind: DatabaseList + plural: databases + shortNames: + - dmdb + singular: database + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: Ready + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].message + name: Status + type: string + - jsonPath: .spec.characterSet + name: CharSet + type: string + - jsonPath: .spec.collate + name: Collate + type: string + - jsonPath: .spec.mariaDbRef.name + name: MariaDB + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - jsonPath: .spec.name + name: Name + type: string + name: v1alpha1 + schema: + openAPIV3Schema: + description: Database is the Schema for the databases API. It is used to define + a logical database as if you were running a 'CREATE DATABASE' statement. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: DatabaseSpec defines the desired state of Database + properties: + characterSet: + default: utf8 + description: CharacterSet to use in the Database. + type: string + cleanupPolicy: + description: CleanupPolicy defines the behavior for cleaning up a + SQL resource. + enum: + - Skip + - Delete + type: string + collate: + default: utf8_general_ci + description: Collate to use in the Database. + type: string + mariaDbRef: + description: MariaDBRef is a reference to a MariaDB object. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + name: + description: Name overrides the default Database name provided by + metadata.name. + maxLength: 80 + type: string + requeueInterval: + description: RequeueInterval is used to perform requeue reconciliations. + type: string + retryInterval: + description: RetryInterval is the interval used to perform retries. + type: string + required: + - mariaDbRef + type: object + status: + description: DatabaseStatus defines the observed state of Database + properties: + conditions: + description: Conditions for the Database object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_grants.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_grants.yaml new file mode 100644 index 00000000000..4d05b84f388 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_grants.yaml @@ -0,0 +1,197 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: grants.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: Grant + listKind: GrantList + plural: grants + shortNames: + - gmdb + singular: grant + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: Ready + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].message + name: Status + type: string + - jsonPath: .spec.database + name: Database + type: string + - jsonPath: .spec.table + name: Table + type: string + - jsonPath: .spec.username + name: Username + type: string + - jsonPath: .spec.grantOption + name: GrantOpt + type: string + - jsonPath: .spec.mariaDbRef.name + name: MariaDB + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: Grant is the Schema for the grants API. It is used to define + grants as if you were running a 'GRANT' statement. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: GrantSpec defines the desired state of Grant + properties: + cleanupPolicy: + description: CleanupPolicy defines the behavior for cleaning up a + SQL resource. + enum: + - Skip + - Delete + type: string + database: + default: '*' + description: Database to use in the Grant. + type: string + grantOption: + default: false + description: GrantOption to use in the Grant. + type: boolean + host: + description: Host to use in the Grant. It can be localhost, an IP + or '%'. + type: string + mariaDbRef: + description: MariaDBRef is a reference to a MariaDB object. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + privileges: + description: Privileges to use in the Grant. + items: + type: string + minItems: 1 + type: array + requeueInterval: + description: RequeueInterval is used to perform requeue reconciliations. + type: string + retryInterval: + description: RetryInterval is the interval used to perform retries. + type: string + table: + default: '*' + description: Table to use in the Grant. + type: string + username: + description: Username to use in the Grant. + type: string + required: + - mariaDbRef + - privileges + - username + type: object + status: + description: GrantStatus defines the observed state of Grant + properties: + conditions: + description: Conditions for the Grant object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_mariadbs.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_mariadbs.yaml new file mode 100644 index 00000000000..aa4ffe12c66 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_mariadbs.yaml @@ -0,0 +1,4935 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: mariadbs.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: MariaDB + listKind: MariaDBList + plural: mariadbs + shortNames: + - mdb + singular: mariadb + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: Ready + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].message + name: Status + type: string + - jsonPath: .status.currentPrimary + name: Primary + type: string + - jsonPath: .spec.updateStrategy.type + name: Updates + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: MariaDB is the Schema for the mariadbs API. It is used to define + MariaDB clusters. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: MariaDBSpec defines the desired state of MariaDB + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are + ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that + the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the + selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + args: + description: Args to be used in the Container. + items: + type: string + type: array + bootstrapFrom: + description: BootstrapFrom defines a source to bootstrap from. + properties: + backupRef: + description: BackupRef is a reference to a Backup object. It has + priority over S3 and Volume. + properties: + name: + default: "" + type: string + type: object + restoreJob: + description: RestoreJob defines additional properties for the + Job used to perform the Restore. + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: + https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The + requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label + key that the selector applies + to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The requirements + are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key + that the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + args: + description: Args to be used in the Container. + items: + type: string + type: array + metadata: + description: Metadata defines additional metadata for the + bootstrap Jobs. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + type: object + s3: + description: S3 defines the configuration to restore backups from + a S3 compatible storage. It has priority over Volume. + properties: + accessKeyIdSecretKeyRef: + description: AccessKeyIdSecretKeyRef is a reference to a Secret + key containing the S3 access key id. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + bucket: + description: Bucket is the name Name of the bucket to store + backups. + type: string + endpoint: + description: Endpoint is the S3 API endpoint without scheme. + type: string + prefix: + description: 'Prefix indicates a folder/subfolder in the bucket. + For example: mariadb/ or mariadb/backups. A trailing slash + ''/'' is added if not provided.' + type: string + region: + description: Region is the S3 region name to use. + type: string + secretAccessKeySecretKeyRef: + description: AccessKeyIdSecretKeyRef is a reference to a Secret + key containing the S3 secret key. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + sessionTokenSecretKeyRef: + description: SessionTokenSecretKeyRef is a reference to a + Secret key containing the S3 session token. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + tls: + description: TLS provides the configuration required to establish + TLS connections with S3. + properties: + caSecretKeyRef: + description: |- + CASecretKeyRef is a reference to a Secret key containing a CA bundle in PEM format used to establish TLS connections with S3. + By default, the system trust chain will be used, but you can use this field to add more CAs to the bundle. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + enabled: + description: Enabled is a flag to enable TLS. + type: boolean + type: object + required: + - accessKeyIdSecretKeyRef + - bucket + - endpoint + - secretAccessKeySecretKeyRef + type: object + targetRecoveryTime: + description: |- + TargetRecoveryTime is a RFC3339 (1970-01-01T00:00:00Z) date and time that defines the point in time recovery objective. + It is used to determine the closest restoration source in time. + format: date-time + type: string + volume: + description: Volume is a Kubernetes Volume object that contains + a backup. + properties: + csi: + description: Represents a source location of a volume to mount, + managed by an external CSI driver + properties: + driver: + description: |- + driver is the name of the CSI driver that handles this volume. + Consult with your admin for the correct name as registered in the cluster. + type: string + fsType: + description: |- + fsType to mount. Ex. "ext4", "xfs", "ntfs". + If not provided, the empty value is passed to the associated CSI driver + which will determine the default filesystem to apply. + type: string + nodePublishSecretRef: + description: |- + nodePublishSecretRef is a reference to the secret object containing + sensitive information to pass to the CSI driver to complete the CSI + NodePublishVolume and NodeUnpublishVolume calls. + This field is optional, and may be empty if no secret is required. If the + secret object contains more than one secret, all secret references are passed. + properties: + name: + default: "" + description: |- + Name of the referent. + This field is effectively required, but due to backwards compatibility is + allowed to be empty. Instances of this type with an empty value here are + almost certainly wrong. + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + type: object + x-kubernetes-map-type: atomic + readOnly: + description: |- + readOnly specifies a read-only configuration for the volume. + Defaults to false (read/write). + type: boolean + volumeAttributes: + additionalProperties: + type: string + description: |- + volumeAttributes stores driver-specific properties that are passed to the CSI + driver. Consult your driver's documentation for supported values. + type: object + required: + - driver + type: object + emptyDir: + description: |- + Represents an empty directory for a pod. + Empty directory volumes support ownership management and SELinux relabeling. + properties: + medium: + description: |- + medium represents what type of storage medium should back this directory. + The default is "" which means to use the node's default medium. + Must be an empty string (default) or Memory. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + type: string + sizeLimit: + anyOf: + - type: integer + - type: string + description: |- + sizeLimit is the total amount of local storage required for this EmptyDir volume. + The size limit is also applicable for memory medium. + The maximum usage on memory medium EmptyDir would be the minimum value between + the SizeLimit specified here and the sum of memory limits of all containers in a pod. + The default is nil which means that the limit is undefined. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + nfs: + description: |- + Represents an NFS mount that lasts the lifetime of a pod. + NFS volumes do not support ownership management or SELinux relabeling. + properties: + path: + description: |- + path that is exported by the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + readOnly: + description: |- + readOnly here will force the NFS export to be mounted with read-only permissions. + Defaults to false. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: boolean + server: + description: |- + server is the hostname or IP address of the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + required: + - path + - server + type: object + persistentVolumeClaim: + description: |- + PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. + This volume finds the bound PV and mounts that volume for the pod. A + PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another + type of volume that is owned by someone else (the system). + properties: + claimName: + description: |- + claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. + More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims + type: string + readOnly: + description: |- + readOnly Will force the ReadOnly setting in VolumeMounts. + Default false. + type: boolean + required: + - claimName + type: object + type: object + type: object + command: + description: Command to be used in the Container. + items: + type: string + type: array + connection: + description: |- + Connection defines a template to configure the general Connection object. + This Connection provides the initial User access to the initial Database. + It will make use of the Service to route network traffic to all Pods. + properties: + healthCheck: + description: HealthCheck to be used in the Connection. + properties: + interval: + description: Interval used to perform health checks. + type: string + retryInterval: + description: RetryInterval is the interval used to perform + health check retries. + type: string + type: object + params: + additionalProperties: + type: string + description: Params to be used in the Connection. + type: object + port: + description: Port to connect to. If not provided, it defaults + to the MariaDB port or to the first MaxScale listener. + format: int32 + type: integer + secretName: + description: SecretName to be used in the Connection. + type: string + secretTemplate: + description: SecretTemplate to be used in the Connection. + properties: + databaseKey: + description: DatabaseKey to be used in the Secret. + type: string + format: + description: Format to be used in the Secret. + type: string + hostKey: + description: HostKey to be used in the Secret. + type: string + key: + description: Key to be used in the Secret. + type: string + metadata: + description: Metadata to be added to the Secret object. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + passwordKey: + description: PasswordKey to be used in the Secret. + type: string + portKey: + description: PortKey to be used in the Secret. + type: string + usernameKey: + description: UsernameKey to be used in the Secret. + type: string + type: object + serviceName: + description: ServiceName to be used in the Connection. + type: string + type: object + database: + description: Database is the name of the initial Database. + type: string + env: + description: Env represents the environment variables to be injected + in a container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + name: + description: Name of the environment variable. Must be a C_IDENTIFIER. + type: string + value: + type: string + valueFrom: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + configMapKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#configmapkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + fieldRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#objectfieldselector-v1-core.' + properties: + apiVersion: + type: string + fieldPath: + type: string + required: + - fieldPath + type: object + x-kubernetes-map-type: atomic + secretKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#secretkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + type: object + required: + - name + type: object + type: array + envFrom: + description: EnvFrom represents the references (via ConfigMap and + Secrets) to environment variables to be injected in the container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envfromsource-v1-core.' + properties: + configMapRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + prefix: + type: string + secretRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: object + type: array + galera: + description: Replication configures high availability via Galera. + properties: + agent: + description: GaleraAgent is a sidecar agent that co-operates with + mariadb-operator. + properties: + args: + description: Args to be used in the Container. + items: + type: string + type: array + basicAuth: + description: BasicAuth to be used by the agent container + properties: + enabled: + description: Enabled is a flag to enable BasicAuth + type: boolean + passwordSecretKeyRef: + description: PasswordSecretKeyRef to be used for basic + authentication + properties: + generate: + default: false + description: Generate indicates whether the Secret + should be generated if the Secret referenced is + not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + username: + description: Username to be used for basic authentication + type: string + type: object + command: + description: Command to be used in the Container. + items: + type: string + type: array + env: + description: Env represents the environment variables to be + injected in a container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + name: + description: Name of the environment variable. Must + be a C_IDENTIFIER. + type: string + value: + type: string + valueFrom: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + configMapKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#configmapkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + fieldRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#objectfieldselector-v1-core.' + properties: + apiVersion: + type: string + fieldPath: + type: string + required: + - fieldPath + type: object + x-kubernetes-map-type: atomic + secretKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#secretkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + type: object + required: + - name + type: object + type: array + envFrom: + description: EnvFrom represents the references (via ConfigMap + and Secrets) to environment variables to be injected in + the container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envfromsource-v1-core.' + properties: + configMapRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + prefix: + type: string + secretRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: object + type: array + gracefulShutdownTimeout: + description: GracefulShutdownTimeout is the time we give to + the agent container in order to gracefully terminate in-flight + requests. + type: string + image: + description: Image name to be used by the MariaDB instances. + The supported format is `:`. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One + of `Always`, `Never` or `IfNotPresent`. If not defined, + it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + kubernetesAuth: + description: KubernetesAuth to be used by the agent container + properties: + authDelegatorRoleName: + description: |- + AuthDelegatorRoleName is the name of the ClusterRoleBinding that is associated with the "system:auth-delegator" ClusterRole. + It is necessary for creating TokenReview objects in order for the agent to validate the service account token. + type: string + enabled: + description: Enabled is a flag to enable KubernetesAuth + type: boolean + type: object + livenessProbe: + description: LivenessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used + for connection to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + port: + description: Port where the agent will be listening for connections. + format: int32 + type: integer + readinessProbe: + description: ReadinessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used + for connection to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + securityContext: + description: SecurityContext holds security configuration + that will be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from + running containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + volumeMounts: + description: VolumeMounts to be used in the Container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volumemount-v1-core.' + properties: + mountPath: + type: string + name: + description: This must match the Name of a Volume. + type: string + readOnly: + type: boolean + subPath: + type: string + required: + - mountPath + - name + type: object + type: array + type: object + availableWhenDonor: + description: AvailableWhenDonor indicates whether a donor node + should be responding to queries. It defaults to false. + type: boolean + config: + description: GaleraConfig defines storage options for the Galera + configuration files. + properties: + reuseStorageVolume: + description: |- + ReuseStorageVolume indicates that storage volume used by MariaDB should be reused to store the Galera configuration files. + It defaults to false, which implies that a dedicated volume for the Galera configuration files is provisioned. + type: boolean + volumeClaimTemplate: + description: VolumeClaimTemplate is a template for the PVC + that will contain the Galera configuration files shared + between the InitContainer, Agent and MariaDB. + properties: + accessModes: + items: + type: string + type: array + x-kubernetes-list-type: atomic + metadata: + description: Metadata to be added to the PVC metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + resources: + description: VolumeResourceRequirements describes the + storage resource requirements for a volume. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Limits describes the maximum amount of compute resources allowed. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Requests describes the minimum amount of compute resources required. + If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. Requests cannot exceed Limits. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + type: object + selector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + storageClassName: + type: string + type: object + type: object + enabled: + description: Enabled is a flag to enable Galera. + type: boolean + galeraLibPath: + description: |- + GaleraLibPath is a path inside the MariaDB image to the wsrep provider plugin. It is defaulted if not provided. + More info: https://galeracluster.com/library/documentation/mysql-wsrep-options.html#wsrep-provider. + type: string + initContainer: + description: InitContainer is an init container that runs in the + MariaDB Pod and co-operates with mariadb-operator. + properties: + args: + description: Args to be used in the Container. + items: + type: string + type: array + command: + description: Command to be used in the Container. + items: + type: string + type: array + env: + description: Env represents the environment variables to be + injected in a container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + name: + description: Name of the environment variable. Must + be a C_IDENTIFIER. + type: string + value: + type: string + valueFrom: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + configMapKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#configmapkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + fieldRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#objectfieldselector-v1-core.' + properties: + apiVersion: + type: string + fieldPath: + type: string + required: + - fieldPath + type: object + x-kubernetes-map-type: atomic + secretKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#secretkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + type: object + required: + - name + type: object + type: array + envFrom: + description: EnvFrom represents the references (via ConfigMap + and Secrets) to environment variables to be injected in + the container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envfromsource-v1-core.' + properties: + configMapRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + prefix: + type: string + secretRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: object + type: array + image: + description: Image name to be used by the MariaDB instances. + The supported format is `:`. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One + of `Always`, `Never` or `IfNotPresent`. If not defined, + it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + livenessProbe: + description: LivenessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used + for connection to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + readinessProbe: + description: ReadinessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used + for connection to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + securityContext: + description: SecurityContext holds security configuration + that will be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from + running containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + volumeMounts: + description: VolumeMounts to be used in the Container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volumemount-v1-core.' + properties: + mountPath: + type: string + name: + description: This must match the Name of a Volume. + type: string + readOnly: + type: boolean + subPath: + type: string + required: + - mountPath + - name + type: object + type: array + required: + - image + type: object + initJob: + description: InitJob defines a Job that co-operates with mariadb-operator + by performing initialization tasks. + properties: + metadata: + description: Metadata defines additional metadata for the + Galera init Job. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + type: object + primary: + description: Primary is the Galera configuration for the primary + node. + properties: + automaticFailover: + description: AutomaticFailover indicates whether the operator + should automatically update PodIndex to perform an automatic + primary failover. + type: boolean + podIndex: + description: PodIndex is the StatefulSet index of the primary + node. The user may change this field to perform a manual + switchover. + type: integer + type: object + providerOptions: + additionalProperties: + type: string + description: |- + ProviderOptions is map of Galera configuration parameters. + More info: https://mariadb.com/kb/en/galera-cluster-system-variables/#wsrep_provider_options. + type: object + recovery: + description: |- + GaleraRecovery is the recovery process performed by the operator whenever the Galera cluster is not healthy. + More info: https://galeracluster.com/library/documentation/crash-recovery.html. + properties: + clusterBootstrapTimeout: + description: |- + ClusterBootstrapTimeout is the time limit for bootstrapping a cluster. + Once this timeout is reached, the Galera recovery state is reset and a new cluster bootstrap will be attempted. + type: string + clusterDownscaleTimeout: + description: ClusterDownscaleTimeout represents the maximum + duration for downscaling the cluster's StatefulSet during + the recovery process. + type: string + clusterHealthyTimeout: + description: |- + ClusterHealthyTimeout represents the duration at which a Galera cluster, that consistently failed health checks, + is considered unhealthy, and consequently the Galera recovery process will be initiated by the operator. + type: string + clusterMonitorInterval: + description: ClusterMonitorInterval represents the interval + used to monitor the Galera cluster health. + type: string + clusterUpscaleTimeout: + description: ClusterUpscaleTimeout represents the maximum + duration for upscaling the cluster's StatefulSet during + the recovery process. + type: string + enabled: + description: Enabled is a flag to enable GaleraRecovery. + type: boolean + forceClusterBootstrapInPod: + description: |- + ForceClusterBootstrapInPod allows you to manually initiate the bootstrap process in a specific Pod. + IMPORTANT: Use this option only in exceptional circumstances. Not selecting the Pod with the highest sequence number may result in data loss. + IMPORTANT: Ensure you unset this field after completing the bootstrap to allow the operator to choose the appropriate Pod to bootstrap from in an event of cluster recovery. + type: string + job: + description: Job defines a Job that co-operates with mariadb-operator + by performing the Galera cluster recovery . + properties: + metadata: + description: Metadata defines additional metadata for + the Galera recovery Jobs. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podAffinity: + description: PodAffinity indicates whether the recovery + Jobs should run in the same Node as the MariaDB Pods. + It defaults to true. + type: boolean + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + type: object + minClusterSize: + anyOf: + - type: integer + - type: string + description: |- + MinClusterSize is the minimum number of replicas to consider the cluster healthy. It can be either a number of replicas (1) or a percentage (50%). + If Galera consistently reports less replicas than this value for the given 'ClusterHealthyTimeout' interval, a cluster recovery is iniated. + It defaults to '1' replica, and it is highly recommendeded to keep this value at '1' in most cases. + If set to more than one replica, the cluster recovery process may restart the healthy replicas as well. + x-kubernetes-int-or-string: true + podRecoveryTimeout: + description: PodRecoveryTimeout is the time limit for recevorying + the sequence of a Pod during the cluster recovery. + type: string + podSyncTimeout: + description: PodSyncTimeout is the time limit for a Pod to + join the cluster after having performed a cluster bootstrap + during the cluster recovery. + type: string + type: object + replicaThreads: + description: |- + ReplicaThreads is the number of replica threads used to apply Galera write sets in parallel. + More info: https://mariadb.com/kb/en/galera-cluster-system-variables/#wsrep_slave_threads. + type: integer + sst: + description: |- + SST is the Snapshot State Transfer used when new Pods join the cluster. + More info: https://galeracluster.com/library/documentation/sst.html. + enum: + - rsync + - mariabackup + - mysqldump + type: string + type: object + image: + description: |- + Image name to be used by the MariaDB instances. The supported format is `:`. + Only MariaDB official images are supported. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One of `Always`, + `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets to be used + to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + inheritMetadata: + description: InheritMetadata defines the metadata to be inherited + by children resources. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + initContainers: + description: InitContainers to be used in the Pod. + items: + description: Container object definition. + properties: + args: + description: Args to be used in the Container. + items: + type: string + type: array + command: + description: Command to be used in the Container. + items: + type: string + type: array + image: + description: Image name to be used by the container. The supported + format is `:`. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One of + `Always`, `Never` or `IfNotPresent`. If not defined, it defaults + to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + name: + description: Name to be given to the container. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + volumeMounts: + description: VolumeMounts to be used in the Container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volumemount-v1-core.' + properties: + mountPath: + type: string + name: + description: This must match the Name of a Volume. + type: string + readOnly: + type: boolean + subPath: + type: string + required: + - mountPath + - name + type: object + type: array + required: + - image + type: object + type: array + livenessProbe: + description: LivenessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used for connection + to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + maxScale: + description: |- + MaxScale is the MaxScale specification that defines the MaxScale resource to be used with the current MariaDB. + When enabling this field, MaxScaleRef is automatically set. + properties: + admin: + description: Admin configures the admin REST API and GUI. + properties: + guiEnabled: + description: GuiEnabled indicates whether the admin GUI should + be enabled. + type: boolean + port: + description: Port where the admin REST API and GUI will be + exposed. + format: int32 + type: integer + type: object + auth: + description: Auth defines the credentials required for MaxScale + to connect to MariaDB. + properties: + adminPasswordSecretKeyRef: + description: AdminPasswordSecretKeyRef is Secret key reference + to the admin password to call the admin REST API. It is + defaulted if not provided. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + adminUsername: + description: AdminUsername is an admin username to call the + admin REST API. It is defaulted if not provided. + type: string + clientMaxConnections: + description: |- + ClientMaxConnections defines the maximum number of connections that the client can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + clientPasswordSecretKeyRef: + description: |- + ClientPasswordSecretKeyRef is Secret key reference to the password to connect to MaxScale. It is defaulted if not provided. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + clientUsername: + description: ClientUsername is the user to connect to MaxScale. + It is defaulted if not provided. + type: string + deleteDefaultAdmin: + description: DeleteDefaultAdmin determines whether the default + admin user should be deleted after the initial configuration. + If not provided, it defaults to true. + type: boolean + generate: + description: |- + Generate defies whether the operator should generate users and grants for MaxScale to work. + It only supports MariaDBs specified via spec.mariaDbRef. + type: boolean + metricsPasswordSecretKeyRef: + description: |- + MetricsPasswordSecretKeyRef is Secret key reference to the metrics password to call the admib REST API. It is defaulted if metrics are enabled. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + metricsUsername: + description: MetricsUsername is an metrics username to call + the REST API. It is defaulted if metrics are enabled. + type: string + monitorMaxConnections: + description: |- + MonitorMaxConnections defines the maximum number of connections that the monitor can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + monitorPasswordSecretKeyRef: + description: |- + MonitorPasswordSecretKeyRef is Secret key reference to the password used by MaxScale monitor to connect to MariaDB server. It is defaulted if not provided. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + monitorUsername: + description: MonitorUsername is the user used by MaxScale + monitor to connect to MariaDB server. It is defaulted if + not provided. + type: string + serverMaxConnections: + description: |- + ServerMaxConnections defines the maximum number of connections that the server can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + serverPasswordSecretKeyRef: + description: |- + ServerPasswordSecretKeyRef is Secret key reference to the password used by MaxScale to connect to MariaDB server. It is defaulted if not provided. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + serverUsername: + description: ServerUsername is the user used by MaxScale to + connect to MariaDB server. It is defaulted if not provided. + type: string + syncMaxConnections: + description: |- + SyncMaxConnections defines the maximum number of connections that the sync can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + syncPasswordSecretKeyRef: + description: |- + SyncPasswordSecretKeyRef is Secret key reference to the password used by MaxScale config to connect to MariaDB server. It is defaulted when HA is enabled. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + syncUsername: + description: MonitoSyncUsernamerUsername is the user used + by MaxScale config sync to connect to MariaDB server. It + is defaulted when HA is enabled. + type: string + type: object + config: + description: Config defines the MaxScale configuration. + properties: + params: + additionalProperties: + type: string + description: |- + Params is a key value pair of parameters to be used in the MaxScale static configuration file. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#global-settings. + type: object + sync: + description: Sync defines how to replicate configuration across + MaxScale replicas. It is defaulted when HA is enabled. + properties: + database: + description: Database is the MariaDB logical database + where the 'maxscale_config' table will be created in + order to persist and synchronize config changes. If + not provided, it defaults to 'mysql'. + type: string + interval: + description: Interval defines the config synchronization + interval. It is defaulted if not provided. + type: string + timeout: + description: Interval defines the config synchronization + timeout. It is defaulted if not provided. + type: string + type: object + volumeClaimTemplate: + description: VolumeClaimTemplate provides a template to define + the PVCs for storing MaxScale runtime configuration files. + It is defaulted if not provided. + properties: + accessModes: + items: + type: string + type: array + x-kubernetes-list-type: atomic + metadata: + description: Metadata to be added to the PVC metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + resources: + description: VolumeResourceRequirements describes the + storage resource requirements for a volume. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Limits describes the maximum amount of compute resources allowed. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Requests describes the minimum amount of compute resources required. + If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. Requests cannot exceed Limits. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + type: object + selector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + storageClassName: + type: string + type: object + type: object + connection: + description: Connection provides a template to define the Connection + for MaxScale. + properties: + healthCheck: + description: HealthCheck to be used in the Connection. + properties: + interval: + description: Interval used to perform health checks. + type: string + retryInterval: + description: RetryInterval is the interval used to perform + health check retries. + type: string + type: object + params: + additionalProperties: + type: string + description: Params to be used in the Connection. + type: object + port: + description: Port to connect to. If not provided, it defaults + to the MariaDB port or to the first MaxScale listener. + format: int32 + type: integer + secretName: + description: SecretName to be used in the Connection. + type: string + secretTemplate: + description: SecretTemplate to be used in the Connection. + properties: + databaseKey: + description: DatabaseKey to be used in the Secret. + type: string + format: + description: Format to be used in the Secret. + type: string + hostKey: + description: HostKey to be used in the Secret. + type: string + key: + description: Key to be used in the Secret. + type: string + metadata: + description: Metadata to be added to the Secret object. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + passwordKey: + description: PasswordKey to be used in the Secret. + type: string + portKey: + description: PortKey to be used in the Secret. + type: string + usernameKey: + description: UsernameKey to be used in the Secret. + type: string + type: object + serviceName: + description: ServiceName to be used in the Connection. + type: string + type: object + enabled: + description: Enabled is a flag to enable a MaxScale instance to + be used with the current MariaDB. + type: boolean + guiKubernetesService: + description: GuiKubernetesService define a template for a Kubernetes + Service object to connect to MaxScale's GUI. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, + `NodePort` or `LoadBalancer`. If not defined, it defaults + to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + image: + description: |- + Image name to be used by the MaxScale instances. The supported format is `:`. + Only MariaDB official images are supported. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One of + `Always`, `Never` or `IfNotPresent`. If not defined, it defaults + to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + kubernetesService: + description: KubernetesService defines a template for a Kubernetes + Service object to connect to MaxScale. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, + `NodePort` or `LoadBalancer`. If not defined, it defaults + to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + metrics: + description: Metrics configures metrics and how to scrape them. + properties: + enabled: + description: Enabled is a flag to enable Metrics + type: boolean + exporter: + description: Exporter defines the metrics exporter container. + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: + https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: + https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is + a list of label selector requirements. + The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label + key that the selector applies + to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: + https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The + requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label + key that the selector applies + to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + image: + description: |- + Image name to be used as metrics exporter. The supported format is `:`. + Only mysqld-exporter >= v0.15.0 is supported: https://github.com/prometheus/mysqld_exporter + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. + One of `Always`, `Never` or `IfNotPresent`. If not defined, + it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets + to be used to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + podMetadata: + description: PodMetadata defines extra metadata for the + Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security + attributes and common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's + AppArmor settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied + to the container + properties: + level: + description: Level is SELinux level label that + applies to the container. + type: string + role: + description: Role is a SELinux role label that + applies to the container. + type: string + type: + description: Type is a SELinux type label that + applies to the container. + type: string + user: + description: User is a SELinux user label that + applies to the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + port: + description: Port where the exporter will be listening + for connections. + format: int32 + type: integer + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + securityContext: + description: SecurityContext holds container-level security + attributes. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from + running containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + type: object + serviceMonitor: + description: ServiceMonitor defines the ServiceMonior object. + properties: + interval: + description: Interval for scraping metrics. + type: string + jobLabel: + description: JobLabel to add to the ServiceMonitor object. + type: string + prometheusRelease: + description: PrometheusRelease is the release label to + add to the ServiceMonitor object. + type: string + scrapeTimeout: + description: ScrapeTimeout defines the timeout for scraping + metrics. + type: string + type: object + type: object + monitor: + description: Monitor monitors MariaDB server instances. + properties: + cooperativeMonitoring: + description: CooperativeMonitoring enables coordination between + multiple MaxScale instances running monitors. It is defaulted + when HA is enabled. + enum: + - majority_of_all + - majority_of_running + type: string + interval: + description: Interval used to monitor MariaDB servers. It + is defaulted if not provided. + type: string + module: + description: Module is the module to use to monitor MariaDB + servers. It is mandatory when no MariaDB reference is provided. + type: string + name: + description: Name is the identifier of the monitor. It is + defaulted if not provided. + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the monitor. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-common-monitor-parameters/. + Monitor specific parameter are also suported: + https://mariadb.com/kb/en/mariadb-maxscale-2308-galera-monitor/#galera-monitor-optional-parameters. + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-monitor/#configuration. + type: object + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + type: object + podDisruptionBudget: + description: PodDisruptionBudget defines the budget for replica + availability. + properties: + maxUnavailable: + anyOf: + - type: integer + - type: string + description: MaxUnavailable defines the number of maximum + unavailable Pods. + x-kubernetes-int-or-string: true + minAvailable: + anyOf: + - type: integer + - type: string + description: MinAvailable defines the number of minimum available + Pods. + x-kubernetes-int-or-string: true + type: object + replicas: + description: Replicas indicates the number of desired instances. + format: int32 + type: integer + requeueInterval: + description: RequeueInterval is used to perform requeue reconciliations. + type: string + services: + description: Services define how the traffic is forwarded to the + MariaDB servers. + items: + description: Services define how the traffic is forwarded to + the MariaDB servers. + properties: + listener: + description: MaxScaleListener defines how the MaxScale server + will listen for connections. + properties: + name: + description: Name is the identifier of the listener. + It is defaulted if not provided + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the listener. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#listener_1. + type: object + port: + description: Port is the network port where the MaxScale + server will listen. + format: int32 + type: integer + protocol: + description: Protocol is the MaxScale protocol to use + when communicating with the client. If not provided, + it defaults to MariaDBProtocol. + type: string + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + required: + - port + type: object + name: + description: Name is the identifier of the MaxScale service. + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the service. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#service_1. + Router specific parameter are also suported: + https://mariadb.com/kb/en/mariadb-maxscale-2308-readwritesplit/#configuration. + https://mariadb.com/kb/en/mariadb-maxscale-2308-readconnroute/#configuration. + type: object + router: + description: Router is the type of router to use. + enum: + - readwritesplit + - readconnroute + type: string + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + required: + - listener + - name + - router + type: object + type: array + updateStrategy: + description: UpdateStrategy defines the update strategy for the + StatefulSet object. + properties: + rollingUpdate: + description: RollingUpdate is used to communicate parameters + when Type is RollingUpdateStatefulSetStrategyType. + properties: + maxUnavailable: + anyOf: + - type: integer + - type: string + description: |- + The maximum number of pods that can be unavailable during the update. + Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). + Absolute number is calculated from percentage by rounding up. This can not be 0. + Defaults to 1. This field is alpha-level and is only honored by servers that enable the + MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to + Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it + will be counted towards MaxUnavailable. + x-kubernetes-int-or-string: true + partition: + description: |- + Partition indicates the ordinal at which the StatefulSet should be partitioned + for updates. During a rolling update, all pods from ordinal Replicas-1 to + Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. + This is helpful in being able to do a canary based deployment. The default value is 0. + format: int32 + type: integer + type: object + type: + description: |- + Type indicates the type of the StatefulSetUpdateStrategy. + Default is RollingUpdate. + type: string + type: object + type: object + maxScaleRef: + description: |- + MaxScaleRef is a reference to a MaxScale resource to be used with the current MariaDB. + Providing this field implies delegating high availability tasks such as primary failover to MaxScale. + properties: + name: + type: string + namespace: + type: string + type: object + metrics: + description: Metrics configures metrics and how to scrape them. + properties: + enabled: + description: Enabled is a flag to enable Metrics + type: boolean + exporter: + description: Exporter defines the metrics exporter container. + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: + https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The + requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label + key that the selector applies + to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The requirements + are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key + that the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + image: + description: |- + Image name to be used as metrics exporter. The supported format is `:`. + Only mysqld-exporter >= v0.15.0 is supported: https://github.com/prometheus/mysqld_exporter + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One + of `Always`, `Never` or `IfNotPresent`. If not defined, + it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets + to be used to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes + and common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's + AppArmor settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied + to the container + properties: + level: + description: Level is SELinux level label that applies + to the container. + type: string + role: + description: Role is a SELinux role label that applies + to the container. + type: string + type: + description: Type is a SELinux type label that applies + to the container. + type: string + user: + description: User is a SELinux user label that applies + to the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + port: + description: Port where the exporter will be listening for + connections. + format: int32 + type: integer + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + securityContext: + description: SecurityContext holds container-level security + attributes. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from + running containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + type: object + passwordSecretKeyRef: + description: |- + PasswordSecretKeyRef is a reference to the password of the monitoring user used by the exporter. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + serviceMonitor: + description: ServiceMonitor defines the ServiceMonior object. + properties: + interval: + description: Interval for scraping metrics. + type: string + jobLabel: + description: JobLabel to add to the ServiceMonitor object. + type: string + prometheusRelease: + description: PrometheusRelease is the release label to add + to the ServiceMonitor object. + type: string + scrapeTimeout: + description: ScrapeTimeout defines the timeout for scraping + metrics. + type: string + type: object + username: + description: Username is the username of the monitoring user used + by the exporter. + type: string + type: object + myCnf: + description: |- + MyCnf allows to specify the my.cnf file mounted by Mariadb. + Updating this field will trigger an update to the Mariadb resource. + type: string + myCnfConfigMapKeyRef: + description: |- + MyCnfConfigMapKeyRef is a reference to the my.cnf config file provided via a ConfigMap. + If not provided, it will be defaulted with a reference to a ConfigMap containing the MyCnf field. + If the referred ConfigMap is labeled with "k8s.mariadb.com/watch", an update to the Mariadb resource will be triggered when the ConfigMap is updated. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + passwordHashSecretKeyRef: + description: |- + PasswordHashSecretKeyRef is a reference to the password hash to be used by the initial User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password hash. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + passwordPlugin: + description: PasswordPlugin is a reference to the password plugin + and arguments to be used by the initial User. + properties: + pluginArgSecretKeyRef: + description: |- + PluginArgSecretKeyRef is a reference to the arguments to be provided to the authentication plugin for the User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin arguments. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + pluginNameSecretKeyRef: + description: |- + PluginNameSecretKeyRef is a reference to the authentication plugin to be used by the User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + type: object + passwordSecretKeyRef: + description: |- + PasswordSecretKeyRef is a reference to a Secret that contains the password to be used by the initial User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should be generated + if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + podDisruptionBudget: + description: PodDisruptionBudget defines the budget for replica availability. + properties: + maxUnavailable: + anyOf: + - type: integer + - type: string + description: MaxUnavailable defines the number of maximum unavailable + Pods. + x-kubernetes-int-or-string: true + minAvailable: + anyOf: + - type: integer + - type: string + description: MinAvailable defines the number of minimum available + Pods. + x-kubernetes-int-or-string: true + type: object + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes and + common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's AppArmor + settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied to the + container + properties: + level: + description: Level is SELinux level label that applies to + the container. + type: string + role: + description: Role is a SELinux role label that applies to + the container. + type: string + type: + description: Type is a SELinux type label that applies to + the container. + type: string + user: + description: User is a SELinux user label that applies to + the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + port: + default: 3306 + description: Port where the instances will be listening for connections. + format: int32 + type: integer + primaryConnection: + description: |- + PrimaryConnection defines a template to configure the primary Connection object. + This Connection provides the initial User access to the initial Database. + It will make use of the PrimaryService to route network traffic to the primary Pod. + properties: + healthCheck: + description: HealthCheck to be used in the Connection. + properties: + interval: + description: Interval used to perform health checks. + type: string + retryInterval: + description: RetryInterval is the interval used to perform + health check retries. + type: string + type: object + params: + additionalProperties: + type: string + description: Params to be used in the Connection. + type: object + port: + description: Port to connect to. If not provided, it defaults + to the MariaDB port or to the first MaxScale listener. + format: int32 + type: integer + secretName: + description: SecretName to be used in the Connection. + type: string + secretTemplate: + description: SecretTemplate to be used in the Connection. + properties: + databaseKey: + description: DatabaseKey to be used in the Secret. + type: string + format: + description: Format to be used in the Secret. + type: string + hostKey: + description: HostKey to be used in the Secret. + type: string + key: + description: Key to be used in the Secret. + type: string + metadata: + description: Metadata to be added to the Secret object. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + passwordKey: + description: PasswordKey to be used in the Secret. + type: string + portKey: + description: PortKey to be used in the Secret. + type: string + usernameKey: + description: UsernameKey to be used in the Secret. + type: string + type: object + serviceName: + description: ServiceName to be used in the Connection. + type: string + type: object + primaryService: + description: |- + PrimaryService defines a template to configure the primary Service object. + The network traffic of this Service will be routed to the primary Pod. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, `NodePort` + or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + readinessProbe: + description: ReadinessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used for connection + to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + replicas: + default: 1 + description: Replicas indicates the number of desired instances. + format: int32 + type: integer + replicasAllowEvenNumber: + default: false + description: disables the validation check for an odd number of replicas. + type: boolean + replication: + description: Replication configures high availability via replication. + This feature is still in alpha, use Galera if you are looking for + a more production-ready HA. + properties: + enabled: + description: Enabled is a flag to enable Replication. + type: boolean + primary: + description: Primary is the replication configuration for the + primary node. + properties: + automaticFailover: + description: AutomaticFailover indicates whether the operator + should automatically update PodIndex to perform an automatic + primary failover. + type: boolean + podIndex: + description: PodIndex is the StatefulSet index of the primary + node. The user may change this field to perform a manual + switchover. + type: integer + type: object + probesEnabled: + description: |- + ProbesEnabled indicates to use replication specific liveness and readiness probes. + This probes check that the primary can receive queries and that the replica has the replication thread running. + type: boolean + replica: + description: ReplicaReplication is the replication configuration + for the replica nodes. + properties: + connectionRetries: + description: ConnectionRetries to be used when the replica + connects to the primary. + type: integer + connectionTimeout: + description: ConnectionTimeout to be used when the replica + connects to the primary. + type: string + gtid: + description: |- + Gtid indicates which Global Transaction ID should be used when connecting a replica to the master. + See: https://mariadb.com/kb/en/gtid/#using-current_pos-vs-slave_pos. + enum: + - CurrentPos + - SlavePos + type: string + replPasswordSecretKeyRef: + description: ReplPasswordSecretKeyRef provides a reference + to the Secret to use as password for the replication user. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + syncTimeout: + description: |- + SyncTimeout defines the timeout for a replica to be synced with the primary when performing a primary switchover. + If the timeout is reached, the replica GTID will be reset and the switchover will continue. + type: string + waitPoint: + description: |- + WaitPoint defines whether the transaction should wait for ACK before committing to the storage engine. + More info: https://mariadb.com/kb/en/semisynchronous-replication/#rpl_semi_sync_master_wait_point. + enum: + - AfterSync + - AfterCommit + type: string + type: object + syncBinlog: + description: |- + SyncBinlog indicates whether the binary log should be synchronized to the disk after every event. + It trades off performance for consistency. + See: https://mariadb.com/kb/en/replication-and-binary-log-system-variables/#sync_binlog. + type: boolean + type: object + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + rootEmptyPassword: + description: RootEmptyPassword indicates if the root password should + be empty. Don't use this feature in production, it is only intended + for development and test environments. + type: boolean + rootPasswordSecretKeyRef: + description: RootPasswordSecretKeyRef is a reference to a Secret key + containing the root password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should be generated + if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + secondaryConnection: + description: |- + SecondaryConnection defines a template to configure the secondary Connection object. + This Connection provides the initial User access to the initial Database. + It will make use of the SecondaryService to route network traffic to the secondary Pods. + properties: + healthCheck: + description: HealthCheck to be used in the Connection. + properties: + interval: + description: Interval used to perform health checks. + type: string + retryInterval: + description: RetryInterval is the interval used to perform + health check retries. + type: string + type: object + params: + additionalProperties: + type: string + description: Params to be used in the Connection. + type: object + port: + description: Port to connect to. If not provided, it defaults + to the MariaDB port or to the first MaxScale listener. + format: int32 + type: integer + secretName: + description: SecretName to be used in the Connection. + type: string + secretTemplate: + description: SecretTemplate to be used in the Connection. + properties: + databaseKey: + description: DatabaseKey to be used in the Secret. + type: string + format: + description: Format to be used in the Secret. + type: string + hostKey: + description: HostKey to be used in the Secret. + type: string + key: + description: Key to be used in the Secret. + type: string + metadata: + description: Metadata to be added to the Secret object. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + passwordKey: + description: PasswordKey to be used in the Secret. + type: string + portKey: + description: PortKey to be used in the Secret. + type: string + usernameKey: + description: UsernameKey to be used in the Secret. + type: string + type: object + serviceName: + description: ServiceName to be used in the Connection. + type: string + type: object + secondaryService: + description: |- + SecondaryService defines a template to configure the secondary Service object. + The network traffic of this Service will be routed to the secondary Pods. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, `NodePort` + or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + securityContext: + description: SecurityContext holds security configuration that will + be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from running + containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + service: + description: |- + Service defines a template to configure the general Service object. + The network traffic of this Service will be routed to all Pods. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, `NodePort` + or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + serviceAccountName: + description: ServiceAccountName is the name of the ServiceAccount + to be used by the Pods. + type: string + servicePorts: + description: ServicePorts is the list of additional named ports to + be added to the Services created by the operator. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#serviceport-v1-core' + properties: + name: + type: string + port: + format: int32 + type: integer + required: + - name + - port + type: object + type: array + sidecarContainers: + description: SidecarContainers to be used in the Pod. + items: + description: Container object definition. + properties: + args: + description: Args to be used in the Container. + items: + type: string + type: array + command: + description: Command to be used in the Container. + items: + type: string + type: array + image: + description: Image name to be used by the container. The supported + format is `:`. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One of + `Always`, `Never` or `IfNotPresent`. If not defined, it defaults + to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + name: + description: Name to be given to the container. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + volumeMounts: + description: VolumeMounts to be used in the Container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volumemount-v1-core.' + properties: + mountPath: + type: string + name: + description: This must match the Name of a Volume. + type: string + readOnly: + type: boolean + subPath: + type: string + required: + - mountPath + - name + type: object + type: array + required: + - image + type: object + type: array + storage: + description: Storage defines the storage options to be used for provisioning + the PVCs mounted by MariaDB. + properties: + ephemeral: + description: Ephemeral indicates whether to use ephemeral storage + in the PVCs. It is only compatible with non HA MariaDBs. + type: boolean + resizeInUseVolumes: + description: |- + ResizeInUseVolumes indicates whether the PVCs can be resized. The 'StorageClassName' used should have 'allowVolumeExpansion' set to 'true' to allow resizing. + It defaults to true. + type: boolean + size: + anyOf: + - type: integer + - type: string + description: Size of the PVCs to be mounted by MariaDB. Required + if not provided in 'VolumeClaimTemplate'. It superseeds the + storage size specified in 'VolumeClaimTemplate'. + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + storageClassName: + description: |- + StorageClassName to be used to provision the PVCS. It superseeds the 'StorageClassName' specified in 'VolumeClaimTemplate'. + If not provided, the default 'StorageClass' configured in the cluster is used. + type: string + volumeClaimTemplate: + description: VolumeClaimTemplate provides a template to define + the PVCs. + properties: + accessModes: + items: + type: string + type: array + x-kubernetes-list-type: atomic + metadata: + description: Metadata to be added to the PVC metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + resources: + description: VolumeResourceRequirements describes the storage + resource requirements for a volume. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Limits describes the maximum amount of compute resources allowed. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Requests describes the minimum amount of compute resources required. + If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. Requests cannot exceed Limits. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + type: object + selector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + storageClassName: + type: string + type: object + waitForVolumeResize: + description: |- + WaitForVolumeResize indicates whether to wait for the PVCs to be resized before marking the MariaDB object as ready. This will block other operations such as cluster recovery while the resize is in progress. + It defaults to true. + type: boolean + type: object + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + timeZone: + description: TimeZone sets the default timezone. If not provided, + it defaults to SYSTEM and the timezone data is not loaded. + type: string + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + topologySpreadConstraints: + description: TopologySpreadConstraints to be used in the Pod. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#topologyspreadconstraint-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + matchLabelKeys: + items: + type: string + type: array + maxSkew: + format: int32 + type: integer + minDomains: + format: int32 + type: integer + nodeAffinityPolicy: + description: NodeInclusionPolicy defines the type of node inclusion + policy + type: string + nodeTaintsPolicy: + description: NodeInclusionPolicy defines the type of node inclusion + policy + type: string + topologyKey: + type: string + whenUnsatisfiable: + type: string + required: + - maxSkew + - topologyKey + - whenUnsatisfiable + type: object + type: array + updateStrategy: + description: UpdateStrategy defines how a MariaDB resource is updated. + properties: + autoUpdateDataPlane: + description: |- + AutoUpdateDataPlane indicates whether the Galera data-plane version (agent and init containers) should be automatically updated based on the operator version. It defaults to false. + Updating the operator will trigger updates on all the MariaDB instances that have this flag set to true. Thus, it is recommended to progressively set this flag after having updated the operator. + type: boolean + rollingUpdate: + description: RollingUpdate defines parameters for the RollingUpdate + type. + properties: + maxUnavailable: + anyOf: + - type: integer + - type: string + description: |- + The maximum number of pods that can be unavailable during the update. + Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). + Absolute number is calculated from percentage by rounding up. This can not be 0. + Defaults to 1. This field is alpha-level and is only honored by servers that enable the + MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to + Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it + will be counted towards MaxUnavailable. + x-kubernetes-int-or-string: true + partition: + description: |- + Partition indicates the ordinal at which the StatefulSet should be partitioned + for updates. During a rolling update, all pods from ordinal Replicas-1 to + Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. + This is helpful in being able to do a canary based deployment. The default value is 0. + format: int32 + type: integer + type: object + type: + default: ReplicasFirstPrimaryLast + description: Type defines the type of updates. One of `ReplicasFirstPrimaryLast`, + `RollingUpdate` or `OnDelete`. If not defined, it defaults to + `ReplicasFirstPrimaryLast`. + enum: + - ReplicasFirstPrimaryLast + - RollingUpdate + - OnDelete + - Never + type: string + type: object + username: + description: |- + Username is the initial username to be created by the operator once MariaDB is ready. It has all privileges on the initial database. + The initial User will have ALL PRIVILEGES in the initial Database. + type: string + volumeMounts: + description: VolumeMounts to be used in the Container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volumemount-v1-core.' + properties: + mountPath: + type: string + name: + description: This must match the Name of a Volume. + type: string + readOnly: + type: boolean + subPath: + type: string + required: + - mountPath + - name + type: object + type: array + volumes: + description: Volumes to be used in the Pod. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volume-v1-core.' + properties: + csi: + description: Represents a source location of a volume to mount, + managed by an external CSI driver + properties: + driver: + description: |- + driver is the name of the CSI driver that handles this volume. + Consult with your admin for the correct name as registered in the cluster. + type: string + fsType: + description: |- + fsType to mount. Ex. "ext4", "xfs", "ntfs". + If not provided, the empty value is passed to the associated CSI driver + which will determine the default filesystem to apply. + type: string + nodePublishSecretRef: + description: |- + nodePublishSecretRef is a reference to the secret object containing + sensitive information to pass to the CSI driver to complete the CSI + NodePublishVolume and NodeUnpublishVolume calls. + This field is optional, and may be empty if no secret is required. If the + secret object contains more than one secret, all secret references are passed. + properties: + name: + default: "" + description: |- + Name of the referent. + This field is effectively required, but due to backwards compatibility is + allowed to be empty. Instances of this type with an empty value here are + almost certainly wrong. + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + type: object + x-kubernetes-map-type: atomic + readOnly: + description: |- + readOnly specifies a read-only configuration for the volume. + Defaults to false (read/write). + type: boolean + volumeAttributes: + additionalProperties: + type: string + description: |- + volumeAttributes stores driver-specific properties that are passed to the CSI + driver. Consult your driver's documentation for supported values. + type: object + required: + - driver + type: object + emptyDir: + description: |- + Represents an empty directory for a pod. + Empty directory volumes support ownership management and SELinux relabeling. + properties: + medium: + description: |- + medium represents what type of storage medium should back this directory. + The default is "" which means to use the node's default medium. + Must be an empty string (default) or Memory. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + type: string + sizeLimit: + anyOf: + - type: integer + - type: string + description: |- + sizeLimit is the total amount of local storage required for this EmptyDir volume. + The size limit is also applicable for memory medium. + The maximum usage on memory medium EmptyDir would be the minimum value between + the SizeLimit specified here and the sum of memory limits of all containers in a pod. + The default is nil which means that the limit is undefined. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + name: + type: string + nfs: + description: |- + Represents an NFS mount that lasts the lifetime of a pod. + NFS volumes do not support ownership management or SELinux relabeling. + properties: + path: + description: |- + path that is exported by the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + readOnly: + description: |- + readOnly here will force the NFS export to be mounted with read-only permissions. + Defaults to false. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: boolean + server: + description: |- + server is the hostname or IP address of the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + required: + - path + - server + type: object + persistentVolumeClaim: + description: |- + PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. + This volume finds the bound PV and mounts that volume for the pod. A + PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another + type of volume that is owned by someone else (the system). + properties: + claimName: + description: |- + claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. + More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims + type: string + readOnly: + description: |- + readOnly Will force the ReadOnly setting in VolumeMounts. + Default false. + type: boolean + required: + - claimName + type: object + required: + - name + type: object + type: array + type: object + x-kubernetes-validations: + - message: 'An odd number of MariaDB instances (mariadb.spec.replicas) + is required to avoid split brain situations. Use ''mariadb.spec.replicasAllowEvenNumber: + true'' to disable this validation.' + rule: self.replicas %2 == 1 || self.replicasAllowEvenNumber + status: + description: MariaDBStatus defines the observed state of MariaDB + properties: + conditions: + description: Conditions for the Mariadb object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + currentPrimary: + description: CurrentPrimary is the primary Pod. + type: string + currentPrimaryPodIndex: + description: CurrentPrimaryPodIndex is the primary Pod index. + type: integer + galeraRecovery: + description: GaleraRecovery is the Galera recovery current state. + properties: + bootstrap: + description: Bootstrap indicates when and in which Pod the cluster + bootstrap process has been performed. + properties: + pod: + type: string + time: + format: date-time + type: string + type: object + podsRestarted: + description: PodsRestarted that the Pods have been restarted after + the cluster bootstrap. + type: boolean + recovered: + additionalProperties: + properties: + seqno: + type: integer + uuid: + type: string + required: + - seqno + - uuid + type: object + description: State is a per Pod representation of the sequence + recovery process. + type: object + state: + additionalProperties: + properties: + safeToBootstrap: + type: boolean + seqno: + type: integer + uuid: + type: string + version: + type: string + required: + - safeToBootstrap + - seqno + - uuid + - version + type: object + description: State is a per Pod representation of the Galera state + file (grastate.dat). + type: object + type: object + replicas: + description: Replicas indicates the number of current instances. + format: int32 + type: integer + replicationStatus: + additionalProperties: + type: string + description: ReplicationStatus is the replication current state for + each Pod. + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + scale: + specReplicasPath: .spec.replicas + statusReplicasPath: .status.replicas + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_maxscales.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_maxscales.yaml new file mode 100644 index 00000000000..cb3ae7e7eeb --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_maxscales.yaml @@ -0,0 +1,2051 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: maxscales.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: MaxScale + listKind: MaxScaleList + plural: maxscales + shortNames: + - mxs + singular: maxscale + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: Ready + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].message + name: Status + type: string + - jsonPath: .status.primaryServer + name: Primary + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: MaxScale is the Schema for the maxscales API. It is used to define + MaxScale clusters. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: MaxScaleSpec defines the desired state of MaxScale. + properties: + admin: + description: Admin configures the admin REST API and GUI. + properties: + guiEnabled: + description: GuiEnabled indicates whether the admin GUI should + be enabled. + type: boolean + port: + description: Port where the admin REST API and GUI will be exposed. + format: int32 + type: integer + type: object + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are + ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that + the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the + selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + args: + description: Args to be used in the Container. + items: + type: string + type: array + auth: + description: Auth defines the credentials required for MaxScale to + connect to MariaDB. + properties: + adminPasswordSecretKeyRef: + description: AdminPasswordSecretKeyRef is Secret key reference + to the admin password to call the admin REST API. It is defaulted + if not provided. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + adminUsername: + description: AdminUsername is an admin username to call the admin + REST API. It is defaulted if not provided. + type: string + clientMaxConnections: + description: |- + ClientMaxConnections defines the maximum number of connections that the client can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + clientPasswordSecretKeyRef: + description: |- + ClientPasswordSecretKeyRef is Secret key reference to the password to connect to MaxScale. It is defaulted if not provided. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + clientUsername: + description: ClientUsername is the user to connect to MaxScale. + It is defaulted if not provided. + type: string + deleteDefaultAdmin: + description: DeleteDefaultAdmin determines whether the default + admin user should be deleted after the initial configuration. + If not provided, it defaults to true. + type: boolean + generate: + description: |- + Generate defies whether the operator should generate users and grants for MaxScale to work. + It only supports MariaDBs specified via spec.mariaDbRef. + type: boolean + metricsPasswordSecretKeyRef: + description: |- + MetricsPasswordSecretKeyRef is Secret key reference to the metrics password to call the admib REST API. It is defaulted if metrics are enabled. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + metricsUsername: + description: MetricsUsername is an metrics username to call the + REST API. It is defaulted if metrics are enabled. + type: string + monitorMaxConnections: + description: |- + MonitorMaxConnections defines the maximum number of connections that the monitor can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + monitorPasswordSecretKeyRef: + description: |- + MonitorPasswordSecretKeyRef is Secret key reference to the password used by MaxScale monitor to connect to MariaDB server. It is defaulted if not provided. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + monitorUsername: + description: MonitorUsername is the user used by MaxScale monitor + to connect to MariaDB server. It is defaulted if not provided. + type: string + serverMaxConnections: + description: |- + ServerMaxConnections defines the maximum number of connections that the server can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + serverPasswordSecretKeyRef: + description: |- + ServerPasswordSecretKeyRef is Secret key reference to the password used by MaxScale to connect to MariaDB server. It is defaulted if not provided. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + serverUsername: + description: ServerUsername is the user used by MaxScale to connect + to MariaDB server. It is defaulted if not provided. + type: string + syncMaxConnections: + description: |- + SyncMaxConnections defines the maximum number of connections that the sync can establish. + If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. + It defaults to 30 times the number of MaxScale replicas. + format: int32 + type: integer + syncPasswordSecretKeyRef: + description: |- + SyncPasswordSecretKeyRef is Secret key reference to the password used by MaxScale config to connect to MariaDB server. It is defaulted when HA is enabled. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + generate: + default: false + description: Generate indicates whether the Secret should + be generated if the Secret referenced is not present. + type: boolean + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + syncUsername: + description: MonitoSyncUsernamerUsername is the user used by MaxScale + config sync to connect to MariaDB server. It is defaulted when + HA is enabled. + type: string + type: object + command: + description: Command to be used in the Container. + items: + type: string + type: array + config: + description: Config defines the MaxScale configuration. + properties: + params: + additionalProperties: + type: string + description: |- + Params is a key value pair of parameters to be used in the MaxScale static configuration file. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#global-settings. + type: object + sync: + description: Sync defines how to replicate configuration across + MaxScale replicas. It is defaulted when HA is enabled. + properties: + database: + description: Database is the MariaDB logical database where + the 'maxscale_config' table will be created in order to + persist and synchronize config changes. If not provided, + it defaults to 'mysql'. + type: string + interval: + description: Interval defines the config synchronization interval. + It is defaulted if not provided. + type: string + timeout: + description: Interval defines the config synchronization timeout. + It is defaulted if not provided. + type: string + type: object + volumeClaimTemplate: + description: VolumeClaimTemplate provides a template to define + the PVCs for storing MaxScale runtime configuration files. It + is defaulted if not provided. + properties: + accessModes: + items: + type: string + type: array + x-kubernetes-list-type: atomic + metadata: + description: Metadata to be added to the PVC metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + resources: + description: VolumeResourceRequirements describes the storage + resource requirements for a volume. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Limits describes the maximum amount of compute resources allowed. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: |- + Requests describes the minimum amount of compute resources required. + If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. Requests cannot exceed Limits. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ + type: object + type: object + selector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + storageClassName: + type: string + type: object + type: object + connection: + description: Connection provides a template to define the Connection + for MaxScale. + properties: + healthCheck: + description: HealthCheck to be used in the Connection. + properties: + interval: + description: Interval used to perform health checks. + type: string + retryInterval: + description: RetryInterval is the interval used to perform + health check retries. + type: string + type: object + params: + additionalProperties: + type: string + description: Params to be used in the Connection. + type: object + port: + description: Port to connect to. If not provided, it defaults + to the MariaDB port or to the first MaxScale listener. + format: int32 + type: integer + secretName: + description: SecretName to be used in the Connection. + type: string + secretTemplate: + description: SecretTemplate to be used in the Connection. + properties: + databaseKey: + description: DatabaseKey to be used in the Secret. + type: string + format: + description: Format to be used in the Secret. + type: string + hostKey: + description: HostKey to be used in the Secret. + type: string + key: + description: Key to be used in the Secret. + type: string + metadata: + description: Metadata to be added to the Secret object. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + passwordKey: + description: PasswordKey to be used in the Secret. + type: string + portKey: + description: PortKey to be used in the Secret. + type: string + usernameKey: + description: UsernameKey to be used in the Secret. + type: string + type: object + serviceName: + description: ServiceName to be used in the Connection. + type: string + type: object + env: + description: Env represents the environment variables to be injected + in a container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + name: + description: Name of the environment variable. Must be a C_IDENTIFIER. + type: string + value: + type: string + valueFrom: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envvarsource-v1-core.' + properties: + configMapKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#configmapkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + fieldRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#objectfieldselector-v1-core.' + properties: + apiVersion: + type: string + fieldPath: + type: string + required: + - fieldPath + type: object + x-kubernetes-map-type: atomic + secretKeyRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#secretkeyselector-v1-core.' + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + type: object + required: + - name + type: object + type: array + envFrom: + description: EnvFrom represents the references (via ConfigMap and + Secrets) to environment variables to be injected in the container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#envfromsource-v1-core.' + properties: + configMapRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + prefix: + type: string + secretRef: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: object + type: array + guiKubernetesService: + description: GuiKubernetesService defines a template for a Kubernetes + Service object to connect to MaxScale's GUI. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, `NodePort` + or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + image: + description: |- + Image name to be used by the MaxScale instances. The supported format is `:`. + Only MaxScale official images are supported. + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One of `Always`, + `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets to be used + to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + inheritMetadata: + description: InheritMetadata defines the metadata to be inherited + by children resources. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + kubernetesService: + description: KubernetesService defines a template for a Kubernetes + Service object to connect to MaxScale. + properties: + allocateLoadBalancerNodePorts: + description: AllocateLoadBalancerNodePorts Service field. + type: boolean + externalTrafficPolicy: + description: ExternalTrafficPolicy Service field. + type: string + loadBalancerIP: + description: LoadBalancerIP Service field. + type: string + loadBalancerSourceRanges: + description: LoadBalancerSourceRanges Service field. + items: + type: string + type: array + metadata: + description: Metadata to be added to the Service metadata. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + sessionAffinity: + description: SessionAffinity Service field. + type: string + type: + default: ClusterIP + description: Type is the Service type. One of `ClusterIP`, `NodePort` + or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + enum: + - ClusterIP + - NodePort + - LoadBalancer + type: string + type: object + livenessProbe: + description: LivenessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used for connection + to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + mariaDbRef: + description: MariaDBRef is a reference to the MariaDB that MaxScale + points to. It is used to initialize the servers field. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + metrics: + description: Metrics configures metrics and how to scrape them. + properties: + enabled: + description: Enabled is a flag to enable Metrics + type: boolean + exporter: + description: Exporter defines the metrics exporter container. + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: + https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The + requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label + key that the selector applies + to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list + of label selector requirements. The requirements + are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key + that the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + image: + description: |- + Image name to be used as metrics exporter. The supported format is `:`. + Only mysqld-exporter >= v0.15.0 is supported: https://github.com/prometheus/mysqld_exporter + type: string + imagePullPolicy: + description: ImagePullPolicy is the image pull policy. One + of `Always`, `Never` or `IfNotPresent`. If not defined, + it defaults to `IfNotPresent`. + enum: + - Always + - Never + - IfNotPresent + type: string + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets + to be used to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes + and common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's + AppArmor settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied + to the container + properties: + level: + description: Level is SELinux level label that applies + to the container. + type: string + role: + description: Role is a SELinux role label that applies + to the container. + type: string + type: + description: Type is a SELinux type label that applies + to the container. + type: string + user: + description: User is a SELinux user label that applies + to the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + port: + description: Port where the exporter will be listening for + connections. + format: int32 + type: integer + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, + quantity) pairs. + type: object + type: object + securityContext: + description: SecurityContext holds container-level security + attributes. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from + running containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities + type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + type: object + serviceMonitor: + description: ServiceMonitor defines the ServiceMonior object. + properties: + interval: + description: Interval for scraping metrics. + type: string + jobLabel: + description: JobLabel to add to the ServiceMonitor object. + type: string + prometheusRelease: + description: PrometheusRelease is the release label to add + to the ServiceMonitor object. + type: string + scrapeTimeout: + description: ScrapeTimeout defines the timeout for scraping + metrics. + type: string + type: object + type: object + monitor: + description: Monitor monitors MariaDB server instances. It is required + if 'spec.mariaDbRef' is not provided. + properties: + cooperativeMonitoring: + description: CooperativeMonitoring enables coordination between + multiple MaxScale instances running monitors. It is defaulted + when HA is enabled. + enum: + - majority_of_all + - majority_of_running + type: string + interval: + description: Interval used to monitor MariaDB servers. It is defaulted + if not provided. + type: string + module: + description: Module is the module to use to monitor MariaDB servers. + It is mandatory when no MariaDB reference is provided. + type: string + name: + description: Name is the identifier of the monitor. It is defaulted + if not provided. + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the monitor. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-common-monitor-parameters/. + Monitor specific parameter are also suported: + https://mariadb.com/kb/en/mariadb-maxscale-2308-galera-monitor/#galera-monitor-optional-parameters. + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-monitor/#configuration. + type: object + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + type: object + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + podDisruptionBudget: + description: PodDisruptionBudget defines the budget for replica availability. + properties: + maxUnavailable: + anyOf: + - type: integer + - type: string + description: MaxUnavailable defines the number of maximum unavailable + Pods. + x-kubernetes-int-or-string: true + minAvailable: + anyOf: + - type: integer + - type: string + description: MinAvailable defines the number of minimum available + Pods. + x-kubernetes-int-or-string: true + type: object + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes and + common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's AppArmor + settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied to the + container + properties: + level: + description: Level is SELinux level label that applies to + the container. + type: string + role: + description: Role is a SELinux role label that applies to + the container. + type: string + type: + description: Type is a SELinux type label that applies to + the container. + type: string + user: + description: User is a SELinux user label that applies to + the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + readinessProbe: + description: ReadinessProbe to be used in the Container. + properties: + exec: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#execaction-v1-core.' + properties: + command: + items: + type: string + type: array + x-kubernetes-list-type: atomic + type: object + failureThreshold: + format: int32 + type: integer + httpGet: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#httpgetaction-v1-core.' + properties: + host: + type: string + path: + type: string + port: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + scheme: + description: URIScheme identifies the scheme used for connection + to a host for Get actions + type: string + required: + - port + type: object + initialDelaySeconds: + format: int32 + type: integer + periodSeconds: + format: int32 + type: integer + successThreshold: + format: int32 + type: integer + timeoutSeconds: + format: int32 + type: integer + type: object + replicas: + default: 1 + description: Replicas indicates the number of desired instances. + format: int32 + type: integer + requeueInterval: + description: RequeueInterval is used to perform requeue reconciliations. + If not defined, it defaults to 10s. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + securityContext: + description: SecurityContext holds security configuration that will + be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from running + containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + servers: + description: Servers are the MariaDB servers to forward traffic to. + It is required if 'spec.mariaDbRef' is not provided. + items: + description: MaxScaleServer defines a MariaDB server to forward + traffic to. + properties: + address: + description: Address is the network address of the MariaDB server. + type: string + maintenance: + description: Maintenance indicates whether the server is in + maintenance mode. + type: boolean + name: + description: Name is the identifier of the MariaDB server. + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the server. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#server_1. + type: object + port: + description: Port is the network port of the MariaDB server. + If not provided, it defaults to 3306. + format: int32 + type: integer + protocol: + description: Protocol is the MaxScale protocol to use when communicating + with this MariaDB server. If not provided, it defaults to + MariaDBBackend. + type: string + required: + - address + - name + type: object + type: array + serviceAccountName: + description: ServiceAccountName is the name of the ServiceAccount + to be used by the Pods. + type: string + services: + description: Services define how the traffic is forwarded to the MariaDB + servers. It is defaulted if not provided. + items: + description: Services define how the traffic is forwarded to the + MariaDB servers. + properties: + listener: + description: MaxScaleListener defines how the MaxScale server + will listen for connections. + properties: + name: + description: Name is the identifier of the listener. It + is defaulted if not provided + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the listener. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#listener_1. + type: object + port: + description: Port is the network port where the MaxScale + server will listen. + format: int32 + type: integer + protocol: + description: Protocol is the MaxScale protocol to use when + communicating with the client. If not provided, it defaults + to MariaDBProtocol. + type: string + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + required: + - port + type: object + name: + description: Name is the identifier of the MaxScale service. + type: string + params: + additionalProperties: + type: string + description: |- + Params defines extra parameters to pass to the service. + Any parameter supported by MaxScale may be specified here. See reference: + https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#service_1. + Router specific parameter are also suported: + https://mariadb.com/kb/en/mariadb-maxscale-2308-readwritesplit/#configuration. + https://mariadb.com/kb/en/mariadb-maxscale-2308-readconnroute/#configuration. + type: object + router: + description: Router is the type of router to use. + enum: + - readwritesplit + - readconnroute + type: string + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + required: + - listener + - name + - router + type: object + type: array + suspend: + default: false + description: |- + Suspend indicates whether the current resource should be suspended or not. + This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + type: boolean + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + topologySpreadConstraints: + description: TopologySpreadConstraints to be used in the Pod. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#topologyspreadconstraint-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label selector + requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the selector + applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + matchLabelKeys: + items: + type: string + type: array + maxSkew: + format: int32 + type: integer + minDomains: + format: int32 + type: integer + nodeAffinityPolicy: + description: NodeInclusionPolicy defines the type of node inclusion + policy + type: string + nodeTaintsPolicy: + description: NodeInclusionPolicy defines the type of node inclusion + policy + type: string + topologyKey: + type: string + whenUnsatisfiable: + type: string + required: + - maxSkew + - topologyKey + - whenUnsatisfiable + type: object + type: array + updateStrategy: + description: UpdateStrategy defines the update strategy for the StatefulSet + object. + properties: + rollingUpdate: + description: RollingUpdate is used to communicate parameters when + Type is RollingUpdateStatefulSetStrategyType. + properties: + maxUnavailable: + anyOf: + - type: integer + - type: string + description: |- + The maximum number of pods that can be unavailable during the update. + Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). + Absolute number is calculated from percentage by rounding up. This can not be 0. + Defaults to 1. This field is alpha-level and is only honored by servers that enable the + MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to + Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it + will be counted towards MaxUnavailable. + x-kubernetes-int-or-string: true + partition: + description: |- + Partition indicates the ordinal at which the StatefulSet should be partitioned + for updates. During a rolling update, all pods from ordinal Replicas-1 to + Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. + This is helpful in being able to do a canary based deployment. The default value is 0. + format: int32 + type: integer + type: object + type: + description: |- + Type indicates the type of the StatefulSetUpdateStrategy. + Default is RollingUpdate. + type: string + type: object + volumeMounts: + description: VolumeMounts to be used in the Container. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#volumemount-v1-core.' + properties: + mountPath: + type: string + name: + description: This must match the Name of a Volume. + type: string + readOnly: + type: boolean + subPath: + type: string + required: + - mountPath + - name + type: object + type: array + type: object + status: + description: MaxScaleStatus defines the observed state of MaxScale + properties: + conditions: + description: Conditions for the MaxScale object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + configSync: + description: ConfigSync is the state of config sync. + properties: + databaseVersion: + type: integer + maxScaleVersion: + type: integer + required: + - databaseVersion + - maxScaleVersion + type: object + listeners: + description: Listeners is the state of the listeners in the MaxScale + API. + items: + description: MaxScaleResourceStatus indicates whether the resource + is in a given state. + properties: + name: + type: string + state: + type: string + required: + - name + - state + type: object + type: array + monitor: + description: Monitor is the state of the monitor in the MaxScale API. + properties: + name: + type: string + state: + type: string + required: + - name + - state + type: object + primaryServer: + description: PrimaryServer is the primary server in the MaxScale API. + type: string + replicas: + description: Replicas indicates the number of current instances. + format: int32 + type: integer + servers: + description: Servers is the state of the servers in the MaxScale API. + items: + description: MaxScaleAPIStatus is the state of the servers in the + MaxScale API. + properties: + name: + type: string + state: + type: string + required: + - name + - state + type: object + type: array + services: + description: Services is the state of the services in the MaxScale + API. + items: + description: MaxScaleResourceStatus indicates whether the resource + is in a given state. + properties: + name: + type: string + state: + type: string + required: + - name + - state + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + scale: + specReplicasPath: .spec.replicas + statusReplicasPath: .status.replicas + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_restores.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_restores.yaml new file mode 100644 index 00000000000..56532e37043 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_restores.yaml @@ -0,0 +1,789 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: restores.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: Restore + listKind: RestoreList + plural: restores + shortNames: + - rmdb + singular: restore + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Complete")].status + name: Complete + type: string + - jsonPath: .status.conditions[?(@.type=="Complete")].message + name: Status + type: string + - jsonPath: .spec.mariaDbRef.name + name: MariaDB + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: Restore is the Schema for the restores API. It is used to define + restore jobs and its restoration source. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: RestoreSpec defines the desired state of restore + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are + ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that + the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the + selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + args: + description: Args to be used in the Container. + items: + type: string + type: array + backoffLimit: + default: 5 + description: BackoffLimit defines the maximum number of attempts to + successfully perform a Backup. + format: int32 + type: integer + backupRef: + description: BackupRef is a reference to a Backup object. It has priority + over S3 and Volume. + properties: + name: + default: "" + type: string + type: object + database: + description: |- + Database defines the logical database to be restored. If not provided, all databases available in the backup are restored. + IMPORTANT: The database must previously exist. + type: string + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets to be used + to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + inheritMetadata: + description: InheritMetadata defines the metadata to be inherited + by children resources. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + logLevel: + default: info + description: LogLevel to be used n the Backup Job. It defaults to + 'info'. + type: string + mariaDbRef: + description: MariaDBRef is a reference to a MariaDB object. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes and + common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's AppArmor + settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied to the + container + properties: + level: + description: Level is SELinux level label that applies to + the container. + type: string + role: + description: Role is a SELinux role label that applies to + the container. + type: string + type: + description: Type is a SELinux type label that applies to + the container. + type: string + user: + description: User is a SELinux user label that applies to + the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + restartPolicy: + default: OnFailure + description: RestartPolicy to be added to the Backup Job. + enum: + - Always + - OnFailure + - Never + type: string + s3: + description: S3 defines the configuration to restore backups from + a S3 compatible storage. It has priority over Volume. + properties: + accessKeyIdSecretKeyRef: + description: AccessKeyIdSecretKeyRef is a reference to a Secret + key containing the S3 access key id. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + bucket: + description: Bucket is the name Name of the bucket to store backups. + type: string + endpoint: + description: Endpoint is the S3 API endpoint without scheme. + type: string + prefix: + description: 'Prefix indicates a folder/subfolder in the bucket. + For example: mariadb/ or mariadb/backups. A trailing slash ''/'' + is added if not provided.' + type: string + region: + description: Region is the S3 region name to use. + type: string + secretAccessKeySecretKeyRef: + description: AccessKeyIdSecretKeyRef is a reference to a Secret + key containing the S3 secret key. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + sessionTokenSecretKeyRef: + description: SessionTokenSecretKeyRef is a reference to a Secret + key containing the S3 session token. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + tls: + description: TLS provides the configuration required to establish + TLS connections with S3. + properties: + caSecretKeyRef: + description: |- + CASecretKeyRef is a reference to a Secret key containing a CA bundle in PEM format used to establish TLS connections with S3. + By default, the system trust chain will be used, but you can use this field to add more CAs to the bundle. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + enabled: + description: Enabled is a flag to enable TLS. + type: boolean + type: object + required: + - accessKeyIdSecretKeyRef + - bucket + - endpoint + - secretAccessKeySecretKeyRef + type: object + securityContext: + description: SecurityContext holds security configuration that will + be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from running + containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + serviceAccountName: + description: ServiceAccountName is the name of the ServiceAccount + to be used by the Pods. + type: string + targetRecoveryTime: + description: |- + TargetRecoveryTime is a RFC3339 (1970-01-01T00:00:00Z) date and time that defines the point in time recovery objective. + It is used to determine the closest restoration source in time. + format: date-time + type: string + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + volume: + description: Volume is a Kubernetes Volume object that contains a + backup. + properties: + csi: + description: Represents a source location of a volume to mount, + managed by an external CSI driver + properties: + driver: + description: |- + driver is the name of the CSI driver that handles this volume. + Consult with your admin for the correct name as registered in the cluster. + type: string + fsType: + description: |- + fsType to mount. Ex. "ext4", "xfs", "ntfs". + If not provided, the empty value is passed to the associated CSI driver + which will determine the default filesystem to apply. + type: string + nodePublishSecretRef: + description: |- + nodePublishSecretRef is a reference to the secret object containing + sensitive information to pass to the CSI driver to complete the CSI + NodePublishVolume and NodeUnpublishVolume calls. + This field is optional, and may be empty if no secret is required. If the + secret object contains more than one secret, all secret references are passed. + properties: + name: + default: "" + description: |- + Name of the referent. + This field is effectively required, but due to backwards compatibility is + allowed to be empty. Instances of this type with an empty value here are + almost certainly wrong. + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + type: object + x-kubernetes-map-type: atomic + readOnly: + description: |- + readOnly specifies a read-only configuration for the volume. + Defaults to false (read/write). + type: boolean + volumeAttributes: + additionalProperties: + type: string + description: |- + volumeAttributes stores driver-specific properties that are passed to the CSI + driver. Consult your driver's documentation for supported values. + type: object + required: + - driver + type: object + emptyDir: + description: |- + Represents an empty directory for a pod. + Empty directory volumes support ownership management and SELinux relabeling. + properties: + medium: + description: |- + medium represents what type of storage medium should back this directory. + The default is "" which means to use the node's default medium. + Must be an empty string (default) or Memory. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + type: string + sizeLimit: + anyOf: + - type: integer + - type: string + description: |- + sizeLimit is the total amount of local storage required for this EmptyDir volume. + The size limit is also applicable for memory medium. + The maximum usage on memory medium EmptyDir would be the minimum value between + the SizeLimit specified here and the sum of memory limits of all containers in a pod. + The default is nil which means that the limit is undefined. + More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + nfs: + description: |- + Represents an NFS mount that lasts the lifetime of a pod. + NFS volumes do not support ownership management or SELinux relabeling. + properties: + path: + description: |- + path that is exported by the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + readOnly: + description: |- + readOnly here will force the NFS export to be mounted with read-only permissions. + Defaults to false. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: boolean + server: + description: |- + server is the hostname or IP address of the NFS server. + More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs + type: string + required: + - path + - server + type: object + persistentVolumeClaim: + description: |- + PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. + This volume finds the bound PV and mounts that volume for the pod. A + PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another + type of volume that is owned by someone else (the system). + properties: + claimName: + description: |- + claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. + More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims + type: string + readOnly: + description: |- + readOnly Will force the ReadOnly setting in VolumeMounts. + Default false. + type: boolean + required: + - claimName + type: object + type: object + required: + - mariaDbRef + type: object + status: + description: RestoreStatus defines the observed state of restore + properties: + conditions: + description: Conditions for the Restore object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_sqljobs.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_sqljobs.yaml new file mode 100644 index 00000000000..50b62e7d513 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_sqljobs.yaml @@ -0,0 +1,633 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: sqljobs.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: SqlJob + listKind: SqlJobList + plural: sqljobs + shortNames: + - smdb + singular: sqljob + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Complete")].status + name: Complete + type: string + - jsonPath: .status.conditions[?(@.type=="Complete")].message + name: Status + type: string + - jsonPath: .spec.mariaDbRef.name + name: MariaDB + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: SqlJob is the Schema for the sqljobs API. It is used to run sql + scripts as jobs. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: SqlJobSpec defines the desired state of SqlJob + properties: + affinity: + description: Affinity to be used in the Pod. + properties: + antiAffinityEnabled: + description: |- + AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. + Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + type: boolean + podAntiAffinity: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podantiaffinity-v1-core.' + properties: + preferredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#weightedpodaffinityterm-v1-core.' + properties: + podAffinityTerm: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are + ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that + the selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + weight: + format: int32 + type: integer + required: + - podAffinityTerm + - weight + type: object + type: array + x-kubernetes-list-type: atomic + requiredDuringSchedulingIgnoredDuringExecution: + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#podaffinityterm-v1-core.' + properties: + labelSelector: + description: |- + A label selector is a label query over a set of resources. The result of matchLabels and + matchExpressions are ANDed. An empty label selector matches all objects. A null + label selector matches no objects. + properties: + matchExpressions: + description: matchExpressions is a list of label + selector requirements. The requirements are ANDed. + items: + description: |- + A label selector requirement is a selector that contains values, a key, and an operator that + relates the key and values. + properties: + key: + description: key is the label key that the + selector applies to. + type: string + operator: + description: |- + operator represents a key's relationship to a set of values. + Valid operators are In, NotIn, Exists and DoesNotExist. + type: string + values: + description: |- + values is an array of string values. If the operator is In or NotIn, + the values array must be non-empty. If the operator is Exists or DoesNotExist, + the values array must be empty. This array is replaced during a strategic + merge patch. + items: + type: string + type: array + x-kubernetes-list-type: atomic + required: + - key + - operator + type: object + type: array + x-kubernetes-list-type: atomic + matchLabels: + additionalProperties: + type: string + description: |- + matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels + map is equivalent to an element of matchExpressions, whose key field is "key", the + operator is "In", and the values array contains only "value". The requirements are ANDed. + type: object + type: object + x-kubernetes-map-type: atomic + topologyKey: + type: string + required: + - topologyKey + type: object + type: array + x-kubernetes-list-type: atomic + type: object + type: object + args: + description: Args to be used in the Container. + items: + type: string + type: array + backoffLimit: + default: 5 + description: BackoffLimit defines the maximum number of attempts to + successfully execute a SqlJob. + format: int32 + type: integer + database: + description: Username to be used when executing the SqlJob. + type: string + dependsOn: + description: DependsOn defines dependencies with other SqlJob objectecs. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + failedJobsHistoryLimit: + description: FailedJobsHistoryLimit defines the maximum number of + failed Jobs to be displayed. + format: int32 + minimum: 0 + type: integer + imagePullSecrets: + description: ImagePullSecrets is the list of pull Secrets to be used + to pull the image. + items: + description: 'Refer to the Kubernetes docs: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.31/#localobjectreference-v1-core.' + properties: + name: + default: "" + type: string + type: object + type: array + inheritMetadata: + description: InheritMetadata defines the metadata to be inherited + by children resources. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + mariaDbRef: + description: MariaDBRef is a reference to a MariaDB object. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + nodeSelector: + additionalProperties: + type: string + description: NodeSelector to be used in the Pod. + type: object + passwordSecretKeyRef: + description: UserPasswordSecretKeyRef is a reference to the impersonated + user's password to be used when executing the SqlJob. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + podMetadata: + description: PodMetadata defines extra metadata for the Pod. + properties: + annotations: + additionalProperties: + type: string + description: Annotations to be added to children resources. + type: object + labels: + additionalProperties: + type: string + description: Labels to be added to children resources. + type: object + type: object + podSecurityContext: + description: SecurityContext holds pod-level security attributes and + common container settings. + properties: + appArmorProfile: + description: AppArmorProfile defines a pod or container's AppArmor + settings. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile loaded on the node that should be used. + The profile must be preconfigured on the node to work. + Must match the loaded name of the profile. + Must be set if and only if type is "Localhost". + type: string + type: + description: |- + type indicates which kind of AppArmor profile will be applied. + Valid options are: + Localhost - a profile pre-loaded on the node. + RuntimeDefault - the container runtime's default profile. + Unconfined - no AppArmor enforcement. + type: string + required: + - type + type: object + fsGroup: + format: int64 + type: integer + fsGroupChangePolicy: + description: |- + PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume + when volume is mounted. + type: string + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + seLinuxOptions: + description: SELinuxOptions are the labels to be applied to the + container + properties: + level: + description: Level is SELinux level label that applies to + the container. + type: string + role: + description: Role is a SELinux role label that applies to + the container. + type: string + type: + description: Type is a SELinux type label that applies to + the container. + type: string + user: + description: User is a SELinux user label that applies to + the container. + type: string + type: object + seccompProfile: + description: |- + SeccompProfile defines a pod/container's seccomp profile settings. + Only one profile source may be set. + properties: + localhostProfile: + description: |- + localhostProfile indicates a profile defined in a file on the node should be used. + The profile must be preconfigured on the node to work. + Must be a descending path, relative to the kubelet's configured seccomp profile location. + Must be set if type is "Localhost". Must NOT be set for any other type. + type: string + type: + description: |- + type indicates which kind of seccomp profile will be applied. + Valid options are: + + Localhost - a profile defined in a file on the node should be used. + RuntimeDefault - the container runtime default profile should be used. + Unconfined - no profile should be applied. + type: string + required: + - type + type: object + supplementalGroups: + items: + format: int64 + type: integer + type: array + x-kubernetes-list-type: atomic + type: object + priorityClassName: + description: PriorityClassName to be used in the Pod. + type: string + resources: + description: Resouces describes the compute resource requirements. + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: ResourceList is a set of (resource name, quantity) + pairs. + type: object + type: object + restartPolicy: + default: OnFailure + description: RestartPolicy to be added to the SqlJob Pod. + enum: + - Always + - OnFailure + - Never + type: string + schedule: + description: Schedule defines when the SqlJob will be executed. + properties: + cron: + description: Cron is a cron expression that defines the schedule. + type: string + suspend: + default: false + description: Suspend defines whether the schedule is active or + not. + type: boolean + required: + - cron + type: object + securityContext: + description: SecurityContext holds security configuration that will + be applied to a container. + properties: + allowPrivilegeEscalation: + type: boolean + capabilities: + description: Adds and removes POSIX capabilities from running + containers. + properties: + add: + description: Added capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + drop: + description: Removed capabilities + items: + description: Capability represent POSIX capabilities type + type: string + type: array + x-kubernetes-list-type: atomic + type: object + privileged: + type: boolean + readOnlyRootFilesystem: + type: boolean + runAsGroup: + format: int64 + type: integer + runAsNonRoot: + type: boolean + runAsUser: + format: int64 + type: integer + type: object + serviceAccountName: + description: ServiceAccountName is the name of the ServiceAccount + to be used by the Pods. + type: string + sql: + description: Sql is the script to be executed by the SqlJob. + type: string + sqlConfigMapKeyRef: + description: |- + SqlConfigMapKeyRef is a reference to a ConfigMap containing the Sql script. + It is defaulted to a ConfigMap with the contents of the Sql field. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + successfulJobsHistoryLimit: + description: SuccessfulJobsHistoryLimit defines the maximum number + of successful Jobs to be displayed. + format: int32 + minimum: 0 + type: integer + timeZone: + description: TimeZone defines the timezone associated with the cron + expression. + type: string + tolerations: + description: Tolerations to be used in the Pod. + items: + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . + properties: + effect: + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. + type: string + key: + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. + type: string + operator: + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. + type: string + tolerationSeconds: + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. + format: int64 + type: integer + value: + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. + type: string + type: object + type: array + username: + description: Username to be impersonated when executing the SqlJob. + type: string + required: + - mariaDbRef + - passwordSecretKeyRef + - username + type: object + status: + description: SqlJobStatus defines the observed state of SqlJob + properties: + conditions: + description: Conditions for the SqlJob object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_users.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_users.yaml new file mode 100644 index 00000000000..249baa48b5e --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/k8s.mariadb.com_users.yaml @@ -0,0 +1,237 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.1 + creationTimestamp: null + name: users.k8s.mariadb.com +spec: + group: k8s.mariadb.com + names: + kind: User + listKind: UserList + plural: users + shortNames: + - umdb + singular: user + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: Ready + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].message + name: Status + type: string + - jsonPath: .spec.maxUserConnections + name: MaxConns + type: string + - jsonPath: .spec.mariaDbRef.name + name: MariaDB + type: string + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: User is the Schema for the users API. It is used to define grants + as if you were running a 'CREATE USER' statement. + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: UserSpec defines the desired state of User + properties: + cleanupPolicy: + description: CleanupPolicy defines the behavior for cleaning up a + SQL resource. + enum: + - Skip + - Delete + type: string + host: + description: Host related to the User. + maxLength: 255 + type: string + mariaDbRef: + description: MariaDBRef is a reference to a MariaDB object. + properties: + name: + type: string + namespace: + type: string + waitForIt: + default: true + description: WaitForIt indicates whether the controller using + this reference should wait for MariaDB to be ready. + type: boolean + type: object + maxUserConnections: + default: 10 + description: MaxUserConnections defines the maximum number of simultaneous + connections that the User can establish. + format: int32 + type: integer + name: + description: Name overrides the default name provided by metadata.name. + maxLength: 80 + type: string + passwordHashSecretKeyRef: + description: |- + PasswordHashSecretKeyRef is a reference to the password hash to be used by the User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password hash. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + passwordPlugin: + description: PasswordPlugin is a reference to the password plugin + and arguments to be used by the User. + properties: + pluginArgSecretKeyRef: + description: |- + PluginArgSecretKeyRef is a reference to the arguments to be provided to the authentication plugin for the User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin arguments. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + pluginNameSecretKeyRef: + description: |- + PluginNameSecretKeyRef is a reference to the authentication plugin to be used by the User. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + type: object + passwordSecretKeyRef: + description: |- + PasswordSecretKeyRef is a reference to the password to be used by the User. + If not provided, the account will be locked and the password will expire. + If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + properties: + key: + type: string + name: + default: "" + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + requeueInterval: + description: RequeueInterval is used to perform requeue reconciliations. + type: string + retryInterval: + description: RetryInterval is the interval used to perform retries. + type: string + required: + - mariaDbRef + type: object + status: + description: UserStatus defines the observed state of User + properties: + conditions: + description: Conditions for the User object. + items: + description: Condition contains details for one aspect of the current + state of this API Resource. + properties: + lastTransitionTime: + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-enterprise.clusterserviceversion.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-enterprise.clusterserviceversion.yaml new file mode 100644 index 00000000000..15b7c1bb30a --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-enterprise.clusterserviceversion.yaml @@ -0,0 +1,4528 @@ +apiVersion: operators.coreos.com/v1alpha1 +kind: ClusterServiceVersion +metadata: + annotations: + alm-examples: |- + [ + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "Backup", + "metadata": { + "name": "backup" + }, + "spec": { + "mariaDbRef": { + "name": "mariadb" + }, + "maxRetention": "720h", + "schedule": { + "cron": "*/1 * * * *", + "suspend": false + }, + "storage": { + "s3": { + "accessKeyIdSecretKeyRef": { + "key": "access-key-id", + "name": "minio" + }, + "bucket": "backups", + "endpoint": "minio.minio.svc.cluster.local:9000", + "prefix": "mariadb", + "secretAccessKeySecretKeyRef": { + "key": "secret-access-key", + "name": "minio" + }, + "tls": { + "caSecretKeyRef": { + "key": "ca.crt", + "name": "minio-ca" + }, + "enabled": true + } + } + } + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "Connection", + "metadata": { + "name": "connection" + }, + "spec": { + "database": "mariadb", + "mariaDbRef": { + "name": "mariadb" + }, + "passwordSecretKeyRef": { + "key": "password", + "name": "mariadb" + }, + "secretName": "connection", + "secretTemplate": { + "key": "dsn" + }, + "username": "mariadb" + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "Database", + "metadata": { + "name": "database" + }, + "spec": { + "characterSet": "utf8", + "collate": "utf8_general_ci", + "mariaDbRef": { + "name": "mariadb" + }, + "name": "my-logical-database" + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "Grant", + "metadata": { + "name": "grant" + }, + "spec": { + "database": "*", + "grantOption": true, + "host": "%", + "mariaDbRef": { + "name": "mariadb" + }, + "privileges": [ + "SELECT", + "INSERT", + "UPDATE" + ], + "table": "*", + "username": "my-user" + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "MariaDB", + "metadata": { + "name": "mariadb" + }, + "spec": { + "connection": { + "secretName": "mariadb-conn", + "secretTemplate": { + "key": "dsn" + } + }, + "database": "mariadb", + "galera": { + "enabled": true + }, + "metrics": { + "enabled": true, + "passwordSecretKeyRef": { + "generate": true, + "key": "password", + "name": "mariadb-metrics" + } + }, + "myCnf": "[mariadb]\nbind-address=*\ndefault_storage_engine=InnoDB\nbinlog_format=row\ninnodb_autoinc_lock_mode=2\ninnodb_buffer_pool_size=1024M\nmax_allowed_packet=256M\n", + "passwordSecretKeyRef": { + "generate": true, + "key": "password", + "name": "mariadb-password" + }, + "primaryConnection": { + "secretName": "mariadb-conn-primary", + "secretTemplate": { + "key": "dsn" + } + }, + "primaryService": { + "type": "ClusterIP" + }, + "replicas": 3, + "rootPasswordSecretKeyRef": { + "generate": true, + "key": "password", + "name": "mariadb-root" + }, + "secondaryConnection": { + "secretName": "mariadb-conn-secondary", + "secretTemplate": { + "key": "dsn" + } + }, + "secondaryService": { + "type": "ClusterIP" + }, + "service": { + "type": "ClusterIP" + }, + "storage": { + "size": "1Gi" + }, + "updateStrategy": { + "type": "ReplicasFirstPrimaryLast" + }, + "username": "mariadb" + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "MaxScale", + "metadata": { + "name": "maxscale" + }, + "spec": { + "admin": { + "guiEnabled": true, + "port": 8989 + }, + "auth": { + "adminPasswordSecretKeyRef": { + "generate": true, + "key": "password", + "name": "maxscale-admin" + }, + "adminUsername": "mariadb-operator", + "generate": true + }, + "config": { + "sync": { + "database": "mysql", + "interval": "5s", + "timeout": "10s" + } + }, + "connection": { + "port": 3306, + "secretName": "maxscale-conn", + "secretTemplate": { + "key": "dsn" + } + }, + "guiKubernetesService": { + "type": "ClusterIP" + }, + "kubernetesService": { + "type": "ClusterIP" + }, + "mariaDbRef": { + "name": "mariadb" + }, + "metrics": { + "enabled": true + }, + "monitor": { + "cooperativeMonitoring": "majority_of_all", + "interval": "2s", + "params": { + "available_when_donor": "false", + "disable_master_failback": "false", + "disable_master_role_setting": "false" + } + }, + "replicas": 3, + "requeueInterval": "10s", + "services": [ + { + "listener": { + "params": { + "connection_metadata": "tx_isolation=auto" + }, + "port": 3306, + "protocol": "MariaDBProtocol" + }, + "name": "rw-router", + "params": { + "master_accept_reads": "true", + "max_replication_lag": "3s", + "max_slave_connections": "255", + "transaction_replay": "true", + "transaction_replay_attempts": "10", + "transaction_replay_timeout": "5s" + }, + "router": "readwritesplit" + }, + { + "listener": { + "port": 3307 + }, + "name": "rconn-master-router", + "params": { + "master_accept_reads": "true", + "max_replication_lag": "3s", + "router_options": "master" + }, + "router": "readconnroute" + }, + { + "listener": { + "port": 3308 + }, + "name": "rconn-slave-router", + "params": { + "max_replication_lag": "3s", + "router_options": "slave" + }, + "router": "readconnroute" + } + ] + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "Restore", + "metadata": { + "name": "restore" + }, + "spec": { + "backupRef": { + "name": "backup" + }, + "mariaDbRef": { + "name": "mariadb" + }, + "targetRecoveryTime": "2023-12-19T09:00:00Z" + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "SqlJob", + "metadata": { + "name": "sqljob" + }, + "spec": { + "database": "mariadb", + "mariaDbRef": { + "name": "mariadb" + }, + "passwordSecretKeyRef": { + "key": "password", + "name": "mariadb" + }, + "schedule": { + "cron": "*/1 * * * *", + "suspend": false + }, + "sql": "CREATE TABLE IF NOT EXISTS orders (\n id bigint PRIMARY KEY AUTO_INCREMENT,\n customer_id INT,\n order_date DATE,\n total_amount_cents INT\n);\nINSERT INTO orders (customer_id, order_date, total_amount_cents) VALUES\n (101, '2024-05-15', 5000),\n (102, '2024-05-14', 7525),\n (103, '2024-05-13', 10050),\n (104, '2024-05-12', 2575);", + "username": "mariadb" + } + }, + { + "apiVersion": "k8s.mariadb.com/v1alpha1", + "kind": "User", + "metadata": { + "name": "user" + }, + "spec": { + "host": "%", + "mariaDbRef": { + "name": "mariadb" + }, + "maxUserConnections": 20, + "name": "my-user", + "passwordSecretKeyRef": { + "key": "password", + "name": "mariadb" + } + } + } + ] + capabilities: Deep Insights + categories: Database + certified: "true" + containerImage: docker-registry2.mariadb.com/mariadb/mariadb-operator-enterprise:0.34.0 + createdAt: "2024-10-07T14:21:48Z" + features.operators.openshift.io/disconnected: "false" + features.operators.openshift.io/fips-compliant: "false" + features.operators.openshift.io/proxy-aware: "false" + features.operators.openshift.io/tls-profiles: "false" + features.operators.openshift.io/token-auth-aws: "false" + features.operators.openshift.io/token-auth-azure: "false" + features.operators.openshift.io/token-auth-gcp: "false" + operators.openshift.io/valid-subscription: '["MariaDB Enterprise Server License"]' + operators.operatorframework.io/builder: operator-sdk-v1.35.0 + operators.operatorframework.io/project_layout: go.kubebuilder.io/v4 + support: MariaDB Corporation + labels: + operatorframework.io/arch.amd64: supported + operatorframework.io/arch.arm64: supported + operatorframework.io/os.linux: supported + name: mariadb-operator-enterprise.v0.34.0 + namespace: placeholder +spec: + apiservicedefinitions: {} + customresourcedefinitions: + owned: + - description: Backup is the Schema for the backups API. It is used to define backup jobs and its storage. + displayName: Backup + kind: Backup + name: backups.k8s.mariadb.com + resources: + - kind: Backup + name: "" + version: v1alpha1 + - kind: CronJob + name: "" + version: v1 + - kind: Job + name: "" + version: v1 + - kind: PersistentVolumeClaim + name: "" + version: v1 + - kind: ServiceAccount + name: "" + version: v1 + specDescriptors: + - description: Affinity to be used in the Pod. + displayName: Affinity + path: affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Args to be used in the Container. + displayName: Args + path: args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: BackoffLimit defines the maximum number of attempts to successfully take a Backup. + displayName: Backoff Limit + path: backoffLimit + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Compression algorithm to be used in the Backup. + displayName: Compression + path: compression + - description: Databases defines the logical databases to be backed up. If not provided, all databases are backed up. + displayName: Databases + path: databases + - description: FailedJobsHistoryLimit defines the maximum number of failed Jobs to be displayed. + displayName: Failed Jobs History Limit + path: failedJobsHistoryLimit + - description: 'IgnoreGlobalPriv indicates to ignore the mysql.global_priv in backups. If not provided, it will default to true when the referred MariaDB instance has Galera enabled and otherwise to false. See: https://github.com/mariadb-operator/mariadb-operator/issues/556' + displayName: Ignore Global Priv + path: ignoreGlobalPriv + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: imagePullSecrets + - description: InheritMetadata defines the metadata to be inherited by children resources. + displayName: Inherit Metadata + path: inheritMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: inheritMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: inheritMetadata.labels + - description: LogLevel to be used n the Backup Job. It defaults to 'info'. + displayName: Log Level + path: logLevel + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MariaDBRef is a reference to a MariaDB object. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxRetention defines the retention policy for backups. Old backups will be cleaned up by the Backup Job. It defaults to 30 days. + displayName: Max Retention + path: maxRetention + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: RestartPolicy to be added to the Backup Pod. + displayName: Restart Policy + path: restartPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Schedule defines when the Backup will be taken. + displayName: Schedule + path: schedule + - description: Cron is a cron expression that defines the schedule. + displayName: Cron + path: schedule.cron + - description: Suspend defines whether the schedule is active or not. + displayName: Suspend + path: schedule.suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceAccountName is the name of the ServiceAccount to be used by the Pods. + displayName: Service Account Name + path: serviceAccountName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Storage to be used in the Backup. + displayName: Storage + path: storage + - description: PersistentVolumeClaim is a Kubernetes PVC specification. + displayName: Persistent Volume Claim + path: storage.persistentVolumeClaim + - description: S3 defines the configuration to store backups in a S3 compatible storage. + displayName: S3 + path: storage.s3 + - description: AccessKeyIdSecretKeyRef is a reference to a Secret key containing the S3 access key id. + displayName: Access Key Id Secret Key Ref + path: storage.s3.accessKeyIdSecretKeyRef + - description: Bucket is the name Name of the bucket to store backups. + displayName: Bucket + path: storage.s3.bucket + - description: Endpoint is the S3 API endpoint without scheme. + displayName: Endpoint + path: storage.s3.endpoint + - description: 'Prefix indicates a folder/subfolder in the bucket. For example: mariadb/ or mariadb/backups. A trailing slash ''/'' is added if not provided.' + displayName: Prefix + path: storage.s3.prefix + - description: Region is the S3 region name to use. + displayName: Region + path: storage.s3.region + - description: AccessKeyIdSecretKeyRef is a reference to a Secret key containing the S3 secret key. + displayName: Secret Access Key Secret Key Ref + path: storage.s3.secretAccessKeySecretKeyRef + - description: SessionTokenSecretKeyRef is a reference to a Secret key containing the S3 session token. + displayName: Session Token Secret Key Ref + path: storage.s3.sessionTokenSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TLS provides the configuration required to establish TLS connections with S3. + displayName: TLS + path: storage.s3.tls + - description: CASecretKeyRef is a reference to a Secret key containing a CA bundle in PEM format used to establish TLS connections with S3. By default, the system trust chain will be used, but you can use this field to add more CAs to the bundle. + displayName: CASecret Key Ref + path: storage.s3.tls.caSecretKeyRef + - description: Enabled is a flag to enable TLS. + displayName: Enabled + path: storage.s3.tls.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Volume is a Kubernetes volume specification. + displayName: Volume + path: storage.volume + - description: SuccessfulJobsHistoryLimit defines the maximum number of successful Jobs to be displayed. + displayName: Successful Jobs History Limit + path: successfulJobsHistoryLimit + - description: TimeZone defines the timezone associated with the cron expression. + displayName: Time Zone + path: timeZone + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + statusDescriptors: + - description: Conditions for the Backup object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + - description: Connection is the Schema for the connections API. It is used to configure connection strings for the applications connecting to MariaDB. + displayName: Connection + kind: Connection + name: connections.k8s.mariadb.com + resources: + - kind: Connection + name: "" + version: v1alpha1 + - kind: Secret + name: "" + version: v1 + specDescriptors: + - description: Database to use when configuring the Connection. + displayName: Database + path: database + - description: HealthCheck to be used in the Connection. + displayName: Health Check + path: healthCheck + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to perform health checks. + displayName: Interval + path: healthCheck.interval + - description: RetryInterval is the interval used to perform health check retries. + displayName: Retry Interval + path: healthCheck.retryInterval + - description: Host to connect to. If not provided, it defaults to the MariaDB host or to the MaxScale host. + displayName: Host + path: host + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MariaDBRef is a reference to the MariaDB to connect to. Either MariaDBRef or MaxScaleRef must be provided. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxScaleRef is a reference to the MaxScale to connect to. Either MariaDBRef or MaxScaleRef must be provided. + displayName: Max Scale Ref + path: maxScaleRef + - description: Params to be used in the Connection. + displayName: Params + path: params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PasswordSecretKeyRef is a reference to the password to use for configuring the Connection. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Password Secret Key Ref + path: passwordSecretKeyRef + - description: Port to connect to. If not provided, it defaults to the MariaDB port or to the first MaxScale listener. + displayName: Port + path: port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecretName to be used in the Connection. + displayName: Secret Name + path: secretName + - description: SecretTemplate to be used in the Connection. + displayName: Secret Template + path: secretTemplate + - description: DatabaseKey to be used in the Secret. + displayName: Database Key + path: secretTemplate.databaseKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Format to be used in the Secret. + displayName: Format + path: secretTemplate.format + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: HostKey to be used in the Secret. + displayName: Host Key + path: secretTemplate.hostKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Key to be used in the Secret. + displayName: Key + path: secretTemplate.key + - description: Metadata to be added to the Secret object. + displayName: Metadata + path: secretTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: secretTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: secretTemplate.metadata.labels + - description: PasswordKey to be used in the Secret. + displayName: Password Key + path: secretTemplate.passwordKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PortKey to be used in the Secret. + displayName: Port Key + path: secretTemplate.portKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UsernameKey to be used in the Secret. + displayName: Username Key + path: secretTemplate.usernameKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceName to be used in the Connection. + displayName: Service Name + path: serviceName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Username to use for configuring the Connection. + displayName: Username + path: username + statusDescriptors: + - description: Conditions for the Connection object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + - description: Database is the Schema for the databases API. It is used to define a logical database as if you were running a 'CREATE DATABASE' statement. + displayName: Database + kind: Database + name: databases.k8s.mariadb.com + resources: + - kind: Database + name: "" + version: v1alpha1 + specDescriptors: + - description: CharacterSet to use in the Database. + displayName: Character Set + path: characterSet + - description: CleanupPolicy defines the behavior for cleaning up a SQL resource. + displayName: Cleanup Policy + path: cleanupPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Collate to use in the Database. + displayName: Collate + path: collate + - description: MariaDBRef is a reference to a MariaDB object. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Name overrides the default Database name provided by metadata.name. + displayName: Name + path: name + - description: RequeueInterval is used to perform requeue reconciliations. + displayName: Requeue Interval + path: requeueInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: RetryInterval is the interval used to perform retries. + displayName: Retry Interval + path: retryInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + statusDescriptors: + - description: Conditions for the Database object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + - description: Grant is the Schema for the grants API. It is used to define grants as if you were running a 'GRANT' statement. + displayName: Grant + kind: Grant + name: grants.k8s.mariadb.com + resources: + - kind: Grant + name: "" + version: v1alpha1 + specDescriptors: + - description: CleanupPolicy defines the behavior for cleaning up a SQL resource. + displayName: Cleanup Policy + path: cleanupPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Database to use in the Grant. + displayName: Database + path: database + - description: GrantOption to use in the Grant. + displayName: Grant Option + path: grantOption + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Host to use in the Grant. It can be localhost, an IP or '%'. + displayName: Host + path: host + - description: MariaDBRef is a reference to a MariaDB object. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Privileges to use in the Grant. + displayName: Privileges + path: privileges + - description: RequeueInterval is used to perform requeue reconciliations. + displayName: Requeue Interval + path: requeueInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: RetryInterval is the interval used to perform retries. + displayName: Retry Interval + path: retryInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Table to use in the Grant. + displayName: Table + path: table + - description: Username to use in the Grant. + displayName: Username + path: username + statusDescriptors: + - description: Conditions for the Grant object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + - description: MariaDB is the Schema for the mariadbs API. It is used to define MariaDB clusters. + displayName: Maria DB + kind: MariaDB + name: mariadbs.k8s.mariadb.com + resources: + - kind: ClusterRoleBinding + name: "" + version: v1 + - kind: ConfigMap + name: "" + version: v1 + - kind: Connection + name: "" + version: v1alpha1 + - kind: Deployment + name: "" + version: v1 + - kind: Event + name: "" + version: v1 + - kind: Grant + name: "" + version: v1alpha1 + - kind: Job + name: "" + version: v1 + - kind: MariaDB + name: "" + version: v1alpha1 + - kind: MaxScale + name: "" + version: v1alpha1 + - kind: PodDisruptionBudget + name: "" + version: v1 + - kind: Restore + name: "" + version: v1alpha1 + - kind: Role + name: "" + version: v1 + - kind: RoleBinding + name: "" + version: v1 + - kind: Secret + name: "" + version: v1 + - kind: Service + name: "" + version: v1 + - kind: ServiceAccount + name: "" + version: v1 + - kind: StatefulSet + name: "" + version: v1 + - kind: User + name: "" + version: v1alpha1 + specDescriptors: + - description: Affinity to be used in the Pod. + displayName: Affinity + path: affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Args to be used in the Container. + displayName: Args + path: args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: BootstrapFrom defines a source to bootstrap from. + displayName: Bootstrap From + path: bootstrapFrom + - description: BackupRef is a reference to a Backup object. It has priority over S3 and Volume. + displayName: Backup Ref + path: bootstrapFrom.backupRef + - description: RestoreJob defines additional properties for the Job used to perform the Restore. + displayName: Restore Job + path: bootstrapFrom.restoreJob + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Affinity to be used in the Pod. + displayName: Affinity + path: bootstrapFrom.restoreJob.affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: bootstrapFrom.restoreJob.affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Args to be used in the Container. + displayName: Args + path: bootstrapFrom.restoreJob.args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata defines additional metadata for the bootstrap Jobs. + displayName: Metadata + path: bootstrapFrom.restoreJob.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: bootstrapFrom.restoreJob.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: bootstrapFrom.restoreJob.metadata.labels + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: bootstrapFrom.restoreJob.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: S3 defines the configuration to restore backups from a S3 compatible storage. It has priority over Volume. + displayName: S3 + path: bootstrapFrom.s3 + - description: AccessKeyIdSecretKeyRef is a reference to a Secret key containing the S3 access key id. + displayName: Access Key Id Secret Key Ref + path: bootstrapFrom.s3.accessKeyIdSecretKeyRef + - description: Bucket is the name Name of the bucket to store backups. + displayName: Bucket + path: bootstrapFrom.s3.bucket + - description: Endpoint is the S3 API endpoint without scheme. + displayName: Endpoint + path: bootstrapFrom.s3.endpoint + - description: 'Prefix indicates a folder/subfolder in the bucket. For example: mariadb/ or mariadb/backups. A trailing slash ''/'' is added if not provided.' + displayName: Prefix + path: bootstrapFrom.s3.prefix + - description: Region is the S3 region name to use. + displayName: Region + path: bootstrapFrom.s3.region + - description: AccessKeyIdSecretKeyRef is a reference to a Secret key containing the S3 secret key. + displayName: Secret Access Key Secret Key Ref + path: bootstrapFrom.s3.secretAccessKeySecretKeyRef + - description: SessionTokenSecretKeyRef is a reference to a Secret key containing the S3 session token. + displayName: Session Token Secret Key Ref + path: bootstrapFrom.s3.sessionTokenSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TLS provides the configuration required to establish TLS connections with S3. + displayName: TLS + path: bootstrapFrom.s3.tls + - description: CASecretKeyRef is a reference to a Secret key containing a CA bundle in PEM format used to establish TLS connections with S3. By default, the system trust chain will be used, but you can use this field to add more CAs to the bundle. + displayName: CASecret Key Ref + path: bootstrapFrom.s3.tls.caSecretKeyRef + - description: Enabled is a flag to enable TLS. + displayName: Enabled + path: bootstrapFrom.s3.tls.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: TargetRecoveryTime is a RFC3339 (1970-01-01T00:00:00Z) date and time that defines the point in time recovery objective. It is used to determine the closest restoration source in time. + displayName: Target Recovery Time + path: bootstrapFrom.targetRecoveryTime + - description: Volume is a Kubernetes Volume object that contains a backup. + displayName: Volume + path: bootstrapFrom.volume + - description: Command to be used in the Container. + displayName: Command + path: command + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Connection defines a template to configure the general Connection object. This Connection provides the initial User access to the initial Database. It will make use of the Service to route network traffic to all Pods. + displayName: Connection + path: connection + - description: HealthCheck to be used in the Connection. + displayName: Health Check + path: connection.healthCheck + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to perform health checks. + displayName: Interval + path: connection.healthCheck.interval + - description: RetryInterval is the interval used to perform health check retries. + displayName: Retry Interval + path: connection.healthCheck.retryInterval + - description: Params to be used in the Connection. + displayName: Params + path: connection.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port to connect to. If not provided, it defaults to the MariaDB port or to the first MaxScale listener. + displayName: Port + path: connection.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecretName to be used in the Connection. + displayName: Secret Name + path: connection.secretName + - description: SecretTemplate to be used in the Connection. + displayName: Secret Template + path: connection.secretTemplate + - description: DatabaseKey to be used in the Secret. + displayName: Database Key + path: connection.secretTemplate.databaseKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Format to be used in the Secret. + displayName: Format + path: connection.secretTemplate.format + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: HostKey to be used in the Secret. + displayName: Host Key + path: connection.secretTemplate.hostKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Key to be used in the Secret. + displayName: Key + path: connection.secretTemplate.key + - description: Metadata to be added to the Secret object. + displayName: Metadata + path: connection.secretTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: connection.secretTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: connection.secretTemplate.metadata.labels + - description: PasswordKey to be used in the Secret. + displayName: Password Key + path: connection.secretTemplate.passwordKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PortKey to be used in the Secret. + displayName: Port Key + path: connection.secretTemplate.portKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UsernameKey to be used in the Secret. + displayName: Username Key + path: connection.secretTemplate.usernameKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceName to be used in the Connection. + displayName: Service Name + path: connection.serviceName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Database is the name of the initial Database. + displayName: Database + path: database + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Env represents the environment variables to be injected in a container. + displayName: Env + path: env + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: EnvFrom represents the references (via ConfigMap and Secrets) to environment variables to be injected in the container. + displayName: Env From + path: envFrom + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Replication configures high availability via Galera. + displayName: Galera + path: galera + - description: GaleraAgent is a sidecar agent that co-operates with mariadb-operator. + displayName: Agent + path: galera.agent + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Args to be used in the Container. + displayName: Args + path: galera.agent.args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: BasicAuth to be used by the agent container + displayName: Basic Auth + path: galera.agent.basicAuth + - description: Enabled is a flag to enable BasicAuth + displayName: Enabled + path: galera.agent.basicAuth.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: PasswordSecretKeyRef to be used for basic authentication + displayName: Password Secret Key Ref + path: galera.agent.basicAuth.passwordSecretKeyRef + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: galera.agent.basicAuth.passwordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Username to be used for basic authentication + displayName: Username + path: galera.agent.basicAuth.username + - description: Command to be used in the Container. + displayName: Command + path: galera.agent.command + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Env represents the environment variables to be injected in a container. + displayName: Env + path: galera.agent.env + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: EnvFrom represents the references (via ConfigMap and Secrets) to environment variables to be injected in the container. + displayName: Env From + path: galera.agent.envFrom + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: GracefulShutdownTimeout is the time we give to the agent container in order to gracefully terminate in-flight requests. + displayName: Graceful Shutdown Timeout + path: galera.agent.gracefulShutdownTimeout + - description: Image name to be used by the MariaDB instances. The supported format is `:`. + displayName: Image + path: galera.agent.image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: galera.agent.imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - description: KubernetesAuth to be used by the agent container + displayName: Kubernetes Auth + path: galera.agent.kubernetesAuth + - description: AuthDelegatorRoleName is the name of the ClusterRoleBinding that is associated with the "system:auth-delegator" ClusterRole. It is necessary for creating TokenReview objects in order for the agent to validate the service account token. + displayName: Auth Delegator Role Name + path: galera.agent.kubernetesAuth.authDelegatorRoleName + - description: Enabled is a flag to enable KubernetesAuth + displayName: Enabled + path: galera.agent.kubernetesAuth.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: LivenessProbe to be used in the Container. + displayName: Liveness Probe + path: galera.agent.livenessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port where the agent will be listening for connections. + displayName: Port + path: galera.agent.port + - description: ReadinessProbe to be used in the Container. + displayName: Readiness Probe + path: galera.agent.readinessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: galera.agent.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: galera.agent.securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: VolumeMounts to be used in the Container. + displayName: Volume Mounts + path: galera.agent.volumeMounts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AvailableWhenDonor indicates whether a donor node should be responding to queries. It defaults to false. + displayName: Available When Donor + path: galera.availableWhenDonor + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: GaleraConfig defines storage options for the Galera configuration files. + displayName: Config + path: galera.config + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ReuseStorageVolume indicates that storage volume used by MariaDB should be reused to store the Galera configuration files. It defaults to false, which implies that a dedicated volume for the Galera configuration files is provisioned. + displayName: Reuse Storage Volume + path: galera.config.reuseStorageVolume + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: VolumeClaimTemplate is a template for the PVC that will contain the Galera configuration files shared between the InitContainer, Agent and MariaDB. + displayName: Volume Claim Template + path: galera.config.volumeClaimTemplate + - description: Metadata to be added to the PVC metadata. + displayName: Metadata + path: galera.config.volumeClaimTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: galera.config.volumeClaimTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: galera.config.volumeClaimTemplate.metadata.labels + - description: Enabled is a flag to enable Galera. + displayName: Enabled + path: galera.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: 'GaleraLibPath is a path inside the MariaDB image to the wsrep provider plugin. It is defaulted if not provided. More info: https://galeracluster.com/library/documentation/mysql-wsrep-options.html#wsrep-provider.' + displayName: Galera Lib Path + path: galera.galeraLibPath + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: InitContainer is an init container that runs in the MariaDB Pod and co-operates with mariadb-operator. + displayName: Init Container + path: galera.initContainer + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Args to be used in the Container. + displayName: Args + path: galera.initContainer.args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Command to be used in the Container. + displayName: Command + path: galera.initContainer.command + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Env represents the environment variables to be injected in a container. + displayName: Env + path: galera.initContainer.env + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: EnvFrom represents the references (via ConfigMap and Secrets) to environment variables to be injected in the container. + displayName: Env From + path: galera.initContainer.envFrom + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Image name to be used by the MariaDB instances. The supported format is `:`. + displayName: Image + path: galera.initContainer.image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: galera.initContainer.imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LivenessProbe to be used in the Container. + displayName: Liveness Probe + path: galera.initContainer.livenessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ReadinessProbe to be used in the Container. + displayName: Readiness Probe + path: galera.initContainer.readinessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: galera.initContainer.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: galera.initContainer.securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: VolumeMounts to be used in the Container. + displayName: Volume Mounts + path: galera.initContainer.volumeMounts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: InitJob defines a Job that co-operates with mariadb-operator by performing initialization tasks. + displayName: Init Job + path: galera.initJob + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata defines additional metadata for the Galera init Job. + displayName: Metadata + path: galera.initJob.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: galera.initJob.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: galera.initJob.metadata.labels + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: galera.initJob.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: Primary is the Galera configuration for the primary node. + displayName: Primary + path: galera.primary + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AutomaticFailover indicates whether the operator should automatically update PodIndex to perform an automatic primary failover. + displayName: Automatic Failover + path: galera.primary.automaticFailover + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: PodIndex is the StatefulSet index of the primary node. The user may change this field to perform a manual switchover. + displayName: Pod Index + path: galera.primary.podIndex + - description: 'ProviderOptions is map of Galera configuration parameters. More info: https://mariadb.com/kb/en/galera-cluster-system-variables/#wsrep_provider_options.' + displayName: Provider Options + path: galera.providerOptions + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: 'GaleraRecovery is the recovery process performed by the operator whenever the Galera cluster is not healthy. More info: https://galeracluster.com/library/documentation/crash-recovery.html.' + displayName: Recovery + path: galera.recovery + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ClusterBootstrapTimeout is the time limit for bootstrapping a cluster. Once this timeout is reached, the Galera recovery state is reset and a new cluster bootstrap will be attempted. + displayName: Cluster Bootstrap Timeout + path: galera.recovery.clusterBootstrapTimeout + - description: ClusterDownscaleTimeout represents the maximum duration for downscaling the cluster's StatefulSet during the recovery process. + displayName: Cluster Downscale Timeout + path: galera.recovery.clusterDownscaleTimeout + - description: ClusterHealthyTimeout represents the duration at which a Galera cluster, that consistently failed health checks, is considered unhealthy, and consequently the Galera recovery process will be initiated by the operator. + displayName: Cluster Healthy Timeout + path: galera.recovery.clusterHealthyTimeout + - description: ClusterMonitorInterval represents the interval used to monitor the Galera cluster health. + displayName: Cluster Monitor Interval + path: galera.recovery.clusterMonitorInterval + - description: ClusterUpscaleTimeout represents the maximum duration for upscaling the cluster's StatefulSet during the recovery process. + displayName: Cluster Upscale Timeout + path: galera.recovery.clusterUpscaleTimeout + - description: Enabled is a flag to enable GaleraRecovery. + displayName: Enabled + path: galera.recovery.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: 'ForceClusterBootstrapInPod allows you to manually initiate the bootstrap process in a specific Pod. IMPORTANT: Use this option only in exceptional circumstances. Not selecting the Pod with the highest sequence number may result in data loss. IMPORTANT: Ensure you unset this field after completing the bootstrap to allow the operator to choose the appropriate Pod to bootstrap from in an event of cluster recovery.' + displayName: Force Cluster Bootstrap In Pod + path: galera.recovery.forceClusterBootstrapInPod + - description: Job defines a Job that co-operates with mariadb-operator by performing the Galera cluster recovery . + displayName: Job + path: galera.recovery.job + - description: Metadata defines additional metadata for the Galera recovery Jobs. + displayName: Metadata + path: galera.recovery.job.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: galera.recovery.job.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: galera.recovery.job.metadata.labels + - description: PodAffinity indicates whether the recovery Jobs should run in the same Node as the MariaDB Pods. It defaults to true. + displayName: Pod Affinity + path: galera.recovery.job.podAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: galera.recovery.job.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: MinClusterSize is the minimum number of replicas to consider the cluster healthy. It can be either a number of replicas (1) or a percentage (50%). If Galera consistently reports less replicas than this value for the given 'ClusterHealthyTimeout' interval, a cluster recovery is iniated. It defaults to '1' replica, and it is highly recommendeded to keep this value at '1' in most cases. If set to more than one replica, the cluster recovery process may restart the healthy replicas as well. + displayName: Min Cluster Size + path: galera.recovery.minClusterSize + - description: PodRecoveryTimeout is the time limit for recevorying the sequence of a Pod during the cluster recovery. + displayName: Pod Recovery Timeout + path: galera.recovery.podRecoveryTimeout + - description: PodSyncTimeout is the time limit for a Pod to join the cluster after having performed a cluster bootstrap during the cluster recovery. + displayName: Pod Sync Timeout + path: galera.recovery.podSyncTimeout + - description: 'ReplicaThreads is the number of replica threads used to apply Galera write sets in parallel. More info: https://mariadb.com/kb/en/galera-cluster-system-variables/#wsrep_slave_threads.' + displayName: Replica Threads + path: galera.replicaThreads + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: 'SST is the Snapshot State Transfer used when new Pods join the cluster. More info: https://galeracluster.com/library/documentation/sst.html.' + displayName: SST + path: galera.sst + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Image name to be used by the MariaDB instances. The supported format is `:`. Only MariaDB official images are supported. + displayName: Image + path: image + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: imagePullSecrets + - description: InheritMetadata defines the metadata to be inherited by children resources. + displayName: Inherit Metadata + path: inheritMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: inheritMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: inheritMetadata.labels + - description: InitContainers to be used in the Pod. + displayName: Init Containers + path: initContainers + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Args to be used in the Container. + displayName: Args + path: initContainers[0].args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Command to be used in the Container. + displayName: Command + path: initContainers[0].command + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Image name to be used by the container. The supported format is `:`. + displayName: Image + path: initContainers[0].image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: initContainers[0].imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Name to be given to the container. + displayName: Name + path: initContainers[0].name + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: initContainers[0].resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: VolumeMounts to be used in the Container. + displayName: Volume Mounts + path: initContainers[0].volumeMounts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LivenessProbe to be used in the Container. + displayName: Liveness Probe + path: livenessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxScale is the MaxScale specification that defines the MaxScale resource to be used with the current MariaDB. When enabling this field, MaxScaleRef is automatically set. + displayName: Max Scale + path: maxScale + - description: Admin configures the admin REST API and GUI. + displayName: Admin + path: maxScale.admin + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: GuiEnabled indicates whether the admin GUI should be enabled. + displayName: Gui Enabled + path: maxScale.admin.guiEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Port where the admin REST API and GUI will be exposed. + displayName: Port + path: maxScale.admin.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: Auth defines the credentials required for MaxScale to connect to MariaDB. + displayName: Auth + path: maxScale.auth + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AdminPasswordSecretKeyRef is Secret key reference to the admin password to call the admin REST API. It is defaulted if not provided. + displayName: Admin Password Secret Key Ref + path: maxScale.auth.adminPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: maxScale.auth.adminPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: AdminUsername is an admin username to call the admin REST API. It is defaulted if not provided. + displayName: Admin Username + path: maxScale.auth.adminUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ClientMaxConnections defines the maximum number of connections that the client can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Client Max Connections + path: maxScale.auth.clientMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ClientPasswordSecretKeyRef is Secret key reference to the password to connect to MaxScale. It is defaulted if not provided. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Client Password Secret Key Ref + path: maxScale.auth.clientPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: maxScale.auth.clientPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: ClientUsername is the user to connect to MaxScale. It is defaulted if not provided. + displayName: Client Username + path: maxScale.auth.clientUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: DeleteDefaultAdmin determines whether the default admin user should be deleted after the initial configuration. If not provided, it defaults to true. + displayName: Delete Default Admin + path: maxScale.auth.deleteDefaultAdmin + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate defies whether the operator should generate users and grants for MaxScale to work. It only supports MariaDBs specified via spec.mariaDbRef. + displayName: Generate + path: maxScale.auth.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MetricsPasswordSecretKeyRef is Secret key reference to the metrics password to call the admib REST API. It is defaulted if metrics are enabled. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Metrics Password Secret Key Ref + path: maxScale.auth.metricsPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: maxScale.auth.metricsPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MetricsUsername is an metrics username to call the REST API. It is defaulted if metrics are enabled. + displayName: Metrics Username + path: maxScale.auth.metricsUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MonitorMaxConnections defines the maximum number of connections that the monitor can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Monitor Max Connections + path: maxScale.auth.monitorMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MonitorPasswordSecretKeyRef is Secret key reference to the password used by MaxScale monitor to connect to MariaDB server. It is defaulted if not provided. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Monitor Password Secret Key Ref + path: maxScale.auth.monitorPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: maxScale.auth.monitorPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MonitorUsername is the user used by MaxScale monitor to connect to MariaDB server. It is defaulted if not provided. + displayName: Monitor Username + path: maxScale.auth.monitorUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServerMaxConnections defines the maximum number of connections that the server can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Server Max Connections + path: maxScale.auth.serverMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServerPasswordSecretKeyRef is Secret key reference to the password used by MaxScale to connect to MariaDB server. It is defaulted if not provided. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Server Password Secret Key Ref + path: maxScale.auth.serverPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: maxScale.auth.serverPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: ServerUsername is the user used by MaxScale to connect to MariaDB server. It is defaulted if not provided. + displayName: Server Username + path: maxScale.auth.serverUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SyncMaxConnections defines the maximum number of connections that the sync can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Sync Max Connections + path: maxScale.auth.syncMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SyncPasswordSecretKeyRef is Secret key reference to the password used by MaxScale config to connect to MariaDB server. It is defaulted when HA is enabled. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Sync Password Secret Key Ref + path: maxScale.auth.syncPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: maxScale.auth.syncPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MonitoSyncUsernamerUsername is the user used by MaxScale config sync to connect to MariaDB server. It is defaulted when HA is enabled. + displayName: Sync Username + path: maxScale.auth.syncUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Config defines the MaxScale configuration. + displayName: Config + path: maxScale.config + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: 'Params is a key value pair of parameters to be used in the MaxScale static configuration file. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#global-settings.' + displayName: Params + path: maxScale.config.params + - description: Sync defines how to replicate configuration across MaxScale replicas. It is defaulted when HA is enabled. + displayName: Sync + path: maxScale.config.sync + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Database is the MariaDB logical database where the 'maxscale_config' table will be created in order to persist and synchronize config changes. If not provided, it defaults to 'mysql'. + displayName: Database + path: maxScale.config.sync.database + - description: Interval defines the config synchronization interval. It is defaulted if not provided. + displayName: Interval + path: maxScale.config.sync.interval + - description: Interval defines the config synchronization timeout. It is defaulted if not provided. + displayName: Timeout + path: maxScale.config.sync.timeout + - description: VolumeClaimTemplate provides a template to define the PVCs for storing MaxScale runtime configuration files. It is defaulted if not provided. + displayName: Volume Claim Template + path: maxScale.config.volumeClaimTemplate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the PVC metadata. + displayName: Metadata + path: maxScale.config.volumeClaimTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: maxScale.config.volumeClaimTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: maxScale.config.volumeClaimTemplate.metadata.labels + - description: Connection provides a template to define the Connection for MaxScale. + displayName: Connection + path: maxScale.connection + - description: HealthCheck to be used in the Connection. + displayName: Health Check + path: maxScale.connection.healthCheck + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to perform health checks. + displayName: Interval + path: maxScale.connection.healthCheck.interval + - description: RetryInterval is the interval used to perform health check retries. + displayName: Retry Interval + path: maxScale.connection.healthCheck.retryInterval + - description: Params to be used in the Connection. + displayName: Params + path: maxScale.connection.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port to connect to. If not provided, it defaults to the MariaDB port or to the first MaxScale listener. + displayName: Port + path: maxScale.connection.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecretName to be used in the Connection. + displayName: Secret Name + path: maxScale.connection.secretName + - description: SecretTemplate to be used in the Connection. + displayName: Secret Template + path: maxScale.connection.secretTemplate + - description: DatabaseKey to be used in the Secret. + displayName: Database Key + path: maxScale.connection.secretTemplate.databaseKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Format to be used in the Secret. + displayName: Format + path: maxScale.connection.secretTemplate.format + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: HostKey to be used in the Secret. + displayName: Host Key + path: maxScale.connection.secretTemplate.hostKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Key to be used in the Secret. + displayName: Key + path: maxScale.connection.secretTemplate.key + - description: Metadata to be added to the Secret object. + displayName: Metadata + path: maxScale.connection.secretTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: maxScale.connection.secretTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: maxScale.connection.secretTemplate.metadata.labels + - description: PasswordKey to be used in the Secret. + displayName: Password Key + path: maxScale.connection.secretTemplate.passwordKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PortKey to be used in the Secret. + displayName: Port Key + path: maxScale.connection.secretTemplate.portKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UsernameKey to be used in the Secret. + displayName: Username Key + path: maxScale.connection.secretTemplate.usernameKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceName to be used in the Connection. + displayName: Service Name + path: maxScale.connection.serviceName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Enabled is a flag to enable a MaxScale instance to be used with the current MariaDB. + displayName: Enabled + path: maxScale.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: GuiKubernetesService define a template for a Kubernetes Service object to connect to MaxScale's GUI. + displayName: Gui Kubernetes Service + path: maxScale.guiKubernetesService + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: maxScale.guiKubernetesService.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: maxScale.guiKubernetesService.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: maxScale.guiKubernetesService.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: maxScale.guiKubernetesService.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: maxScale.guiKubernetesService.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: maxScale.guiKubernetesService.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: maxScale.guiKubernetesService.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: maxScale.guiKubernetesService.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: maxScale.guiKubernetesService.type + - description: Image name to be used by the MaxScale instances. The supported format is `:`. Only MariaDB official images are supported. + displayName: Image + path: maxScale.image + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: maxScale.imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: KubernetesService defines a template for a Kubernetes Service object to connect to MaxScale. + displayName: Kubernetes Service + path: maxScale.kubernetesService + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: maxScale.kubernetesService.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: maxScale.kubernetesService.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: maxScale.kubernetesService.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: maxScale.kubernetesService.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: maxScale.kubernetesService.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: maxScale.kubernetesService.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: maxScale.kubernetesService.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: maxScale.kubernetesService.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: maxScale.kubernetesService.type + - description: Metrics configures metrics and how to scrape them. + displayName: Metrics + path: maxScale.metrics + - description: Enabled is a flag to enable Metrics + displayName: Enabled + path: maxScale.metrics.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Exporter defines the metrics exporter container. + displayName: Exporter + path: maxScale.metrics.exporter + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Affinity to be used in the Pod. + displayName: Affinity + path: maxScale.metrics.exporter.affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: maxScale.metrics.exporter.affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: 'Image name to be used as metrics exporter. The supported format is `:`. Only mysqld-exporter >= v0.15.0 is supported: https://github.com/prometheus/mysqld_exporter' + displayName: Image + path: maxScale.metrics.exporter.image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: maxScale.metrics.exporter.imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: maxScale.metrics.exporter.imagePullSecrets + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: maxScale.metrics.exporter.nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: maxScale.metrics.exporter.podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: maxScale.metrics.exporter.podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: maxScale.metrics.exporter.podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: maxScale.metrics.exporter.podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port where the exporter will be listening for connections. + displayName: Port + path: maxScale.metrics.exporter.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: maxScale.metrics.exporter.priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: maxScale.metrics.exporter.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: SecurityContext holds container-level security attributes. + displayName: Security Context + path: maxScale.metrics.exporter.securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: maxScale.metrics.exporter.tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceMonitor defines the ServiceMonior object. + displayName: Service Monitor + path: maxScale.metrics.serviceMonitor + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval for scraping metrics. + displayName: Interval + path: maxScale.metrics.serviceMonitor.interval + - description: JobLabel to add to the ServiceMonitor object. + displayName: Job Label + path: maxScale.metrics.serviceMonitor.jobLabel + - description: PrometheusRelease is the release label to add to the ServiceMonitor object. + displayName: Prometheus Release + path: maxScale.metrics.serviceMonitor.prometheusRelease + - description: ScrapeTimeout defines the timeout for scraping metrics. + displayName: Scrape Timeout + path: maxScale.metrics.serviceMonitor.scrapeTimeout + - description: Monitor monitors MariaDB server instances. + displayName: Monitor + path: maxScale.monitor + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: CooperativeMonitoring enables coordination between multiple MaxScale instances running monitors. It is defaulted when HA is enabled. + displayName: Cooperative Monitoring + path: maxScale.monitor.cooperativeMonitoring + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to monitor MariaDB servers. It is defaulted if not provided. + displayName: Interval + path: maxScale.monitor.interval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Module is the module to use to monitor MariaDB servers. It is mandatory when no MariaDB reference is provided. + displayName: Module + path: maxScale.monitor.module + - description: Name is the identifier of the monitor. It is defaulted if not provided. + displayName: Name + path: maxScale.monitor.name + - description: 'Params defines extra parameters to pass to the monitor. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-common-monitor-parameters/. Monitor specific parameter are also suported: https://mariadb.com/kb/en/mariadb-maxscale-2308-galera-monitor/#galera-monitor-optional-parameters. https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-monitor/#configuration.' + displayName: Params + path: maxScale.monitor.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: maxScale.monitor.suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodDisruptionBudget defines the budget for replica availability. + displayName: Pod Disruption Budget + path: maxScale.podDisruptionBudget + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxUnavailable defines the number of maximum unavailable Pods. + displayName: Max Unavailable + path: maxScale.podDisruptionBudget.maxUnavailable + - description: MinAvailable defines the number of minimum available Pods. + displayName: Min Available + path: maxScale.podDisruptionBudget.minAvailable + - description: Replicas indicates the number of desired instances. + displayName: Replicas + path: maxScale.replicas + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:podCount + - description: RequeueInterval is used to perform requeue reconciliations. + displayName: Requeue Interval + path: maxScale.requeueInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Services define how the traffic is forwarded to the MariaDB servers. + displayName: Services + path: maxScale.services + - description: MaxScaleListener defines how the MaxScale server will listen for connections. + displayName: Listener + path: maxScale.services[0].listener + - description: Name is the identifier of the listener. It is defaulted if not provided + displayName: Name + path: maxScale.services[0].listener.name + - description: 'Params defines extra parameters to pass to the listener. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#listener_1.' + displayName: Params + path: maxScale.services[0].listener.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port is the network port where the MaxScale server will listen. + displayName: Port + path: maxScale.services[0].listener.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: Protocol is the MaxScale protocol to use when communicating with the client. If not provided, it defaults to MariaDBProtocol. + displayName: Protocol + path: maxScale.services[0].listener.protocol + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: maxScale.services[0].listener.suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Name is the identifier of the MaxScale service. + displayName: Name + path: maxScale.services[0].name + - description: 'Params defines extra parameters to pass to the service. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#service_1. Router specific parameter are also suported: https://mariadb.com/kb/en/mariadb-maxscale-2308-readwritesplit/#configuration. https://mariadb.com/kb/en/mariadb-maxscale-2308-readconnroute/#configuration.' + displayName: Params + path: maxScale.services[0].params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Router is the type of router to use. + displayName: Router + path: maxScale.services[0].router + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: maxScale.services[0].suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UpdateStrategy defines the update strategy for the StatefulSet object. + displayName: Update Strategy + path: maxScale.updateStrategy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:updateStrategy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxScaleRef is a reference to a MaxScale resource to be used with the current MariaDB. Providing this field implies delegating high availability tasks such as primary failover to MaxScale. + displayName: Max Scale Ref + path: maxScaleRef + - description: Metrics configures metrics and how to scrape them. + displayName: Metrics + path: metrics + - description: Enabled is a flag to enable Metrics + displayName: Enabled + path: metrics.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Exporter defines the metrics exporter container. + displayName: Exporter + path: metrics.exporter + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Affinity to be used in the Pod. + displayName: Affinity + path: metrics.exporter.affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: metrics.exporter.affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: 'Image name to be used as metrics exporter. The supported format is `:`. Only mysqld-exporter >= v0.15.0 is supported: https://github.com/prometheus/mysqld_exporter' + displayName: Image + path: metrics.exporter.image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: metrics.exporter.imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: metrics.exporter.imagePullSecrets + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: metrics.exporter.nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: metrics.exporter.podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: metrics.exporter.podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: metrics.exporter.podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: metrics.exporter.podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port where the exporter will be listening for connections. + displayName: Port + path: metrics.exporter.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: metrics.exporter.priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: metrics.exporter.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: SecurityContext holds container-level security attributes. + displayName: Security Context + path: metrics.exporter.securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: metrics.exporter.tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PasswordSecretKeyRef is a reference to the password of the monitoring user used by the exporter. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Password Secret Key Ref + path: metrics.passwordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: metrics.passwordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: ServiceMonitor defines the ServiceMonior object. + displayName: Service Monitor + path: metrics.serviceMonitor + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval for scraping metrics. + displayName: Interval + path: metrics.serviceMonitor.interval + - description: JobLabel to add to the ServiceMonitor object. + displayName: Job Label + path: metrics.serviceMonitor.jobLabel + - description: PrometheusRelease is the release label to add to the ServiceMonitor object. + displayName: Prometheus Release + path: metrics.serviceMonitor.prometheusRelease + - description: ScrapeTimeout defines the timeout for scraping metrics. + displayName: Scrape Timeout + path: metrics.serviceMonitor.scrapeTimeout + - description: Username is the username of the monitoring user used by the exporter. + displayName: Username + path: metrics.username + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MyCnf allows to specify the my.cnf file mounted by Mariadb. Updating this field will trigger an update to the Mariadb resource. + displayName: My Cnf + path: myCnf + - description: MyCnfConfigMapKeyRef is a reference to the my.cnf config file provided via a ConfigMap. If not provided, it will be defaulted with a reference to a ConfigMap containing the MyCnf field. If the referred ConfigMap is labeled with "k8s.mariadb.com/watch", an update to the Mariadb resource will be triggered when the ConfigMap is updated. + displayName: My Cnf Config Map Key Ref + path: myCnfConfigMapKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PasswordHashSecretKeyRef is a reference to the password hash to be used by the initial User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password hash. + displayName: Password Hash Secret Key Ref + path: passwordHashSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PasswordPlugin is a reference to the password plugin and arguments to be used by the initial User. + displayName: Password Plugin + path: passwordPlugin + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PluginArgSecretKeyRef is a reference to the arguments to be provided to the authentication plugin for the User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin arguments. + displayName: Plugin Arg Secret Key Ref + path: passwordPlugin.pluginArgSecretKeyRef + - description: PluginNameSecretKeyRef is a reference to the authentication plugin to be used by the User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin. + displayName: Plugin Name Secret Key Ref + path: passwordPlugin.pluginNameSecretKeyRef + - description: PasswordSecretKeyRef is a reference to a Secret that contains the password to be used by the initial User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Password Secret Key Ref + path: passwordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: passwordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: PodDisruptionBudget defines the budget for replica availability. + displayName: Pod Disruption Budget + path: podDisruptionBudget + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxUnavailable defines the number of maximum unavailable Pods. + displayName: Max Unavailable + path: podDisruptionBudget.maxUnavailable + - description: MinAvailable defines the number of minimum available Pods. + displayName: Min Available + path: podDisruptionBudget.minAvailable + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port where the instances will be listening for connections. + displayName: Port + path: port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PrimaryConnection defines a template to configure the primary Connection object. This Connection provides the initial User access to the initial Database. It will make use of the PrimaryService to route network traffic to the primary Pod. + displayName: Primary Connection + path: primaryConnection + - description: HealthCheck to be used in the Connection. + displayName: Health Check + path: primaryConnection.healthCheck + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to perform health checks. + displayName: Interval + path: primaryConnection.healthCheck.interval + - description: RetryInterval is the interval used to perform health check retries. + displayName: Retry Interval + path: primaryConnection.healthCheck.retryInterval + - description: Params to be used in the Connection. + displayName: Params + path: primaryConnection.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port to connect to. If not provided, it defaults to the MariaDB port or to the first MaxScale listener. + displayName: Port + path: primaryConnection.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecretName to be used in the Connection. + displayName: Secret Name + path: primaryConnection.secretName + - description: SecretTemplate to be used in the Connection. + displayName: Secret Template + path: primaryConnection.secretTemplate + - description: DatabaseKey to be used in the Secret. + displayName: Database Key + path: primaryConnection.secretTemplate.databaseKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Format to be used in the Secret. + displayName: Format + path: primaryConnection.secretTemplate.format + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: HostKey to be used in the Secret. + displayName: Host Key + path: primaryConnection.secretTemplate.hostKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Key to be used in the Secret. + displayName: Key + path: primaryConnection.secretTemplate.key + - description: Metadata to be added to the Secret object. + displayName: Metadata + path: primaryConnection.secretTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: primaryConnection.secretTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: primaryConnection.secretTemplate.metadata.labels + - description: PasswordKey to be used in the Secret. + displayName: Password Key + path: primaryConnection.secretTemplate.passwordKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PortKey to be used in the Secret. + displayName: Port Key + path: primaryConnection.secretTemplate.portKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UsernameKey to be used in the Secret. + displayName: Username Key + path: primaryConnection.secretTemplate.usernameKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceName to be used in the Connection. + displayName: Service Name + path: primaryConnection.serviceName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PrimaryService defines a template to configure the primary Service object. The network traffic of this Service will be routed to the primary Pod. + displayName: Primary Service + path: primaryService + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: primaryService.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: primaryService.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: primaryService.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: primaryService.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: primaryService.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: primaryService.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: primaryService.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: primaryService.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: primaryService.type + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ReadinessProbe to be used in the Container. + displayName: Readiness Probe + path: readinessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Replicas indicates the number of desired instances. + displayName: Replicas + path: replicas + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:podCount + - description: disables the validation check for an odd number of replicas. + displayName: Replicas Allow Even Number + path: replicasAllowEvenNumber + - description: Replication configures high availability via replication. This feature is still in alpha, use Galera if you are looking for a more production-ready HA. + displayName: Replication + path: replication + - description: Enabled is a flag to enable Replication. + displayName: Enabled + path: replication.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Primary is the replication configuration for the primary node. + displayName: Primary + path: replication.primary + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AutomaticFailover indicates whether the operator should automatically update PodIndex to perform an automatic primary failover. + displayName: Automatic Failover + path: replication.primary.automaticFailover + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: PodIndex is the StatefulSet index of the primary node. The user may change this field to perform a manual switchover. + displayName: Pod Index + path: replication.primary.podIndex + - description: ProbesEnabled indicates to use replication specific liveness and readiness probes. This probes check that the primary can receive queries and that the replica has the replication thread running. + displayName: Probes Enabled + path: replication.probesEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ReplicaReplication is the replication configuration for the replica nodes. + displayName: Replica + path: replication.replica + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ConnectionRetries to be used when the replica connects to the primary. + displayName: Connection Retries + path: replication.replica.connectionRetries + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: ConnectionTimeout to be used when the replica connects to the primary. + displayName: Connection Timeout + path: replication.replica.connectionTimeout + - description: 'Gtid indicates which Global Transaction ID should be used when connecting a replica to the master. See: https://mariadb.com/kb/en/gtid/#using-current_pos-vs-slave_pos.' + displayName: Gtid + path: replication.replica.gtid + - description: ReplPasswordSecretKeyRef provides a reference to the Secret to use as password for the replication user. + displayName: Repl Password Secret Key Ref + path: replication.replica.replPasswordSecretKeyRef + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: replication.replica.replPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: SyncTimeout defines the timeout for a replica to be synced with the primary when performing a primary switchover. If the timeout is reached, the replica GTID will be reset and the switchover will continue. + displayName: Sync Timeout + path: replication.replica.syncTimeout + - description: 'WaitPoint defines whether the transaction should wait for ACK before committing to the storage engine. More info: https://mariadb.com/kb/en/semisynchronous-replication/#rpl_semi_sync_master_wait_point.' + displayName: Wait Point + path: replication.replica.waitPoint + - description: 'SyncBinlog indicates whether the binary log should be synchronized to the disk after every event. It trades off performance for consistency. See: https://mariadb.com/kb/en/replication-and-binary-log-system-variables/#sync_binlog.' + displayName: Sync Binlog + path: replication.syncBinlog + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: RootEmptyPassword indicates if the root password should be empty. Don't use this feature in production, it is only intended for development and test environments. + displayName: Root Empty Password + path: rootEmptyPassword + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: RootPasswordSecretKeyRef is a reference to a Secret key containing the root password. + displayName: Root Password Secret Key Ref + path: rootPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: rootPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: SecondaryConnection defines a template to configure the secondary Connection object. This Connection provides the initial User access to the initial Database. It will make use of the SecondaryService to route network traffic to the secondary Pods. + displayName: Secondary Connection + path: secondaryConnection + - description: HealthCheck to be used in the Connection. + displayName: Health Check + path: secondaryConnection.healthCheck + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to perform health checks. + displayName: Interval + path: secondaryConnection.healthCheck.interval + - description: RetryInterval is the interval used to perform health check retries. + displayName: Retry Interval + path: secondaryConnection.healthCheck.retryInterval + - description: Params to be used in the Connection. + displayName: Params + path: secondaryConnection.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port to connect to. If not provided, it defaults to the MariaDB port or to the first MaxScale listener. + displayName: Port + path: secondaryConnection.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecretName to be used in the Connection. + displayName: Secret Name + path: secondaryConnection.secretName + - description: SecretTemplate to be used in the Connection. + displayName: Secret Template + path: secondaryConnection.secretTemplate + - description: DatabaseKey to be used in the Secret. + displayName: Database Key + path: secondaryConnection.secretTemplate.databaseKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Format to be used in the Secret. + displayName: Format + path: secondaryConnection.secretTemplate.format + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: HostKey to be used in the Secret. + displayName: Host Key + path: secondaryConnection.secretTemplate.hostKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Key to be used in the Secret. + displayName: Key + path: secondaryConnection.secretTemplate.key + - description: Metadata to be added to the Secret object. + displayName: Metadata + path: secondaryConnection.secretTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: secondaryConnection.secretTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: secondaryConnection.secretTemplate.metadata.labels + - description: PasswordKey to be used in the Secret. + displayName: Password Key + path: secondaryConnection.secretTemplate.passwordKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PortKey to be used in the Secret. + displayName: Port Key + path: secondaryConnection.secretTemplate.portKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UsernameKey to be used in the Secret. + displayName: Username Key + path: secondaryConnection.secretTemplate.usernameKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceName to be used in the Connection. + displayName: Service Name + path: secondaryConnection.serviceName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecondaryService defines a template to configure the secondary Service object. The network traffic of this Service will be routed to the secondary Pods. + displayName: Secondary Service + path: secondaryService + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: secondaryService.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: secondaryService.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: secondaryService.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: secondaryService.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: secondaryService.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: secondaryService.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: secondaryService.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: secondaryService.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: secondaryService.type + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Service defines a template to configure the general Service object. The network traffic of this Service will be routed to all Pods. + displayName: Service + path: service + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: service.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: service.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: service.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: service.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: service.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: service.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: service.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: service.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: service.type + - description: ServiceAccountName is the name of the ServiceAccount to be used by the Pods. + displayName: Service Account Name + path: serviceAccountName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServicePorts is the list of additional named ports to be added to the Services created by the operator. + displayName: Service Ports + path: servicePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SidecarContainers to be used in the Pod. + displayName: Sidecar Containers + path: sidecarContainers + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Args to be used in the Container. + displayName: Args + path: sidecarContainers[0].args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Command to be used in the Container. + displayName: Command + path: sidecarContainers[0].command + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Image name to be used by the container. The supported format is `:`. + displayName: Image + path: sidecarContainers[0].image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: sidecarContainers[0].imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Name to be given to the container. + displayName: Name + path: sidecarContainers[0].name + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: sidecarContainers[0].resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: VolumeMounts to be used in the Container. + displayName: Volume Mounts + path: sidecarContainers[0].volumeMounts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Storage defines the storage options to be used for provisioning the PVCs mounted by MariaDB. + displayName: Storage + path: storage + - description: Ephemeral indicates whether to use ephemeral storage in the PVCs. It is only compatible with non HA MariaDBs. + displayName: Ephemeral + path: storage.ephemeral + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ResizeInUseVolumes indicates whether the PVCs can be resized. The 'StorageClassName' used should have 'allowVolumeExpansion' set to 'true' to allow resizing. It defaults to true. + displayName: Resize In Use Volumes + path: storage.resizeInUseVolumes + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Size of the PVCs to be mounted by MariaDB. Required if not provided in 'VolumeClaimTemplate'. It superseeds the storage size specified in 'VolumeClaimTemplate'. + displayName: Size + path: storage.size + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:text + - description: StorageClassName to be used to provision the PVCS. It superseeds the 'StorageClassName' specified in 'VolumeClaimTemplate'. If not provided, the default 'StorageClass' configured in the cluster is used. + displayName: Storage Class Name + path: storage.storageClassName + - description: VolumeClaimTemplate provides a template to define the PVCs. + displayName: Volume Claim Template + path: storage.volumeClaimTemplate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the PVC metadata. + displayName: Metadata + path: storage.volumeClaimTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: storage.volumeClaimTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: storage.volumeClaimTemplate.metadata.labels + - description: WaitForVolumeResize indicates whether to wait for the PVCs to be resized before marking the MariaDB object as ready. This will block other operations such as cluster recovery while the resize is in progress. It defaults to true. + displayName: Wait For Volume Resize + path: storage.waitForVolumeResize + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TimeZone sets the default timezone. If not provided, it defaults to SYSTEM and the timezone data is not loaded. + displayName: Time Zone + path: timeZone + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TopologySpreadConstraints to be used in the Pod. + displayName: Topology Spread Constraints + path: topologySpreadConstraints + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UpdateStrategy defines how a MariaDB resource is updated. + displayName: Update Strategy + path: updateStrategy + - description: AutoUpdateDataPlane indicates whether the Galera data-plane version (agent and init containers) should be automatically updated based on the operator version. It defaults to false. Updating the operator will trigger updates on all the MariaDB instances that have this flag set to true. Thus, it is recommended to progressively set this flag after having updated the operator. + displayName: Auto Update Data Plane + path: updateStrategy.autoUpdateDataPlane + - description: RollingUpdate defines parameters for the RollingUpdate type. + displayName: Rolling Update + path: updateStrategy.rollingUpdate + - description: Type defines the type of updates. One of `ReplicasFirstPrimaryLast`, `RollingUpdate` or `OnDelete`. If not defined, it defaults to `ReplicasFirstPrimaryLast`. + displayName: Type + path: updateStrategy.type + - description: Username is the initial username to be created by the operator once MariaDB is ready. It has all privileges on the initial database. The initial User will have ALL PRIVILEGES in the initial Database. + displayName: Username + path: username + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: VolumeMounts to be used in the Container. + displayName: Volume Mounts + path: volumeMounts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Volumes to be used in the Pod. + displayName: Volumes + path: volumes + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + statusDescriptors: + - description: Conditions for the Mariadb object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + - description: CurrentPrimary is the primary Pod. + displayName: Current Primary + path: currentPrimary + x-descriptors: + - urn:alm:descriptor:io.kubernetes:Pod + - description: CurrentPrimaryPodIndex is the primary Pod index. + displayName: Current Primary Pod Index + path: currentPrimaryPodIndex + - description: GaleraRecovery is the Galera recovery current state. + displayName: Galera Recovery + path: galeraRecovery + - description: ReplicationStatus is the replication current state for each Pod. + displayName: Replication Status + path: replicationStatus + version: v1alpha1 + - description: MaxScale is the Schema for the maxscales API. It is used to define MaxScale clusters. + displayName: Max Scale + kind: MaxScale + name: maxscales.k8s.mariadb.com + resources: + - kind: Connection + name: "" + version: v1alpha1 + - kind: Deployment + name: "" + version: v1 + - kind: Event + name: "" + version: v1 + - kind: Grant + name: "" + version: v1alpha1 + - kind: MaxScale + name: "" + version: v1alpha1 + - kind: PodDisruptionBudget + name: "" + version: v1 + - kind: Secret + name: "" + version: v1 + - kind: Service + name: "" + version: v1 + - kind: ServiceAccount + name: "" + version: v1 + - kind: StatefulSet + name: "" + version: v1 + - kind: User + name: "" + version: v1alpha1 + specDescriptors: + - description: Admin configures the admin REST API and GUI. + displayName: Admin + path: admin + - description: GuiEnabled indicates whether the admin GUI should be enabled. + displayName: Gui Enabled + path: admin.guiEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Port where the admin REST API and GUI will be exposed. + displayName: Port + path: admin.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: Affinity to be used in the Pod. + displayName: Affinity + path: affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Args to be used in the Container. + displayName: Args + path: args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Auth defines the credentials required for MaxScale to connect to MariaDB. + displayName: Auth + path: auth + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AdminPasswordSecretKeyRef is Secret key reference to the admin password to call the admin REST API. It is defaulted if not provided. + displayName: Admin Password Secret Key Ref + path: auth.adminPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: auth.adminPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: AdminUsername is an admin username to call the admin REST API. It is defaulted if not provided. + displayName: Admin Username + path: auth.adminUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ClientMaxConnections defines the maximum number of connections that the client can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Client Max Connections + path: auth.clientMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ClientPasswordSecretKeyRef is Secret key reference to the password to connect to MaxScale. It is defaulted if not provided. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Client Password Secret Key Ref + path: auth.clientPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: auth.clientPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: ClientUsername is the user to connect to MaxScale. It is defaulted if not provided. + displayName: Client Username + path: auth.clientUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: DeleteDefaultAdmin determines whether the default admin user should be deleted after the initial configuration. If not provided, it defaults to true. + displayName: Delete Default Admin + path: auth.deleteDefaultAdmin + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate defies whether the operator should generate users and grants for MaxScale to work. It only supports MariaDBs specified via spec.mariaDbRef. + displayName: Generate + path: auth.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MetricsPasswordSecretKeyRef is Secret key reference to the metrics password to call the admib REST API. It is defaulted if metrics are enabled. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Metrics Password Secret Key Ref + path: auth.metricsPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: auth.metricsPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MetricsUsername is an metrics username to call the REST API. It is defaulted if metrics are enabled. + displayName: Metrics Username + path: auth.metricsUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MonitorMaxConnections defines the maximum number of connections that the monitor can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Monitor Max Connections + path: auth.monitorMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MonitorPasswordSecretKeyRef is Secret key reference to the password used by MaxScale monitor to connect to MariaDB server. It is defaulted if not provided. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Monitor Password Secret Key Ref + path: auth.monitorPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: auth.monitorPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MonitorUsername is the user used by MaxScale monitor to connect to MariaDB server. It is defaulted if not provided. + displayName: Monitor Username + path: auth.monitorUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServerMaxConnections defines the maximum number of connections that the server can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Server Max Connections + path: auth.serverMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServerPasswordSecretKeyRef is Secret key reference to the password used by MaxScale to connect to MariaDB server. It is defaulted if not provided. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Server Password Secret Key Ref + path: auth.serverPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: auth.serverPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: ServerUsername is the user used by MaxScale to connect to MariaDB server. It is defaulted if not provided. + displayName: Server Username + path: auth.serverUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SyncMaxConnections defines the maximum number of connections that the sync can establish. If HA is enabled, make sure to increase this value, as more MaxScale replicas implies more connections. It defaults to 30 times the number of MaxScale replicas. + displayName: Sync Max Connections + path: auth.syncMaxConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SyncPasswordSecretKeyRef is Secret key reference to the password used by MaxScale config to connect to MariaDB server. It is defaulted when HA is enabled. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Sync Password Secret Key Ref + path: auth.syncPasswordSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Generate indicates whether the Secret should be generated if the Secret referenced is not present. + displayName: Generate + path: auth.syncPasswordSecretKeyRef.generate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: MonitoSyncUsernamerUsername is the user used by MaxScale config sync to connect to MariaDB server. It is defaulted when HA is enabled. + displayName: Sync Username + path: auth.syncUsername + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Command to be used in the Container. + displayName: Command + path: command + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Config defines the MaxScale configuration. + displayName: Config + path: config + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: 'Params is a key value pair of parameters to be used in the MaxScale static configuration file. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#global-settings.' + displayName: Params + path: config.params + - description: Sync defines how to replicate configuration across MaxScale replicas. It is defaulted when HA is enabled. + displayName: Sync + path: config.sync + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Database is the MariaDB logical database where the 'maxscale_config' table will be created in order to persist and synchronize config changes. If not provided, it defaults to 'mysql'. + displayName: Database + path: config.sync.database + - description: Interval defines the config synchronization interval. It is defaulted if not provided. + displayName: Interval + path: config.sync.interval + - description: Interval defines the config synchronization timeout. It is defaulted if not provided. + displayName: Timeout + path: config.sync.timeout + - description: VolumeClaimTemplate provides a template to define the PVCs for storing MaxScale runtime configuration files. It is defaulted if not provided. + displayName: Volume Claim Template + path: config.volumeClaimTemplate + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the PVC metadata. + displayName: Metadata + path: config.volumeClaimTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: config.volumeClaimTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: config.volumeClaimTemplate.metadata.labels + - description: Connection provides a template to define the Connection for MaxScale. + displayName: Connection + path: connection + - description: HealthCheck to be used in the Connection. + displayName: Health Check + path: connection.healthCheck + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to perform health checks. + displayName: Interval + path: connection.healthCheck.interval + - description: RetryInterval is the interval used to perform health check retries. + displayName: Retry Interval + path: connection.healthCheck.retryInterval + - description: Params to be used in the Connection. + displayName: Params + path: connection.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port to connect to. If not provided, it defaults to the MariaDB port or to the first MaxScale listener. + displayName: Port + path: connection.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecretName to be used in the Connection. + displayName: Secret Name + path: connection.secretName + - description: SecretTemplate to be used in the Connection. + displayName: Secret Template + path: connection.secretTemplate + - description: DatabaseKey to be used in the Secret. + displayName: Database Key + path: connection.secretTemplate.databaseKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Format to be used in the Secret. + displayName: Format + path: connection.secretTemplate.format + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: HostKey to be used in the Secret. + displayName: Host Key + path: connection.secretTemplate.hostKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Key to be used in the Secret. + displayName: Key + path: connection.secretTemplate.key + - description: Metadata to be added to the Secret object. + displayName: Metadata + path: connection.secretTemplate.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: connection.secretTemplate.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: connection.secretTemplate.metadata.labels + - description: PasswordKey to be used in the Secret. + displayName: Password Key + path: connection.secretTemplate.passwordKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PortKey to be used in the Secret. + displayName: Port Key + path: connection.secretTemplate.portKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UsernameKey to be used in the Secret. + displayName: Username Key + path: connection.secretTemplate.usernameKey + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceName to be used in the Connection. + displayName: Service Name + path: connection.serviceName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Env represents the environment variables to be injected in a container. + displayName: Env + path: env + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: EnvFrom represents the references (via ConfigMap and Secrets) to environment variables to be injected in the container. + displayName: Env From + path: envFrom + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: GuiKubernetesService defines a template for a Kubernetes Service object to connect to MaxScale's GUI. + displayName: Gui Kubernetes Service + path: guiKubernetesService + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: guiKubernetesService.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: guiKubernetesService.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: guiKubernetesService.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: guiKubernetesService.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: guiKubernetesService.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: guiKubernetesService.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: guiKubernetesService.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: guiKubernetesService.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: guiKubernetesService.type + - description: Image name to be used by the MaxScale instances. The supported format is `:`. Only MaxScale official images are supported. + displayName: Image + path: image + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: imagePullSecrets + - description: InheritMetadata defines the metadata to be inherited by children resources. + displayName: Inherit Metadata + path: inheritMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: inheritMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: inheritMetadata.labels + - description: KubernetesService defines a template for a Kubernetes Service object to connect to MaxScale. + displayName: Kubernetes Service + path: kubernetesService + - description: AllocateLoadBalancerNodePorts Service field. + displayName: Allocate Load Balancer Node Ports + path: kubernetesService.allocateLoadBalancerNodePorts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ExternalTrafficPolicy Service field. + displayName: External Traffic Policy + path: kubernetesService.externalTrafficPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerIP Service field. + displayName: Load Balancer IP + path: kubernetesService.loadBalancerIP + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: LoadBalancerSourceRanges Service field. + displayName: Load Balancer Source Ranges + path: kubernetesService.loadBalancerSourceRanges + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metadata to be added to the Service metadata. + displayName: Metadata + path: kubernetesService.metadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: kubernetesService.metadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: kubernetesService.metadata.labels + - description: SessionAffinity Service field. + displayName: Session Affinity + path: kubernetesService.sessionAffinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Type is the Service type. One of `ClusterIP`, `NodePort` or `LoadBalancer`. If not defined, it defaults to `ClusterIP`. + displayName: Type + path: kubernetesService.type + - description: LivenessProbe to be used in the Container. + displayName: Liveness Probe + path: livenessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MariaDBRef is a reference to the MariaDB that MaxScale points to. It is used to initialize the servers field. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Metrics configures metrics and how to scrape them. + displayName: Metrics + path: metrics + - description: Enabled is a flag to enable Metrics + displayName: Enabled + path: metrics.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Exporter defines the metrics exporter container. + displayName: Exporter + path: metrics.exporter + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Affinity to be used in the Pod. + displayName: Affinity + path: metrics.exporter.affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: metrics.exporter.affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: 'Image name to be used as metrics exporter. The supported format is `:`. Only mysqld-exporter >= v0.15.0 is supported: https://github.com/prometheus/mysqld_exporter' + displayName: Image + path: metrics.exporter.image + - description: ImagePullPolicy is the image pull policy. One of `Always`, `Never` or `IfNotPresent`. If not defined, it defaults to `IfNotPresent`. + displayName: Image Pull Policy + path: metrics.exporter.imagePullPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:imagePullPolicy + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: metrics.exporter.imagePullSecrets + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: metrics.exporter.nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: metrics.exporter.podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: metrics.exporter.podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: metrics.exporter.podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: metrics.exporter.podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port where the exporter will be listening for connections. + displayName: Port + path: metrics.exporter.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: metrics.exporter.priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: metrics.exporter.resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: SecurityContext holds container-level security attributes. + displayName: Security Context + path: metrics.exporter.securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: metrics.exporter.tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceMonitor defines the ServiceMonior object. + displayName: Service Monitor + path: metrics.serviceMonitor + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval for scraping metrics. + displayName: Interval + path: metrics.serviceMonitor.interval + - description: JobLabel to add to the ServiceMonitor object. + displayName: Job Label + path: metrics.serviceMonitor.jobLabel + - description: PrometheusRelease is the release label to add to the ServiceMonitor object. + displayName: Prometheus Release + path: metrics.serviceMonitor.prometheusRelease + - description: ScrapeTimeout defines the timeout for scraping metrics. + displayName: Scrape Timeout + path: metrics.serviceMonitor.scrapeTimeout + - description: Monitor monitors MariaDB server instances. It is required if 'spec.mariaDbRef' is not provided. + displayName: Monitor + path: monitor + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: CooperativeMonitoring enables coordination between multiple MaxScale instances running monitors. It is defaulted when HA is enabled. + displayName: Cooperative Monitoring + path: monitor.cooperativeMonitoring + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Interval used to monitor MariaDB servers. It is defaulted if not provided. + displayName: Interval + path: monitor.interval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Module is the module to use to monitor MariaDB servers. It is mandatory when no MariaDB reference is provided. + displayName: Module + path: monitor.module + - description: Name is the identifier of the monitor. It is defaulted if not provided. + displayName: Name + path: monitor.name + - description: 'Params defines extra parameters to pass to the monitor. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-common-monitor-parameters/. Monitor specific parameter are also suported: https://mariadb.com/kb/en/mariadb-maxscale-2308-galera-monitor/#galera-monitor-optional-parameters. https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-monitor/#configuration.' + displayName: Params + path: monitor.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: monitor.suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodDisruptionBudget defines the budget for replica availability. + displayName: Pod Disruption Budget + path: podDisruptionBudget + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxUnavailable defines the number of maximum unavailable Pods. + displayName: Max Unavailable + path: podDisruptionBudget.maxUnavailable + - description: MinAvailable defines the number of minimum available Pods. + displayName: Min Available + path: podDisruptionBudget.minAvailable + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ReadinessProbe to be used in the Container. + displayName: Readiness Probe + path: readinessProbe + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Replicas indicates the number of desired instances. + displayName: Replicas + path: replicas + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:podCount + - description: RequeueInterval is used to perform requeue reconciliations. If not defined, it defaults to 10s. + displayName: Requeue Interval + path: requeueInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Servers are the MariaDB servers to forward traffic to. It is required if 'spec.mariaDbRef' is not provided. + displayName: Servers + path: servers + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Address is the network address of the MariaDB server. + displayName: Address + path: servers[0].address + - description: Maintenance indicates whether the server is in maintenance mode. + displayName: Maintenance + path: servers[0].maintenance + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Name is the identifier of the MariaDB server. + displayName: Name + path: servers[0].name + - description: 'Params defines extra parameters to pass to the server. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#server_1.' + displayName: Params + path: servers[0].params + - description: Port is the network port of the MariaDB server. If not provided, it defaults to 3306. + displayName: Port + path: servers[0].port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: Protocol is the MaxScale protocol to use when communicating with this MariaDB server. If not provided, it defaults to MariaDBBackend. + displayName: Protocol + path: servers[0].protocol + - description: ServiceAccountName is the name of the ServiceAccount to be used by the Pods. + displayName: Service Account Name + path: serviceAccountName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Services define how the traffic is forwarded to the MariaDB servers. It is defaulted if not provided. + displayName: Services + path: services + - description: MaxScaleListener defines how the MaxScale server will listen for connections. + displayName: Listener + path: services[0].listener + - description: Name is the identifier of the listener. It is defaulted if not provided + displayName: Name + path: services[0].listener.name + - description: 'Params defines extra parameters to pass to the listener. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#listener_1.' + displayName: Params + path: services[0].listener.params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Port is the network port where the MaxScale server will listen. + displayName: Port + path: services[0].listener.port + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: Protocol is the MaxScale protocol to use when communicating with the client. If not provided, it defaults to MariaDBProtocol. + displayName: Protocol + path: services[0].listener.protocol + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: services[0].listener.suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Name is the identifier of the MaxScale service. + displayName: Name + path: services[0].name + - description: 'Params defines extra parameters to pass to the service. Any parameter supported by MaxScale may be specified here. See reference: https://mariadb.com/kb/en/mariadb-maxscale-2308-mariadb-maxscale-configuration-guide/#service_1. Router specific parameter are also suported: https://mariadb.com/kb/en/mariadb-maxscale-2308-readwritesplit/#configuration. https://mariadb.com/kb/en/mariadb-maxscale-2308-readconnroute/#configuration.' + displayName: Params + path: services[0].params + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Router is the type of router to use. + displayName: Router + path: services[0].router + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: services[0].suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Suspend indicates whether the current resource should be suspended or not. This can be useful for maintenance, as disabling the reconciliation prevents the operator from interfering with user operations during maintenance activities. + displayName: Suspend + path: suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TopologySpreadConstraints to be used in the Pod. + displayName: Topology Spread Constraints + path: topologySpreadConstraints + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UpdateStrategy defines the update strategy for the StatefulSet object. + displayName: Update Strategy + path: updateStrategy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:updateStrategy + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: VolumeMounts to be used in the Container. + displayName: Volume Mounts + path: volumeMounts + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + statusDescriptors: + - description: Conditions for the MaxScale object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + - description: ConfigSync is the state of config sync. + displayName: Config Sync + path: configSync + - description: Listeners is the state of the listeners in the MaxScale API. + displayName: Listeners + path: listeners + - description: Monitor is the state of the monitor in the MaxScale API. + displayName: Monitor + path: monitor + - description: PrimaryServer is the primary server in the MaxScale API. + displayName: Primary Server + path: primaryServer + - description: Replicas indicates the number of current instances. + displayName: Replicas + path: replicas + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:podCount + - description: Servers is the state of the servers in the MaxScale API. + displayName: Servers + path: servers + - description: Services is the state of the services in the MaxScale API. + displayName: Services + path: services + version: v1alpha1 + - description: Restore is the Schema for the restores API. It is used to define restore jobs and its restoration source. + displayName: Restore + kind: Restore + name: restores.k8s.mariadb.com + resources: + - kind: Job + name: "" + version: v1 + - kind: Restore + name: "" + version: v1alpha1 + - kind: ServiceAccount + name: "" + version: v1 + specDescriptors: + - description: Affinity to be used in the Pod. + displayName: Affinity + path: affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Args to be used in the Container. + displayName: Args + path: args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: BackoffLimit defines the maximum number of attempts to successfully perform a Backup. + displayName: Backoff Limit + path: backoffLimit + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: BackupRef is a reference to a Backup object. It has priority over S3 and Volume. + displayName: Backup Ref + path: backupRef + - description: 'Database defines the logical database to be restored. If not provided, all databases available in the backup are restored. IMPORTANT: The database must previously exist.' + displayName: Database + path: database + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: imagePullSecrets + - description: InheritMetadata defines the metadata to be inherited by children resources. + displayName: Inherit Metadata + path: inheritMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: inheritMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: inheritMetadata.labels + - description: LogLevel to be used n the Backup Job. It defaults to 'info'. + displayName: Log Level + path: logLevel + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MariaDBRef is a reference to a MariaDB object. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: RestartPolicy to be added to the Backup Job. + displayName: Restart Policy + path: restartPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: S3 defines the configuration to restore backups from a S3 compatible storage. It has priority over Volume. + displayName: S3 + path: s3 + - description: AccessKeyIdSecretKeyRef is a reference to a Secret key containing the S3 access key id. + displayName: Access Key Id Secret Key Ref + path: s3.accessKeyIdSecretKeyRef + - description: Bucket is the name Name of the bucket to store backups. + displayName: Bucket + path: s3.bucket + - description: Endpoint is the S3 API endpoint without scheme. + displayName: Endpoint + path: s3.endpoint + - description: 'Prefix indicates a folder/subfolder in the bucket. For example: mariadb/ or mariadb/backups. A trailing slash ''/'' is added if not provided.' + displayName: Prefix + path: s3.prefix + - description: Region is the S3 region name to use. + displayName: Region + path: s3.region + - description: AccessKeyIdSecretKeyRef is a reference to a Secret key containing the S3 secret key. + displayName: Secret Access Key Secret Key Ref + path: s3.secretAccessKeySecretKeyRef + - description: SessionTokenSecretKeyRef is a reference to a Secret key containing the S3 session token. + displayName: Session Token Secret Key Ref + path: s3.sessionTokenSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TLS provides the configuration required to establish TLS connections with S3. + displayName: TLS + path: s3.tls + - description: CASecretKeyRef is a reference to a Secret key containing a CA bundle in PEM format used to establish TLS connections with S3. By default, the system trust chain will be used, but you can use this field to add more CAs to the bundle. + displayName: CASecret Key Ref + path: s3.tls.caSecretKeyRef + - description: Enabled is a flag to enable TLS. + displayName: Enabled + path: s3.tls.enabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceAccountName is the name of the ServiceAccount to be used by the Pods. + displayName: Service Account Name + path: serviceAccountName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: TargetRecoveryTime is a RFC3339 (1970-01-01T00:00:00Z) date and time that defines the point in time recovery objective. It is used to determine the closest restoration source in time. + displayName: Target Recovery Time + path: targetRecoveryTime + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Volume is a Kubernetes Volume object that contains a backup. + displayName: Volume + path: volume + statusDescriptors: + - description: Conditions for the Restore object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + - description: SqlJob is the Schema for the sqljobs API. It is used to run sql scripts as jobs. + displayName: Sql Job + kind: SqlJob + name: sqljobs.k8s.mariadb.com + resources: + - kind: ConfigMap + name: "" + version: v1 + - kind: CronJob + name: "" + version: v1 + - kind: Job + name: "" + version: v1 + - kind: ServiceAccount + name: "" + version: v1 + - kind: SqlJob + name: "" + version: v1alpha1 + specDescriptors: + - description: Affinity to be used in the Pod. + displayName: Affinity + path: affinity + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: AntiAffinityEnabled configures PodAntiAffinity so each Pod is scheduled in a different Node, enabling HA. Make sure you have at least as many Nodes available as the replicas to not end up with unscheduled Pods. + displayName: Anti Affinity Enabled + path: affinity.antiAffinityEnabled + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - description: Args to be used in the Container. + displayName: Args + path: args + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: BackoffLimit defines the maximum number of attempts to successfully execute a SqlJob. + displayName: Backoff Limit + path: backoffLimit + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Username to be used when executing the SqlJob. + displayName: Database + path: database + - description: DependsOn defines dependencies with other SqlJob objectecs. + displayName: Depends On + path: dependsOn + - description: FailedJobsHistoryLimit defines the maximum number of failed Jobs to be displayed. + displayName: Failed Jobs History Limit + path: failedJobsHistoryLimit + - description: ImagePullSecrets is the list of pull Secrets to be used to pull the image. + displayName: Image Pull Secrets + path: imagePullSecrets + - description: InheritMetadata defines the metadata to be inherited by children resources. + displayName: Inherit Metadata + path: inheritMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: inheritMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: inheritMetadata.labels + - description: MariaDBRef is a reference to a MariaDB object. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: NodeSelector to be used in the Pod. + displayName: Node Selector + path: nodeSelector + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: UserPasswordSecretKeyRef is a reference to the impersonated user's password to be used when executing the SqlJob. + displayName: Password Secret Key Ref + path: passwordSecretKeyRef + - description: PodMetadata defines extra metadata for the Pod. + displayName: Pod Metadata + path: podMetadata + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Annotations to be added to children resources. + displayName: Annotations + path: podMetadata.annotations + - description: Labels to be added to children resources. + displayName: Labels + path: podMetadata.labels + - description: SecurityContext holds pod-level security attributes and common container settings. + displayName: Pod Security Context + path: podSecurityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PriorityClassName to be used in the Pod. + displayName: Priority Class Name + path: priorityClassName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Resouces describes the compute resource requirements. + displayName: Resources + path: resources + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:resourceRequirements + - description: RestartPolicy to be added to the SqlJob Pod. + displayName: Restart Policy + path: restartPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Schedule defines when the SqlJob will be executed. + displayName: Schedule + path: schedule + - description: Cron is a cron expression that defines the schedule. + displayName: Cron + path: schedule.cron + - description: Suspend defines whether the schedule is active or not. + displayName: Suspend + path: schedule.suspend + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SecurityContext holds security configuration that will be applied to a container. + displayName: Security Context + path: securityContext + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: ServiceAccountName is the name of the ServiceAccount to be used by the Pods. + displayName: Service Account Name + path: serviceAccountName + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Sql is the script to be executed by the SqlJob. + displayName: Sql + path: sql + - description: SqlConfigMapKeyRef is a reference to a ConfigMap containing the Sql script. It is defaulted to a ConfigMap with the contents of the Sql field. + displayName: Sql Config Map Key Ref + path: sqlConfigMapKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: SuccessfulJobsHistoryLimit defines the maximum number of successful Jobs to be displayed. + displayName: Successful Jobs History Limit + path: successfulJobsHistoryLimit + - description: TimeZone defines the timezone associated with the cron expression. + displayName: Time Zone + path: timeZone + - description: Tolerations to be used in the Pod. + displayName: Tolerations + path: tolerations + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Username to be impersonated when executing the SqlJob. + displayName: Username + path: username + statusDescriptors: + - description: Conditions for the SqlJob object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + - description: User is the Schema for the users API. It is used to define grants as if you were running a 'CREATE USER' statement. + displayName: User + kind: User + name: users.k8s.mariadb.com + resources: + - kind: User + name: "" + version: v1alpha1 + specDescriptors: + - description: CleanupPolicy defines the behavior for cleaning up a SQL resource. + displayName: Cleanup Policy + path: cleanupPolicy + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: Host related to the User. + displayName: Host + path: host + - description: MariaDBRef is a reference to a MariaDB object. + displayName: Maria DBRef + path: mariaDbRef + - description: WaitForIt indicates whether the controller using this reference should wait for MariaDB to be ready. + displayName: Wait For It + path: mariaDbRef.waitForIt + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:booleanSwitch + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: MaxUserConnections defines the maximum number of simultaneous connections that the User can establish. + displayName: Max User Connections + path: maxUserConnections + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:number + - description: Name overrides the default name provided by metadata.name. + displayName: Name + path: name + - description: PasswordHashSecretKeyRef is a reference to the password hash to be used by the User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password hash. + displayName: Password Hash Secret Key Ref + path: passwordHashSecretKeyRef + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PasswordPlugin is a reference to the password plugin and arguments to be used by the User. + displayName: Password Plugin + path: passwordPlugin + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: PluginArgSecretKeyRef is a reference to the arguments to be provided to the authentication plugin for the User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin arguments. + displayName: Plugin Arg Secret Key Ref + path: passwordPlugin.pluginArgSecretKeyRef + - description: PluginNameSecretKeyRef is a reference to the authentication plugin to be used by the User. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the authentication plugin. + displayName: Plugin Name Secret Key Ref + path: passwordPlugin.pluginNameSecretKeyRef + - description: PasswordSecretKeyRef is a reference to the password to be used by the User. If not provided, the account will be locked and the password will expire. If the referred Secret is labeled with "k8s.mariadb.com/watch", updates may be performed to the Secret in order to update the password. + displayName: Password Secret Key Ref + path: passwordSecretKeyRef + - description: RequeueInterval is used to perform requeue reconciliations. + displayName: Requeue Interval + path: requeueInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + - description: RetryInterval is the interval used to perform retries. + displayName: Retry Interval + path: retryInterval + x-descriptors: + - urn:alm:descriptor:com.tectonic.ui:advanced + statusDescriptors: + - description: Conditions for the User object. + displayName: Conditions + path: conditions + x-descriptors: + - urn:alm:descriptor:io.kubernetes.conditions + version: v1alpha1 + description: "Run and Operate MariaDB and MaxScale on Openshift declaratively, versus using manual commands to:\n- Provision & Configure MariaDB\n- Bootstrap from backup, S3, PVCs, K8s Volumes\n- Manage users, grants, logical DBs, client connections\n- Orchestrate / schedule SQL scripts\n- Basic HA with Primary/Replica\n- Enhanced HA with Galera Clusters \n- Advanced HA with MaxScale\n- Cluster aware rolling update\n- Storage Volume Resizing\n- Backup & Restore\n- Monitor with Prometheus Metrics \n- OpenShift Certified\n\nLearn more about [MariaDB Operator](https://github.com/mariadb-operator/mariadb-operator) on GitHub and join the [community slack](https://r.mariadb.com/join-community-slack) today!\n" + displayName: MariaDB Operator Enterprise + icon: + - base64data: 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 + mediatype: image/png + install: + spec: + clusterPermissions: + - rules: + - apiGroups: + - "" + resources: + - configmaps + verbs: + - create + - delete + - get + - list + - patch + - watch + - apiGroups: + - "" + resources: + - endpoints + - endpoints/restricted + verbs: + - create + - get + - list + - patch + - watch + - apiGroups: + - "" + resources: + - events + - secrets + - serviceaccounts + - services + verbs: + - create + - list + - patch + - watch + - apiGroups: + - "" + resources: + - persistentvolumeclaims + verbs: + - create + - deletecollection + - list + - patch + - watch + - apiGroups: + - "" + resources: + - pods + verbs: + - delete + - get + - list + - patch + - watch + - apiGroups: + - "" + resources: + - pods/log + verbs: + - get + - apiGroups: + - apps + resources: + - deployments + verbs: + - create + - list + - patch + - watch + - apiGroups: + - apps + resources: + - statefulsets + verbs: + - create + - delete + - get + - list + - patch + - watch + - apiGroups: + - authentication.k8s.io + resources: + - tokenreviews + verbs: + - create + - apiGroups: + - authorization.k8s.io + resources: + - subjectaccessreviews + verbs: + - create + - apiGroups: + - batch + resources: + - cronjobs + verbs: + - create + - list + - patch + - watch + - apiGroups: + - batch + resources: + - jobs + verbs: + - create + - delete + - list + - patch + - watch + - apiGroups: + - k8s.mariadb.com + resources: + - backups + - connections + - databases + - grants + - mariadbs + - maxscales + - restores + - sqljobs + - users + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.mariadb.com + resources: + - backups/finalizers + - connections/finalizers + - databases/finalizers + - grants/finalizers + - mariadbs/finalizers + - maxscales/finalizers + - restores/finalizers + - sqljobs/finalizers + - users/finalizers + verbs: + - update + - apiGroups: + - k8s.mariadb.com + resources: + - backups/status + - connections/status + - databases/status + - grants/status + - mariadbs/status + - maxscales/status + - restores/status + - sqljobs/status + - users/status + verbs: + - get + - patch + - update + - apiGroups: + - k8s.mariadb.com + resources: + - maxscale + verbs: + - create + - list + - patch + - watch + - apiGroups: + - monitoring.coreos.com + resources: + - servicemonitors + verbs: + - create + - list + - patch + - watch + - apiGroups: + - policy + resources: + - poddisruptionbudgets + verbs: + - create + - list + - patch + - watch + - apiGroups: + - rbac.authorization.k8s.io + resources: + - clusterrolebindings + - rolebindings + - roles + verbs: + - create + - list + - patch + - watch + serviceAccountName: mariadb-operator-manager + deployments: + - label: + app.kubernetes.io/component: manager + app.kubernetes.io/created-by: mariadb-operator + app.kubernetes.io/instance: controller-manager + app.kubernetes.io/managed-by: kustomize + app.kubernetes.io/name: deployment + app.kubernetes.io/part-of: mariadb-operator + control-plane: controller-manager + name: mariadb-operator-controller-manager + spec: + replicas: 1 + selector: + matchLabels: + control-plane: mariadb-operator-controller-manager + strategy: {} + template: + metadata: + annotations: + kubectl.kubernetes.io/default-container: mariadb-operator-enterprise + labels: + control-plane: mariadb-operator-controller-manager + spec: + containers: + - args: + - --leader-elect + - --webhook + - --webhook-cert-dir=/tmp/k8s-webhook-server/serving-certs + - --webhook-port=9443 + env: + - name: RELATED_IMAGE_MARIADB + value: docker-registry.mariadb.com/enterprise-server@sha256:d2cf32def245daba522c09ae10c74eb8c1e509062be5ec2ebe705dc4b3fd78c7 + - name: RELATED_IMAGE_MAXSCALE + value: docker-registry2.mariadb.com/mariadb/maxscale@sha256:2723e13f72b0c830e0e03ca388c6557b9cfd057a0af7b030e588e4a951188dd1 + - name: RELATED_IMAGE_EXPORTER + value: docker-registry2.mariadb.com/mariadb/mariadb-prometheus-exporter-ubi@sha256:c9eaabedbc111f9a90aac48798f45cbf953f2d6cf9e98c823a9e39f52ddb459b + - name: RELATED_IMAGE_EXPORTER_MAXSCALE + value: docker-registry2.mariadb.com/mariadb/maxscale-prometheus-exporter-ubi@sha256:9312d49ce245feebba5cc2788a0e5c8b6982f9f6eefe02c24b0901592274ef9f + - name: MARIADB_OPERATOR_IMAGE + value: docker-registry2.mariadb.com/mariadb/mariadb-operator-enterprise@sha256:01947a1743ef6f07fe2dcb43790985cf94acc53f845730014903a841dd17f2f4 + - name: MARIADB_GALERA_LIB_PATH + value: /usr/lib64/galera/libgalera_smm.so + - name: MARIADB_ENTRYPOINT_VERSION + value: "10.6" + - name: WATCH_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.annotations['olm.targetNamespaces'] + - name: MARIADB_OPERATOR_NAME + valueFrom: + fieldRef: + fieldPath: spec.serviceAccountName + - name: MARIADB_OPERATOR_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace + - name: MARIADB_OPERATOR_SA_PATH + value: /var/run/secrets/kubernetes.io/serviceaccount/token + image: docker-registry2.mariadb.com/mariadb/mariadb-operator-enterprise@sha256:01947a1743ef6f07fe2dcb43790985cf94acc53f845730014903a841dd17f2f4 + livenessProbe: + httpGet: + path: /healthz + port: 8081 + initialDelaySeconds: 15 + periodSeconds: 20 + name: mariadb-operator-enterprise + ports: + - containerPort: 9443 + name: https + protocol: TCP + - containerPort: 8080 + name: metrics + protocol: TCP + - containerPort: 8081 + name: health + protocol: TCP + readinessProbe: + httpGet: + path: /readyz + port: 8081 + initialDelaySeconds: 5 + periodSeconds: 10 + resources: + limits: + memory: 4Gi + requests: + cpu: 100m + memory: 128Mi + securityContext: + allowPrivilegeEscalation: false + capabilities: + drop: + - ALL + securityContext: + runAsNonRoot: true + serviceAccountName: mariadb-operator-manager + terminationGracePeriodSeconds: 10 + permissions: + - rules: + - apiGroups: + - "" + resources: + - configmaps + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - "" + resources: + - events + verbs: + - create + - patch + serviceAccountName: mariadb-operator-manager + strategy: deployment + installModes: + - supported: true + type: OwnNamespace + - supported: true + type: SingleNamespace + - supported: true + type: MultiNamespace + - supported: true + type: AllNamespaces + keywords: + - mariadb + - mysql + - operator + - mariadb-operator + - database + - maxscale + links: + - name: MariaDB + url: https://mariadb.com/products/enterprise/ + - name: MaxScale + url: https://mariadb.com/products/maxscale/ + - name: Documentation + url: https://github.com/mariadb-operator/mariadb-operator/tree/main/docs + maintainers: + - email: martin.montes@mariadb.com + name: Martin Montes + - email: pieter.humphrey@mariadb.com + name: Pieter Humphrey + maturity: beta + minKubeVersion: 1.26.0 + provider: + name: MariaDB Corporation + relatedImages: + - image: docker-registry2.mariadb.com/mariadb/maxscale@sha256:2723e13f72b0c830e0e03ca388c6557b9cfd057a0af7b030e588e4a951188dd1 + name: maxscale + - image: docker-registry2.mariadb.com/mariadb/mariadb-prometheus-exporter-ubi@sha256:c9eaabedbc111f9a90aac48798f45cbf953f2d6cf9e98c823a9e39f52ddb459b + name: exporter + - image: docker-registry2.mariadb.com/mariadb/maxscale-prometheus-exporter-ubi@sha256:9312d49ce245feebba5cc2788a0e5c8b6982f9f6eefe02c24b0901592274ef9f + name: exporter-maxscale + - image: docker-registry2.mariadb.com/mariadb/mariadb-operator-enterprise@sha256:01947a1743ef6f07fe2dcb43790985cf94acc53f845730014903a841dd17f2f4 + name: mariadb-operator-enterprise + - image: docker-registry2.mariadb.com/mariadb/maxscale-prometheus-exporter-ubi@sha256:9312d49ce245feebba5cc2788a0e5c8b6982f9f6eefe02c24b0901592274ef9f + name: exporter_maxscale + - image: docker-registry.mariadb.com/enterprise-server@sha256:d2cf32def245daba522c09ae10c74eb8c1e509062be5ec2ebe705dc4b3fd78c7 + name: mariadb + version: 0.34.0 + webhookdefinitions: + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: mmariadb.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - mariadbs + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-k8s-mariadb-com-v1alpha1-mariadb + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vbackup.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - backups + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-backup + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vconnection.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - connections + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-connection + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vdatabase.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - databases + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-database + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vgrant.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - grants + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-grant + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vmariadb.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - mariadbs + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-mariadb + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vmaxscale.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - maxscales + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-maxscale + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vrestore.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - restores + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-restore + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vsqljob.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - sqljobs + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-sqljob + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: mariadb-operator-controller-manager + failurePolicy: Fail + generateName: vuser.kb.io + rules: + - apiGroups: + - k8s.mariadb.com + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - users + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-mariadb-com-v1alpha1-user diff --git a/operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-webhook-service_v1_service.yaml b/operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-webhook-service_v1_service.yaml new file mode 100644 index 00000000000..3f0582443d9 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/manifests/mariadb-operator-webhook-service_v1_service.yaml @@ -0,0 +1,14 @@ +apiVersion: v1 +kind: Service +metadata: + creationTimestamp: null + name: mariadb-operator-webhook-service +spec: + ports: + - port: 443 + protocol: TCP + targetPort: 9443 + selector: + control-plane: mariadb-operator-controller-manager +status: + loadBalancer: {} diff --git a/operators/mariadb-operator-enterprise/0.34.0/metadata/annotations.yaml b/operators/mariadb-operator-enterprise/0.34.0/metadata/annotations.yaml new file mode 100644 index 00000000000..8ed19a1e582 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/metadata/annotations.yaml @@ -0,0 +1,18 @@ +annotations: + # Core bundle annotations. + operators.operatorframework.io.bundle.mediatype.v1: registry+v1 + operators.operatorframework.io.bundle.manifests.v1: manifests/ + operators.operatorframework.io.bundle.metadata.v1: metadata/ + operators.operatorframework.io.bundle.package.v1: mariadb-operator-enterprise + operators.operatorframework.io.bundle.channels.v1: fast + operators.operatorframework.io.bundle.channel.default.v1: fast + operators.operatorframework.io.metrics.builder: operator-sdk-v1.32.0 + operators.operatorframework.io.metrics.mediatype.v1: metrics+v1 + operators.operatorframework.io.metrics.project_layout: go.kubebuilder.io/v4 + com.redhat.openshift.versions: v4.13 + com.redhat.delivery.operator.bundle: true + com.redhat.delivery.backport: false + + # Annotations for testing. + operators.operatorframework.io.test.mediatype.v1: scorecard+v1 + operators.operatorframework.io.test.config.v1: tests/scorecard/ diff --git a/operators/mariadb-operator-enterprise/0.34.0/tests/scorecard/config.yaml b/operators/mariadb-operator-enterprise/0.34.0/tests/scorecard/config.yaml new file mode 100644 index 00000000000..9769772ab10 --- /dev/null +++ b/operators/mariadb-operator-enterprise/0.34.0/tests/scorecard/config.yaml @@ -0,0 +1,70 @@ +apiVersion: scorecard.operatorframework.io/v1alpha3 +kind: Configuration +metadata: + name: config +stages: +- parallel: true + tests: + - entrypoint: + - scorecard-test + - basic-check-spec + image: quay.io/operator-framework/scorecard-test:v1.32.0 + labels: + suite: basic + test: basic-check-spec-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-bundle-validation + image: quay.io/operator-framework/scorecard-test:v1.32.0 + labels: + suite: olm + test: olm-bundle-validation-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-crds-have-validation + image: quay.io/operator-framework/scorecard-test:v1.32.0 + labels: + suite: olm + test: olm-crds-have-validation-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-crds-have-resources + image: quay.io/operator-framework/scorecard-test:v1.32.0 + labels: + suite: olm + test: olm-crds-have-resources-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-spec-descriptors + image: quay.io/operator-framework/scorecard-test:v1.32.0 + labels: + suite: olm + test: olm-spec-descriptors-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-status-descriptors + image: quay.io/operator-framework/scorecard-test:v1.32.0 + labels: + suite: olm + test: olm-status-descriptors-test + storage: + spec: + mountPath: {} +storage: + spec: + mountPath: {} diff --git a/operators/mariadb-operator-enterprise/ci.yaml b/operators/mariadb-operator-enterprise/ci.yaml new file mode 100644 index 00000000000..f828c02a002 --- /dev/null +++ b/operators/mariadb-operator-enterprise/ci.yaml @@ -0,0 +1 @@ +cert_project_id: 6607137e2e17167222d34af1 \ No newline at end of file