API Reference

This API reference is automatically generated from the custom resource definitions, which in turn are generated using cuelang files. To update this documentation, update the description fields generated via Cue.

Packages:

infra.yaook.cloud/v1
yaook.cloud/v1
apps.yaook.cloud/v1
network.yaook.cloud/v1
compute.yaook.cloud/v1

infra.yaook.cloud/v1

Resource Types:

AMQPServer
AMQPUser
MemcachedService
MySQLService
MySQLUser
OVSDBService
PowerDNSService

AMQPServer

Name	Type	Description	Required
spec	object		true
status	object		false

AMQPServer.spec

Name	Type	Description	Required
backendCAIssuerRef	object		true
frontendIssuerRef	object		true
imageRef	string		true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	true
additionalFrontendCertDnsNames	[]string		false
enabledPlugins	string	Plugins that should be enabled by AMQPServer Default: `rabbitmq_management,rabbitmq_prometheus`	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
implementation	enum	Enum: `RabbitMQ` Default: `RabbitMQ`	false
policies	map[string]map[string]object		false
rabbitmqConfig	map[string]int or string		false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource limits for containers spawned by the AMQPServer	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

AMQPServer.spec.backendCAIssuerRef

Name	Type	Description	Required
name	string		true

AMQPServer.spec.frontendIssuerRef

Name	Type	Description	Required
name	string		true

AMQPServer.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

AMQPServer.spec.policies[key][key]

Name	Type	Required
applyto	string	true
definition	object	true
pattern	string	true
priority	integer	true

AMQPServer.spec.resources

Resource limits for containers spawned by the AMQPServer

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

AMQPServer.spec.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

AMQPServer.spec.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

AMQPServer.spec.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

AMQPServer.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

AMQPServer.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
replicas	integer		false
updatedGeneration	integer		false

AMQPServer.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

AMQPUser

Name	Type	Description	Required
spec	object		true
status	object		false

AMQPUser.spec

Name	Type	Required
passwordSecretKeyRef	object	true
serverRef	object	true
user	string	true

AMQPUser.spec.passwordSecretKeyRef

Name	Type	Description	Required
name	string		true
key	string	Key within the Secret to extract Default: `password`	false

AMQPUser.spec.serverRef

Name	Type	Description	Required
name	string		true

AMQPUser.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
updatedGeneration	integer		false

AMQPUser.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

MemcachedService

Name	Type	Description	Required
spec	object		true
status	object		false

MemcachedService.spec

Name	Type	Description	Required
imageRef	string		true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
connections	integer	Default: `1024`	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
issuerRef	object		false
memory	integer	Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

MemcachedService.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

MemcachedService.spec.issuerRef

Name	Type	Description	Required
name	string		true

MemcachedService.spec.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the container	false
memcached-exporter	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

MemcachedService.spec.resources.memcached

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.resources.memcached-exporter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.memcached-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.memcached-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

MemcachedService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
replicas	integer		false
updatedGeneration	integer		false

MemcachedService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

MySQLService

Name	Type	Description	Required
spec	object		true
status	object		false

MySQLService.spec

Name	Type	Description	Required
backendCAIssuerRef	object		true
backup	object	Backup configuration	true
database	string		true
frontendIssuerRef	object		true
proxy	object		true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `10.2`, `10.3`, `10.4`, `10.5`, `10.6`, `10.11`, `11.0`, `11.4`	true
additionalFrontendCertDnsNames	[]string		false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
implementation	enum	Enum: `MariaDB` Default: `MariaDB`	false
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

MySQLService.spec.backendCAIssuerRef

Name	Type	Description	Required
name	string		true

MySQLService.spec.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

MySQLService.spec.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

MySQLService.spec.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

MySQLService.spec.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

MySQLService.spec.frontendIssuerRef

Name	Type	Description	Required
name	string		true

MySQLService.spec.proxy

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `1`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false

MySQLService.spec.proxy.resources

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the container	false
haproxy	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false

MySQLService.spec.proxy.resources.create-ca-bundle

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.proxy.resources.haproxy

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.proxy.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

MySQLService.spec.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

MySQLService.spec.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

MySQLService.spec.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
mariadb-galera	object	Define resource requests/limits for the container	false
mysqld-exporter	object	Define resource requests/limits for the container	false

MySQLService.spec.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.resources.mariadb-galera

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.resources.mysqld-exporter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

MySQLService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
replicas	integer		false
updatedGeneration	integer		false

MySQLService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

MySQLUser

Name	Type	Description	Required
spec	object		true
status	object		false

MySQLUser.spec

Name	Type	Description	Required
passwordSecretKeyRef	object		true
serviceRef	object		true
user	string		true
databasePrivileges	[]string	Default: `[ALL PRIVILEGES]`	false
globalPrivileges	[]string	Default: `[]`	false

MySQLUser.spec.passwordSecretKeyRef

Name	Type	Description	Required
name	string		true
key	string	Key within the Secret to extract Default: `password`	false

MySQLUser.spec.serviceRef

Name	Type	Description	Required
name	string		true

MySQLUser.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
updatedGeneration	integer		false

MySQLUser.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

OVSDBService

Name	Type	Description	Required
spec	object		true
status	object		false

OVSDBService.spec

Name	Type	Description	Required
backup	object	Backup configuration	true
dbSchema	enum	Enum: `northbound`, `southbound`, `custom`	true
issuerRef	object		true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
dbName	string		false
dbSchemaConfigmap	object	configmap containing the db schema. Use when ‘dbSchema’ is ‘custom’. Key ‘schema.ovsschema’ must contain a valid ovsdb database schema. Only used during deployment, changes are ignored.	false
dbStanza	string		false
externalCACertificates	[]string	List of external CA certificates.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
imageRef	string		false
inactivityProbeMs	integer	time in milliseconds till ovsdb server treats connections from clients as inactive (default 5000ms)	false
ovnRelay	object	Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.	false
raftElectionTimerMs	integer	raft leader election timeout of the cluster in milliseconds	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for ovsdb containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the ovsdb server is scraped	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false

OVSDBService.spec.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

OVSDBService.spec.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

OVSDBService.spec.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

OVSDBService.spec.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

OVSDBService.spec.issuerRef

Name	Type	Description	Required
name	string		true

OVSDBService.spec.dbSchemaConfigmap

configmap containing the db schema. Use when ‘dbSchema’ is ‘custom’. Key ‘schema.ovsschema’ must contain a valid ovsdb database schema. Only used during deployment, changes are ignored.

Name	Type	Description	Required
name	string		true

OVSDBService.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

OVSDBService.spec.ovnRelay

Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name	Type	Description	Required
inactivityProbeMs	integer	time in milliseconds till ovn relays treat connections from clients (e.g., northd or ovn-controller) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn relays treat the connection to a remote ovsdb server (e.g., northbound or southbound) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for the relay containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

OVSDBService.spec.ovnRelay.resources

Container resource requests/limits for the relay containers

Name	Type	Description	Required
ovn-relay	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

OVSDBService.spec.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources

Container resource requests/limits for ovsdb containers

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
ovsdb	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
setup-ovsdb	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

OVSDBService.spec.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.setup-ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.setup-ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.setup-ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

OVSDBService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
dbSchema	string		false
updatedGeneration	integer		false

OVSDBService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

PowerDNSService

Name	Type	Description	Required
spec	object		true
status	object		false

PowerDNSService.spec

Name	Type	Description	Required
apiKeySecret	object	A single secret injection configuration. This will set the secret value as the API key inside the PowerDNS configuration.	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
subnetCidr	string	IP range of the k8s pod network. Used to only allow requests from within the k8s network.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `4.9`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
loadBalancerIP	string	IP address of the load balancer for the PowerDNS webserver	false
powerdnsConfig	object	Key value pairs to overwrite pdns.conf settings	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

PowerDNSService.spec.apiKeySecret

A single secret injection configuration. This will set the secret value as the API key inside the PowerDNS configuration.

Name	Type	Description	Required
key	string	Key of the Kubernetes Secret to read	true
secretName	string	Name of the Kubernetes Secret to read	true

PowerDNSService.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

PowerDNSService.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

PowerDNSService.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

PowerDNSService.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

PowerDNSService.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

PowerDNSService.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

PowerDNSService.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

PowerDNSService.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

PowerDNSService.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

PowerDNSService.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

PowerDNSService.spec.resources

Name	Type	Description	Required
powerdns	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

PowerDNSService.spec.resources.powerdns

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.resources.powerdns.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.resources.powerdns.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

PowerDNSService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
replicas	integer		false
updatedGeneration	integer		false

PowerDNSService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

yaook.cloud/v1

Resource Types:

BarbicanDeployment
CeilometerDeployment
CinderDeployment
DesignateDeployment
GlanceDeployment
GnocchiDeployment
HorizonDeployment
InfrastructureIronicDeployment
KeystoneDeployment
KeystoneEndpoint
ExternalKeystoneDeployment
KeystoneUser
NeutronDeployment
NovaDeployment
OctaviaDeployment
TempestCronJob
TempestJob
YaookDisruptionBudget

BarbicanDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

BarbicanDeployment.spec

Name	Type	Description	Required
api	object	Configure the Barbican API deployment	true
barbicanConfig	map[string]object	Barbican OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneListener	object	Configure the Barbican Keystone listener deployment	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
barbicanSecrets	[]object	List of secrets to inject into the service configuration.	false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

BarbicanDeployment.spec.api

Configure the Barbican API deployment

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

BarbicanDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

BarbicanDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

BarbicanDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

BarbicanDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.api.resources

Name	Type	Description	Required
barbican-api	object	Define resource requests/limits for the container	false
barbican-worker	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

BarbicanDeployment.spec.api.resources.barbican-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.barbican-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.barbican-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.barbican-worker

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.barbican-worker.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.barbican-worker.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

BarbicanDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

BarbicanDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

BarbicanDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

BarbicanDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

BarbicanDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

BarbicanDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

BarbicanDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

BarbicanDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

BarbicanDeployment.spec.keystoneListener

Configure the Barbican Keystone listener deployment

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

BarbicanDeployment.spec.keystoneListener.resources

Name	Type	Description	Required
barbican-keystone-listener	object	Define resource requests/limits for the container	false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

BarbicanDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

BarbicanDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

BarbicanDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

BarbicanDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

BarbicanDeployment.spec.barbicanSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

BarbicanDeployment.spec.barbicanSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

BarbicanDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
barbican-db-sync-job	object	Define resource requests/limits for the container	false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

BarbicanDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

BarbicanDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

CeilometerDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

CeilometerDeployment.spec

Name	Type	Description	Required
ceilometerCompute	object		true
ceilometerConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
central	object		true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
notification	object		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
additionalHosts	[]object		false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
ceilometerEventDefinitions	[]object		false
ceilometerEventPipeline	object		false
ceilometerPipeline	object		false
ceilometerPolling	[]object		false
ceilometerSecrets	[]object	List of secrets to inject into the service configuration.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
pankoConfig	[]object	List of secrets to inject into the service configuration.	false
skip_gnocchi_bootstrap	boolean	Default: `false`	false

CeilometerDeployment.spec.ceilometerCompute

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true
enabled	boolean	Deploy ceilometer-agent-compute Default: `true`	false
resources	object		false

CeilometerDeployment.spec.ceilometerCompute.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
ceilometerComputeConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

CeilometerDeployment.spec.ceilometerCompute.configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

CeilometerDeployment.spec.ceilometerCompute.resources

Name	Type	Description	Required
ceilometer-compute-agent	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.central

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `1`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CeilometerDeployment.spec.central.resources

Name	Type	Description	Required
ceilometer-agent-central	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

CeilometerDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

CeilometerDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CeilometerDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

CeilometerDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

CeilometerDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.notification

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `1`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CeilometerDeployment.spec.notification.resources

Name	Type	Description	Required
ceilometer-agent-notification	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.additionalHosts[index]

Name	Type	Description	Required
hostnames	[]string		true
ip	string		true

CeilometerDeployment.spec.ceilometerEventDefinitions[index]

Name	Type	Description	Required
event_type	[]string		true
traits	map[string]object		true

CeilometerDeployment.spec.ceilometerPolling[index]

Name	Type	Required
interval	integer	true
meters	[]string	true
name	string	true
discovery	[]string	false
resources	[]string	false

CeilometerDeployment.spec.ceilometerSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CeilometerDeployment.spec.ceilometerSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CeilometerDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

CeilometerDeployment.spec.jobResources

Name	Type	Description	Required
ceilometer-upgrade-job	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.pankoConfig[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CeilometerDeployment.spec.pankoConfig[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CeilometerDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

CeilometerDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

CinderDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

CinderDeployment.spec

Name	Type	Description	Required
api	object	Cinder API deployment configuration	true
backends	map[string]object	Cinder-volume services (‘backends’) to deploy. Each key is a backend/cinder-volume service; the specific backend which is used is determined by the value.	true
backup	map[string]object	Cinder-backup services to deploy. Each key is a cinder-backup service.	true
cinderConfig	map[string]object	Cinder OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
database	object	Configure the database deployment	true
databaseCleanup	object	Configuration of a periodic database cleanup job, using cinder-manage.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
region	object	Configure the Region to use for this OpenStack service.	true
scheduler	object	Cinder Scheduler deployment configuration	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
cinderSecrets	[]object	List of secrets to inject into the service configuration.	false
conversionVolume	object		false
ids	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

CinderDeployment.spec.api

Cinder API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Cinder API.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CinderDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

CinderDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

CinderDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

CinderDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.api.resources

Resource requests/limits for containers related to the Cinder API.

Name	Type	Description	Required
cinder-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

CinderDeployment.spec.api.resources.cinder-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.cinder-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.cinder-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.backends[key]

Cinder-volume service (‘backend’) configuration. Exactly one of rbd and netapp must be set in order for the configuration to be valid, as that determines the type of backend which is used.

Name	Type	Description	Required
volume	object	Configure the cinder-volume deployment for this backend.	true
cinderSecrets	[]object	List of secrets to inject into the service configuration.	false
netapp	object		false
rbd	object	Ceph RBD backend	false

CinderDeployment.spec.backends[key].volume

Configure the cinder-volume deployment for this backend.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `1` Minimum: `0` Maximum: `1`	false
resources	object	Resource requests/limits for the containers related to cinder-volume.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CinderDeployment.spec.backends[key].volume.resources

Resource requests/limits for the containers related to cinder-volume.

Name	Type	Description	Required
cinder-volume	object	Define resource requests/limits for the container	false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.backends[key].cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CinderDeployment.spec.backends[key].cinderSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CinderDeployment.spec.backends[key].netapp

Name	Type	Description	Required
login	string	Username to use for logging into the netapp	true
passwordReference	string	Reference to a secret containing the password for the netapp login.	true
server	string	FQDN of the netapp management api.	true
shares	[]string	A list of all shares that this backend exports	true
vserver	string	The vserver of the netapp to use for this backend	true
backendConfig	map[string]string	Extra configuration values to add to the Cinder configuration section for this backend. For global configuration, use the spec.cinderConfig field instead.	false
copyoffloadConfigMap	object	Reference to a configmap containing the copyoffload binary from netapp. Since this binary is proprietary we can not distribute it with yaook and you need to manually download it and put it into a configmap.	false

CinderDeployment.spec.backends[key].netapp.copyoffloadConfigMap

Reference to a configmap containing the copyoffload binary from netapp. Since this binary is proprietary we can not distribute it with yaook and you need to manually download it and put it into a configmap.

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.backends[key].rbd

Ceph RBD backend

Name	Type	Description	Required
keyringReference	string	Name of the Kubernetes secret containing the Ceph keyring to use. The secret must be in `kubernetes.io/rook` format.	true
keyringUsername	string	RADOS username to use for authentication.	true
backendConfig	map[string]JSON	Extra configuration values to add to the Cinder configuration section for this backend. For global configuration, use the spec.cinderConfig field instead.	false
cephConfig	map[string]JSON	Additional configuration to add to the ceph configuration for this client. This cannot be used for global ceph configuration. Most common use is to add a `mon_host` key here in order to define where to find the mons.	false

CinderDeployment.spec.backup[key]

Cinder-backup service deployment configuration.

Name	Type	Description	Required
cinderConfig	map[string]object	Cinder Backup OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
cinderSecrets	[]object	List of secrets to inject into the service configuration.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Cinder Backup service.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
terminationGracePeriod	integer	Default: `3600`	false

CinderDeployment.spec.backup[key].cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CinderDeployment.spec.backup[key].cinderSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CinderDeployment.spec.backup[key].resources

Resource requests/limits for containers related to the Cinder Backup service.

Name	Type	Description	Required
cinder-backup	object	Define resource requests/limits for the container	false

CinderDeployment.spec.backup[key].resources.cinder-backup

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.backup[key].resources.cinder-backup.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.backup[key].resources.cinder-backup.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

CinderDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

CinderDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

CinderDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

CinderDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CinderDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

CinderDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

CinderDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

CinderDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.databaseCleanup

Configuration of a periodic database cleanup job, using cinder-manage.

Name	Type	Description	Required
deletionTimeRange	integer	Deleted database rows older than this number of days will be removed. Default: `60`	true
schedule	string	The schedule is given in standard cron notation. Default: `0 0 * * *`	true

CinderDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

CinderDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

CinderDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CinderDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

CinderDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

CinderDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

CinderDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

CinderDeployment.spec.scheduler

Cinder Scheduler deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Cinder Scheduler.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

CinderDeployment.spec.scheduler.resources

Resource requests/limits for containers related to the Cinder Scheduler.

Name	Type	Description	Required
cinder-scheduler	object	Define resource requests/limits for the container	false

CinderDeployment.spec.scheduler.resources.cinder-scheduler

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.scheduler.resources.cinder-scheduler.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.scheduler.resources.cinder-scheduler.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CinderDeployment.spec.cinderSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CinderDeployment.spec.conversionVolume

Name	Type	Description	Required
emptyDir	object	EmptyDir represents a temporary directory that shares a pod’s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir	true

CinderDeployment.spec.conversionVolume.emptyDir

EmptyDir represents a temporary directory that shares a pod’s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir

Name	Type	Description	Required
medium	string	What type of storage medium should back this directory. Default: :code:``	false
sizeLimit	string	Total amount of local storage required for this EmptyDir volume.	false

CinderDeployment.spec.ids

Name	Type	Description	Required
gid	integer		false
uid	integer		false

CinderDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
cinder-db-cleanup-cronjob	object	Define resource requests/limits for the container	false
cinder-db-sync-job	object	Define resource requests/limits for the container	false
cinder-db-upgrade-post-job	object	Define resource requests/limits for the container	false
cinder-db-upgrade-pre-job	object	Define resource requests/limits for the container	false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.jobResources.cinder-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

CinderDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

CinderDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

DesignateDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

DesignateDeployment.spec

Name	Type	Description	Required
api	object	Designate API deployment configuration	true
database	object	Configure the database deployment	true
designateConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
nsRecords	[]object	List of NS records for zones hosted within the default pool	true
powerdns	object		true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `2024.1`	true
additionalNameservers	[]object	List of secondary nameservers that will be informed about zone changes	false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
central	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
minidns	object		false
policy	object	OpenStack policy to merge with the default policy	false
producer	object		false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
worker	object		false

DesignateDeployment.spec.api

Designate API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Designate API.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

DesignateDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

DesignateDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

DesignateDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

DesignateDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.api.resources

Resource requests/limits for containers related to the Designate API.

Name	Type	Description	Required
designate-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.api.resources.designate-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.designate-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.designate-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

DesignateDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

DesignateDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

DesignateDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

DesignateDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

DesignateDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

DesignateDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

DesignateDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

DesignateDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

DesignateDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

DesignateDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

DesignateDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

DesignateDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

DesignateDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

DesignateDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.nsRecords[index]

Name	Type	Description	Required
hostname	string		true
priority	integer		true

DesignateDeployment.spec.powerdns

Name	Type	Description	Required
database	object	Configure the database deployment	true
subnetCidr	string	Comma separated IP ranges of the k8s pod network. Used to only allow requests from within the k8s network.	true
loadBalancerIP	string	IP address of the load balancer for the PowerDNS webserver	false
replicas	integer	Number of replicas for the service Default: `3`	false

DesignateDeployment.spec.powerdns.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

DesignateDeployment.spec.powerdns.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

DesignateDeployment.spec.powerdns.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

DesignateDeployment.spec.powerdns.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

DesignateDeployment.spec.powerdns.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.powerdns.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

DesignateDeployment.spec.powerdns.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

DesignateDeployment.spec.powerdns.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

DesignateDeployment.spec.powerdns.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

DesignateDeployment.spec.powerdns.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

DesignateDeployment.spec.additionalNameservers[index]

Name	Type	Description	Required
host	string		true
port	integer		true

DesignateDeployment.spec.central

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Designate Central service	false

DesignateDeployment.spec.central.resources

Resource requests/limits for containers related to the Designate Central service

Name	Type	Description	Required
central	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.central.resources.central

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.central.resources.central.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.central.resources.central.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
designate-db-sync-job	object	Define resource requests/limits for the container	false
designate-pool-update-job	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.jobResources.designate-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.jobResources.designate-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.jobResources.designate-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.jobResources.designate-pool-update-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.jobResources.designate-pool-update-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.jobResources.designate-pool-update-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.minidns

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Designate MiniDNS server	false

DesignateDeployment.spec.minidns.resources

Resource requests/limits for containers related to the Designate MiniDNS server

Name	Type	Description	Required
minidns	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.minidns.resources.minidns

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.minidns.resources.minidns.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.minidns.resources.minidns.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.producer

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Designate Producer service	false

DesignateDeployment.spec.producer.resources

Resource requests/limits for containers related to the Designate Producer service

Name	Type	Description	Required
producer	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.producer.resources.producer

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.producer.resources.producer.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.producer.resources.producer.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

DesignateDeployment.spec.worker

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits for containers related to the Designate Worker service	false

DesignateDeployment.spec.worker.resources

Resource requests/limits for containers related to the Designate Worker service

Name	Type	Description	Required
worker	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.worker.resources.worker

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.worker.resources.worker.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.worker.resources.worker.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

DesignateDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

GlanceDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

GlanceDeployment.spec

Name	Type	Description	Required
api	object		true
backends	object		true
database	object	Configure the database deployment	true
glanceConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
glanceSecrets	[]object	List of secrets to inject into the service configuration.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

GlanceDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
sslTerminator	object	Default: `map[]`	false

GlanceDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

GlanceDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

GlanceDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

GlanceDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.api.resources

Name	Type	Description	Required
glance-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

GlanceDeployment.spec.api.resources.glance-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.glance-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.glance-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.sslTerminator

Name	Type	Description	Required
respondingReadTimeout	integer	Set traefik parameter ‘transport.respondingTimeouts.readTimeout’ (time in seconds) to a large enough value for allowing the upload of larger images. Default: `7200`	false

GlanceDeployment.spec.backends

Name	Type	Required
ceph	object	false
file	object	false
s3	object	false

GlanceDeployment.spec.backends.ceph

Name	Type	Description	Required
keyringPoolname	string		true
keyringReference	string		true
keyringUsername	string		true
cephConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

GlanceDeployment.spec.backends.file

Name	Type	Description	Required
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	true

GlanceDeployment.spec.backends.s3

Name	Type	Description	Required
bucket	string		true
credentialRef	object		true
endpoint	string		true
addressingStyle	enum	Enum: `virtual`, `path`, `auto` Default: `virtual`	false

GlanceDeployment.spec.backends.s3.credentialRef

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

GlanceDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

GlanceDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

GlanceDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

GlanceDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

GlanceDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

GlanceDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

GlanceDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

GlanceDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

GlanceDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

GlanceDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

GlanceDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

GlanceDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

GlanceDeployment.spec.glanceSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

GlanceDeployment.spec.glanceSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

GlanceDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.jobResources

Name	Type	Description	Required
glance-db-load-metadefs-job	object	Define resource requests/limits for the container	false
glance-db-sync-job	object	Define resource requests/limits for the container	false
glance-db-upgrade-post-job	object	Define resource requests/limits for the container	false
glance-db-upgrade-pre-job	object	Define resource requests/limits for the container	false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.jobResources.glance-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

GlanceDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

GlanceDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

GnocchiDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

GnocchiDeployment.spec

Name	Type	Description	Required
api	object		true
backends	object		true
database	object	Configure the database deployment	true
gnocchiConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
metricd	object		true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `train`, `yoga`, `zed`, `2023.1`, `2023.2`, `2024.1`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

GnocchiDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
wsgiProcesses	integer	Number of uWSGI processes to spawn per pod. This sets PYTHON_CPU_COUNT with a factor of 1/1.5. Gnocchi spawns PYTHON_CPU_COUNT*1.5 processes with PYTHON_CPU_COUNT threads each, so be careful with thus number.	false

GnocchiDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

GnocchiDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

GnocchiDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

GnocchiDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.api.resources

Name	Type	Description	Required
gnocchi-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

GnocchiDeployment.spec.api.resources.gnocchi-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.gnocchi-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.gnocchi-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.backends

Name	Type	Description	Required
ceph	object		false
s3	object		false

GnocchiDeployment.spec.backends.ceph

Name	Type	Description	Required
keyringReference	string		true
keyringUsername	string		true
cephConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

GnocchiDeployment.spec.backends.s3

Name	Type	Required
bucketPrefix	string	true
credentialRef	object	true
endpoint	string	true

GnocchiDeployment.spec.backends.s3.credentialRef

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	There seems to be no corresponding option in the gnocchi configuration, so we raise the timeout here in order to avoid too much overhead from killed connections. Default: `3600`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

GnocchiDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

GnocchiDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

GnocchiDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

GnocchiDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

GnocchiDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

GnocchiDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

GnocchiDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

GnocchiDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

GnocchiDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

GnocchiDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

GnocchiDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

GnocchiDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.metricd

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

GnocchiDeployment.spec.metricd.resources

Name	Type	Description	Required
gnocchi-metricd	object	Define resource requests/limits for the container	false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

GnocchiDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.jobResources

Name	Type	Description	Required
gnocchi-upgrade-job	object	Define resource requests/limits for the container	false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

GnocchiDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

GnocchiDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

HorizonDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

HorizonDeployment.spec

Name	Type	Description	Required
ingress	object	Ingress configuration	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`, `2024.2`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
replicas	integer	Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

HorizonDeployment.spec.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

HorizonDeployment.spec.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

HorizonDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

HorizonDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

HorizonDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

HorizonDeployment.spec.resources

Name	Type	Description	Required
horizon	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

HorizonDeployment.spec.resources.horizon

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

HorizonDeployment.spec.resources.horizon.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

HorizonDeployment.spec.resources.horizon.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

HorizonDeployment.spec.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

HorizonDeployment.spec.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

HorizonDeployment.spec.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

HorizonDeployment.spec.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

HorizonDeployment.spec.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

HorizonDeployment.spec.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

HorizonDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

HorizonDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

HorizonDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

InfrastructureIronicDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

InfrastructureIronicDeployment.spec

Name	Type	Description	Required
api	object		true
database	object		true
dnsmasq	object		true
imageServer	object		true
inspectorConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
ironicConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
memcached	object	Memcached deployment configuration	true
pxe	object		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
conductor	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
ingressAddress	string	IP of the ingress that hosts the APIs and image server. This can be unset by default, than the ingress IP is taken from the k8s ingress/service. So this is only needed if the service is of type NodePort. Newer setups don’t need to set this.	false
inspectorApi	object		false
ipa	object		false
jobResources	object		false
keystoneRef	object	Keystone deployment to link this service to	false
policy	object	OpenStack policy to merge with the default policy	false
region	object	Configure the Region to use for this OpenStack service.	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
tftpAddress	string		false

InfrastructureIronicDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

InfrastructureIronicDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

InfrastructureIronicDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

InfrastructureIronicDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

InfrastructureIronicDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.api.resources

Name	Type	Description	Required
ironic-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.api.resources.ironic-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.ironic-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.ironic-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database

Name	Type	Description	Required
inspector	object	Configure the database deployment	true
ironic	object	Configure the database deployment	true

InfrastructureIronicDeployment.spec.database.inspector

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

InfrastructureIronicDeployment.spec.database.inspector.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.database.inspector.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

InfrastructureIronicDeployment.spec.database.inspector.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

InfrastructureIronicDeployment.spec.database.inspector.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

InfrastructureIronicDeployment.spec.database.ironic.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.database.ironic.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

InfrastructureIronicDeployment.spec.database.ironic.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

InfrastructureIronicDeployment.spec.database.ironic.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.dnsmasq

Name	Type	Description	Required
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `100Mi`	false

InfrastructureIronicDeployment.spec.dnsmasq.resources

Name	Type	Description	Required
dnsmasq	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.imageServer

Name	Type	Description	Required
ingress	object	Ingress configuration	true
pvcAccessMode	enum	PVC access mode. See upstream Kubernetes documentation. Enum: `ReadWriteOnce`, `ReadWriteMany` Default: `ReadWriteOnce`	false
resources	object		false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false

InfrastructureIronicDeployment.spec.imageServer.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

InfrastructureIronicDeployment.spec.imageServer.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.imageServer.resources

Name	Type	Description	Required
bootstrap-cfg	object	Define resource requests/limits for the container	false
httpd	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

InfrastructureIronicDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

InfrastructureIronicDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

InfrastructureIronicDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.pxe

Name	Type	Description	Required
dhcp	[]object		true
listenNetwork	string		true

InfrastructureIronicDeployment.spec.pxe.dhcp[index]

Name	Type	Description	Required
dhcpRange	string		true
defaultGateway	string		false

InfrastructureIronicDeployment.spec.conductor

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

InfrastructureIronicDeployment.spec.conductor.resources

Name	Type	Description	Required
conductor	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.conductor.resources.conductor

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.conductor.resources.conductor.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.conductor.resources.conductor.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.inspectorApi

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

InfrastructureIronicDeployment.spec.inspectorApi.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

InfrastructureIronicDeployment.spec.inspectorApi.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.inspectorApi.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

InfrastructureIronicDeployment.spec.inspectorApi.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

InfrastructureIronicDeployment.spec.inspectorApi.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.inspectorApi.resources

Name	Type	Description	Required
ironic-inspector	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.ipa

Name	Type	Description	Required
pxeAppendKernelParams	string		false

InfrastructureIronicDeployment.spec.jobResources

Name	Type	Description	Required
infra-ironic-db-sync-job	object	Define resource requests/limits for the container	false
infra-ironic-inspector-db-sync-job	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

InfrastructureIronicDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

InfrastructureIronicDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

InfrastructureIronicDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

InfrastructureIronicDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

KeystoneDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

KeystoneDeployment.spec

Name	Type	Description	Required
api	object	Configure the Keystone API deployment	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneConfig	map[string]object	Keystone OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
memcached	object	Memcached deployment configuration	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
keyRotationSchedule	string	The schedule is given in standard cron notation. Default: `0 0 * * *`	false
keystoneSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

KeystoneDeployment.spec.api

Configure the Keystone API deployment

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource limits for containers in Pods of the Keystone API	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
wsgiProcesses	integer	Number of WSGI processes to spawn per pod	false

KeystoneDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

KeystoneDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

KeystoneDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

KeystoneDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.api.resources

Resource limits for containers in Pods of the Keystone API

Name	Type	Description	Required
keystone	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

KeystoneDeployment.spec.api.resources.keystone

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.keystone.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.keystone.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

KeystoneDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

KeystoneDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

KeystoneDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

KeystoneDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

KeystoneDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

KeystoneDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

KeystoneDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

KeystoneDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

KeystoneDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

KeystoneDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

KeystoneDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

KeystoneDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
keystone-bootstrap-job	object	Define resource requests/limits for the container	false
keystone-credential-setup-job	object	Define resource requests/limits for the container	false
keystone-db-sync-job	object	Define resource requests/limits for the container	false
keystone-db-upgrade-post-job	object	Define resource requests/limits for the container	false
keystone-db-upgrade-pre-job	object	Define resource requests/limits for the container	false
keystone-fernet-setup-job	object	Define resource requests/limits for the container	false
keystone-key-rotation-credential-cronjob	object	Define resource requests/limits for the container	false
keystone-key-rotation-fernet-cronjob	object	Define resource requests/limits for the container	false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.keystoneSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

KeystoneDeployment.spec.keystoneSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

KeystoneDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

KeystoneDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

KeystoneDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

KeystoneEndpoint

Name	Type	Description	Required
spec	object		true
status	object		false

KeystoneEndpoint.spec

Name	Type	Description	Required
description	string		true
endpoints	object		true
keystoneRef	object	Keystone deployment to link this service to	true
region	object	Configure the Region to use for this OpenStack service.	true
servicename	string		true
servicetype	string		true

KeystoneEndpoint.spec.endpoints

Name	Type	Required
admin	string	true
internal	string	true
public	string	true

KeystoneEndpoint.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

KeystoneEndpoint.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

KeystoneEndpoint.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
updatedGeneration	integer		false

KeystoneEndpoint.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

ExternalKeystoneDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

ExternalKeystoneDeployment.spec

Name	Type	Description	Required
authURL	string		true
memcachedServers	[]string		true
password	object		true
username	string		true
authType	string	Default: `password`	false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
interface	string	Default: `public`	false
projectDomainName	string	Default: `default`	false
projectName	string	Default: `admin`	false
userDomainName	string	Default: `default`	false

ExternalKeystoneDeployment.spec.password

Name	Type	Description	Required
name	string		true
key	string	Key within the Secret to extract Default: `password`	false

ExternalKeystoneDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
updatedGeneration	integer		false

ExternalKeystoneDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

KeystoneUser

Name	Type	Description	Required
spec	object		true
status	object		false

KeystoneUser.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
role	string	Uses this role to bind the User to the target scope(s). If not provided the admin role will be used. If the role does not exist, it will be created. Target scope(s) for the role assignment are either defined by the scopes property or default to the service project if not specified.	false
scopes	[]object	Optional list of scopes to assign the role in for the User. List entries are key-value pairs where the key is one of the scope types ‘project’, ‘domain’ or ‘system’ and the value is the individual name of the respective scope. If not provided, will default to the project scope for the service project.	false

KeystoneUser.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

KeystoneUser.spec.scopes[index]

Name	Type	Required
domain	string	false
project	string	false
system	string	false

KeystoneUser.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
updatedGeneration	integer		false

KeystoneUser.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

NeutronDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

NeutronDeployment.spec

Name	Type	Description	Required
api	object	Neutron API deployment configuration	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
neutronConfig	map[string]object	Neutron OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
neutronML2Config	map[string]object	Neutron ML2 Plugin config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
novaRef	object		true
region	object	Configure the Region to use for this OpenStack service.	true
setup	object	The type of neutron setup you want. You can choose ‘ovn’.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
neutronSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

NeutronDeployment.spec.api

Neutron API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NeutronDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NeutronDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NeutronDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NeutronDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.api.resources

Name	Type	Description	Required
neutron-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.api.resources.neutron-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.neutron-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.neutron-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NeutronDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NeutronDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NeutronDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NeutronDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NeutronDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NeutronDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NeutronDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NeutronDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

NeutronDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

NeutronDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NeutronDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

NeutronDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NeutronDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

NeutronDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.novaRef

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

NeutronDeployment.spec.setup

The type of neutron setup you want. You can choose ‘ovn’.

Name	Type	Description	Required
ovn	object	OVN-based deployment.	false

NeutronDeployment.spec.setup.ovn

OVN-based deployment.

Name	Type	Description	Required
controller	object	Per-node configuration for the OVN controller services.	true
northboundOVSDB	object	Northbound OpenvSwitch Database deployment configuration	true
northd	object	northd deployment configuration	true
southboundOVSDB	object	Southbound OpenvSwitch Database deployment configuration	true
bgp	map[string]object		false
centralCA	object	ovn central CA configuration	false

NeutronDeployment.spec.setup.ovn.controller

Per-node configuration for the OVN controller services.

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true
jemallocBackgroundThreads	integer	Maximum number of jemalloc background threads that are used to purge unused memory. Having 1-2 background threads can help to avoid ovn-controller latency spikes in large deployments. Setting this to zero (default) disables background threads. Minimum: `0`	false
monitoringDsUpdateStrategy	object	Update strategy configuration for the monitoring DaemonSet. This is not validated but the body is passed as is as the body of the updateStrategy field of the DaemonSet, so syntax errors will result in reconcile failures.	false
ovnMonitorAll	boolean	Monitor everything in the ovs-database. Setting this to true will reduce the load on the north- and southbound database while increasing memory consumption of ovn-controllers.	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn-controller treats the connection to the remote ovsdb server as inactive (corresponds to Open_vSwitch column external_ids:ovn-remote-probe-interval) (defaults to value of spec.setup.ovn.southboundOVSDB.inactivityProbeMs, if set, otherwise 5000ms)	false
resources	object	Container resource requests/limits for OVN-controller related containers	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the local ovsdb server is scraped	false

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
bridgeConfig	[]object	Map physical devices to OpenStack provider physical network names.	false
neutronMetadataAgentConfig	map[string]object	Neutron Metadata Agent config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index].bridgeConfig[index]

Name	Type	Description	Required
bridgeName	string	Unique name for the bridge to plug the uplinkDevice into. Must not exist already on the host.	true
openstackPhysicalNetwork	string	Name under which this network is exposed in openstack, as `--provider-physical-network` in openstack network create.	true
uplinkDevice	string	Name of the physical network interface to expose to OpenStack. Must exist already on the host and may be a VLAN device (or any other interface type, really).	true

NeutronDeployment.spec.setup.ovn.controller.resources

Container resource requests/limits for OVN-controller related containers

Name	Type	Description	Required
neutron-ovn-metadata-agent	object	Define resource requests/limits for the container	false
ovn-controller	object	Define resource requests/limits for the container	false
ovs-vswitchd	object	Define resource requests/limits for the container	false
ovs-vswitchd-monitoring	object	Define resource requests/limits for the container	false
ovsdb-server	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB

Northbound OpenvSwitch Database deployment configuration

Name	Type	Description	Required
backup	object	Backup configuration	true
externalCACertificates	[]string	List of external CA certificates.	false
inactivityProbeMs	integer	time in milliseconds till ovsdb server treats connections from clients as inactive (default 5000ms)	false
ovnRelay	object	Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.	false
raftElectionTimerMs	integer	raft leader election timeout of the cluster in milliseconds	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for ovsdb containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the ovsdb server is scraped	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay

Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name	Type	Description	Required
inactivityProbeMs	integer	time in milliseconds till ovn relays treat connections from clients (e.g., northd or ovn-controller) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn relays treat the connection to a remote ovsdb server (e.g., northbound or southbound) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for the relay containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources

Container resource requests/limits for the relay containers

Name	Type	Description	Required
ovn-relay	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources

Container resource requests/limits for ovsdb containers

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
ovsdb	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
setup-ovsdb	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northd

northd deployment configuration

Name	Type	Description	Required
jemallocBackgroundThreads	integer	Maximum number of jemalloc background threads that are used to purge unused memory. Having 1-2 background threads can help to avoid northd latency spikes in large deployments. Setting this to zero (default) disables background threads. Minimum: `0`	false
remoteInactivityProbeMs	integer	time in milliseconds till northd treats connections to remote ovsdb servers (e.g., northbound or southbound) as inactive (corresponds to NB_Global column options:northd_probe_interval) (defaults to value of spec.setup.ovn.northboundOVSDB.inactivityProbeMs, if set, otherwise 15000ms)	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for northd containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
threads	integer	the amount of threads northd should use Minimum: `1`	false

NeutronDeployment.spec.setup.ovn.northd.resources

Container resource requests/limits for northd containers

Name	Type	Description	Required
northd	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.northd.resources.northd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northd.resources.northd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northd.resources.northd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB

Southbound OpenvSwitch Database deployment configuration

Name	Type	Description	Required
backup	object	Backup configuration	true
ovnRelay	object	Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.	true
externalCACertificates	[]string	List of external CA certificates.	false
inactivityProbeMs	integer	time in milliseconds till ovsdb server treats connections from clients as inactive (default 5000ms)	false
raftElectionTimerMs	integer	raft leader election timeout of the cluster in milliseconds	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for ovsdb containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the ovsdb server is scraped	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay

Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name	Type	Description	Required
inactivityProbeMs	integer	time in milliseconds till ovn relays treat connections from clients (e.g., northd or ovn-controller) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn relays treat the connection to a remote ovsdb server (e.g., northbound or southbound) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Container resource requests/limits for the relay containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources

Container resource requests/limits for the relay containers

Name	Type	Description	Required
ovn-relay	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources

Container resource requests/limits for ovsdb containers

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
ovsdb	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
setup-ovsdb	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key]

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
bgpAgentConfig	map[string]object	BGP Agent OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
config	object		false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config

Name	Type	Description	Required
bridgeName	string	Name of the provider bridge to which the BGP interface should be added.	true
localAS	integer	The AS number to be used on the BGP agent side. Minimum: `1` Maximum: `4.294967295e+09`	true
peers	map[string]object		true
addressScopes	[]string	List of address scope IDs for the subnet, in case you are using ovn_stretched_l2_bgp_driver	false
debug	boolean	Enable debug logging. Default: `false`	false
driver	enum	Name of the ovn-bgp-agent driver that can be used. Please check ovn-bgp-agent docs for further details. Enum: `ovn_bgp_driver`, `ovn_stretched_l2_bgp_driver`, `ovn_evpn_driver` Default: `ovn_stretched_l2_bgp_driver`	false
resources	object		false
syncInterval	integer	The interval time(seconds) when it should resync with southbound database. Default: `120`	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.peers[key]

Name	Type	Description	Required
AS	integer	The AS number to be peered with. Minimum: `1` Maximum: `4.294967295e+09`	true
IP	string	List of peer IPs that have the same AS number and can be added to the same peer group.	true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources

Name	Type	Description	Required
frr-bgpd	object	Define resource requests/limits for the container	false
frr-zebra	object	Define resource requests/limits for the container	false
ovn-bgp-agent	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.centralCA

ovn central CA configuration

Name	Type	Description	Required
duration	string	lifetime of the CA in hours Default: `672h`	false
renewBefore	string	timeframe until the CA has to be renewed in hours Default: `504h`	false

NeutronDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
neutron-db-sync-job	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.jobResources.neutron-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.jobResources.neutron-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.jobResources.neutron-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.neutronSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

NeutronDeployment.spec.neutronSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

NeutronDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NeutronDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

NeutronDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

NovaDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

NovaDeployment.spec

Name	Type	Description	Required
api	object	Nova API deployment configuration	true
conductor	object	Nova Conductor deployment configuration	true
database	object	Database deployment configurations. Nova and placement require four different databases.	true
databaseCleanup	object	Configuration of a periodic database cleanup job, using nova-manage.	true
eviction	object	Compute node eviction configuration	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Message queue configurations.	true
metadata	object	Nova Metadata service deployment configuration	true
novaConfig	map[string]object	Nova OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
placement	object	Placement API deployment configuration	true
region	object	Configure the Region to use for this OpenStack service.	true
scheduler	object	Nova Scheduler deployment configuration	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
vnc	object	VNC proxy service deployment configuration	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
compute	object		false
ids	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
novaSecrets	[]object	List of secrets to inject into the service configuration.	false
placementCleanup	object		false
placementConfig	map[string]object	Placement OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
placementPolicy	map[string]string		false
placementSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	map[string]string		false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
sysinfo	map[string]string	Nova smbios sysinfo configuration. Supported values will show up in /sys/class/dmi/id/	false

NovaDeployment.spec.api

Nova API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits related to containers in Nova API pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NovaDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NovaDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NovaDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.api.resources

Resource requests/limits related to containers in Nova API pods

Name	Type	Description	Required
nova-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

NovaDeployment.spec.api.resources.nova-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.nova-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.nova-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.conductor

Nova Conductor deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits related to containers in Nova Conductor pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.conductor.resources

Resource requests/limits related to containers in Nova Conductor pods

Name	Type	Description	Required
nova-conductor	object	Define resource requests/limits for the container	false

NovaDeployment.spec.conductor.resources.nova-conductor

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.conductor.resources.nova-conductor.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.conductor.resources.nova-conductor.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database

Database deployment configurations. Nova and placement require four different databases.

Name	Type	Description	Required
api	object	Configure the database deployment	true
cell0	object	Configure the database deployment	true
cell1	object	Configure the database deployment	true
placement	object	Configure the database deployment	true

NovaDeployment.spec.database.api

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NovaDeployment.spec.database.api.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.api.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.api.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.api.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.api.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.database.api.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.api.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.api.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.api.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NovaDeployment.spec.database.cell0.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.cell0.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.cell0.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.cell0.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.cell0.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.database.cell0.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.cell0.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.cell0.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.cell0.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NovaDeployment.spec.database.cell1.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.cell1.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.cell1.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.cell1.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.cell1.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.database.cell1.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.cell1.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.cell1.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.cell1.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NovaDeployment.spec.database.placement.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.placement.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.placement.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.placement.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.placement.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.database.placement.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.placement.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.placement.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.placement.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.databaseCleanup

Configuration of a periodic database cleanup job, using nova-manage.

Name	Type	Description	Required
schedule	string	The schedule is given in standard cron notation. Default: `0 0 * * *`	true
clearAllEvents	boolean	Delete all instance events older than deletionTimeRange. This is useful for long living VMs with many instance actions. Default: `false`	false
clearOnlyMigrationEvents	boolean	Delete only events older than deletionTimeRange that concern offline or live migration. This is useful especially for long living vms as these create a big amount of events Default: `false`	false
deletionTimeRange	integer	Deleted database rows older than this number of days will be removed. Default: `60`	false

NovaDeployment.spec.eviction

Compute node eviction configuration

Name	Type	Description	Required
ironicNodeShutdown	object	Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE	false
manager	object	Default: `map[]`	false
netboxCreds	object	Secret reference to Credentials for netbox, containing keys: URL, TOKEN	false
netboxSetFailed	boolean	option to set a node to failed in netbox if it is to be evicted Default: `false`	false
volumeLockDurationSeconds	integer	wait for releasing the volume lock during the eviction Default: `0`	false

NovaDeployment.spec.eviction.ironicNodeShutdown

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaDeployment.spec.eviction.ironicNodeShutdown.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.eviction.manager

Name	Type	Description	Required
enabled	boolean	Defines if the Eviction Manager will be deployed. Default: `false`	false
interval	integer	The interval at which the operator polls the Compute Node status in seconds. Default: `15`	false
max_per_hour	integer	The number of computenodes that are allowed to change to down in the last hour, before the Eviction Manager stops creating eviction jobs. Default: `5`	false

NovaDeployment.spec.eviction.netboxCreds

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaDeployment.spec.eviction.netboxCreds.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

NovaDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

NovaDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

NovaDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.messageQueue

Message queue configurations.

Name	Type	Description	Required
cell1	object	Configure the RabbitMQ instance.	true

NovaDeployment.spec.messageQueue.cell1

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

NovaDeployment.spec.messageQueue.cell1.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.metadata

Nova Metadata service deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits related to containers in Nova Metadata service pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.metadata.resources

Resource requests/limits related to containers in Nova Metadata service pods

Name	Type	Description	Required
nova-metadata	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NovaDeployment.spec.metadata.resources.nova-metadata

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.metadata.resources.nova-metadata.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.metadata.resources.nova-metadata.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.metadata.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.metadata.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.metadata.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.metadata.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.metadata.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.metadata.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement

Placement API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits related to containers in Placement API pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.placement.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NovaDeployment.spec.placement.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.placement.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NovaDeployment.spec.placement.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NovaDeployment.spec.placement.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.placement.resources

Resource requests/limits related to containers in Placement API pods

Name	Type	Description	Required
placement	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

NovaDeployment.spec.placement.resources.placement

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.placement.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.placement.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

NovaDeployment.spec.scheduler

Nova Scheduler deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits related to containers in Nova Scheduler pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.scheduler.resources

Resource requests/limits related to containers in Nova Scheduler pods

Name	Type	Description	Required
nova-scheduler	object	Define resource requests/limits for the container	false

NovaDeployment.spec.scheduler.resources.nova-scheduler

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.scheduler.resources.nova-scheduler.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.scheduler.resources.nova-scheduler.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.vnc

VNC proxy service deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	Resource requests/limits related to containers in VNC proxy service pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

NovaDeployment.spec.vnc.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NovaDeployment.spec.vnc.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.vnc.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NovaDeployment.spec.vnc.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

NovaDeployment.spec.vnc.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.vnc.resources

Resource requests/limits related to containers in VNC proxy service pods

Name	Type	Description	Required
nova-novncproxy	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

NovaDeployment.spec.vnc.resources.nova-novncproxy

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.vnc.resources.nova-novncproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.vnc.resources.nova-novncproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.vnc.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.vnc.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.vnc.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.vnc.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.vnc.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.vnc.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true
resources	object	Resource requests/limits related to containers in Nova Compute pods	false

NovaDeployment.spec.compute.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
computeProviderConfig	object	Nova compute resource provider config. The keys of this object are the configuration file sections, the values are arrays or objects within that section.	false
ephemeralStorage	object	Configure a PVC for ephemeral storage. By default, YAOOK will mount /var/lib/nova from the host. Configuring this setting for a node will make YAOOK allocate a PVC for that path instead.	false
hostAggregates	[]string	NovaHostAggregate resource names, identifying host aggregates this compute node should be part of. These lists are joined if multiple configTemplates match a node.	false
novaComputeConfig	map[string]object	Nova Compute service config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
volumeBackends	object	Optional configuration of a Ceph RBD volume backend.	false

NovaDeployment.spec.compute.configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

NovaDeployment.spec.compute.configTemplates[index].ephemeralStorage

Configure a PVC for ephemeral storage. By default, YAOOK will mount /var/lib/nova from the host. Configuring this setting for a node will make YAOOK allocate a PVC for that path instead.

Name	Type	Description	Required
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false

NovaDeployment.spec.compute.configTemplates[index].volumeBackends

Optional configuration of a Ceph RBD volume backend.

Name	Type	Description	Required
ceph	object	Ceph RBD backend configuration	false

NovaDeployment.spec.compute.configTemplates[index].volumeBackends.ceph

Ceph RBD backend configuration

Name	Type	Description	Required
enabled	boolean	Whether to enable the backend	true
keyringSecretName	string	Name of the Kubernetes secret containing the Ceph keyring to use. The secret must be in `kubernetes.io/rook` format.	true
user	string	RADOS username to use for authentication.	true
uuid	string	libvirt Secret UUID to store the keyring secret in. This must match the rbd_secret_uuid in Cinder to be able to use volumes.	true
cephConfig	map[string]object	Extra Ceph configuration to inject. This is, in contrast to the Cinder ceph configuration, on the top level, i.e. not specific to the RADOS user referenced above.The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

NovaDeployment.spec.compute.resources

Resource requests/limits related to containers in Nova Compute pods

Name	Type	Description	Required
chown-nova	object	Define resource requests/limits for the container	false
compute-evict-job	object	Define resource requests/limits for the container	false
keygen	object	Define resource requests/limits for the container	false
libvirtd	object	Define resource requests/limits for the container	false
nova-compute	object	Define resource requests/limits for the container	false
nova-compute-ssh	object	Define resource requests/limits for the container	false

NovaDeployment.spec.compute.resources.chown-nova

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.chown-nova.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.chown-nova.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.compute-evict-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.compute-evict-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.compute-evict-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.keygen

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.keygen.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.keygen.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.libvirtd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.libvirtd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.libvirtd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.nova-compute

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.nova-compute.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.nova-compute.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.nova-compute-ssh

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.nova-compute-ssh.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.nova-compute-ssh.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.ids

Name	Type	Description	Required
cinderGid	integer		false

NovaDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
nova-api-db-sync-job	object	Define resource requests/limits for the container	false
nova-create-cell1-job	object	Define resource requests/limits for the container	false
nova-db-cleanup-cronjob	object	Define resource requests/limits for the container	false
nova-db-sync-job	object	Define resource requests/limits for the container	false
nova-map-cell0-job	object	Define resource requests/limits for the container	false
placement-db-sync-job	object	Define resource requests/limits for the container	false

NovaDeployment.spec.jobResources.nova-api-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-api-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-api-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-create-cell1-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-create-cell1-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-create-cell1-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-map-cell0-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-map-cell0-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-map-cell0-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.placement-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.placement-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.placement-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.novaSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

NovaDeployment.spec.novaSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

NovaDeployment.spec.placementCleanup

Name	Type	Description	Required
schedule	string	The schedule is given in standard cron notation. Default: `0 0 * * *`	true

NovaDeployment.spec.placementSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

NovaDeployment.spec.placementSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

NovaDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NovaDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

NovaDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

OctaviaDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

OctaviaDeployment.spec

Name	Type	Description	Required
api	object		true
database	object	Configure the database deployment	true
health_manager	object		true
housekeeping	object		true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
octaviaConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `2024.1`	true
worker	object		true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
octaviaSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

OctaviaDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: `true`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
sslTerminator	object	Default: `map[]`	false

OctaviaDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

OctaviaDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

OctaviaDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: `nginx`	false

OctaviaDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.api.resources

Name	Type	Description	Required
octavia-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.api.resources.octavia-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.octavia-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.octavia-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.sslTerminator

Name	Type	Description	Required
respondingReadTimeout	integer	Set traefik parameter ‘transport.respondingTimeouts.readTimeout’ (time in seconds) to a large enough value for allowing the upload of larger images. Default: `7200`	false

OctaviaDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: `300`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

OctaviaDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: `0 0 * * *`	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: `false`	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

OctaviaDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

OctaviaDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: `virtual`	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

OctaviaDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `2`	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

OctaviaDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

OctaviaDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

OctaviaDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

OctaviaDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

OctaviaDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.health_manager

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

OctaviaDeployment.spec.health_manager.resources

Name	Type	Description	Required
octavia-health-manager	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.health_manager.resources.octavia-health-manager

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.health_manager.resources.octavia-health-manager.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.health_manager.resources.octavia-health-manager.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.housekeeping

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

OctaviaDeployment.spec.housekeeping.resources

Name	Type	Description	Required
octavia-housekeeping	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.housekeeping.resources.octavia-housekeeping

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.housekeeping.resources.octavia-housekeeping.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.housekeeping.resources.octavia-housekeeping.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

OctaviaDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

OctaviaDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: `1024`	false
memory	integer	Maximum memory used for the cache Default: `512`	false
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

OctaviaDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

OctaviaDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `3`	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: `8Gi`	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: `false`	false

OctaviaDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

OctaviaDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

OctaviaDeployment.spec.worker

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: `1`	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: `ScheduleAnyway`, `DoNotSchedule` Default: `ScheduleAnyway`	false

OctaviaDeployment.spec.worker.resources

Name	Type	Description	Required
octavia-worker	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.worker.resources.octavia-worker

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.worker.resources.octavia-worker.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.worker.resources.octavia-worker.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.jobResources

Name	Type	Description	Required
octavia-db-load-metadefs-job	object	Define resource requests/limits for the container	false
octavia-db-sync-job	object	Define resource requests/limits for the container	false
octavia-db-upgrade-post-job	object	Define resource requests/limits for the container	false
octavia-db-upgrade-pre-job	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-load-metadefs-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-load-metadefs-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-load-metadefs-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.octaviaSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

OctaviaDeployment.spec.octaviaSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of `/section/key`. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

OctaviaDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

OctaviaDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

OctaviaDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

TempestCronJob

Name	Type	Description	Required
spec	object		true
status	object		false

TempestCronJob.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
target	object		true
account_cleanup	boolean	Default: `false`	false
exclude	[]string		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
preprovisioned_users	object		false
pushgateway	string		false
region	string	Default: `RegionOne`	false
resources	object		false
schedule	string	The schedule is given in standard cron notation. Default: `0 0 * * *`	false
serial	boolean	Default: `false`	false
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `32.0.0`, `36.0.0`, `41.0.0`	false
tempestConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

TempestCronJob.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

TempestCronJob.spec.target

Name	Type	Description	Required
regex	string		false
service	enum	Enum: `cinder`, `glance`, `keystone`, `nova`, `neutron`, `barbican`, `telemetry`, `designate`, `all`	false

TempestCronJob.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

TempestCronJob.spec.preprovisioned_users

Name	Type	Description	Required
key	string		true
secret	object		true

TempestCronJob.spec.preprovisioned_users.secret

Name	Type	Description	Required
name	string		true

TempestCronJob.spec.resources

Name	Type	Description	Required
tempest-job	object	Define resource requests/limits for the container	false

TempestCronJob.spec.resources.tempest-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

TempestCronJob.spec.resources.tempest-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

TempestCronJob.spec.resources.tempest-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

TempestCronJob.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

TempestCronJob.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

TempestJob

Name	Type	Description	Required
spec	object		true
status	object		false

TempestJob.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
target	object		true
account_cleanup	boolean	Default: `false`	false
exclude	[]string		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
preprovisioned_users	object		false
pushgateway	string		false
region	string	Default: `RegionOne`	false
resources	object		false
serial	boolean	Default: `false`	false
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `32.0.0`, `36.0.0`, `41.0.0`	false
tempestConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

TempestJob.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

TempestJob.spec.target

Name	Type	Description	Required
regex	string		false
service	enum	Enum: `cinder`, `glance`, `keystone`, `nova`, `neutron`, `barbican`, `telemetry`, `designate`, `all`	false

TempestJob.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

TempestJob.spec.preprovisioned_users

Name	Type	Description	Required
key	string		true
secret	object		true

TempestJob.spec.preprovisioned_users.secret

Name	Type	Description	Required
name	string		true

TempestJob.spec.resources

Name	Type	Description	Required
tempest-job	object	Define resource requests/limits for the container	false

TempestJob.spec.resources.tempest-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

TempestJob.spec.resources.tempest-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

TempestJob.spec.resources.tempest-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

TempestJob.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `BackingOff`, `Completed`, `Failed`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

TempestJob.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

YaookDisruptionBudget

Name	Type	Description	Required
spec	object		false
status	object		false

YaookDisruptionBudget.spec

Name	Type	Description	Required
maxUnavailable	int or string	Minimum: `0`	true
nodeSelectors	[]object		true
disruptiveMaintenance	boolean	If this flag is true, virtual machines will be cold migrated from the hypervisor Default: `false`	false
preventDeletion	boolean	If this is true, Resources will not be deleted immediately if their coresponding node-label is removed. Manual deletion of novacomputenode resource is needed. Default: `false`	false
spareNodes	object		false

YaookDisruptionBudget.spec.nodeSelectors[index]

Name	Type	Description	Required
matchLabels	map[string]string		true

YaookDisruptionBudget.spec.spareNodes

Name	Type	Description	Required
amount	int or string	Minimum: `1`	true
spareAggregateRef	object		true
spotTrait	string		false

YaookDisruptionBudget.spec.spareNodes.spareAggregateRef

Name	Type	Description	Required
name	string		true

YaookDisruptionBudget.status

Name	Type	Description	Required
nodes	[]object		false

YaookDisruptionBudget.status.nodes[index]

Name	Type	Required
availableInstances	integer	true
configuredInstances	integer	true
existingInstances	integer	true
lastUpdateTime	string	true
readyInstances	integer	true
type	string	true
updatedInstances	integer	true
spareNodes	[]string	false

apps.yaook.cloud/v1

Resource Types:

ConfiguredDaemonSet

ConfiguredDaemonSet

Name	Type	Description	Required
spec	object		true
status	object		false

ConfiguredDaemonSet.spec

Name	Type	Required
targetNodes	[]string	true
template	object	true
volumeTemplates	[]object	true
updateStrategy	object	false

ConfiguredDaemonSet.spec.template

Name	Type	Description	Required
spec	object		true
metadata	object		false

ConfiguredDaemonSet.spec.volumeTemplates[index]

Name	Type	Required
nodeMap	map[string]object	true
volumeName	string	true
default	object	false

ConfiguredDaemonSet.spec.volumeTemplates[index].nodeMap[key]

Name	Type	Description	Required
template	object		true

ConfiguredDaemonSet.spec.volumeTemplates[index].default

Name	Type	Description	Required
template	object		true

ConfiguredDaemonSet.spec.updateStrategy

Name	Type	Description	Required
rollingUpdate	object		false
type	enum	Enum: `rollingUpdate` Default: `rollingUpdate`	false

ConfiguredDaemonSet.spec.updateStrategy.rollingUpdate

Name	Type	Description	Required
maxUnavailable	integer	Default: `1` Minimum: `1`	false

ConfiguredDaemonSet.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
currentNumberScheduled	integer		false
numberAvailable	integer		false
numberReady	integer		false
updatedGeneration	integer		false
updatedNumberScheduled	integer		false

ConfiguredDaemonSet.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

network.yaook.cloud/v1

Resource Types:

NeutronOVNBGPAgent
NeutronOVNAgent

NeutronOVNBGPAgent

Name	Type	Description	Required
spec	object		true
status	object		false

NeutronOVNBGPAgent.spec

Name	Type	Description	Required
bgpNodeAnnotationSuffix	string		true
bridgeName	string	Name of the provider bridge to which the BGP interface should be added.	true
localAS	integer	The AS number to be used on the BGP agent side. Minimum: `1` Maximum: `4.294967295e+09`	true
lockName	string		true
peers	map[string]object		true
addressScopes	[]string	List of address scope IDs for the subnet, in case you are using ovn_stretched_l2_bgp_driver	false
bgpAgentConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
debug	boolean	Enable debug logging. Default: `false`	false
driver	enum	Name of the ovn-bgp-agent driver that can be used. Please check ovn-bgp-agent docs for further details. Enum: `ovn_bgp_driver`, `ovn_stretched_l2_bgp_driver`, `ovn_evpn_driver` Default: `ovn_stretched_l2_bgp_driver`	false
hostname	string		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
issuerRef	object		false
resources	object		false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
syncInterval	integer	The interval time(seconds) when it should resync with southbound database. Default: `120`	false

NeutronOVNBGPAgent.spec.peers[key]

Name	Type	Description	Required
AS	integer	The AS number to be peered with. Minimum: `1` Maximum: `4.294967295e+09`	true
IP	string	List of peer IPs that have the same AS number and can be added to the same peer group.	true

NeutronOVNBGPAgent.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NeutronOVNBGPAgent.spec.issuerRef

Name	Type	Description	Required
name	string		true

NeutronOVNBGPAgent.spec.resources

Name	Type	Description	Required
frr-bgpd	object	Define resource requests/limits for the container	false
frr-zebra	object	Define resource requests/limits for the container	false
ovn-bgp-agent	object	Define resource requests/limits for the container	false

NeutronOVNBGPAgent.spec.resources.frr-bgpd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNBGPAgent.spec.resources.frr-bgpd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNBGPAgent.spec.resources.frr-bgpd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNBGPAgent.spec.resources.frr-zebra

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNBGPAgent.spec.resources.frr-zebra.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNBGPAgent.spec.resources.frr-zebra.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNBGPAgent.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NeutronOVNBGPAgent.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
eviction	object		false
state	enum	Enum: `Creating`, `Enabled`, `Disabled`, `Evicting`, `DisabledAndCleared` Default: `Creating`	false
updatedGeneration	integer		false

NeutronOVNBGPAgent.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`, `Evicted`, `Enabled`, `BoundToNode`, `RequiresRecreation`	true

NeutronOVNBGPAgent.status.eviction

Name	Type	Description	Required
reason	string		true

NeutronOVNAgent

Name	Type	Description	Required
spec	object		true
status	object		false

NeutronOVNAgent.spec

Name	Type	Description	Required
caConfigMapName	string		true
deployedOnComputeNode	boolean		true
issuerRef	object		true
keystoneRef	object	Keystone deployment to link this service to	true
novaRef	object		true
southboundServers	[]string		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
bridgeConfig	[]object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
imageRef	object		false
jemallocBackgroundThreads	integer	Maximum number of jemalloc background threads that are used to purge unused memory. Having 1-2 background threads can help to avoid ovn-controller latency spikes in large deployments. Setting this to zero (default) disables background threads. Minimum: `0`	false
neutronMetadataAgentConfig	[]map[string]object		false
northboundServers	[]string		false
ovnMonitorAll	boolean	Default: `true`	false
region	object	Configure the Region to use for this OpenStack service.	false
resources	object		false
scrapeInterval	integer	Time in milliseconds the metrics of the local ovsdb server are scraped	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
southboundInactivityProbe	integer	Time in milliseconds till ovsdb server see connection as inactive	false
state	enum	Enum: `Enabled`, `Disabled`, `DisabledAndCleared` Default: `Enabled`	false

NeutronOVNAgent.spec.issuerRef

Name	Type	Description	Required
name	string		true

NeutronOVNAgent.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

NeutronOVNAgent.spec.novaRef

Name	Type	Description	Required
name	string		true

NeutronOVNAgent.spec.bridgeConfig[index]

Name	Type	Description	Required
bridgeName	string		true
openstackPhysicalNetwork	string	This must be the same as –provider-physical-network, when setting up the provider network	true
uplinkDevice	string		true

NeutronOVNAgent.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NeutronOVNAgent.spec.imageRef

Name	Type	Required
neutron-ovn-agent	string	false
ovn	string	false
ovs	string	false

NeutronOVNAgent.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

NeutronOVNAgent.spec.resources

Name	Type	Description	Required
neutron-ovn-metadata-agent	object	Define resource requests/limits for the container	false
ovn-controller	object	Define resource requests/limits for the container	false
ovs-vswitchd	object	Define resource requests/limits for the container	false
ovs-vswitchd-monitoring	object	Define resource requests/limits for the container	false
ovsdb-server	object	Define resource requests/limits for the container	false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovn-controller

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovn-controller.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovn-controller.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovsdb-server

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovsdb-server.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovsdb-server.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NeutronOVNAgent.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
eviction	object		false
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
ovnVersion	string		false
state	enum	Enum: `Creating`, `Enabled`, `Disabled`, `Evicting`, `DisabledAndCleared` Default: `Creating`	false
updatedGeneration	integer		false

NeutronOVNAgent.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`, `Evicted`, `Enabled`, `BoundToNode`, `RequiresRecreation`	true

NeutronOVNAgent.status.eviction

Name	Type	Description	Required
reason	string		true

compute.yaook.cloud/v1

Resource Types:

NovaComputeNode
NovaHostAggregate
SSHIdentity

NovaComputeNode

Name	Type	Description	Required
spec	object		true
status	object		false

NovaComputeNode.spec

Name	Type	Description	Required
caConfigMapName	string		true
cephBackend	object		true
keystoneRef	object	Keystone deployment to link this service to	true
messageQueue	object		true
novaConfig	[]map[string]object		true
publicKeysSecretRef	object		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: `zed`, `2023.1`, `2023.2`, `2024.1`	true
appliedDisruptionBudget	string		false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
computeProviderConfig	[]object		false
ephemeralStorage	object		false
eviction	object	Compute node eviction configuration	false
hostAggregates	[]string		false
ids	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
imageRef	object		false
isSpareNode	boolean		false
memcachedRef	object		false
region	object	Configure the Region to use for this OpenStack service.	false
resources	object		false
state	enum	Enum: `Enabled`, `Disabled`, `DisabledAndCleared` Default: `Enabled`	false
sysinfoConfigMapRef	object		false
vnc	object		false

NovaComputeNode.spec.cephBackend

Name	Type	Description	Required
enabled	boolean		true
cephConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
keyringSecretName	string		false
user	string		false
uuid	string		false

NovaComputeNode.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

NovaComputeNode.spec.messageQueue

Name	Type	Description	Required
amqpServerRef	object		true

NovaComputeNode.spec.messageQueue.amqpServerRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.publicKeysSecretRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.ephemeralStorage

Name	Type	Description	Required
storageClassName	string		true
storageSize	string		true

NovaComputeNode.spec.eviction

Compute node eviction configuration

Name	Type	Description	Required
ironicNodeShutdown	object	Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE	false
manager	object	Default: `map[]`	false
netboxCreds	object	Secret reference to Credentials for netbox, containing keys: URL, TOKEN	false
netboxSetFailed	boolean	option to set a node to failed in netbox if it is to be evicted Default: `false`	false
volumeLockDurationSeconds	integer	wait for releasing the volume lock during the eviction Default: `0`	false

NovaComputeNode.spec.eviction.ironicNodeShutdown

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaComputeNode.spec.eviction.ironicNodeShutdown.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.eviction.manager

Name	Type	Description	Required
enabled	boolean	Defines if the Eviction Manager will be deployed. Default: `false`	false
interval	integer	The interval at which the operator polls the Compute Node status in seconds. Default: `15`	false
max_per_hour	integer	The number of computenodes that are allowed to change to down in the last hour, before the Eviction Manager stops creating eviction jobs. Default: `5`	false

NovaComputeNode.spec.eviction.netboxCreds

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaComputeNode.spec.eviction.netboxCreds.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.ids

Name	Type	Description	Required
cinderGid	integer		false

NovaComputeNode.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.imageRef

Name	Type	Description	Required
nova-compute	string		false

NovaComputeNode.spec.memcachedRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: `RegionOne`	false
parent	string		false

NovaComputeNode.spec.resources

Name	Type	Description	Required
chown-nova	object	Define resource requests/limits for the container	false
compute-evict-job	object	Define resource requests/limits for the container	false
keygen	object	Define resource requests/limits for the container	false
libvirtd	object	Define resource requests/limits for the container	false
nova-compute	object	Define resource requests/limits for the container	false
nova-compute-ssh	object	Define resource requests/limits for the container	false

NovaComputeNode.spec.resources.chown-nova

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.chown-nova.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.chown-nova.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.compute-evict-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.compute-evict-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.compute-evict-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.keygen

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.keygen.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.keygen.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.libvirtd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.libvirtd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.libvirtd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.nova-compute

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.nova-compute.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.nova-compute.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.nova-compute-ssh

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.nova-compute-ssh.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.nova-compute-ssh.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.sysinfoConfigMapRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.vnc

Name	Type	Description	Required
baseUrl	string		true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true

NovaComputeNode.spec.vnc.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: `ca-issuer`	false

NovaComputeNode.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
eviction	object		false
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
state	enum	Enum: `Creating`, `Enabled`, `Disabled`, `Evicting`, `DisabledAndCleared` Default: `Creating`	false
updatedGeneration	integer		false

NovaComputeNode.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`, `Evicted`, `Enabled`, `BoundToNode`, `RequiresRecreation`	true

NovaComputeNode.status.eviction

Name	Type	Description	Required
reason	string		true

NovaHostAggregate

Name	Type	Description	Required
spec	object		true
status	object		false

NovaHostAggregate.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
novaRef	object		true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
properties	object		false
targetRelease	string	The release to deploy. Changing this will trigger an upgrade.	false
zone	string		false

NovaHostAggregate.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: `KeystoneDeployment`, `ExternalKeystoneDeployment` Default: `KeystoneDeployment`	false

NovaHostAggregate.spec.novaRef

Name	Type	Description	Required
name	string		true

NovaHostAggregate.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NovaHostAggregate.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: `Created`, `Updating`, `WaitingForDependency`, `Updated`, `BackingOff`, `InvalidConfiguration`	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

NovaHostAggregate.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: `Converged`, `GarbageCollected`	true

SSHIdentity

Name	Type	Description	Required
status	object		false

SSHIdentity.status

Name	Type	Description	Required
keys	object		true

SSHIdentity.status.keys

Name	Type	Description	Required
host	[]string		true
user	[]string		true