API Reference

This API reference is automatically generated from the custom resource definitions, which in turn are generated using cuelang files. To update this documentation, update the description fields generated via Cue.

Packages:

infra.yaook.cloud/v1

Resource Types:

AMQPServer

Name

Type

Description

Required

spec

object

true

status

object

false

AMQPServer.spec

Name

Type

Description

Required

backendCAIssuerRef

object

true

frontendIssuerRef

object

true

imageRef

string

true

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

true

additionalFrontendCertDnsNames

[]string

false

enabledPlugins

string

Plugins that should be enabled by AMQPServer

Default: rabbitmq_management,rabbitmq_prometheus

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

implementation

enum

Enum: RabbitMQ
Default: RabbitMQ

false

policies

map[string]map[string]object

false

rabbitmqConfig

map[string]int or string

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource limits for containers spawned by the AMQPServer

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

AMQPServer.spec.backendCAIssuerRef

Name

Type

Description

Required

name

string

true

AMQPServer.spec.frontendIssuerRef

Name

Type

Description

Required

name

string

true

AMQPServer.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

AMQPServer.spec.policies[key][key]

Name

Type

Description

Required

applyto

string

true

definition

object

true

pattern

string

true

priority

integer

true

AMQPServer.spec.resources

Resource limits for containers spawned by the AMQPServer

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

AMQPServer.spec.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

AMQPServer.spec.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

AMQPServer.spec.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

AMQPServer.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

AMQPServer.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

replicas

integer

false

updatedGeneration

integer

false

AMQPServer.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

AMQPUser

Name

Type

Description

Required

spec

object

true

status

object

false

AMQPUser.spec

Name

Type

Description

Required

passwordSecretKeyRef

object

true

serverRef

object

true

user

string

true

AMQPUser.spec.passwordSecretKeyRef

Name

Type

Description

Required

name

string

true

key

string

Key within the Secret to extract

Default: password

false

AMQPUser.spec.serverRef

Name

Type

Description

Required

name

string

true

AMQPUser.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

updatedGeneration

integer

false

AMQPUser.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

MemcachedService

Name

Type

Description

Required

spec

object

true

status

object

false

MemcachedService.spec

Name

Type

Description

Required

imageRef

string

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

connections

integer

Default: 1024

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

issuerRef

object

false

memory

integer

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

MemcachedService.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

MemcachedService.spec.issuerRef

Name

Type

Description

Required

name

string

true

MemcachedService.spec.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the container

false

memcached-exporter

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

MemcachedService.spec.resources.memcached

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MemcachedService.spec.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MemcachedService.spec.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MemcachedService.spec.resources.memcached-exporter

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MemcachedService.spec.resources.memcached-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MemcachedService.spec.resources.memcached-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MemcachedService.spec.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MemcachedService.spec.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MemcachedService.spec.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MemcachedService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MemcachedService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MemcachedService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MemcachedService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

MemcachedService.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

replicas

integer

false

updatedGeneration

integer

false

MemcachedService.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

MySQLService

Name

Type

Description

Required

spec

object

true

status

object

false

MySQLService.spec

Name

Type

Description

Required

backendCAIssuerRef

object

true

backup

object

Backup configuration

true

database

string

true

frontendIssuerRef

object

true

proxy

object

true

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: 10.2, 10.3, 10.4, 10.5, 10.6, 10.11, 11.0

true

additionalFrontendCertDnsNames

[]string

false

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

implementation

enum

Enum: MariaDB
Default: MariaDB

false

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

MySQLService.spec.backendCAIssuerRef

Name

Type

Description

Required

name

string

true

MySQLService.spec.backup

Backup configuration

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

MySQLService.spec.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

MySQLService.spec.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

MySQLService.spec.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

MySQLService.spec.frontendIssuerRef

Name

Type

Description

Required

name

string

true

MySQLService.spec.proxy

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 1

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

MySQLService.spec.proxy.resources

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the container

false

haproxy

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

MySQLService.spec.proxy.resources.create-ca-bundle

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.proxy.resources.haproxy

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.proxy.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

MySQLService.spec.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

MySQLService.spec.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

MySQLService.spec.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the container

false

backup-shifter

object

Define resource requests/limits for the container

false

mariadb-galera

object

Define resource requests/limits for the container

false

mysqld-exporter

object

Define resource requests/limits for the container

false

MySQLService.spec.resources.backup-creator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.resources.backup-shifter

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.resources.mariadb-galera

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.resources.mysqld-exporter

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

MySQLService.spec.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

MySQLService.spec.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

MySQLService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

MySQLService.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

replicas

integer

false

updatedGeneration

integer

false

MySQLService.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

MySQLUser

Name

Type

Description

Required

spec

object

true

status

object

false

MySQLUser.spec

Name

Type

Description

Required

passwordSecretKeyRef

object

true

serviceRef

object

true

user

string

true

databasePrivileges

[]string

Default: [ALL PRIVILEGES]

false

globalPrivileges

[]string

Default: []

false

MySQLUser.spec.passwordSecretKeyRef

Name

Type

Description

Required

name

string

true

key

string

Key within the Secret to extract

Default: password

false

MySQLUser.spec.serviceRef

Name

Type

Description

Required

name

string

true

MySQLUser.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

updatedGeneration

integer

false

MySQLUser.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

OVSDBService

Name

Type

Description

Required

spec

object

true

status

object

false

OVSDBService.spec

Name

Type

Description

Required

backup

object

Backup configuration

true

dbSchema

enum

Enum: northbound, southbound

true

imageRef

string

true

issuerRef

object

true

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

inactivityProbeMs

integer

Time in milliseconds till ovsdb server see connection as inactive

false

ovnRelay

object

Information, if and how many ovn-relays should be created.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

scrapeIntervalMs

integer

Time in milliseconds the metrics of the ovsdb server are scraped

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

OVSDBService.spec.backup

Backup configuration

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

OVSDBService.spec.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

OVSDBService.spec.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

OVSDBService.spec.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

OVSDBService.spec.issuerRef

Name

Type

Description

Required

name

string

true

OVSDBService.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

OVSDBService.spec.ovnRelay

Information, if and how many ovn-relays should be created.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

OVSDBService.spec.ovnRelay.resources

Name

Type

Description

Required

ovn-relay

object

Define resource requests/limits for the container

false

service-reload’

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

OVSDBService.spec.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the container

false

backup-shifter

object

Define resource requests/limits for the container

false

ovsdb

object

Define resource requests/limits for the container

false

service-reload’

object

Define resource requests/limits for the container

false

setup-ovsdb

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

OVSDBService.spec.resources.backup-creator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.resources.backup-shifter

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.resources.ovsdb

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.resources.ovsdb.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.resources.ovsdb.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.resources.service-reload’

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.resources.service-reload’.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.resources.service-reload’.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.resources.setup-ovsdb

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.resources.setup-ovsdb.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.resources.setup-ovsdb.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

OVSDBService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

OVSDBService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

OVSDBService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

OVSDBService.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

dbSchema

string

false

updatedGeneration

integer

false

OVSDBService.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

PowerDNSService

Name

Type

Description

Required

spec

object

true

status

object

false

PowerDNSService.spec

Name

Type

Description

Required

apiKeySecret

object

A single secret injection configuration. This will set the secret value as the API key inside the PowerDNS configuration.

true

database

object

Configure the database deployment

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

subnetCidr

string

IP range of the k8s pod network. Used to only allow requests from within the k8s network.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: 4.9

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

loadBalancerIP

string

IP address of the load balancer for the PowerDNS webserver

false

powerdnsConfig

object

Key value pairs to overwrite pdns.conf settings

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

PowerDNSService.spec.apiKeySecret

A single secret injection configuration. This will set the secret value as the API key inside the PowerDNS configuration.

Name

Type

Description

Required

key

string

Key of the Kubernetes Secret to read

true

secretName

string

Name of the Kubernetes Secret to read

true

PowerDNSService.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

PowerDNSService.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

PowerDNSService.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

PowerDNSService.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

PowerDNSService.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

PowerDNSService.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

PowerDNSService.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

PowerDNSService.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

PowerDNSService.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

PowerDNSService.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

PowerDNSService.spec.resources

Name

Type

Description

Required

powerdns

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

PowerDNSService.spec.resources.powerdns

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.resources.powerdns.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.resources.powerdns.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

PowerDNSService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

PowerDNSService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

PowerDNSService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

PowerDNSService.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

replicas

integer

false

updatedGeneration

integer

false

PowerDNSService.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

yaook.cloud/v1

Resource Types:

BarbicanDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

BarbicanDeployment.spec

Name

Type

Description

Required

api

object

Configure the Barbican API deployment

true

barbicanConfig

map[string]object

Barbican OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

database

object

Configure the database deployment

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneListener

object

Configure the Barbican Keystone listener deployment

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

messageQueue

object

Configure the RabbitMQ instance.

true

region

object

Configure the Region to use for this OpenStack service.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed

true

barbicanSecrets

[]object

List of secrets to inject into the service configuration.

false

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

Resource limits for Job Pod containers spawned by the Operator

false

policy

object

OpenStack policy to merge with the default policy

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

BarbicanDeployment.spec.api

Configure the Barbican API deployment

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

BarbicanDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

BarbicanDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

BarbicanDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

BarbicanDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

BarbicanDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

BarbicanDeployment.spec.api.resources

Name

Type

Description

Required

barbican-api

object

Define resource requests/limits for the container

false

barbican-worker

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

BarbicanDeployment.spec.api.resources.barbican-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.barbican-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.barbican-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.barbican-worker

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.barbican-worker.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.barbican-worker.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

BarbicanDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

BarbicanDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

BarbicanDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

BarbicanDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

BarbicanDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

BarbicanDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

BarbicanDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

BarbicanDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

BarbicanDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

BarbicanDeployment.spec.keystoneListener

Configure the Barbican Keystone listener deployment

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

BarbicanDeployment.spec.keystoneListener.resources

Name

Type

Description

Required

barbican-keystone-listener

object

Define resource requests/limits for the container

false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

BarbicanDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

BarbicanDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

BarbicanDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

BarbicanDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

BarbicanDeployment.spec.barbicanSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

BarbicanDeployment.spec.barbicanSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

BarbicanDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

BarbicanDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name

Type

Description

Required

barbican-db-sync-job

object

Define resource requests/limits for the container

false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

BarbicanDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

BarbicanDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

BarbicanDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

CeilometerDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

CeilometerDeployment.spec

Name

Type

Description

Required

ceilometerCompute

object

true

ceilometerConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

central

object

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

messageQueue

object

Configure the RabbitMQ instance.

true

notification

object

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed

true

additionalHosts

[]object

false

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

ceilometerEventDefinitions

[]object

false

ceilometerEventPipeline

object

false

ceilometerPipeline

object

false

ceilometerPolling

[]object

false

ceilometerSecrets

[]object

List of secrets to inject into the service configuration.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

false

pankoConfig

[]object

List of secrets to inject into the service configuration.

false

skip_gnocchi_bootstrap

boolean

Default: false

false

CeilometerDeployment.spec.ceilometerCompute

Name

Type

Description

Required

configTemplates

[]object

Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.

true

enabled

boolean

Deploy ceilometer-agent-compute

Default: true

false

resources

object

false

CeilometerDeployment.spec.ceilometerCompute.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name

Type

Description

Required

nodeSelectors

[]object

List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.

true

ceilometerComputeConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

CeilometerDeployment.spec.ceilometerCompute.configTemplates[index].nodeSelectors[index]

A single node selector.

Name

Type

Description

Required

matchLabels

map[string]string

Label keys and values all of which nodes must have to match the node selector.

true

CeilometerDeployment.spec.ceilometerCompute.resources

Name

Type

Description

Required

ceilometer-compute-agent

object

Define resource requests/limits for the container

false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CeilometerDeployment.spec.central

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 1

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CeilometerDeployment.spec.central.resources

Name

Type

Description

Required

ceilometer-agent-central

object

Define resource requests/limits for the container

false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CeilometerDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

CeilometerDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

CeilometerDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CeilometerDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

CeilometerDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CeilometerDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CeilometerDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CeilometerDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

CeilometerDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CeilometerDeployment.spec.notification

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 1

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CeilometerDeployment.spec.notification.resources

Name

Type

Description

Required

ceilometer-agent-notification

object

Define resource requests/limits for the container

false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CeilometerDeployment.spec.additionalHosts[index]

Name

Type

Description

Required

hostnames

[]string

true

ip

string

true

CeilometerDeployment.spec.ceilometerEventDefinitions[index]

Name

Type

Description

Required

event_type

[]string

true

traits

map[string]object

true

CeilometerDeployment.spec.ceilometerPolling[index]

Name

Type

Description

Required

interval

integer

true

meters

[]string

true

name

string

true

discovery

[]string

false

resources

[]string

false

CeilometerDeployment.spec.ceilometerSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

CeilometerDeployment.spec.ceilometerSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

CeilometerDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

CeilometerDeployment.spec.jobResources

Name

Type

Description

Required

ceilometer-upgrade-job

object

Define resource requests/limits for the container

false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CeilometerDeployment.spec.pankoConfig[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

CeilometerDeployment.spec.pankoConfig[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

CeilometerDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

CeilometerDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

CinderDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

CinderDeployment.spec

Name

Type

Description

Required

api

object

Cinder API deployment configuration

true

backends

map[string]object

Cinder-volume services (‘backends’) to deploy. Each key is a backend/cinder-volume service; the specific backend which is used is determined by the value.

true

backup

map[string]object

Cinder-backup services to deploy. Each key is a cinder-backup service.

true

cinderConfig

map[string]object

Cinder OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

database

object

Configure the database deployment

true

databaseCleanup

object

Configuration of a periodic database cleanup job, using cinder-manage.

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

messageQueue

object

Configure the RabbitMQ instance.

true

region

object

Configure the Region to use for this OpenStack service.

true

scheduler

object

Cinder Scheduler deployment configuration

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

cinderSecrets

[]object

List of secrets to inject into the service configuration.

false

conversionVolume

object

false

ids

object

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

Resource limits for Job Pod containers spawned by the Operator

false

policy

object

OpenStack policy to merge with the default policy

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

CinderDeployment.spec.api

Cinder API deployment configuration

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Cinder API.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CinderDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

CinderDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

CinderDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

CinderDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

CinderDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

CinderDeployment.spec.api.resources

Resource requests/limits for containers related to the Cinder API.

Name

Type

Description

Required

cinder-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

CinderDeployment.spec.api.resources.cinder-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.cinder-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.cinder-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.backends[key]

Cinder-volume service (‘backend’) configuration. Exactly one of rbd and netapp must be set in order for the configuration to be valid, as that determines the type of backend which is used.

Name

Type

Description

Required

volume

object

Configure the cinder-volume deployment for this backend.

true

cinderSecrets

[]object

List of secrets to inject into the service configuration.

false

netapp

object

false

rbd

object

Ceph RBD backend

false

CinderDeployment.spec.backends[key].volume

Configure the cinder-volume deployment for this backend.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 1
Minimum: 0
Maximum: 1

false

resources

object

Resource requests/limits for the containers related to cinder-volume.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CinderDeployment.spec.backends[key].volume.resources

Resource requests/limits for the containers related to cinder-volume.

Name

Type

Description

Required

cinder-volume

object

Define resource requests/limits for the container

false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.backends[key].cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

CinderDeployment.spec.backends[key].cinderSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

CinderDeployment.spec.backends[key].netapp

Name

Type

Description

Required

login

string

Username to use for logging into the netapp

true

passwordReference

string

Reference to a secret containing the password for the netapp login.

true

server

string

FQDN of the netapp management api.

true

shares

[]string

A list of all shares that this backend exports

true

vserver

string

The vserver of the netapp to use for this backend

true

backendConfig

map[string]string

Extra configuration values to add to the Cinder configuration section for this backend. For global configuration, use the spec.cinderConfig field instead.

false

copyoffloadConfigMap

object

Reference to a configmap containing the copyoffload binary from netapp. Since this binary is proprietary we can not distribute it with yaook and you need to manually download it and put it into a configmap.

false

CinderDeployment.spec.backends[key].netapp.copyoffloadConfigMap

Reference to a configmap containing the copyoffload binary from netapp. Since this binary is proprietary we can not distribute it with yaook and you need to manually download it and put it into a configmap.

Name

Type

Description

Required

name

string

true

CinderDeployment.spec.backends[key].rbd

Ceph RBD backend

Name

Type

Description

Required

keyringReference

string

Name of the Kubernetes secret containing the Ceph keyring to use. The secret must be in kubernetes.io/rook format.

true

keyringUsername

string

RADOS username to use for authentication.

true

backendConfig

map[string]JSON

Extra configuration values to add to the Cinder configuration section for this backend. For global configuration, use the spec.cinderConfig field instead.

false

cephConfig

map[string]JSON

Additional configuration to add to the ceph configuration for this client. This cannot be used for global ceph configuration. Most common use is to add a mon_host key here in order to define where to find the mons.

false

CinderDeployment.spec.backup[key]

Cinder-backup service deployment configuration.

Name

Type

Description

Required

cinderConfig

map[string]object

Cinder Backup OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

cinderSecrets

[]object

List of secrets to inject into the service configuration.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Cinder Backup service.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

terminationGracePeriod

integer

Default: 3600

false

CinderDeployment.spec.backup[key].cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

CinderDeployment.spec.backup[key].cinderSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

CinderDeployment.spec.backup[key].resources

Resource requests/limits for containers related to the Cinder Backup service.

Name

Type

Description

Required

cinder-backup

object

Define resource requests/limits for the container

false

CinderDeployment.spec.backup[key].resources.cinder-backup

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.backup[key].resources.cinder-backup.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.backup[key].resources.cinder-backup.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

CinderDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

CinderDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

CinderDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

CinderDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

CinderDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CinderDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

CinderDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

CinderDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

CinderDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.databaseCleanup

Configuration of a periodic database cleanup job, using cinder-manage.

Name

Type

Description

Required

deletionTimeRange

integer

Deleted database rows older than this number of days will be removed.

Default: 60

true

schedule

string

The schedule is given in standard cron notation.

Default: 0 0 * * *

true

CinderDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

CinderDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

CinderDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CinderDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

CinderDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

CinderDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

CinderDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

CinderDeployment.spec.scheduler

Cinder Scheduler deployment configuration

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Cinder Scheduler.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

CinderDeployment.spec.scheduler.resources

Resource requests/limits for containers related to the Cinder Scheduler.

Name

Type

Description

Required

cinder-scheduler

object

Define resource requests/limits for the container

false

CinderDeployment.spec.scheduler.resources.cinder-scheduler

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.scheduler.resources.cinder-scheduler.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.scheduler.resources.cinder-scheduler.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

CinderDeployment.spec.cinderSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

CinderDeployment.spec.conversionVolume

Name

Type

Description

Required

emptyDir

object

EmptyDir represents a temporary directory that shares a pod’s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir

true

CinderDeployment.spec.conversionVolume.emptyDir

EmptyDir represents a temporary directory that shares a pod’s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir

Name

Type

Description

Required

medium

string

What type of storage medium should back this directory.

Default: :code:``

false

sizeLimit

string

Total amount of local storage required for this EmptyDir volume.

false

CinderDeployment.spec.ids

Name

Type

Description

Required

gid

integer

false

uid

integer

false

CinderDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

CinderDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name

Type

Description

Required

cinder-db-cleanup-cronjob

object

Define resource requests/limits for the container

false

cinder-db-sync-job

object

Define resource requests/limits for the container

false

cinder-db-upgrade-post-job

object

Define resource requests/limits for the container

false

cinder-db-upgrade-pre-job

object

Define resource requests/limits for the container

false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.jobResources.cinder-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.jobResources.cinder-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.jobResources.cinder-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

CinderDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

CinderDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

CinderDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

DesignateDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

DesignateDeployment.spec

Name

Type

Description

Required

api

object

Designate API deployment configuration

true

database

object

Configure the database deployment

true

designateConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

nsRecords

[]object

List of NS records for zones hosted within the default pool

true

powerdns

object

true

region

object

Configure the Region to use for this OpenStack service.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: 2024.1

true

additionalNameservers

[]object

List of secondary nameservers that will be informed about zone changes

false

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

central

object

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

Resource limits for Job Pod containers spawned by the Operator

false

messageQueue

object

Configure the RabbitMQ instance.

false

minidns

object

false

policy

object

OpenStack policy to merge with the default policy

false

producer

object

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

worker

object

false

DesignateDeployment.spec.api

Designate API deployment configuration

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Designate API.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

DesignateDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

DesignateDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

DesignateDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

DesignateDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

DesignateDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

DesignateDeployment.spec.api.resources

Resource requests/limits for containers related to the Designate API.

Name

Type

Description

Required

designate-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

DesignateDeployment.spec.api.resources.designate-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.designate-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.designate-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

DesignateDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

DesignateDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

DesignateDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

DesignateDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

DesignateDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

DesignateDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

DesignateDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

DesignateDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

DesignateDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

DesignateDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

DesignateDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

DesignateDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

DesignateDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.nsRecords[index]

Name

Type

Description

Required

hostname

string

true

priority

integer

true

DesignateDeployment.spec.powerdns

Name

Type

Description

Required

database

object

Configure the database deployment

true

subnetCidr

string

Comma separated IP ranges of the k8s pod network. Used to only allow requests from within the k8s network.

true

loadBalancerIP

string

IP address of the load balancer for the PowerDNS webserver

false

replicas

integer

Number of replicas for the service

Default: 3

false

DesignateDeployment.spec.powerdns.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

DesignateDeployment.spec.powerdns.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

DesignateDeployment.spec.powerdns.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

DesignateDeployment.spec.powerdns.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

DesignateDeployment.spec.powerdns.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

DesignateDeployment.spec.powerdns.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

DesignateDeployment.spec.powerdns.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.powerdns.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

DesignateDeployment.spec.powerdns.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

DesignateDeployment.spec.powerdns.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

DesignateDeployment.spec.powerdns.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

DesignateDeployment.spec.additionalNameservers[index]

Name

Type

Description

Required

host

string

true

port

integer

true

DesignateDeployment.spec.central

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Designate Central service

false

DesignateDeployment.spec.central.resources

Resource requests/limits for containers related to the Designate Central service

Name

Type

Description

Required

central

object

Define resource requests/limits for the container

false

DesignateDeployment.spec.central.resources.central

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.central.resources.central.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.central.resources.central.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

DesignateDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name

Type

Description

Required

designate-db-sync-job

object

Define resource requests/limits for the container

false

designate-pool-update-job

object

Define resource requests/limits for the container

false

DesignateDeployment.spec.jobResources.designate-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.jobResources.designate-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.jobResources.designate-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.jobResources.designate-pool-update-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.jobResources.designate-pool-update-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.jobResources.designate-pool-update-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

DesignateDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

DesignateDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.minidns

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Designate MiniDNS server

false

DesignateDeployment.spec.minidns.resources

Resource requests/limits for containers related to the Designate MiniDNS server

Name

Type

Description

Required

minidns

object

Define resource requests/limits for the container

false

DesignateDeployment.spec.minidns.resources.minidns

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.minidns.resources.minidns.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.minidns.resources.minidns.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.producer

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Designate Producer service

false

DesignateDeployment.spec.producer.resources

Resource requests/limits for containers related to the Designate Producer service

Name

Type

Description

Required

producer

object

Define resource requests/limits for the container

false

DesignateDeployment.spec.producer.resources.producer

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.producer.resources.producer.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.producer.resources.producer.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

DesignateDeployment.spec.worker

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits for containers related to the Designate Worker service

false

DesignateDeployment.spec.worker.resources

Resource requests/limits for containers related to the Designate Worker service

Name

Type

Description

Required

worker

object

Define resource requests/limits for the container

false

DesignateDeployment.spec.worker.resources.worker

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

DesignateDeployment.spec.worker.resources.worker.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

DesignateDeployment.spec.worker.resources.worker.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

DesignateDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

DesignateDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

GlanceDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

GlanceDeployment.spec

Name

Type

Description

Required

api

object

true

backends

object

true

database

object

Configure the database deployment

true

glanceConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

region

object

Configure the Region to use for this OpenStack service.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed, 2023.1

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

glanceSecrets

[]object

List of secrets to inject into the service configuration.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

false

policy

object

OpenStack policy to merge with the default policy

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

GlanceDeployment.spec.api

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

sslTerminator

object

Default: map[]

false

GlanceDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

GlanceDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

GlanceDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

GlanceDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

GlanceDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

GlanceDeployment.spec.api.resources

Name

Type

Description

Required

glance-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

GlanceDeployment.spec.api.resources.glance-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.glance-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.glance-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.api.sslTerminator

Name

Type

Description

Required

respondingReadTimeout

integer

Set traefik parameter ‘transport.respondingTimeouts.readTimeout’ (time in seconds) to a large enough value for allowing the upload of larger images.

Default: 7200

false

GlanceDeployment.spec.backends

Name

Type

Description

Required

ceph

object

false

file

object

false

s3

object

false

GlanceDeployment.spec.backends.ceph

Name

Type

Description

Required

keyringPoolname

string

true

keyringReference

string

true

keyringUsername

string

true

cephConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

GlanceDeployment.spec.backends.file

Name

Type

Description

Required

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

true

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

true

GlanceDeployment.spec.backends.s3

Name

Type

Description

Required

bucket

string

true

credentialRef

object

true

endpoint

string

true

addressingStyle

enum

Enum: virtual, path, auto
Default: virtual

false

GlanceDeployment.spec.backends.s3.credentialRef

Name

Type

Description

Required

name

string

true

GlanceDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

GlanceDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

GlanceDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

GlanceDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

GlanceDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

GlanceDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

GlanceDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

GlanceDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

GlanceDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

GlanceDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

GlanceDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

GlanceDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

GlanceDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

GlanceDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

GlanceDeployment.spec.glanceSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

GlanceDeployment.spec.glanceSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

GlanceDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

GlanceDeployment.spec.jobResources

Name

Type

Description

Required

glance-db-load-metadefs-job

object

Define resource requests/limits for the container

false

glance-db-sync-job

object

Define resource requests/limits for the container

false

glance-db-upgrade-post-job

object

Define resource requests/limits for the container

false

glance-db-upgrade-pre-job

object

Define resource requests/limits for the container

false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.jobResources.glance-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.jobResources.glance-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.jobResources.glance-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GlanceDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

GlanceDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

GlanceDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

GnocchiDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

GnocchiDeployment.spec

Name

Type

Description

Required

api

object

true

backends

object

true

database

object

Configure the database deployment

true

gnocchiConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

metricd

object

true

region

object

Configure the Region to use for this OpenStack service.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: train, yoga, zed, 2023.1, 2023.2, 2024.1

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

false

policy

object

OpenStack policy to merge with the default policy

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

GnocchiDeployment.spec.api

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

GnocchiDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

GnocchiDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

GnocchiDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

GnocchiDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

GnocchiDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

GnocchiDeployment.spec.api.resources

Name

Type

Description

Required

gnocchi-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

GnocchiDeployment.spec.api.resources.gnocchi-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.gnocchi-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.gnocchi-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.backends

Name

Type

Description

Required

ceph

object

false

s3

object

false

GnocchiDeployment.spec.backends.ceph

Name

Type

Description

Required

keyringReference

string

true

keyringUsername

string

true

cephConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

GnocchiDeployment.spec.backends.s3

Name

Type

Description

Required

bucketPrefix

string

true

credentialRef

object

true

endpoint

string

true

GnocchiDeployment.spec.backends.s3.credentialRef

Name

Type

Description

Required

name

string

true

GnocchiDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

There seems to be no corresponding option in the gnocchi configuration, so we raise the timeout here in order to avoid too much overhead from killed connections.

Default: 3600

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

GnocchiDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

GnocchiDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

GnocchiDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

GnocchiDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

GnocchiDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

GnocchiDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

GnocchiDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

GnocchiDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

GnocchiDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

GnocchiDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

GnocchiDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

GnocchiDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

GnocchiDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.metricd

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

GnocchiDeployment.spec.metricd.resources

Name

Type

Description

Required

gnocchi-metricd

object

Define resource requests/limits for the container

false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

GnocchiDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

GnocchiDeployment.spec.jobResources

Name

Type

Description

Required

gnocchi-upgrade-job

object

Define resource requests/limits for the container

false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

GnocchiDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

GnocchiDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

GnocchiDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

HorizonDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

HorizonDeployment.spec

Name

Type

Description

Required

ingress

object

Ingress configuration

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: train, zed

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

replicas

integer

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

HorizonDeployment.spec.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

HorizonDeployment.spec.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

HorizonDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

HorizonDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

HorizonDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

HorizonDeployment.spec.resources

Name

Type

Description

Required

horizon

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

HorizonDeployment.spec.resources.horizon

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

HorizonDeployment.spec.resources.horizon.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

HorizonDeployment.spec.resources.horizon.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

HorizonDeployment.spec.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

HorizonDeployment.spec.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

HorizonDeployment.spec.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

HorizonDeployment.spec.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

HorizonDeployment.spec.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

HorizonDeployment.spec.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

HorizonDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

HorizonDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

HorizonDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

InfrastructureIronicDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

InfrastructureIronicDeployment.spec

Name

Type

Description

Required

api

object

true

database

object

true

dnsmasq

object

true

imageServer

object

true

inspectorConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

ironicConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

memcached

object

Memcached deployment configuration

true

pxe

object

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed, 2023.1

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

conductor

object

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

ingressAddress

string

IP of the ingress that hosts the APIs and image server. This can be unset by default, than the ingress IP is taken from the k8s ingress/service. So this is only needed if the service is of type NodePort. Newer setups don’t need to set this.

false

inspectorApi

object

false

ipa

object

false

jobResources

object

false

keystoneRef

object

Keystone deployment to link this service to

false

region

object

Configure the Region to use for this OpenStack service.

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

tftpAddress

string

false

InfrastructureIronicDeployment.spec.api

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

InfrastructureIronicDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

InfrastructureIronicDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

InfrastructureIronicDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

InfrastructureIronicDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.api.resources

Name

Type

Description

Required

ironic-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

InfrastructureIronicDeployment.spec.api.resources.ironic-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.api.resources.ironic-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.api.resources.ironic-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database

Name

Type

Description

Required

inspector

object

Configure the database deployment

true

ironic

object

Configure the database deployment

true

InfrastructureIronicDeployment.spec.database.inspector

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

InfrastructureIronicDeployment.spec.database.inspector.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.database.inspector.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.inspector.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

InfrastructureIronicDeployment.spec.database.inspector.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

InfrastructureIronicDeployment.spec.database.inspector.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

InfrastructureIronicDeployment.spec.database.ironic.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.database.ironic.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

InfrastructureIronicDeployment.spec.database.ironic.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

InfrastructureIronicDeployment.spec.database.ironic.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.dnsmasq

Name

Type

Description

Required

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 100Mi

false

InfrastructureIronicDeployment.spec.dnsmasq.resources

Name

Type

Description

Required

dnsmasq

object

Define resource requests/limits for the container

false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.imageServer

Name

Type

Description

Required

ingress

object

Ingress configuration

true

pvcAccessMode

enum

PVC access mode. See upstream Kubernetes documentation.

Enum: ReadWriteOnce, ReadWriteMany
Default: ReadWriteOnce

false

resources

object

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

InfrastructureIronicDeployment.spec.imageServer.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

InfrastructureIronicDeployment.spec.imageServer.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.imageServer.resources

Name

Type

Description

Required

bootstrap-cfg

object

Define resource requests/limits for the container

false

httpd

object

Define resource requests/limits for the container

false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

InfrastructureIronicDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

InfrastructureIronicDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

InfrastructureIronicDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.pxe

Name

Type

Description

Required

dhcp

[]object

true

listenNetwork

string

true

InfrastructureIronicDeployment.spec.pxe.dhcp[index]

Name

Type

Description

Required

dhcpRange

string

true

defaultGateway

string

false

InfrastructureIronicDeployment.spec.conductor

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

InfrastructureIronicDeployment.spec.conductor.resources

Name

Type

Description

Required

conductor

object

Define resource requests/limits for the container

false

InfrastructureIronicDeployment.spec.conductor.resources.conductor

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.conductor.resources.conductor.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.conductor.resources.conductor.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.inspectorApi

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

InfrastructureIronicDeployment.spec.inspectorApi.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

InfrastructureIronicDeployment.spec.inspectorApi.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.inspectorApi.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

InfrastructureIronicDeployment.spec.inspectorApi.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

InfrastructureIronicDeployment.spec.inspectorApi.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

InfrastructureIronicDeployment.spec.inspectorApi.resources

Name

Type

Description

Required

ironic-inspector

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.ipa

Name

Type

Description

Required

pxeAppendKernelParams

string

false

InfrastructureIronicDeployment.spec.jobResources

Name

Type

Description

Required

infra-ironic-db-sync-job

object

Define resource requests/limits for the container

false

infra-ironic-inspector-db-sync-job

object

Define resource requests/limits for the container

false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

InfrastructureIronicDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

InfrastructureIronicDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

InfrastructureIronicDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

InfrastructureIronicDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

InfrastructureIronicDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

KeystoneDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

KeystoneDeployment.spec

Name

Type

Description

Required

api

object

Configure the Keystone API deployment

true

database

object

Configure the database deployment

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneConfig

map[string]object

Keystone OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

memcached

object

Memcached deployment configuration

true

region

object

Configure the Region to use for this OpenStack service.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed, 2023.1, 2023.2

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

Resource limits for Job Pod containers spawned by the Operator

false

keyRotationSchedule

string

The schedule is given in standard cron notation.

Default: 0 0 * * *

false

keystoneSecrets

[]object

List of secrets to inject into the service configuration.

false

policy

object

OpenStack policy to merge with the default policy

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

KeystoneDeployment.spec.api

Configure the Keystone API deployment

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource limits for containers in Pods of the Keystone API

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

wsgiProcesses

integer

Number of WSGI processes to spawn per pod

false

KeystoneDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

KeystoneDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

KeystoneDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

KeystoneDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

KeystoneDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

KeystoneDeployment.spec.api.resources

Resource limits for containers in Pods of the Keystone API

Name

Type

Description

Required

keystone

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

KeystoneDeployment.spec.api.resources.keystone

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.keystone.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.keystone.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

KeystoneDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

KeystoneDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

KeystoneDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

KeystoneDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

KeystoneDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

KeystoneDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

KeystoneDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

KeystoneDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

KeystoneDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

KeystoneDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

KeystoneDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

KeystoneDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

KeystoneDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

KeystoneDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name

Type

Description

Required

keystone-bootstrap-job

object

Define resource requests/limits for the container

false

keystone-credential-setup-job

object

Define resource requests/limits for the container

false

keystone-db-sync-job

object

Define resource requests/limits for the container

false

keystone-db-upgrade-post-job

object

Define resource requests/limits for the container

false

keystone-db-upgrade-pre-job

object

Define resource requests/limits for the container

false

keystone-fernet-setup-job

object

Define resource requests/limits for the container

false

keystone-key-rotation-credential-cronjob

object

Define resource requests/limits for the container

false

keystone-key-rotation-fernet-cronjob

object

Define resource requests/limits for the container

false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

KeystoneDeployment.spec.keystoneSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

KeystoneDeployment.spec.keystoneSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

KeystoneDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

KeystoneDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

KeystoneDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

KeystoneEndpoint

Name

Type

Description

Required

spec

object

true

status

object

false

KeystoneEndpoint.spec

Name

Type

Description

Required

description

string

true

endpoints

object

true

keystoneRef

object

Keystone deployment to link this service to

true

region

object

Configure the Region to use for this OpenStack service.

true

servicename

string

true

servicetype

string

true

KeystoneEndpoint.spec.endpoints

Name

Type

Description

Required

admin

string

true

internal

string

true

public

string

true

KeystoneEndpoint.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

KeystoneEndpoint.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

KeystoneEndpoint.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

updatedGeneration

integer

false

KeystoneEndpoint.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

ExternalKeystoneDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

ExternalKeystoneDeployment.spec

Name

Type

Description

Required

authURL

string

true

memcachedServers

[]string

true

password

object

true

username

string

true

authType

string

Default: password

false

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

interface

string

Default: public

false

projectDomainName

string

Default: default

false

projectName

string

Default: admin

false

userDomainName

string

Default: default

false

ExternalKeystoneDeployment.spec.password

Name

Type

Description

Required

name

string

true

key

string

Key within the Secret to extract

Default: password

false

ExternalKeystoneDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

updatedGeneration

integer

false

ExternalKeystoneDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

KeystoneUser

Name

Type

Description

Required

spec

object

true

status

object

false

KeystoneUser.spec

Name

Type

Description

Required

keystoneRef

object

Keystone deployment to link this service to

true

role

string

Uses this role to bind the User to the service project. If not provided the admin role will be used. If the role does not exists, it will be created.

false

KeystoneUser.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

KeystoneUser.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

updatedGeneration

integer

false

KeystoneUser.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

NeutronDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

NeutronDeployment.spec

Name

Type

Description

Required

api

object

Neutron API deployment configuration

true

database

object

Configure the database deployment

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

messageQueue

object

Configure the RabbitMQ instance.

true

neutronConfig

map[string]object

Neutron OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

neutronML2Config

map[string]object

Neutron ML2 Plugin config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

novaRef

object

true

region

object

Configure the Region to use for this OpenStack service.

true

setup

object

The type of neutron setup you want. You can choose ‘ovn’.

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed, 2023.1, 2023.2, 2024.1

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

Resource limits for Job Pod containers spawned by the Operator

false

neutronSecrets

[]object

List of secrets to inject into the service configuration.

false

policy

object

OpenStack policy to merge with the default policy

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

NeutronDeployment.spec.api

Neutron API deployment configuration

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NeutronDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NeutronDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

NeutronDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NeutronDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.api.resources

Name

Type

Description

Required

neutron-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.api.resources.neutron-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.neutron-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.neutron-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NeutronDeployment.spec.database.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NeutronDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NeutronDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NeutronDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NeutronDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

NeutronDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

NeutronDeployment.spec.database.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

NeutronDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

NeutronDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

NeutronDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NeutronDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

NeutronDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NeutronDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

NeutronDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.novaRef

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

NeutronDeployment.spec.setup

The type of neutron setup you want. You can choose ‘ovn’.

Name

Type

Description

Required

ovn

object

OVN-based deployment.

false

NeutronDeployment.spec.setup.ovn

OVN-based deployment.

Name

Type

Description

Required

controller

object

Per-node configuration for the OVN controller services.

true

northboundOVSDB

object

Northbound OpenvSwitch Database deployment configuration

true

northd

object

northd deployment configuration

true

southboundOVSDB

object

Southbound OpenvSwitch Database deployment configuration

true

bgp

map[string]object

false

NeutronDeployment.spec.setup.ovn.controller

Per-node configuration for the OVN controller services.

Name

Type

Description

Required

configTemplates

[]object

Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.

true

resources

object

Container resource requests/limits for OVN-controller related containers

false

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name

Type

Description

Required

nodeSelectors

[]object

List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.

true

bridgeConfig

[]object

Map physical devices to OpenStack provider physical network names.

false

monitoringDsUpdateStrategy

object

Update strategy configuration for the monitoring DaemonSet. This is not validated but the body is passed as is as the body of the updateStrategy field of the DaemonSet, so syntax errors will result in reconcile failures.

false

neutronMetadataAgentConfig

map[string]object

Neutron Metadata Agent config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

ovnMonitorAll

boolean

Monitor everything in the ovs-database. Setting this to true will reduce the load on the north- and southbound database while increasing memory consumption of ovn-controllers.

false

scrapeIntervalMs

integer

time in milliseconds the metrics of the local ovsdb server is scraped

false

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index].nodeSelectors[index]

A single node selector.

Name

Type

Description

Required

matchLabels

map[string]string

Label keys and values all of which nodes must have to match the node selector.

true

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index].bridgeConfig[index]

Name

Type

Description

Required

bridgeName

string

Unique name for the bridge to plug the uplinkDevice into. Must not exist already on the host.

true

openstackPhysicalNetwork

string

Name under which this network is exposed in openstack, as --provider-physical-network in openstack network create.

true

uplinkDevice

string

Name of the physical network interface to expose to OpenStack. Must exist already on the host and may be a VLAN device (or any other interface type, really).

true

NeutronDeployment.spec.setup.ovn.controller.resources

Container resource requests/limits for OVN-controller related containers

Name

Type

Description

Required

neutron-ovn-metadata-agent

object

Define resource requests/limits for the container

false

ovn-controller

object

Define resource requests/limits for the container

false

ovs-vswitchd

object

Define resource requests/limits for the container

false

ovs-vswitchd-monitoring

object

Define resource requests/limits for the container

false

ovsdb-server

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB

Northbound OpenvSwitch Database deployment configuration

Name

Type

Description

Required

backup

object

Backup configuration

true

inactivityProbeMs

integer

time in milliseconds till ovsdb server see connection as inactive

false

ovnRelay

object

Configure and use an OVN relay (optional)

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Container resource requests/limits for northbound OVSDB containers

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

scrapeIntervalMs

integer

time in milliseconds the metrics of the ovsdb server is scraped

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup

Backup configuration

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay

Configure and use an OVN relay (optional)

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Container resource requests/limits for the relay containers

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources

Container resource requests/limits for the relay containers

Name

Type

Description

Required

ovn-relay

object

Define resource requests/limits for the container

false

service-reload’

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources

Container resource requests/limits for northbound OVSDB containers

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the container

false

backup-shifter

object

Define resource requests/limits for the container

false

ovsdb

object

Define resource requests/limits for the container

false

service-reload’

object

Define resource requests/limits for the container

false

setup-ovsdb

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.northd

northd deployment configuration

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Container resource requests/limits for northd containers

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

threads

integer

the amount of threads northd should use

Minimum: 1

false

NeutronDeployment.spec.setup.ovn.northd.resources

Container resource requests/limits for northd containers

Name

Type

Description

Required

northd

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.northd.resources.northd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.northd.resources.northd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.northd.resources.northd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB

Southbound OpenvSwitch Database deployment configuration

Name

Type

Description

Required

backup

object

Backup configuration

true

ovnRelay

object

Configure and use an OVN relay (optional). This is userfull for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

true

inactivityProbeMs

integer

time in milliseconds till ovsdb server see connection as inactive

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Container resource requests/limits for southbound OVSDB containers

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

scrapeIntervalMs

integer

time in milliseconds the metrics of the ovsdb server is scraped

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup

Backup configuration

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay

Configure and use an OVN relay (optional). This is userfull for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Container resource requests/limits for the relay containers

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources

Container resource requests/limits for the relay containers

Name

Type

Description

Required

ovn-relay

object

Define resource requests/limits for the container

false

service-reload’

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources

Container resource requests/limits for southbound OVSDB containers

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the container

false

backup-shifter

object

Define resource requests/limits for the container

false

ovsdb

object

Define resource requests/limits for the container

false

service-reload’

object

Define resource requests/limits for the container

false

setup-ovsdb

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key]

Name

Type

Description

Required

configTemplates

[]object

Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.

true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name

Type

Description

Required

nodeSelectors

[]object

List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.

true

config

object

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].nodeSelectors[index]

A single node selector.

Name

Type

Description

Required

matchLabels

map[string]string

Label keys and values all of which nodes must have to match the node selector.

true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config

Name

Type

Description

Required

bridgeName

string

Name of the provider bridge to which the BGP interface should be added.

true

driver

enum

Name of the ovn-bgp-agent driver that can be used. Please check ovn-bgp-agent docs for further details.

Enum: ovn_bgp_driver, ovn_stretched_l2_bgp_driver, ovn_evpn_driver
Default: ovn_stretched_l2_bgp_driver

true

localAS

integer

The AS number to be used on the BGP agent side.

Minimum: 1
Maximum: 4.294967295e+09

true

peers

map[string]object

true

addressScopes

[]string

List of address scope IDs for the subnet, in case you are using ovn_stretched_l2_bgp_driver

false

debug

boolean

Enable debug logging.

Default: false

false

resources

object

false

syncInterval

integer

The interval time(seconds) when it should resync with southbound database.

Default: 120

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.peers[key]

Name

Type

Description

Required

AS

integer

The AS number to be peered with.

Minimum: 1
Maximum: 4.294967295e+09

true

IP

string

List of peer IPs that have the same AS number and can be added to the same peer group.

true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources

Name

Type

Description

Required

frr-bgpd

object

Define resource requests/limits for the container

false

frr-zebra

object

Define resource requests/limits for the container

false

ovn-bgp-agent

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

NeutronDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name

Type

Description

Required

neutron-db-sync-job

object

Define resource requests/limits for the container

false

NeutronDeployment.spec.jobResources.neutron-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronDeployment.spec.jobResources.neutron-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronDeployment.spec.jobResources.neutron-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronDeployment.spec.neutronSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

NeutronDeployment.spec.neutronSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

NeutronDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

NeutronDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

NeutronDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

NovaDeployment

Name

Type

Description

Required

spec

object

true

status

object

false

NovaDeployment.spec

Name

Type

Description

Required

api

object

Nova API deployment configuration

true

conductor

object

Nova Conductor deployment configuration

true

database

object

Database deployment configurations. Nova and placement require four different databases.

true

databaseCleanup

object

Configuration of a periodic database cleanup job, using nova-manage.

true

eviction

object

Compute node eviction configuration

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

keystoneRef

object

Keystone deployment to link this service to

true

memcached

object

Memcached deployment configuration

true

messageQueue

object

Message queue configurations.

true

metadata

object

Nova Metadata service deployment configuration

true

novaConfig

map[string]object

Nova OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

true

placement

object

Placement API deployment configuration

true

region

object

Configure the Region to use for this OpenStack service.

true

scheduler

object

Nova Scheduler deployment configuration

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed

true

vnc

object

VNC proxy service deployment configuration

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

compute

object

false

consoleauth

object

Nova Consoleauth service deployment configuration

false

ids

object

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

jobResources

object

Resource limits for Job Pod containers spawned by the Operator

false

novaSecrets

[]object

List of secrets to inject into the service configuration.

false

placementCleanup

object

false

placementConfig

map[string]object

Placement OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

placementPolicy

map[string]string

false

placementSecrets

[]object

List of secrets to inject into the service configuration.

false

policy

map[string]string

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

sysinfo

map[string]string

Nova smbios sysinfo configuration. Supported values will show up in /sys/class/dmi/id/

false

NovaDeployment.spec.api

Nova API deployment configuration

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in Nova API pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.api.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NovaDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

NovaDeployment.spec.api.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NovaDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.api.resources

Resource requests/limits related to containers in Nova API pods

Name

Type

Description

Required

nova-api

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

NovaDeployment.spec.api.resources.nova-api

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.nova-api.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.nova-api.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.conductor

Nova Conductor deployment configuration

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in Nova Conductor pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.conductor.resources

Resource requests/limits related to containers in Nova Conductor pods

Name

Type

Description

Required

nova-conductor

object

Define resource requests/limits for the container

false

NovaDeployment.spec.conductor.resources.nova-conductor

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.conductor.resources.nova-conductor.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.conductor.resources.nova-conductor.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database

Database deployment configurations. Nova and placement require four different databases.

Name

Type

Description

Required

api

object

Configure the database deployment

true

cell0

object

Configure the database deployment

true

cell1

object

Configure the database deployment

true

placement

object

Configure the database deployment

true

NovaDeployment.spec.database.api

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NovaDeployment.spec.database.api.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NovaDeployment.spec.database.api.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NovaDeployment.spec.database.api.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NovaDeployment.spec.database.api.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.database.api.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.database.api.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.api.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.api.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.api.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

NovaDeployment.spec.database.api.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

NovaDeployment.spec.database.api.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

NovaDeployment.spec.database.api.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.api.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.api.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.api.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.api.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.api.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NovaDeployment.spec.database.cell0.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NovaDeployment.spec.database.cell0.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NovaDeployment.spec.database.cell0.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NovaDeployment.spec.database.cell0.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.database.cell0.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.database.cell0.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

NovaDeployment.spec.database.cell0.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

NovaDeployment.spec.database.cell0.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

NovaDeployment.spec.database.cell0.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NovaDeployment.spec.database.cell1.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NovaDeployment.spec.database.cell1.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NovaDeployment.spec.database.cell1.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NovaDeployment.spec.database.cell1.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.database.cell1.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.database.cell1.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

NovaDeployment.spec.database.cell1.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

NovaDeployment.spec.database.cell1.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

NovaDeployment.spec.database.cell1.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement

Configure the database deployment

Name

Type

Description

Required

backup

object

Configure automated database backups

true

proxy

object

Configure the proxy deployment, which brokers traffic to the database

true

mysqlConfig

object

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

timeoutClient

integer

Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time.

Default: 300

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NovaDeployment.spec.database.placement.backup

Configure automated database backups

Name

Type

Description

Required

schedule

string

Schedule in which to create backups. The schedule is given in standard cron notation.

Default: 0 0 * * *

true

mysqldump

boolean

Execute a plain mysqldump in addition to the standard backup.

Default: false

false

targets

object

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

false

NovaDeployment.spec.database.placement.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name

Type

Description

Required

s3

object

Send backups into an S3 bucket.

false

NovaDeployment.spec.database.placement.backup.targets.s3

Send backups into an S3 bucket.

Name

Type

Description

Required

bucket

string

Name of the bucket to store data into

true

credentialRef

object

Reference a Secret for the S3 credentials

true

endpoint

string

URL to the S3 service

true

addressingStyle

string

Default: virtual

false

filePrefix

string

Prefix to add to the file name before storing it in the bucket

false

NovaDeployment.spec.database.placement.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.database.placement.proxy

Configure the proxy deployment, which brokers traffic to the database

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 2

false

resources

object

Configure resource requests/limits for containers related to the database proxy.

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.database.placement.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name

Type

Description

Required

create-ca-bundle

object

Define resource requests/limits for the create-ca-bundle container

false

haproxy

object

Define resource requests/limits for the haproxy container

false

service-reload

object

Define resource requests/limits for the service-reload container

false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.proxy.resources.haproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.proxy.resources.haproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.proxy.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.proxy.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name

Type

Description

Required

client-server

object

Configuration options for the client-server section.

false

galera

object

Configuration options for the galera section.

false

mysqld

object

Configuration options for the mysqld section.

false

sst

object

Configuration options for the sst section.

false

NovaDeployment.spec.database.placement.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name

Type

Description

Required

optimizer_switch

map[string]boolean

Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.

false

NovaDeployment.spec.database.placement.resources

Name

Type

Description

Required

backup-creator

object

Define resource requests/limits for the backup-creator container

false

backup-shifter

object

Define resource requests/limits for the backup-shifter container

false

mariadb-galera

object

Define resource requests/limits for the mariadb-galera container

false

mysqld-exporter

object

Define resource requests/limits for the mysqld-exporter container

false

NovaDeployment.spec.database.placement.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.resources.backup-creator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.resources.backup-creator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.resources.backup-shifter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.resources.backup-shifter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.resources.mariadb-galera.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.resources.mariadb-galera.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.database.placement.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.database.placement.resources.mysqld-exporter.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.database.placement.resources.mysqld-exporter.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.databaseCleanup

Configuration of a periodic database cleanup job, using nova-manage.

Name

Type

Description

Required

schedule

string

The schedule is given in standard cron notation.

Default: 0 0 * * *

true

deletionTimeRange

integer

Deleted database rows older than this number of days will be removed.

Default: 60

false

NovaDeployment.spec.eviction

Compute node eviction configuration

Name

Type

Description

Required

ironicNodeShutdown

object

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

false

manager

object

Default: map[]

false

netboxCreds

object

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

false

netboxSetFailed

boolean

option to set a node to failed in netbox if it is to be evicted

Default: false

false

volumeLockDurationSeconds

integer

wait for releasing the volume lock during the eviction

Default: 0

false

NovaDeployment.spec.eviction.ironicNodeShutdown

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

Name

Type

Description

Required

credentialsSecretRef

object

true

NovaDeployment.spec.eviction.ironicNodeShutdown.credentialsSecretRef

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.eviction.manager

Name

Type

Description

Required

enabled

boolean

Defines if the Eviction Manager will be deployed.

Default: false

false

interval

integer

The interval at which the operator polls the Compute Node status in seconds.

Default: 15

false

max_per_hour

integer

The number of computenodes that are allowed to change to down in the last hour, before the Eviction Manager stops creating eviction jobs.

Default: 5

false

NovaDeployment.spec.eviction.netboxCreds

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

Name

Type

Description

Required

credentialsSecretRef

object

true

NovaDeployment.spec.eviction.netboxCreds.credentialsSecretRef

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

NovaDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

NovaDeployment.spec.memcached

Memcached deployment configuration

Name

Type

Description

Required

connections

integer

Maximum number of parallel connections

Default: 1024

false

memory

integer

Maximum memory used for the cache

Default: 512

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.memcached.resources

Name

Type

Description

Required

memcached

object

Define resource requests/limits for the memcached container

false

NovaDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.messageQueue

Message queue configurations.

Name

Type

Description

Required

cell1

object

Configure the RabbitMQ instance.

true

NovaDeployment.spec.messageQueue.cell1

Configure the RabbitMQ instance.

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

storageClassName

string

Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.

false

storageSize

string

Size to request for the PVC. Changing the size after the initial rollout requires manual intervention.

Default: 8Gi

false

tolerateNodeDown

boolean

If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable.

Default: false

false

NovaDeployment.spec.messageQueue.cell1.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name

Type

Description

Required

rabbitmq

object

Define resource requests/limits for the RabbitMQ container

false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.metadata

Nova Metadata service deployment configuration

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in Nova Metadata service pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.metadata.resources

Resource requests/limits related to containers in Nova Metadata service pods

Name

Type

Description

Required

nova-metadata

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

NovaDeployment.spec.metadata.resources.nova-metadata

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.metadata.resources.nova-metadata.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.metadata.resources.nova-metadata.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.metadata.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.metadata.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.metadata.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.metadata.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.metadata.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.metadata.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement

Placement API deployment configuration

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in Placement API pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.placement.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NovaDeployment.spec.placement.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.placement.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

NovaDeployment.spec.placement.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NovaDeployment.spec.placement.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.placement.resources

Resource requests/limits related to containers in Placement API pods

Name

Type

Description

Required

placement

object

Define resource requests/limits for the container

false

service-reload

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

service-reload-internal

object

Define resource requests/limits for the container

false

ssl-terminator

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

ssl-terminator-internal

object

Define resource requests/limits for the container

false

NovaDeployment.spec.placement.resources.placement

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.placement.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.placement.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement.resources.service-reload

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.service-reload.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.service-reload.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement.resources.service-reload-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.service-reload-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.service-reload-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.placement.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

NovaDeployment.spec.scheduler

Nova Scheduler deployment configuration

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in Nova Scheduler pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.scheduler.resources

Resource requests/limits related to containers in Nova Scheduler pods

Name

Type

Description

Required

nova-scheduler

object

Define resource requests/limits for the container

false

NovaDeployment.spec.scheduler.resources.nova-scheduler

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.scheduler.resources.nova-scheduler.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.scheduler.resources.nova-scheduler.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.vnc

VNC proxy service deployment configuration

Name

Type

Description

Required

ingress

object

Ingress configuration

true

internal

object

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

false

publishEndpoint

boolean

Publish it to Keystone endpoints as well

Default: true

false

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in VNC proxy service pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.vnc.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NovaDeployment.spec.vnc.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.vnc.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name

Type

Description

Required

ingress

object

Ingress configuration

true

NovaDeployment.spec.vnc.internal.ingress

Ingress configuration

Name

Type

Description

Required

fqdn

string

The outer fully-qualified domain name of the Ingress

true

port

integer

Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints

true

createIngress

boolean

Create the k8s ingress object. The default value is true

false

externalCertificateSecretRef

object

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

false

ingressClassName

string

Class of the Ingress to use

Default: nginx

false

NovaDeployment.spec.vnc.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.vnc.resources

Resource requests/limits related to containers in VNC proxy service pods

Name

Type

Description

Required

nova-novncproxy

object

Define resource requests/limits for the container

false

service-reload-external

object

Define resource requests/limits for the container

false

ssl-terminator-external

object

Define resource requests/limits for the container

false

NovaDeployment.spec.vnc.resources.nova-novncproxy

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.vnc.resources.nova-novncproxy.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.vnc.resources.nova-novncproxy.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.vnc.resources.service-reload-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.vnc.resources.service-reload-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.vnc.resources.service-reload-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.vnc.resources.ssl-terminator-external

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.vnc.resources.ssl-terminator-external.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.vnc.resources.ssl-terminator-external.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.compute

Name

Type

Description

Required

configTemplates

[]object

Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.

true

resources

object

Resource requests/limits related to containers in Nova Compute pods

false

NovaDeployment.spec.compute.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name

Type

Description

Required

nodeSelectors

[]object

List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.

true

computeProviderConfig

object

Nova compute resource provider config. The keys of this object are the configuration file sections, the values are arrays or objects within that section.

false

hostAggregates

[]string

NovaHostAggregate resource names, identifying host aggregates this compute node should be part of. These lists are joined if multiple configTemplates match a node.

false

novaComputeConfig

map[string]object

Nova Compute service config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

volumeBackends

object

Optional configuration of a Ceph RBD volume backend.

false

NovaDeployment.spec.compute.configTemplates[index].nodeSelectors[index]

A single node selector.

Name

Type

Description

Required

matchLabels

map[string]string

Label keys and values all of which nodes must have to match the node selector.

true

NovaDeployment.spec.compute.configTemplates[index].volumeBackends

Optional configuration of a Ceph RBD volume backend.

Name

Type

Description

Required

ceph

object

Ceph RBD backend configuration

false

NovaDeployment.spec.compute.configTemplates[index].volumeBackends.ceph

Ceph RBD backend configuration

Name

Type

Description

Required

enabled

boolean

Whether to enable the backend

true

keyringSecretName

string

Name of the Kubernetes secret containing the Ceph keyring to use. The secret must be in kubernetes.io/rook format.

true

user

string

RADOS username to use for authentication.

true

uuid

string

libvirt Secret UUID to store the keyring secret in. This must match the rbd_secret_uuid in Cinder to be able to use volumes.

true

cephConfig

map[string]object

Extra Ceph configuration to inject. This is, in contrast to the Cinder ceph configuration, on the top level, i.e. not specific to the RADOS user referenced above.The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

NovaDeployment.spec.compute.resources

Resource requests/limits related to containers in Nova Compute pods

Name

Type

Description

Required

chown-nova

object

Define resource requests/limits for the container

false

compute-evict-job

object

Define resource requests/limits for the container

false

keygen

object

Define resource requests/limits for the container

false

libvirtd

object

Define resource requests/limits for the container

false

nova-compute

object

Define resource requests/limits for the container

false

nova-compute-ssh

object

Define resource requests/limits for the container

false

NovaDeployment.spec.compute.resources.chown-nova

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.compute.resources.chown-nova.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.compute.resources.chown-nova.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.compute.resources.compute-evict-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.compute.resources.compute-evict-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.compute.resources.compute-evict-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.compute.resources.keygen

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.compute.resources.keygen.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.compute.resources.keygen.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.compute.resources.libvirtd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.compute.resources.libvirtd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.compute.resources.libvirtd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.compute.resources.nova-compute

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.compute.resources.nova-compute.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.compute.resources.nova-compute.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.compute.resources.nova-compute-ssh

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.compute.resources.nova-compute-ssh.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.compute.resources.nova-compute-ssh.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.consoleauth

Nova Consoleauth service deployment configuration

Name

Type

Description

Required

replicas

integer

Number of replicas for the service

Default: 3

false

resources

object

Resource requests/limits related to containers in Nova Consoleauth service pods

false

scheduleRuleWhenUnsatisfiable

enum

whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint

Enum: ScheduleAnyway, DoNotSchedule
Default: ScheduleAnyway

false

NovaDeployment.spec.consoleauth.resources

Resource requests/limits related to containers in Nova Consoleauth service pods

Name

Type

Description

Required

nova-consoleauth

object

Define resource requests/limits for the container

false

NovaDeployment.spec.consoleauth.resources.nova-consoleauth

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.consoleauth.resources.nova-consoleauth.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.consoleauth.resources.nova-consoleauth.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.ids

Name

Type

Description

Required

cinderGid

integer

false

NovaDeployment.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

NovaDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name

Type

Description

Required

nova-api-db-sync-job

object

Define resource requests/limits for the container

false

nova-create-cell1-job

object

Define resource requests/limits for the container

false

nova-db-cleanup-cronjob

object

Define resource requests/limits for the container

false

nova-db-sync-job

object

Define resource requests/limits for the container

false

nova-map-cell0-job

object

Define resource requests/limits for the container

false

placement-db-sync-job

object

Define resource requests/limits for the container

false

NovaDeployment.spec.jobResources.nova-api-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.jobResources.nova-api-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.jobResources.nova-api-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.jobResources.nova-create-cell1-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.jobResources.nova-create-cell1-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.jobResources.nova-create-cell1-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.jobResources.nova-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.jobResources.nova-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.jobResources.nova-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.jobResources.nova-map-cell0-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.jobResources.nova-map-cell0-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.jobResources.nova-map-cell0-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.jobResources.placement-db-sync-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaDeployment.spec.jobResources.placement-db-sync-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaDeployment.spec.jobResources.placement-db-sync-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaDeployment.spec.novaSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

NovaDeployment.spec.novaSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

NovaDeployment.spec.placementCleanup

Name

Type

Description

Required

schedule

string

The schedule is given in standard cron notation.

Default: 0 0 * * *

true

NovaDeployment.spec.placementSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name

Type

Description

Required

items

[]object

Assignment of Secret keys to configuration keys

true

secretName

string

Name of the Kubernetes Secret to read

true

NovaDeployment.spec.placementSecrets[index].items[index]

Name

Type

Description

Required

key

string

Key name in the Secret

true

path

string

Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.

true

NovaDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

NovaDeployment.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

NovaDeployment.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

TempestCronJob

Name

Type

Description

Required

spec

object

true

status

object

false

TempestCronJob.spec

Name

Type

Description

Required

keystoneRef

object

Keystone deployment to link this service to

true

target

object

true

account_cleanup

boolean

Default: false

false

exclude

[]string

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

preprovisioned_users

object

false

pushgateway

string

false

region

string

Default: RegionOne

false

resources

object

false

schedule

string

The schedule is given in standard cron notation.

Default: 0 0 * * *

false

serial

boolean

Default: false

false

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: 27.0.0, 32.0.0, 36.0.0

false

tempestConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

TempestCronJob.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

TempestCronJob.spec.target

Name

Type

Description

Required

regex

string

false

service

enum

Enum: cinder, glance, keystone, nova, neutron, barbican, telemetry, designate, all

false

TempestCronJob.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

TempestCronJob.spec.preprovisioned_users

Name

Type

Description

Required

key

string

true

secret

object

true

TempestCronJob.spec.preprovisioned_users.secret

Name

Type

Description

Required

name

string

true

TempestCronJob.spec.resources

Name

Type

Description

Required

tempest-job

object

Define resource requests/limits for the container

false

TempestCronJob.spec.resources.tempest-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

TempestCronJob.spec.resources.tempest-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

TempestCronJob.spec.resources.tempest-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

TempestCronJob.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

TempestCronJob.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

TempestJob

Name

Type

Description

Required

spec

object

true

status

object

false

TempestJob.spec

Name

Type

Description

Required

keystoneRef

object

Keystone deployment to link this service to

true

target

object

true

account_cleanup

boolean

Default: false

false

exclude

[]string

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

preprovisioned_users

object

false

pushgateway

string

false

region

string

Default: RegionOne

false

resources

object

false

serial

boolean

Default: false

false

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: 27.0.0, 32.0.0, 36.0.0

false

tempestConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

TempestJob.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

TempestJob.spec.target

Name

Type

Description

Required

regex

string

false

service

enum

Enum: cinder, glance, keystone, nova, neutron, barbican, telemetry, designate, all

false

TempestJob.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

TempestJob.spec.preprovisioned_users

Name

Type

Description

Required

key

string

true

secret

object

true

TempestJob.spec.preprovisioned_users.secret

Name

Type

Description

Required

name

string

true

TempestJob.spec.resources

Name

Type

Description

Required

tempest-job

object

Define resource requests/limits for the container

false

TempestJob.spec.resources.tempest-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

TempestJob.spec.resources.tempest-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

TempestJob.spec.resources.tempest-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

TempestJob.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, BackingOff, Completed, Failed

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

TempestJob.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

YaookDisruptionBudget

Name

Type

Description

Required

spec

object

false

status

object

false

YaookDisruptionBudget.spec

Name

Type

Description

Required

maxUnavailable

int or string

Minimum: 0

true

nodeSelectors

[]object

true

disruptiveMaintenance

boolean

If this flag is true, virtual machines will be cold migrated from the hypervisor

Default: false

false

preventDeletion

boolean

If this is true, Resources will not be deleted immediately if their coresponding node-label is removed. Manual deletion of novacomputenode resource is needed.

Default: false

false

YaookDisruptionBudget.spec.nodeSelectors[index]

Name

Type

Description

Required

matchLabels

map[string]string

true

YaookDisruptionBudget.status

Name

Type

Description

Required

nodes

[]object

false

YaookDisruptionBudget.status.nodes[index]

Name

Type

Description

Required

availableInstances

integer

true

configuredInstances

integer

true

existingInstances

integer

true

lastUpdateTime

string

true

readyInstances

integer

true

type

string

true

updatedInstances

integer

true

apps.yaook.cloud/v1

Resource Types:

ConfiguredDaemonSet

Name

Type

Description

Required

spec

object

true

status

object

false

ConfiguredDaemonSet.spec

Name

Type

Description

Required

targetNodes

[]string

true

template

object

true

volumeTemplates

[]object

true

updateStrategy

object

false

ConfiguredDaemonSet.spec.template

Name

Type

Description

Required

spec

object

true

metadata

object

false

ConfiguredDaemonSet.spec.volumeTemplates[index]

Name

Type

Description

Required

nodeMap

map[string]object

true

volumeName

string

true

default

object

false

ConfiguredDaemonSet.spec.volumeTemplates[index].nodeMap[key]

Name

Type

Description

Required

template

object

true

ConfiguredDaemonSet.spec.volumeTemplates[index].default

Name

Type

Description

Required

template

object

true

ConfiguredDaemonSet.spec.updateStrategy

Name

Type

Description

Required

rollingUpdate

object

false

type

enum

Enum: rollingUpdate
Default: rollingUpdate

false

ConfiguredDaemonSet.spec.updateStrategy.rollingUpdate

Name

Type

Description

Required

maxUnavailable

integer

Default: 1
Minimum: 1

false

ConfiguredDaemonSet.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

currentNumberScheduled

integer

false

numberAvailable

integer

false

numberReady

integer

false

updatedGeneration

integer

false

updatedNumberScheduled

integer

false

ConfiguredDaemonSet.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

network.yaook.cloud/v1

Resource Types:

NeutronOVNBGPAgent

Name

Type

Description

Required

spec

object

true

status

object

false

NeutronOVNBGPAgent.spec

Name

Type

Description

Required

bgpNodeAnnotationSuffix

string

true

bridgeName

string

Name of the provider bridge to which the BGP interface should be added.

true

driver

enum

Name of the ovn-bgp-agent driver that can be used. Please check ovn-bgp-agent docs for further details.

Enum: ovn_bgp_driver, ovn_stretched_l2_bgp_driver, ovn_evpn_driver
Default: ovn_stretched_l2_bgp_driver

true

localAS

integer

The AS number to be used on the BGP agent side.

Minimum: 1
Maximum: 4.294967295e+09

true

lockName

string

true

peers

map[string]object

true

addressScopes

[]string

List of address scope IDs for the subnet, in case you are using ovn_stretched_l2_bgp_driver

false

debug

boolean

Enable debug logging.

Default: false

false

hostname

string

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

issuerRef

object

false

resources

object

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

syncInterval

integer

The interval time(seconds) when it should resync with southbound database.

Default: 120

false

NeutronOVNBGPAgent.spec.peers[key]

Name

Type

Description

Required

AS

integer

The AS number to be peered with.

Minimum: 1
Maximum: 4.294967295e+09

true

IP

string

List of peer IPs that have the same AS number and can be added to the same peer group.

true

NeutronOVNBGPAgent.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

NeutronOVNBGPAgent.spec.issuerRef

Name

Type

Description

Required

name

string

true

NeutronOVNBGPAgent.spec.resources

Name

Type

Description

Required

frr-bgpd

object

Define resource requests/limits for the container

false

frr-zebra

object

Define resource requests/limits for the container

false

ovn-bgp-agent

object

Define resource requests/limits for the container

false

NeutronOVNBGPAgent.spec.resources.frr-bgpd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNBGPAgent.spec.resources.frr-bgpd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNBGPAgent.spec.resources.frr-bgpd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNBGPAgent.spec.resources.frr-zebra

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNBGPAgent.spec.resources.frr-zebra.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNBGPAgent.spec.resources.frr-zebra.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNBGPAgent.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

NeutronOVNBGPAgent.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

eviction

object

false

state

enum

Enum: Creating, Enabled, Disabled, Evicting, DisabledAndCleared
Default: Creating

false

updatedGeneration

integer

false

NeutronOVNBGPAgent.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected, Evicted, Enabled, BoundToNode, RequiresRecreation

true

NeutronOVNBGPAgent.status.eviction

Name

Type

Description

Required

reason

string

true

NeutronOVNAgent

Name

Type

Description

Required

spec

object

true

status

object

false

NeutronOVNAgent.spec

Name

Type

Description

Required

caConfigMapName

string

true

deployedOnComputeNode

boolean

true

issuerRef

object

true

keystoneRef

object

Keystone deployment to link this service to

true

novaRef

object

true

southboundServers

[]string

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed, 2023.1, 2023.2, 2024.1

true

bridgeConfig

[]object

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

imageRef

object

false

neutronMetadataAgentConfig

[]map[string]object

false

northboundServers

[]string

false

ovnMonitorAll

boolean

Default: true

false

region

object

Configure the Region to use for this OpenStack service.

false

resources

object

false

scrapeInterval

integer

Time in milliseconds the metrics of the local ovsdb server are scraped

false

serviceMonitor

object

Configure the ServiceMonitor objects created by the operator.

false

southboundInactivityProbe

integer

Time in milliseconds till ovsdb server see connection as inactive

false

state

enum

Enum: Enabled, Disabled, DisabledAndCleared
Default: Enabled

false

NeutronOVNAgent.spec.issuerRef

Name

Type

Description

Required

name

string

true

NeutronOVNAgent.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

NeutronOVNAgent.spec.novaRef

Name

Type

Description

Required

name

string

true

NeutronOVNAgent.spec.bridgeConfig[index]

Name

Type

Description

Required

bridgeName

string

true

openstackPhysicalNetwork

string

This must be the same as –provider-physical-network, when setting up the provider network

true

uplinkDevice

string

true

NeutronOVNAgent.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

NeutronOVNAgent.spec.imageRef

Name

Type

Description

Required

neutron-ovn-agent

string

false

ovn

string

false

ovs

string

false

NeutronOVNAgent.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

NeutronOVNAgent.spec.resources

Name

Type

Description

Required

neutron-ovn-metadata-agent

object

Define resource requests/limits for the container

false

ovn-controller

object

Define resource requests/limits for the container

false

ovs-vswitchd

object

Define resource requests/limits for the container

false

ovs-vswitchd-monitoring

object

Define resource requests/limits for the container

false

ovsdb-server

object

Define resource requests/limits for the container

false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNAgent.spec.resources.ovn-controller

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNAgent.spec.resources.ovn-controller.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNAgent.spec.resources.ovn-controller.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNAgent.spec.resources.ovs-vswitchd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNAgent.spec.resources.ovs-vswitchd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNAgent.spec.resources.ovs-vswitchd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNAgent.spec.resources.ovsdb-server

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NeutronOVNAgent.spec.resources.ovsdb-server.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NeutronOVNAgent.spec.resources.ovsdb-server.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NeutronOVNAgent.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name

Type

Description

Required

additionalLabels

map[string]string

Additional labels to set on the ServiceMonitor metadata.

false

NeutronOVNAgent.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

eviction

object

false

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

ovnVersion

string

false

state

enum

Enum: Creating, Enabled, Disabled, Evicting, DisabledAndCleared
Default: Creating

false

updatedGeneration

integer

false

NeutronOVNAgent.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected, Evicted, Enabled, BoundToNode, RequiresRecreation

true

NeutronOVNAgent.status.eviction

Name

Type

Description

Required

reason

string

true

compute.yaook.cloud/v1

Resource Types:

NovaComputeNode

Name

Type

Description

Required

spec

object

true

status

object

false

NovaComputeNode.spec

Name

Type

Description

Required

caConfigMapName

string

true

cephBackend

object

true

keystoneRef

object

Keystone deployment to link this service to

true

messageQueue

object

true

novaConfig

[]map[string]object

true

publicKeysSecretRef

object

true

targetRelease

enum

The release to deploy. Changing this will trigger an upgrade.

Enum: zed

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

computeProviderConfig

[]object

false

eviction

object

Compute node eviction configuration

false

hostAggregates

[]string

false

ids

object

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

imageRef

object

false

memcachedRef

object

false

region

object

Configure the Region to use for this OpenStack service.

false

resources

object

false

state

enum

Enum: Enabled, Disabled, DisabledAndCleared
Default: Enabled

false

sysinfoConfigMapRef

object

false

vnc

object

false

NovaComputeNode.spec.cephBackend

Name

Type

Description

Required

enabled

boolean

true

cephConfig

map[string]object

The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.

false

keyringSecretName

string

false

user

string

false

uuid

string

false

NovaComputeNode.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

NovaComputeNode.spec.messageQueue

Name

Type

Description

Required

amqpServerRef

object

true

NovaComputeNode.spec.messageQueue.amqpServerRef

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.publicKeysSecretRef

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.eviction

Compute node eviction configuration

Name

Type

Description

Required

ironicNodeShutdown

object

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

false

manager

object

Default: map[]

false

netboxCreds

object

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

false

netboxSetFailed

boolean

option to set a node to failed in netbox if it is to be evicted

Default: false

false

volumeLockDurationSeconds

integer

wait for releasing the volume lock during the eviction

Default: 0

false

NovaComputeNode.spec.eviction.ironicNodeShutdown

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

Name

Type

Description

Required

credentialsSecretRef

object

true

NovaComputeNode.spec.eviction.ironicNodeShutdown.credentialsSecretRef

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.eviction.manager

Name

Type

Description

Required

enabled

boolean

Defines if the Eviction Manager will be deployed.

Default: false

false

interval

integer

The interval at which the operator polls the Compute Node status in seconds.

Default: 15

false

max_per_hour

integer

The number of computenodes that are allowed to change to down in the last hour, before the Eviction Manager stops creating eviction jobs.

Default: 5

false

NovaComputeNode.spec.eviction.netboxCreds

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

Name

Type

Description

Required

credentialsSecretRef

object

true

NovaComputeNode.spec.eviction.netboxCreds.credentialsSecretRef

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.ids

Name

Type

Description

Required

cinderGid

integer

false

NovaComputeNode.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.imageRef

Name

Type

Description

Required

nova-compute

string

false

NovaComputeNode.spec.memcachedRef

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.region

Configure the Region to use for this OpenStack service.

Name

Type

Description

Required

name

string

Name of the OpenStack region to connect with and to set up the own endpoints in.

Default: RegionOne

false

parent

string

false

NovaComputeNode.spec.resources

Name

Type

Description

Required

chown-nova

object

Define resource requests/limits for the container

false

compute-evict-job

object

Define resource requests/limits for the container

false

keygen

object

Define resource requests/limits for the container

false

libvirtd

object

Define resource requests/limits for the container

false

nova-compute

object

Define resource requests/limits for the container

false

nova-compute-ssh

object

Define resource requests/limits for the container

false

NovaComputeNode.spec.resources.chown-nova

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaComputeNode.spec.resources.chown-nova.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaComputeNode.spec.resources.chown-nova.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaComputeNode.spec.resources.compute-evict-job

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaComputeNode.spec.resources.compute-evict-job.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaComputeNode.spec.resources.compute-evict-job.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaComputeNode.spec.resources.keygen

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaComputeNode.spec.resources.keygen.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaComputeNode.spec.resources.keygen.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaComputeNode.spec.resources.libvirtd

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaComputeNode.spec.resources.libvirtd.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaComputeNode.spec.resources.libvirtd.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaComputeNode.spec.resources.nova-compute

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaComputeNode.spec.resources.nova-compute.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaComputeNode.spec.resources.nova-compute.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaComputeNode.spec.resources.nova-compute-ssh

Define resource requests/limits for the container

Name

Type

Description

Required

limits

object

Define resource limits for the container

false

requests

object

Define resource requests for the container

false

NovaComputeNode.spec.resources.nova-compute-ssh.limits

Define resource limits for the container

Name

Type

Description

Required

cpu

string

CPU time limit for the container

false

memory

string

Memory limit for the container

false

NovaComputeNode.spec.resources.nova-compute-ssh.requests

Define resource requests for the container

Name

Type

Description

Required

cpu

string

CPU time request for the container

false

memory

string

Memory request for the container

false

NovaComputeNode.spec.sysinfoConfigMapRef

Name

Type

Description

Required

name

string

true

NovaComputeNode.spec.vnc

Name

Type

Description

Required

baseUrl

string

true

issuerRef

object

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

true

NovaComputeNode.spec.vnc.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name

Type

Description

Required

name

string

Name of the cert-manager Issuer object

Default: ca-issuer

false

NovaComputeNode.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

eviction

object

false

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

state

enum

Enum: Creating, Enabled, Disabled, Evicting, DisabledAndCleared
Default: Creating

false

updatedGeneration

integer

false

NovaComputeNode.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected, Evicted, Enabled, BoundToNode, RequiresRecreation

true

NovaComputeNode.status.eviction

Name

Type

Description

Required

reason

string

true

NovaHostAggregate

Name

Type

Description

Required

spec

object

true

status

object

false

NovaHostAggregate.spec

Name

Type

Description

Required

keystoneRef

object

Keystone deployment to link this service to

true

novaRef

object

true

caCertificates

[]string

CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.

false

imagePullSecrets

[]object

References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.

false

properties

object

false

targetRelease

string

The release to deploy. Changing this will trigger an upgrade.

false

zone

string

false

NovaHostAggregate.spec.keystoneRef

Keystone deployment to link this service to

Name

Type

Description

Required

name

string

true

kind

enum

Specify the kind of Keystone deployment to reference

Enum: KeystoneDeployment, ExternalKeystoneDeployment
Default: KeystoneDeployment

false

NovaHostAggregate.spec.novaRef

Name

Type

Description

Required

name

string

true

NovaHostAggregate.spec.imagePullSecrets[index]

Name

Type

Description

Required

name

string

true

NovaHostAggregate.status

Name

Type

Description

Required

conditions

[]object

true

observedGeneration

integer

true

phase

enum

Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration

true

installedRelease

string

The last successfully deployed release.

false

nextRelease

string

The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.

false

updatedGeneration

integer

false

NovaHostAggregate.status.conditions[index]

Name

Type

Description

Required

lastTransitionTime

string

true

lastUpdateTime

string

true

message

string

true

reason

string

true

status

string

true

type

enum

Enum: Converged, GarbageCollected

true

SSHIdentity

Name

Type

Description

Required

status

object

false

SSHIdentity.status

Name

Type

Description

Required

keys

object

true

SSHIdentity.status.keys

Name

Type

Description

Required

host

[]string

true

user

[]string

true