API Reference

This API reference is automatically generated from the custom resource definitions, which in turn are generated using cuelang files. To update this documentation, update the description fields generated via Cue.

Packages:

• infra.yaook.cloud/v1

• yaook.cloud/v1

• apps.yaook.cloud/v1

• network.yaook.cloud/v1

• compute.yaook.cloud/v1

infra.yaook.cloud/v1

Resource Types:

• AMQPServer

• AMQPUser

• MemcachedService

• MySQLService

• MySQLUser

• OVSDBService

• PowerDNSService

AMQPServer

Name	Type	Description	Required
spec	object		true
status	object		false

AMQPServer.spec

Name	Type	Description	Required
backendCAIssuerRef	object		true
frontendIssuerRef	object		true
imageRef	string		true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	true
additionalFrontendCertDnsNames	[]string		false
enabledPlugins	string	Plugins that should be enabled by AMQPServer Default: rabbitmq_management,rabbitmq_prometheus	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
implementation	enum	Enum: RabbitMQ Default: RabbitMQ	false
policies	map[string]map[string]object		false
rabbitmqConfig	map[string]int or string		false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource limits for containers spawned by the AMQPServer	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

AMQPServer.spec.backendCAIssuerRef

Name	Type	Description	Required
name	string		true

AMQPServer.spec.frontendIssuerRef

Name	Type	Description	Required
name	string		true

AMQPServer.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

AMQPServer.spec.policies[key][key]

Name	Type	Description	Required
applyto	string		true
definition	object		true
pattern	string		true
priority	integer		true

AMQPServer.spec.resources

Resource limits for containers spawned by the AMQPServer

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

AMQPServer.spec.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

AMQPServer.spec.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

AMQPServer.spec.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

AMQPServer.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

AMQPServer.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
replicas	integer		false
updatedGeneration	integer		false

AMQPServer.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

AMQPUser

Name	Type	Description	Required
spec	object		true
status	object		false

AMQPUser.spec

Name	Type	Description	Required
passwordSecretKeyRef	object		true
serverRef	object		true
user	string		true

AMQPUser.spec.passwordSecretKeyRef

Name	Type	Description	Required
name	string		true
key	string	Key within the Secret to extract Default: password	false

AMQPUser.spec.serverRef

Name	Type	Description	Required
name	string		true

AMQPUser.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
updatedGeneration	integer		false

AMQPUser.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

MemcachedService

Name	Type	Description	Required
spec	object		true
status	object		false

MemcachedService.spec

Name	Type	Description	Required
imageRef	string		true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
connections	integer	Default: 1024	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
issuerRef	object		false
memory	integer	Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

MemcachedService.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

MemcachedService.spec.issuerRef

Name	Type	Description	Required
name	string		true

MemcachedService.spec.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the container	false
memcached-exporter	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

MemcachedService.spec.resources.memcached

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.resources.memcached-exporter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.memcached-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.memcached-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MemcachedService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MemcachedService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MemcachedService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

MemcachedService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
replicas	integer		false
updatedGeneration	integer		false

MemcachedService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

MySQLService

Name	Type	Description	Required
spec	object		true
status	object		false

MySQLService.spec

Name	Type	Description	Required
backendCAIssuerRef	object		true
backup	object	Backup configuration	true
database	string		true
frontendIssuerRef	object		true
proxy	object		true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: 10.2, 10.3, 10.4, 10.5, 10.6, 10.11, 11.0, 11.4	true
additionalFrontendCertDnsNames	[]string		false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
implementation	enum	Enum: MariaDB Default: MariaDB	false
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

MySQLService.spec.backendCAIssuerRef

Name	Type	Description	Required
name	string		true

MySQLService.spec.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

MySQLService.spec.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

MySQLService.spec.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

MySQLService.spec.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

MySQLService.spec.frontendIssuerRef

Name	Type	Description	Required
name	string		true

MySQLService.spec.proxy

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 1	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false

MySQLService.spec.proxy.resources

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the container	false
haproxy	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false

MySQLService.spec.proxy.resources.create-ca-bundle

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.proxy.resources.haproxy

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.proxy.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

MySQLService.spec.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

MySQLService.spec.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

MySQLService.spec.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
mariadb-galera	object	Define resource requests/limits for the container	false
mysqld-exporter	object	Define resource requests/limits for the container	false

MySQLService.spec.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.resources.mariadb-galera

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.resources.mysqld-exporter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

MySQLService.spec.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

MySQLService.spec.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

MySQLService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

MySQLService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
replicas	integer		false
updatedGeneration	integer		false

MySQLService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

MySQLUser

Name	Type	Description	Required
spec	object		true
status	object		false

MySQLUser.spec

Name	Type	Description	Required
passwordSecretKeyRef	object		true
serviceRef	object		true
user	string		true
databasePrivileges	[]string	Default: [ALL PRIVILEGES]	false
globalPrivileges	[]string	Default: []	false

MySQLUser.spec.passwordSecretKeyRef

Name	Type	Description	Required
name	string		true
key	string	Key within the Secret to extract Default: password	false

MySQLUser.spec.serviceRef

Name	Type	Description	Required
name	string		true

MySQLUser.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
updatedGeneration	integer		false

MySQLUser.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

OVSDBService

Name	Type	Description	Required
spec	object		true
status	object		false

OVSDBService.spec

Name	Type	Description	Required
backup	object	Backup configuration	true
dbSchema	enum	Enum: northbound, southbound	true
imageRef	string		true
issuerRef	object		true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
inactivityProbeMs	integer	time in milliseconds till ovsdb server treats connections from clients as inactive (default 5000ms)	false
ovnRelay	object	Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.	false
raftElectionTimerMs	integer	raft leader election timeout of the cluster in milliseconds	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the ovsdb server is scraped	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false

OVSDBService.spec.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

OVSDBService.spec.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

OVSDBService.spec.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

OVSDBService.spec.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

OVSDBService.spec.issuerRef

Name	Type	Description	Required
name	string		true

OVSDBService.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

OVSDBService.spec.ovnRelay

Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name	Type	Description	Required
inactivityProbeMs	integer	time in milliseconds till ovn relays treat connections from clients (e.g., northd or ovn-controller) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn relays treat the connection to a remote ovsdb server (e.g., northbound or southbound) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Container resource requests/limits for the relay containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

OVSDBService.spec.ovnRelay.resources

Container resource requests/limits for the relay containers

Name	Type	Description	Required
ovn-relay	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

OVSDBService.spec.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
ovsdb	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
setup-ovsdb	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

OVSDBService.spec.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.setup-ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.setup-ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.setup-ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OVSDBService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OVSDBService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OVSDBService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

OVSDBService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
dbSchema	string		false
updatedGeneration	integer		false

OVSDBService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

PowerDNSService

Name	Type	Description	Required
spec	object		true
status	object		false

PowerDNSService.spec

Name	Type	Description	Required
apiKeySecret	object	A single secret injection configuration. This will set the secret value as the API key inside the PowerDNS configuration.	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
subnetCidr	string	IP range of the k8s pod network. Used to only allow requests from within the k8s network.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: 4.9	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
loadBalancerIP	string	IP address of the load balancer for the PowerDNS webserver	false
powerdnsConfig	object	Key value pairs to overwrite pdns.conf settings	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

PowerDNSService.spec.apiKeySecret

A single secret injection configuration. This will set the secret value as the API key inside the PowerDNS configuration.

Name	Type	Description	Required
key	string	Key of the Kubernetes Secret to read	true
secretName	string	Name of the Kubernetes Secret to read	true

PowerDNSService.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

PowerDNSService.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

PowerDNSService.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

PowerDNSService.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

PowerDNSService.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

PowerDNSService.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

PowerDNSService.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

PowerDNSService.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

PowerDNSService.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

PowerDNSService.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

PowerDNSService.spec.resources

Name	Type	Description	Required
powerdns	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

PowerDNSService.spec.resources.powerdns

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.resources.powerdns.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.resources.powerdns.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

PowerDNSService.spec.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

PowerDNSService.spec.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

PowerDNSService.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

PowerDNSService.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
replicas	integer		false
updatedGeneration	integer		false

PowerDNSService.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

yaook.cloud/v1

Resource Types:

• BarbicanDeployment

• CeilometerDeployment

• CinderDeployment

• DesignateDeployment

• GlanceDeployment

• GnocchiDeployment

• HorizonDeployment

• InfrastructureIronicDeployment

• KeystoneDeployment

• KeystoneEndpoint

• ExternalKeystoneDeployment

• KeystoneUser

• NeutronDeployment

• NovaDeployment

• OctaviaDeployment

• TempestCronJob

• TempestJob

• YaookDisruptionBudget

BarbicanDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

BarbicanDeployment.spec

Name	Type	Description	Required
api	object	Configure the Barbican API deployment	true
barbicanConfig	map[string]object	Barbican OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneListener	object	Configure the Barbican Keystone listener deployment	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
barbicanSecrets	[]object	List of secrets to inject into the service configuration.	false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

BarbicanDeployment.spec.api

Configure the Barbican API deployment

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

BarbicanDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

BarbicanDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

BarbicanDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

BarbicanDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.api.resources

Name	Type	Description	Required
barbican-api	object	Define resource requests/limits for the container	false
barbican-worker	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

BarbicanDeployment.spec.api.resources.barbican-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.barbican-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.barbican-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.barbican-worker

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.barbican-worker.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.barbican-worker.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

BarbicanDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

BarbicanDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

BarbicanDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

BarbicanDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

BarbicanDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

BarbicanDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

BarbicanDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

BarbicanDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

BarbicanDeployment.spec.keystoneListener

Configure the Barbican Keystone listener deployment

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

BarbicanDeployment.spec.keystoneListener.resources

Name	Type	Description	Required
barbican-keystone-listener	object	Define resource requests/limits for the container	false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.keystoneListener.resources.barbican-keystone-listener.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

BarbicanDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

BarbicanDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

BarbicanDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

BarbicanDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

BarbicanDeployment.spec.barbicanSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

BarbicanDeployment.spec.barbicanSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

BarbicanDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

BarbicanDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
barbican-db-sync-job	object	Define resource requests/limits for the container	false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

BarbicanDeployment.spec.jobResources.barbican-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

BarbicanDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

BarbicanDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

BarbicanDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

CeilometerDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

CeilometerDeployment.spec

Name	Type	Description	Required
ceilometerCompute	object		true
ceilometerConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
central	object		true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
notification	object		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
additionalHosts	[]object		false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
ceilometerEventDefinitions	[]object		false
ceilometerEventPipeline	object		false
ceilometerPipeline	object		false
ceilometerPolling	[]object		false
ceilometerSecrets	[]object	List of secrets to inject into the service configuration.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
pankoConfig	[]object	List of secrets to inject into the service configuration.	false
skip_gnocchi_bootstrap	boolean	Default: false	false

CeilometerDeployment.spec.ceilometerCompute

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true
enabled	boolean	Deploy ceilometer-agent-compute Default: true	false
resources	object		false

CeilometerDeployment.spec.ceilometerCompute.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
ceilometerComputeConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

CeilometerDeployment.spec.ceilometerCompute.configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

CeilometerDeployment.spec.ceilometerCompute.resources

Name	Type	Description	Required
ceilometer-compute-agent	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.ceilometerCompute.resources.ceilometer-compute-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.central

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 1	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CeilometerDeployment.spec.central.resources

Name	Type	Description	Required
ceilometer-agent-central	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.central.resources.ceilometer-agent-central.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

CeilometerDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

CeilometerDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CeilometerDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

CeilometerDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

CeilometerDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.notification

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 1	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CeilometerDeployment.spec.notification.resources

Name	Type	Description	Required
ceilometer-agent-notification	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.notification.resources.ceilometer-agent-notification.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.additionalHosts[index]

Name	Type	Description	Required
hostnames	[]string		true
ip	string		true

CeilometerDeployment.spec.ceilometerEventDefinitions[index]

Name	Type	Description	Required
event_type	[]string		true
traits	map[string]object		true

CeilometerDeployment.spec.ceilometerPolling[index]

Name	Type	Description	Required
interval	integer		true
meters	[]string		true
name	string		true
discovery	[]string		false
resources	[]string		false

CeilometerDeployment.spec.ceilometerSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CeilometerDeployment.spec.ceilometerSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CeilometerDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

CeilometerDeployment.spec.jobResources

Name	Type	Description	Required
ceilometer-upgrade-job	object	Define resource requests/limits for the container	false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CeilometerDeployment.spec.jobResources.ceilometer-upgrade-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CeilometerDeployment.spec.pankoConfig[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CeilometerDeployment.spec.pankoConfig[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CeilometerDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

CeilometerDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

CinderDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

CinderDeployment.spec

Name	Type	Description	Required
api	object	Cinder API deployment configuration	true
backends	map[string]object	Cinder-volume services (‘backends’) to deploy. Each key is a backend/cinder-volume service; the specific backend which is used is determined by the value.	true
backup	map[string]object	Cinder-backup services to deploy. Each key is a cinder-backup service.	true
cinderConfig	map[string]object	Cinder OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
database	object	Configure the database deployment	true
databaseCleanup	object	Configuration of a periodic database cleanup job, using cinder-manage.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
region	object	Configure the Region to use for this OpenStack service.	true
scheduler	object	Cinder Scheduler deployment configuration	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
cinderSecrets	[]object	List of secrets to inject into the service configuration.	false
conversionVolume	object		false
ids	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

CinderDeployment.spec.api

Cinder API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Cinder API.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CinderDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

CinderDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

CinderDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

CinderDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.api.resources

Resource requests/limits for containers related to the Cinder API.

Name	Type	Description	Required
cinder-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

CinderDeployment.spec.api.resources.cinder-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.cinder-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.cinder-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.backends[key]

Cinder-volume service (‘backend’) configuration. Exactly one of rbd and netapp must be set in order for the configuration to be valid, as that determines the type of backend which is used.

Name	Type	Description	Required
volume	object	Configure the cinder-volume deployment for this backend.	true
cinderSecrets	[]object	List of secrets to inject into the service configuration.	false
netapp	object		false
rbd	object	Ceph RBD backend	false

CinderDeployment.spec.backends[key].volume

Configure the cinder-volume deployment for this backend.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 1 Minimum: 0 Maximum: 1	false
resources	object	Resource requests/limits for the containers related to cinder-volume.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CinderDeployment.spec.backends[key].volume.resources

Resource requests/limits for the containers related to cinder-volume.

Name	Type	Description	Required
cinder-volume	object	Define resource requests/limits for the container	false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.backends[key].volume.resources.cinder-volume.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.backends[key].cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CinderDeployment.spec.backends[key].cinderSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CinderDeployment.spec.backends[key].netapp

Name	Type	Description	Required
login	string	Username to use for logging into the netapp	true
passwordReference	string	Reference to a secret containing the password for the netapp login.	true
server	string	FQDN of the netapp management api.	true
shares	[]string	A list of all shares that this backend exports	true
vserver	string	The vserver of the netapp to use for this backend	true
backendConfig	map[string]string	Extra configuration values to add to the Cinder configuration section for this backend. For global configuration, use the spec.cinderConfig field instead.	false
copyoffloadConfigMap	object	Reference to a configmap containing the copyoffload binary from netapp. Since this binary is proprietary we can not distribute it with yaook and you need to manually download it and put it into a configmap.	false

CinderDeployment.spec.backends[key].netapp.copyoffloadConfigMap

Reference to a configmap containing the copyoffload binary from netapp. Since this binary is proprietary we can not distribute it with yaook and you need to manually download it and put it into a configmap.

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.backends[key].rbd

Ceph RBD backend

Name	Type	Description	Required
keyringReference	string	Name of the Kubernetes secret containing the Ceph keyring to use. The secret must be in kubernetes.io/rook format.	true
keyringUsername	string	RADOS username to use for authentication.	true
backendConfig	map[string]JSON	Extra configuration values to add to the Cinder configuration section for this backend. For global configuration, use the spec.cinderConfig field instead.	false
cephConfig	map[string]JSON	Additional configuration to add to the ceph configuration for this client. This cannot be used for global ceph configuration. Most common use is to add a mon_host key here in order to define where to find the mons.	false

CinderDeployment.spec.backup[key]

Cinder-backup service deployment configuration.

Name	Type	Description	Required
cinderConfig	map[string]object	Cinder Backup OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
cinderSecrets	[]object	List of secrets to inject into the service configuration.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Cinder Backup service.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
terminationGracePeriod	integer	Default: 3600	false

CinderDeployment.spec.backup[key].cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CinderDeployment.spec.backup[key].cinderSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CinderDeployment.spec.backup[key].resources

Resource requests/limits for containers related to the Cinder Backup service.

Name	Type	Description	Required
cinder-backup	object	Define resource requests/limits for the container	false

CinderDeployment.spec.backup[key].resources.cinder-backup

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.backup[key].resources.cinder-backup.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.backup[key].resources.cinder-backup.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

CinderDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

CinderDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

CinderDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

CinderDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CinderDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

CinderDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

CinderDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

CinderDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.databaseCleanup

Configuration of a periodic database cleanup job, using cinder-manage.

Name	Type	Description	Required
deletionTimeRange	integer	Deleted database rows older than this number of days will be removed. Default: 60	true
schedule	string	The schedule is given in standard cron notation. Default: 0 0 * * *	true

CinderDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

CinderDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

CinderDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CinderDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

CinderDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

CinderDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

CinderDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

CinderDeployment.spec.scheduler

Cinder Scheduler deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Cinder Scheduler.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

CinderDeployment.spec.scheduler.resources

Resource requests/limits for containers related to the Cinder Scheduler.

Name	Type	Description	Required
cinder-scheduler	object	Define resource requests/limits for the container	false

CinderDeployment.spec.scheduler.resources.cinder-scheduler

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.scheduler.resources.cinder-scheduler.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.scheduler.resources.cinder-scheduler.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.cinderSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

CinderDeployment.spec.cinderSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

CinderDeployment.spec.conversionVolume

Name	Type	Description	Required
emptyDir	object	EmptyDir represents a temporary directory that shares a pod’s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir	true

CinderDeployment.spec.conversionVolume.emptyDir

EmptyDir represents a temporary directory that shares a pod’s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir

Name	Type	Description	Required
medium	string	What type of storage medium should back this directory. Default: :code:``	false
sizeLimit	string	Total amount of local storage required for this EmptyDir volume.	false

CinderDeployment.spec.ids

Name	Type	Description	Required
gid	integer		false
uid	integer		false

CinderDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

CinderDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
cinder-db-cleanup-cronjob	object	Define resource requests/limits for the container	false
cinder-db-sync-job	object	Define resource requests/limits for the container	false
cinder-db-upgrade-post-job	object	Define resource requests/limits for the container	false
cinder-db-upgrade-pre-job	object	Define resource requests/limits for the container	false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-cleanup-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.jobResources.cinder-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

CinderDeployment.spec.jobResources.cinder-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

CinderDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

CinderDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

CinderDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

DesignateDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

DesignateDeployment.spec

Name	Type	Description	Required
api	object	Designate API deployment configuration	true
database	object	Configure the database deployment	true
designateConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
nsRecords	[]object	List of NS records for zones hosted within the default pool	true
powerdns	object		true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: 2024.1	true
additionalNameservers	[]object	List of secondary nameservers that will be informed about zone changes	false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
central	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
minidns	object		false
policy	object	OpenStack policy to merge with the default policy	false
producer	object		false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
worker	object		false

DesignateDeployment.spec.api

Designate API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Designate API.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

DesignateDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

DesignateDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

DesignateDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

DesignateDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.api.resources

Resource requests/limits for containers related to the Designate API.

Name	Type	Description	Required
designate-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.api.resources.designate-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.designate-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.designate-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

DesignateDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

DesignateDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

DesignateDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

DesignateDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

DesignateDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

DesignateDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

DesignateDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

DesignateDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

DesignateDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

DesignateDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

DesignateDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

DesignateDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

DesignateDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

DesignateDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.nsRecords[index]

Name	Type	Description	Required
hostname	string		true
priority	integer		true

DesignateDeployment.spec.powerdns

Name	Type	Description	Required
database	object	Configure the database deployment	true
subnetCidr	string	Comma separated IP ranges of the k8s pod network. Used to only allow requests from within the k8s network.	true
loadBalancerIP	string	IP address of the load balancer for the PowerDNS webserver	false
replicas	integer	Number of replicas for the service Default: 3	false

DesignateDeployment.spec.powerdns.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

DesignateDeployment.spec.powerdns.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

DesignateDeployment.spec.powerdns.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

DesignateDeployment.spec.powerdns.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

DesignateDeployment.spec.powerdns.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.powerdns.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

DesignateDeployment.spec.powerdns.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

DesignateDeployment.spec.powerdns.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

DesignateDeployment.spec.powerdns.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

DesignateDeployment.spec.powerdns.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.powerdns.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

DesignateDeployment.spec.additionalNameservers[index]

Name	Type	Description	Required
host	string		true
port	integer		true

DesignateDeployment.spec.central

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Designate Central service	false

DesignateDeployment.spec.central.resources

Resource requests/limits for containers related to the Designate Central service

Name	Type	Description	Required
central	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.central.resources.central

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.central.resources.central.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.central.resources.central.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

DesignateDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
designate-db-sync-job	object	Define resource requests/limits for the container	false
designate-pool-update-job	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.jobResources.designate-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.jobResources.designate-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.jobResources.designate-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.jobResources.designate-pool-update-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.jobResources.designate-pool-update-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.jobResources.designate-pool-update-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.minidns

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Designate MiniDNS server	false

DesignateDeployment.spec.minidns.resources

Resource requests/limits for containers related to the Designate MiniDNS server

Name	Type	Description	Required
minidns	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.minidns.resources.minidns

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.minidns.resources.minidns.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.minidns.resources.minidns.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.producer

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Designate Producer service	false

DesignateDeployment.spec.producer.resources

Resource requests/limits for containers related to the Designate Producer service

Name	Type	Description	Required
producer	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.producer.resources.producer

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.producer.resources.producer.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.producer.resources.producer.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

DesignateDeployment.spec.worker

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits for containers related to the Designate Worker service	false

DesignateDeployment.spec.worker.resources

Resource requests/limits for containers related to the Designate Worker service

Name	Type	Description	Required
worker	object	Define resource requests/limits for the container	false

DesignateDeployment.spec.worker.resources.worker

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

DesignateDeployment.spec.worker.resources.worker.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

DesignateDeployment.spec.worker.resources.worker.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

DesignateDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

DesignateDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

GlanceDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

GlanceDeployment.spec

Name	Type	Description	Required
api	object		true
backends	object		true
database	object	Configure the database deployment	true
glanceConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
glanceSecrets	[]object	List of secrets to inject into the service configuration.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

GlanceDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
sslTerminator	object	Default: map[]	false

GlanceDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

GlanceDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

GlanceDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

GlanceDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.api.resources

Name	Type	Description	Required
glance-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

GlanceDeployment.spec.api.resources.glance-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.glance-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.glance-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.api.sslTerminator

Name	Type	Description	Required
respondingReadTimeout	integer	Set traefik parameter ‘transport.respondingTimeouts.readTimeout’ (time in seconds) to a large enough value for allowing the upload of larger images. Default: 7200	false

GlanceDeployment.spec.backends

Name	Type	Description	Required
ceph	object		false
file	object		false
s3	object		false

GlanceDeployment.spec.backends.ceph

Name	Type	Description	Required
keyringPoolname	string		true
keyringReference	string		true
keyringUsername	string		true
cephConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

GlanceDeployment.spec.backends.file

Name	Type	Description	Required
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	true
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	true

GlanceDeployment.spec.backends.s3

Name	Type	Description	Required
bucket	string		true
credentialRef	object		true
endpoint	string		true
addressingStyle	enum	Enum: virtual, path, auto Default: virtual	false

GlanceDeployment.spec.backends.s3.credentialRef

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

GlanceDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

GlanceDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

GlanceDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

GlanceDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

GlanceDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

GlanceDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

GlanceDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

GlanceDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

GlanceDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

GlanceDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

GlanceDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

GlanceDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

GlanceDeployment.spec.glanceSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

GlanceDeployment.spec.glanceSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

GlanceDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

GlanceDeployment.spec.jobResources

Name	Type	Description	Required
glance-db-load-metadefs-job	object	Define resource requests/limits for the container	false
glance-db-sync-job	object	Define resource requests/limits for the container	false
glance-db-upgrade-post-job	object	Define resource requests/limits for the container	false
glance-db-upgrade-pre-job	object	Define resource requests/limits for the container	false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-load-metadefs-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.jobResources.glance-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GlanceDeployment.spec.jobResources.glance-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GlanceDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

GlanceDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

GlanceDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

GnocchiDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

GnocchiDeployment.spec

Name	Type	Description	Required
api	object		true
backends	object		true
database	object	Configure the database deployment	true
gnocchiConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
metricd	object		true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: train, yoga, zed, 2023.1, 2023.2, 2024.1	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

GnocchiDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
wsgiProcesses	integer	Number of uWSGI processes to spawn per pod. This sets PYTHON_CPU_COUNT with a factor of 1/1.5. Gnocchi spawns PYTHON_CPU_COUNT*1.5 processes with PYTHON_CPU_COUNT threads each, so be careful with thus number.	false

GnocchiDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

GnocchiDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

GnocchiDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

GnocchiDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.api.resources

Name	Type	Description	Required
gnocchi-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

GnocchiDeployment.spec.api.resources.gnocchi-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.gnocchi-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.gnocchi-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.backends

Name	Type	Description	Required
ceph	object		false
s3	object		false

GnocchiDeployment.spec.backends.ceph

Name	Type	Description	Required
keyringReference	string		true
keyringUsername	string		true
cephConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

GnocchiDeployment.spec.backends.s3

Name	Type	Description	Required
bucketPrefix	string		true
credentialRef	object		true
endpoint	string		true

GnocchiDeployment.spec.backends.s3.credentialRef

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	There seems to be no corresponding option in the gnocchi configuration, so we raise the timeout here in order to avoid too much overhead from killed connections. Default: 3600	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

GnocchiDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

GnocchiDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

GnocchiDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

GnocchiDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

GnocchiDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

GnocchiDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

GnocchiDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

GnocchiDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

GnocchiDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

GnocchiDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

GnocchiDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

GnocchiDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.metricd

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

GnocchiDeployment.spec.metricd.resources

Name	Type	Description	Required
gnocchi-metricd	object	Define resource requests/limits for the container	false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.metricd.resources.gnocchi-metricd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

GnocchiDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

GnocchiDeployment.spec.jobResources

Name	Type	Description	Required
gnocchi-upgrade-job	object	Define resource requests/limits for the container	false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

GnocchiDeployment.spec.jobResources.gnocchi-upgrade-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

GnocchiDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

GnocchiDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

GnocchiDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

HorizonDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

HorizonDeployment.spec

Name	Type	Description	Required
ingress	object	Ingress configuration	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1, 2024.2	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
replicas	integer	Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

HorizonDeployment.spec.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

HorizonDeployment.spec.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

HorizonDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

HorizonDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

HorizonDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

HorizonDeployment.spec.resources

Name	Type	Description	Required
horizon	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

HorizonDeployment.spec.resources.horizon

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

HorizonDeployment.spec.resources.horizon.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

HorizonDeployment.spec.resources.horizon.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

HorizonDeployment.spec.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

HorizonDeployment.spec.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

HorizonDeployment.spec.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

HorizonDeployment.spec.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

HorizonDeployment.spec.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

HorizonDeployment.spec.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

HorizonDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

HorizonDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

HorizonDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

InfrastructureIronicDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

InfrastructureIronicDeployment.spec

Name	Type	Description	Required
api	object		true
database	object		true
dnsmasq	object		true
imageServer	object		true
inspectorConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
ironicConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
memcached	object	Memcached deployment configuration	true
pxe	object		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
conductor	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
ingressAddress	string	IP of the ingress that hosts the APIs and image server. This can be unset by default, than the ingress IP is taken from the k8s ingress/service. So this is only needed if the service is of type NodePort. Newer setups don’t need to set this.	false
inspectorApi	object		false
ipa	object		false
jobResources	object		false
keystoneRef	object	Keystone deployment to link this service to	false
policy	object	OpenStack policy to merge with the default policy	false
region	object	Configure the Region to use for this OpenStack service.	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
tftpAddress	string		false

InfrastructureIronicDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

InfrastructureIronicDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

InfrastructureIronicDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

InfrastructureIronicDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

InfrastructureIronicDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.api.resources

Name	Type	Description	Required
ironic-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.api.resources.ironic-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.ironic-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.ironic-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database

Name	Type	Description	Required
inspector	object	Configure the database deployment	true
ironic	object	Configure the database deployment	true

InfrastructureIronicDeployment.spec.database.inspector

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

InfrastructureIronicDeployment.spec.database.inspector.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

InfrastructureIronicDeployment.spec.database.inspector.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.database.inspector.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

InfrastructureIronicDeployment.spec.database.inspector.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

InfrastructureIronicDeployment.spec.database.inspector.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.inspector.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

InfrastructureIronicDeployment.spec.database.ironic.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

InfrastructureIronicDeployment.spec.database.ironic.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.database.ironic.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

InfrastructureIronicDeployment.spec.database.ironic.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

InfrastructureIronicDeployment.spec.database.ironic.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.database.ironic.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.dnsmasq

Name	Type	Description	Required
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 100Mi	false

InfrastructureIronicDeployment.spec.dnsmasq.resources

Name	Type	Description	Required
dnsmasq	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.dnsmasq.resources.dnsmasq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.imageServer

Name	Type	Description	Required
ingress	object	Ingress configuration	true
pvcAccessMode	enum	PVC access mode. See upstream Kubernetes documentation. Enum: ReadWriteOnce, ReadWriteMany Default: ReadWriteOnce	false
resources	object		false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false

InfrastructureIronicDeployment.spec.imageServer.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

InfrastructureIronicDeployment.spec.imageServer.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.imageServer.resources

Name	Type	Description	Required
bootstrap-cfg	object	Define resource requests/limits for the container	false
httpd	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.bootstrap-cfg.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.imageServer.resources.httpd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

InfrastructureIronicDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

InfrastructureIronicDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

InfrastructureIronicDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.pxe

Name	Type	Description	Required
dhcp	[]object		true
listenNetwork	string		true

InfrastructureIronicDeployment.spec.pxe.dhcp[index]

Name	Type	Description	Required
dhcpRange	string		true
defaultGateway	string		false

InfrastructureIronicDeployment.spec.conductor

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

InfrastructureIronicDeployment.spec.conductor.resources

Name	Type	Description	Required
conductor	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.conductor.resources.conductor

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.conductor.resources.conductor.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.conductor.resources.conductor.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.inspectorApi

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

InfrastructureIronicDeployment.spec.inspectorApi.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

InfrastructureIronicDeployment.spec.inspectorApi.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.inspectorApi.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

InfrastructureIronicDeployment.spec.inspectorApi.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

InfrastructureIronicDeployment.spec.inspectorApi.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

InfrastructureIronicDeployment.spec.inspectorApi.resources

Name	Type	Description	Required
ironic-inspector	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ironic-inspector.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.inspectorApi.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.ipa

Name	Type	Description	Required
pxeAppendKernelParams	string		false

InfrastructureIronicDeployment.spec.jobResources

Name	Type	Description	Required
infra-ironic-db-sync-job	object	Define resource requests/limits for the container	false
infra-ironic-inspector-db-sync-job	object	Define resource requests/limits for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

InfrastructureIronicDeployment.spec.jobResources.infra-ironic-inspector-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

InfrastructureIronicDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

InfrastructureIronicDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

InfrastructureIronicDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

InfrastructureIronicDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

InfrastructureIronicDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

KeystoneDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

KeystoneDeployment.spec

Name	Type	Description	Required
api	object	Configure the Keystone API deployment	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneConfig	map[string]object	Keystone OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
memcached	object	Memcached deployment configuration	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
keyRotationSchedule	string	The schedule is given in standard cron notation. Default: 0 0 * * *	false
keystoneSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

KeystoneDeployment.spec.api

Configure the Keystone API deployment

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource limits for containers in Pods of the Keystone API	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
wsgiProcesses	integer	Number of WSGI processes to spawn per pod	false

KeystoneDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

KeystoneDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

KeystoneDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

KeystoneDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.api.resources

Resource limits for containers in Pods of the Keystone API

Name	Type	Description	Required
keystone	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

KeystoneDeployment.spec.api.resources.keystone

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.keystone.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.keystone.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

KeystoneDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

KeystoneDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

KeystoneDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

KeystoneDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

KeystoneDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

KeystoneDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

KeystoneDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

KeystoneDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

KeystoneDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

KeystoneDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

KeystoneDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

KeystoneDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

KeystoneDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
keystone-bootstrap-job	object	Define resource requests/limits for the container	false
keystone-credential-setup-job	object	Define resource requests/limits for the container	false
keystone-db-sync-job	object	Define resource requests/limits for the container	false
keystone-db-upgrade-post-job	object	Define resource requests/limits for the container	false
keystone-db-upgrade-pre-job	object	Define resource requests/limits for the container	false
keystone-fernet-setup-job	object	Define resource requests/limits for the container	false
keystone-key-rotation-credential-cronjob	object	Define resource requests/limits for the container	false
keystone-key-rotation-fernet-cronjob	object	Define resource requests/limits for the container	false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-bootstrap-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-credential-setup-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-fernet-setup-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-credential-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

KeystoneDeployment.spec.jobResources.keystone-key-rotation-fernet-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

KeystoneDeployment.spec.keystoneSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

KeystoneDeployment.spec.keystoneSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

KeystoneDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

KeystoneDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

KeystoneDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

KeystoneEndpoint

Name	Type	Description	Required
spec	object		true
status	object		false

KeystoneEndpoint.spec

Name	Type	Description	Required
description	string		true
endpoints	object		true
keystoneRef	object	Keystone deployment to link this service to	true
region	object	Configure the Region to use for this OpenStack service.	true
servicename	string		true
servicetype	string		true

KeystoneEndpoint.spec.endpoints

Name	Type	Description	Required
admin	string		true
internal	string		true
public	string		true

KeystoneEndpoint.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

KeystoneEndpoint.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

KeystoneEndpoint.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
updatedGeneration	integer		false

KeystoneEndpoint.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

ExternalKeystoneDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

ExternalKeystoneDeployment.spec

Name	Type	Description	Required
authURL	string		true
memcachedServers	[]string		true
password	object		true
username	string		true
authType	string	Default: password	false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
interface	string	Default: public	false
projectDomainName	string	Default: default	false
projectName	string	Default: admin	false
userDomainName	string	Default: default	false

ExternalKeystoneDeployment.spec.password

Name	Type	Description	Required
name	string		true
key	string	Key within the Secret to extract Default: password	false

ExternalKeystoneDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
updatedGeneration	integer		false

ExternalKeystoneDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

KeystoneUser

Name	Type	Description	Required
spec	object		true
status	object		false

KeystoneUser.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
role	string	Uses this role to bind the User to the target scope(s). If not provided the admin role will be used. If the role does not exist, it will be created. Target scope(s) for the role assignment are either defined by the scopes property or default to the service project if not specified.	false
scopes	[]object	Optional list of scopes to assign the role in for the User. List entries are key-value pairs where the key is one of the scope types ‘project’, ‘domain’ or ‘system’ and the value is the individual name of the respective scope. If not provided, will default to the project scope for the service project.	false

KeystoneUser.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

KeystoneUser.spec.scopes[index]

Name	Type	Description	Required
domain	string		false
project	string		false
system	string		false

KeystoneUser.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
updatedGeneration	integer		false

KeystoneUser.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

NeutronDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

NeutronDeployment.spec

Name	Type	Description	Required
api	object	Neutron API deployment configuration	true
database	object	Configure the database deployment	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
neutronConfig	map[string]object	Neutron OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
neutronML2Config	map[string]object	Neutron ML2 Plugin config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
novaRef	object		true
region	object	Configure the Region to use for this OpenStack service.	true
setup	object	The type of neutron setup you want. You can choose ‘ovn’.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
neutronSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

NeutronDeployment.spec.api

Neutron API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NeutronDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NeutronDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NeutronDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NeutronDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.api.resources

Name	Type	Description	Required
neutron-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.api.resources.neutron-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.neutron-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.neutron-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NeutronDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NeutronDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NeutronDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NeutronDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NeutronDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NeutronDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NeutronDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NeutronDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

NeutronDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

NeutronDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NeutronDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

NeutronDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NeutronDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

NeutronDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.novaRef

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

NeutronDeployment.spec.setup

The type of neutron setup you want. You can choose ‘ovn’.

Name	Type	Description	Required
ovn	object	OVN-based deployment.	false

NeutronDeployment.spec.setup.ovn

OVN-based deployment.

Name	Type	Description	Required
controller	object	Per-node configuration for the OVN controller services.	true
northboundOVSDB	object	Northbound OpenvSwitch Database deployment configuration	true
northd	object	northd deployment configuration	true
southboundOVSDB	object	Southbound OpenvSwitch Database deployment configuration	true
bgp	map[string]object		false
centralCA	object	ovn central CA configuration	false

NeutronDeployment.spec.setup.ovn.controller

Per-node configuration for the OVN controller services.

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true
jemallocBackgroundThreads	integer	Maximum number of jemalloc background threads that are used to purge unused memory. Having 1-2 background threads can help to avoid ovn-controller latency spikes in large deployments. Setting this to zero (default) disables background threads. Minimum: 0	false
monitoringDsUpdateStrategy	object	Update strategy configuration for the monitoring DaemonSet. This is not validated but the body is passed as is as the body of the updateStrategy field of the DaemonSet, so syntax errors will result in reconcile failures.	false
ovnMonitorAll	boolean	Monitor everything in the ovs-database. Setting this to true will reduce the load on the north- and southbound database while increasing memory consumption of ovn-controllers.	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn-controller treats the connection to the remote ovsdb server as inactive (corresponds to Open_vSwitch column external_ids:ovn-remote-probe-interval) (defaults to value of spec.setup.ovn.southboundOVSDB.inactivityProbeMs, if set, otherwise 5000ms)	false
resources	object	Container resource requests/limits for OVN-controller related containers	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the local ovsdb server is scraped	false

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
bridgeConfig	[]object	Map physical devices to OpenStack provider physical network names.	false
neutronMetadataAgentConfig	map[string]object	Neutron Metadata Agent config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

NeutronDeployment.spec.setup.ovn.controller.configTemplates[index].bridgeConfig[index]

Name	Type	Description	Required
bridgeName	string	Unique name for the bridge to plug the uplinkDevice into. Must not exist already on the host.	true
openstackPhysicalNetwork	string	Name under which this network is exposed in openstack, as --provider-physical-network in openstack network create.	true
uplinkDevice	string	Name of the physical network interface to expose to OpenStack. Must exist already on the host and may be a VLAN device (or any other interface type, really).	true

NeutronDeployment.spec.setup.ovn.controller.resources

Container resource requests/limits for OVN-controller related containers

Name	Type	Description	Required
neutron-ovn-metadata-agent	object	Define resource requests/limits for the container	false
ovn-controller	object	Define resource requests/limits for the container	false
ovs-vswitchd	object	Define resource requests/limits for the container	false
ovs-vswitchd-monitoring	object	Define resource requests/limits for the container	false
ovsdb-server	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.neutron-ovn-metadata-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovn-controller.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovs-vswitchd-monitoring.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.controller.resources.ovsdb-server.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB

Northbound OpenvSwitch Database deployment configuration

Name	Type	Description	Required
backup	object	Backup configuration	true
inactivityProbeMs	integer	time in milliseconds till ovsdb server treats connections from clients as inactive (default 5000ms)	false
ovnRelay	object	Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.	false
raftElectionTimerMs	integer	raft leader election timeout of the cluster in milliseconds	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Container resource requests/limits for northbound OVSDB containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the ovsdb server is scraped	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay

Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name	Type	Description	Required
inactivityProbeMs	integer	time in milliseconds till ovn relays treat connections from clients (e.g., northd or ovn-controller) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn relays treat the connection to a remote ovsdb server (e.g., northbound or southbound) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Container resource requests/limits for the relay containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources

Container resource requests/limits for the relay containers

Name	Type	Description	Required
ovn-relay	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources

Container resource requests/limits for northbound OVSDB containers

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
ovsdb	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
setup-ovsdb	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.setup-ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northboundOVSDB.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.northd

northd deployment configuration

Name	Type	Description	Required
jemallocBackgroundThreads	integer	Maximum number of jemalloc background threads that are used to purge unused memory. Having 1-2 background threads can help to avoid northd latency spikes in large deployments. Setting this to zero (default) disables background threads. Minimum: 0	false
remoteInactivityProbeMs	integer	time in milliseconds till northd treats connections to remote ovsdb servers (e.g., northbound or southbound) as inactive (corresponds to NB_Global column options:northd_probe_interval) (defaults to value of spec.setup.ovn.northboundOVSDB.inactivityProbeMs, if set, otherwise 15000ms)	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Container resource requests/limits for northd containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
threads	integer	the amount of threads northd should use Minimum: 1	false

NeutronDeployment.spec.setup.ovn.northd.resources

Container resource requests/limits for northd containers

Name	Type	Description	Required
northd	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.northd.resources.northd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.northd.resources.northd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.northd.resources.northd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB

Southbound OpenvSwitch Database deployment configuration

Name	Type	Description	Required
backup	object	Backup configuration	true
ovnRelay	object	Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.	true
inactivityProbeMs	integer	time in milliseconds till ovsdb server treats connections from clients as inactive (default 5000ms)	false
raftElectionTimerMs	integer	raft leader election timeout of the cluster in milliseconds	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Container resource requests/limits for southbound OVSDB containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
scrapeIntervalMs	integer	time in milliseconds the metrics of the ovsdb server is scraped	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup

Backup configuration

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay

Configure and use an OVN relay (optional). This is useful for larger OVN environments. A good first guess would be one replica per 25 compute nodes you have.

Name	Type	Description	Required
inactivityProbeMs	integer	time in milliseconds till ovn relays treat connections from clients (e.g., northd or ovn-controller) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
remoteInactivityProbeMs	integer	time in milliseconds till ovn relays treat the connection to a remote ovsdb server (e.g., northbound or southbound) as inactive (defaults to value of inactivityProbeMs of the parent OVSDB that is relayed, if set, otherwise 60000ms)	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Container resource requests/limits for the relay containers	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources

Container resource requests/limits for the relay containers

Name	Type	Description	Required
ovn-relay	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ovn-relay.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.ovnRelay.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources

Container resource requests/limits for southbound OVSDB containers

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the container	false
backup-shifter	object	Define resource requests/limits for the container	false
ovsdb	object	Define resource requests/limits for the container	false
service-reload’	object	Define resource requests/limits for the container	false
setup-ovsdb	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.service-reload’.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.setup-ovsdb.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.southboundOVSDB.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key]

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
bgpAgentConfig	map[string]object	BGP Agent OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
config	object		false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config

Name	Type	Description	Required
bridgeName	string	Name of the provider bridge to which the BGP interface should be added.	true
localAS	integer	The AS number to be used on the BGP agent side. Minimum: 1 Maximum: 4.294967295e+09	true
peers	map[string]object		true
addressScopes	[]string	List of address scope IDs for the subnet, in case you are using ovn_stretched_l2_bgp_driver	false
debug	boolean	Enable debug logging. Default: false	false
driver	enum	Name of the ovn-bgp-agent driver that can be used. Please check ovn-bgp-agent docs for further details. Enum: ovn_bgp_driver, ovn_stretched_l2_bgp_driver, ovn_evpn_driver Default: ovn_stretched_l2_bgp_driver	false
resources	object		false
syncInterval	integer	The interval time(seconds) when it should resync with southbound database. Default: 120	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.peers[key]

Name	Type	Description	Required
AS	integer	The AS number to be peered with. Minimum: 1 Maximum: 4.294967295e+09	true
IP	string	List of peer IPs that have the same AS number and can be added to the same peer group.	true

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources

Name	Type	Description	Required
frr-bgpd	object	Define resource requests/limits for the container	false
frr-zebra	object	Define resource requests/limits for the container	false
ovn-bgp-agent	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-bgpd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.frr-zebra.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.setup.ovn.bgp[key].configTemplates[index].config.resources.ovn-bgp-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.setup.ovn.centralCA

ovn central CA configuration

Name	Type	Description	Required
duration	string	lifetime of the CA in hours Default: 672h	false
renewBefore	string	timeframe until the CA has to be renewed in hours Default: 504h	false

NeutronDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NeutronDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
neutron-db-sync-job	object	Define resource requests/limits for the container	false

NeutronDeployment.spec.jobResources.neutron-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronDeployment.spec.jobResources.neutron-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronDeployment.spec.jobResources.neutron-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronDeployment.spec.neutronSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

NeutronDeployment.spec.neutronSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

NeutronDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NeutronDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

NeutronDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

NovaDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

NovaDeployment.spec

Name	Type	Description	Required
api	object	Nova API deployment configuration	true
conductor	object	Nova Conductor deployment configuration	true
database	object	Database deployment configurations. Nova and placement require four different databases.	true
databaseCleanup	object	Configuration of a periodic database cleanup job, using nova-manage.	true
eviction	object	Compute node eviction configuration	true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Message queue configurations.	true
metadata	object	Nova Metadata service deployment configuration	true
novaConfig	map[string]object	Nova OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
placement	object	Placement API deployment configuration	true
region	object	Configure the Region to use for this OpenStack service.	true
scheduler	object	Nova Scheduler deployment configuration	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
vnc	object	VNC proxy service deployment configuration	true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
compute	object		false
ids	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object	Resource limits for Job Pod containers spawned by the Operator	false
novaSecrets	[]object	List of secrets to inject into the service configuration.	false
placementCleanup	object		false
placementConfig	map[string]object	Placement OpenStack config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
placementPolicy	map[string]string		false
placementSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	map[string]string		false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
sysinfo	map[string]string	Nova smbios sysinfo configuration. Supported values will show up in /sys/class/dmi/id/	false

NovaDeployment.spec.api

Nova API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits related to containers in Nova API pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NovaDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NovaDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NovaDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.api.resources

Resource requests/limits related to containers in Nova API pods

Name	Type	Description	Required
nova-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

NovaDeployment.spec.api.resources.nova-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.nova-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.nova-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.conductor

Nova Conductor deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits related to containers in Nova Conductor pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.conductor.resources

Resource requests/limits related to containers in Nova Conductor pods

Name	Type	Description	Required
nova-conductor	object	Define resource requests/limits for the container	false

NovaDeployment.spec.conductor.resources.nova-conductor

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.conductor.resources.nova-conductor.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.conductor.resources.nova-conductor.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database

Database deployment configurations. Nova and placement require four different databases.

Name	Type	Description	Required
api	object	Configure the database deployment	true
cell0	object	Configure the database deployment	true
cell1	object	Configure the database deployment	true
placement	object	Configure the database deployment	true

NovaDeployment.spec.database.api

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NovaDeployment.spec.database.api.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.api.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.api.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.api.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.api.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.database.api.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.api.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.api.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.api.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.api.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.api.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.api.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NovaDeployment.spec.database.cell0.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.cell0.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.cell0.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.cell0.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.cell0.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.database.cell0.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.cell0.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.cell0.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.cell0.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell0.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NovaDeployment.spec.database.cell1.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.cell1.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.cell1.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.cell1.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.cell1.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.database.cell1.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.cell1.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.cell1.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.cell1.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.cell1.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NovaDeployment.spec.database.placement.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

NovaDeployment.spec.database.placement.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

NovaDeployment.spec.database.placement.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

NovaDeployment.spec.database.placement.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.database.placement.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.database.placement.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

NovaDeployment.spec.database.placement.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

NovaDeployment.spec.database.placement.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

NovaDeployment.spec.database.placement.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.database.placement.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.database.placement.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.database.placement.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.databaseCleanup

Configuration of a periodic database cleanup job, using nova-manage.

Name	Type	Description	Required
schedule	string	The schedule is given in standard cron notation. Default: 0 0 * * *	true
deletionTimeRange	integer	Deleted database rows older than this number of days will be removed. Default: 60	false

NovaDeployment.spec.eviction

Compute node eviction configuration

Name	Type	Description	Required
ironicNodeShutdown	object	Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE	false
manager	object	Default: map[]	false
netboxCreds	object	Secret reference to Credentials for netbox, containing keys: URL, TOKEN	false
netboxSetFailed	boolean	option to set a node to failed in netbox if it is to be evicted Default: false	false
volumeLockDurationSeconds	integer	wait for releasing the volume lock during the eviction Default: 0	false

NovaDeployment.spec.eviction.ironicNodeShutdown

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaDeployment.spec.eviction.ironicNodeShutdown.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.eviction.manager

Name	Type	Description	Required
enabled	boolean	Defines if the Eviction Manager will be deployed. Default: false	false
interval	integer	The interval at which the operator polls the Compute Node status in seconds. Default: 15	false
max_per_hour	integer	The number of computenodes that are allowed to change to down in the last hour, before the Eviction Manager stops creating eviction jobs. Default: 5	false

NovaDeployment.spec.eviction.netboxCreds

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaDeployment.spec.eviction.netboxCreds.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

NovaDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

NovaDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

NovaDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.messageQueue

Message queue configurations.

Name	Type	Description	Required
cell1	object	Configure the RabbitMQ instance.	true

NovaDeployment.spec.messageQueue.cell1

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

NovaDeployment.spec.messageQueue.cell1.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.messageQueue.cell1.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.metadata

Nova Metadata service deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits related to containers in Nova Metadata service pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.metadata.resources

Resource requests/limits related to containers in Nova Metadata service pods

Name	Type	Description	Required
nova-metadata	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false

NovaDeployment.spec.metadata.resources.nova-metadata

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.metadata.resources.nova-metadata.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.metadata.resources.nova-metadata.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.metadata.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.metadata.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.metadata.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.metadata.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.metadata.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.metadata.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement

Placement API deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits related to containers in Placement API pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.placement.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NovaDeployment.spec.placement.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.placement.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NovaDeployment.spec.placement.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NovaDeployment.spec.placement.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.placement.resources

Resource requests/limits related to containers in Placement API pods

Name	Type	Description	Required
placement	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

NovaDeployment.spec.placement.resources.placement

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.placement.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.placement.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.placement.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

NovaDeployment.spec.scheduler

Nova Scheduler deployment configuration

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits related to containers in Nova Scheduler pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.scheduler.resources

Resource requests/limits related to containers in Nova Scheduler pods

Name	Type	Description	Required
nova-scheduler	object	Define resource requests/limits for the container	false

NovaDeployment.spec.scheduler.resources.nova-scheduler

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.scheduler.resources.nova-scheduler.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.scheduler.resources.nova-scheduler.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.vnc

VNC proxy service deployment configuration

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	Resource requests/limits related to containers in VNC proxy service pods	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

NovaDeployment.spec.vnc.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NovaDeployment.spec.vnc.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.vnc.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

NovaDeployment.spec.vnc.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

NovaDeployment.spec.vnc.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.vnc.resources

Resource requests/limits related to containers in VNC proxy service pods

Name	Type	Description	Required
nova-novncproxy	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false

NovaDeployment.spec.vnc.resources.nova-novncproxy

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.vnc.resources.nova-novncproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.vnc.resources.nova-novncproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.vnc.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.vnc.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.vnc.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.vnc.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.vnc.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.vnc.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute

Name	Type	Description	Required
configTemplates	[]object	Label-selected configuration templates. This is a list of objects, each describing a piece of configuration.	true
resources	object	Resource requests/limits related to containers in Nova Compute pods	false

NovaDeployment.spec.compute.configTemplates[index]

A single configuration template snippet. This is applied to nodes based on the nodeSelectors.

Configuration options are merged intelligently, generally using cuelang semantics. That means that conflicting values will always cause an InvalidConfiguration error during rollout.

Name	Type	Description	Required
nodeSelectors	[]object	List of node selectors, used to select the nodes to which the configuration applies. Each node selector selects a group of nodes; the groups are OR’ed together.	true
computeProviderConfig	object	Nova compute resource provider config. The keys of this object are the configuration file sections, the values are arrays or objects within that section.	false
ephemeralStorage	object	Configure a PVC for ephemeral storage. By default, YAOOK will mount /var/lib/nova from the host. Configuring this setting for a node will make YAOOK allocate a PVC for that path instead.	false
hostAggregates	[]string	NovaHostAggregate resource names, identifying host aggregates this compute node should be part of. These lists are joined if multiple configTemplates match a node.	false
novaComputeConfig	map[string]object	Nova Compute service config. The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
volumeBackends	object	Optional configuration of a Ceph RBD volume backend.	false

NovaDeployment.spec.compute.configTemplates[index].nodeSelectors[index]

A single node selector.

Name	Type	Description	Required
matchLabels	map[string]string	Label keys and values all of which nodes must have to match the node selector.	true

NovaDeployment.spec.compute.configTemplates[index].ephemeralStorage

Configure a PVC for ephemeral storage. By default, YAOOK will mount /var/lib/nova from the host. Configuring this setting for a node will make YAOOK allocate a PVC for that path instead.

Name	Type	Description	Required
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false

NovaDeployment.spec.compute.configTemplates[index].volumeBackends

Optional configuration of a Ceph RBD volume backend.

Name	Type	Description	Required
ceph	object	Ceph RBD backend configuration	false

NovaDeployment.spec.compute.configTemplates[index].volumeBackends.ceph

Ceph RBD backend configuration

Name	Type	Description	Required
enabled	boolean	Whether to enable the backend	true
keyringSecretName	string	Name of the Kubernetes secret containing the Ceph keyring to use. The secret must be in kubernetes.io/rook format.	true
user	string	RADOS username to use for authentication.	true
uuid	string	libvirt Secret UUID to store the keyring secret in. This must match the rbd_secret_uuid in Cinder to be able to use volumes.	true
cephConfig	map[string]object	Extra Ceph configuration to inject. This is, in contrast to the Cinder ceph configuration, on the top level, i.e. not specific to the RADOS user referenced above.The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

NovaDeployment.spec.compute.resources

Resource requests/limits related to containers in Nova Compute pods

Name	Type	Description	Required
chown-nova	object	Define resource requests/limits for the container	false
compute-evict-job	object	Define resource requests/limits for the container	false
keygen	object	Define resource requests/limits for the container	false
libvirtd	object	Define resource requests/limits for the container	false
nova-compute	object	Define resource requests/limits for the container	false
nova-compute-ssh	object	Define resource requests/limits for the container	false

NovaDeployment.spec.compute.resources.chown-nova

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.chown-nova.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.chown-nova.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.compute-evict-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.compute-evict-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.compute-evict-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.keygen

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.keygen.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.keygen.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.libvirtd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.libvirtd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.libvirtd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.nova-compute

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.nova-compute.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.nova-compute.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.compute.resources.nova-compute-ssh

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.compute.resources.nova-compute-ssh.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.compute.resources.nova-compute-ssh.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.ids

Name	Type	Description	Required
cinderGid	integer		false

NovaDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NovaDeployment.spec.jobResources

Resource limits for Job Pod containers spawned by the Operator

Name	Type	Description	Required
nova-api-db-sync-job	object	Define resource requests/limits for the container	false
nova-create-cell1-job	object	Define resource requests/limits for the container	false
nova-db-cleanup-cronjob	object	Define resource requests/limits for the container	false
nova-db-sync-job	object	Define resource requests/limits for the container	false
nova-map-cell0-job	object	Define resource requests/limits for the container	false
placement-db-sync-job	object	Define resource requests/limits for the container	false

NovaDeployment.spec.jobResources.nova-api-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-api-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-api-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-create-cell1-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-create-cell1-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-create-cell1-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-db-cleanup-cronjob.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.nova-map-cell0-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.nova-map-cell0-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.nova-map-cell0-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.jobResources.placement-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaDeployment.spec.jobResources.placement-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaDeployment.spec.jobResources.placement-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaDeployment.spec.novaSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

NovaDeployment.spec.novaSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

NovaDeployment.spec.placementCleanup

Name	Type	Description	Required
schedule	string	The schedule is given in standard cron notation. Default: 0 0 * * *	true

NovaDeployment.spec.placementSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

NovaDeployment.spec.placementSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

NovaDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NovaDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

NovaDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

OctaviaDeployment

Name	Type	Description	Required
spec	object		true
status	object		false

OctaviaDeployment.spec

Name	Type	Description	Required
api	object		true
database	object	Configure the database deployment	true
health_manager	object		true
housekeeping	object		true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true
keystoneRef	object	Keystone deployment to link this service to	true
memcached	object	Memcached deployment configuration	true
messageQueue	object	Configure the RabbitMQ instance.	true
octaviaConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	true
region	object	Configure the Region to use for this OpenStack service.	true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: 2024.1	true
worker	object		true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
jobResources	object		false
octaviaSecrets	[]object	List of secrets to inject into the service configuration.	false
policy	object	OpenStack policy to merge with the default policy	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false

OctaviaDeployment.spec.api

Name	Type	Description	Required
ingress	object	Ingress configuration	true
internal	object	Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.	false
publishEndpoint	boolean	Publish it to Keystone endpoints as well Default: true	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
sslTerminator	object	Default: map[]	false

OctaviaDeployment.spec.api.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

OctaviaDeployment.spec.api.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.api.internal

Optional override for the internal API endpoint. Normally, the internal API endpoint uses the Kubernetes service. By configuring an Ingress here, that Ingress is used instead.

Name	Type	Description	Required
ingress	object	Ingress configuration	true

OctaviaDeployment.spec.api.internal.ingress

Ingress configuration

Name	Type	Description	Required
fqdn	string	The outer fully-qualified domain name of the Ingress	true
port	integer	Port number under which the Ingress is available. This is required to be set to generate the full URL e.g. for KeystoneEndpoints	true
createIngress	boolean	Create the k8s ingress object. The default value is true	false
externalCertificateSecretRef	object	Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.	false
ingressClassName	string	Class of the Ingress to use Default: nginx	false

OctaviaDeployment.spec.api.internal.ingress.externalCertificateSecretRef

Reference to a Kubernetes TLS Secret containing the TLS certificate and keys to use for this endpoint. If unset, a certificate will be generated using the Issuer configured via issuerRef at the top level.

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.api.resources

Name	Type	Description	Required
octavia-api	object	Define resource requests/limits for the container	false
service-reload	object	Define resource requests/limits for the container	false
service-reload-external	object	Define resource requests/limits for the container	false
service-reload-internal	object	Define resource requests/limits for the container	false
ssl-terminator	object	Define resource requests/limits for the container	false
ssl-terminator-external	object	Define resource requests/limits for the container	false
ssl-terminator-internal	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.api.resources.octavia-api

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.octavia-api.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.octavia-api.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.service-reload

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.service-reload-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.service-reload-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.service-reload-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.service-reload-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.service-reload-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.service-reload-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-external

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-external.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-external.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-internal

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-internal.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.api.resources.ssl-terminator-internal.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.api.sslTerminator

Name	Type	Description	Required
respondingReadTimeout	integer	Set traefik parameter ‘transport.respondingTimeouts.readTimeout’ (time in seconds) to a large enough value for allowing the upload of larger images. Default: 7200	false

OctaviaDeployment.spec.database

Configure the database deployment

Name	Type	Description	Required
backup	object	Configure automated database backups	true
proxy	object	Configure the proxy deployment, which brokers traffic to the database	true
mysqlConfig	object	Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
timeoutClient	integer	Defines the maximum time a client can be inactive when connected to the server. Hint should be ~10% more than connection_recycle_time. Default: 300	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

OctaviaDeployment.spec.database.backup

Configure automated database backups

Name	Type	Description	Required
schedule	string	Schedule in which to create backups. The schedule is given in standard cron notation. Default: 0 0 * * *	true
mysqldump	boolean	Execute a plain mysqldump in addition to the standard backup. Default: false	false
targets	object	Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.	false

OctaviaDeployment.spec.database.backup.targets

Configure zero or more targets to save the backups to. If no targets are configured, backups will only be stored within the pod and are gone when the pod is deleted.

Name	Type	Description	Required
s3	object	Send backups into an S3 bucket.	false

OctaviaDeployment.spec.database.backup.targets.s3

Send backups into an S3 bucket.

Name	Type	Description	Required
bucket	string	Name of the bucket to store data into	true
credentialRef	object	Reference a Secret for the S3 credentials	true
endpoint	string	URL to the S3 service	true
addressingStyle	string	Default: virtual	false
filePrefix	string	Prefix to add to the file name before storing it in the bucket	false

OctaviaDeployment.spec.database.backup.targets.s3.credentialRef

Reference a Secret for the S3 credentials

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.database.proxy

Configure the proxy deployment, which brokers traffic to the database

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 2	false
resources	object	Configure resource requests/limits for containers related to the database proxy.	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

OctaviaDeployment.spec.database.proxy.resources

Configure resource requests/limits for containers related to the database proxy.

Name	Type	Description	Required
create-ca-bundle	object	Define resource requests/limits for the create-ca-bundle container	false
haproxy	object	Define resource requests/limits for the haproxy container	false
service-reload	object	Define resource requests/limits for the service-reload container	false

OctaviaDeployment.spec.database.proxy.resources.create-ca-bundle

Define resource requests/limits for the create-ca-bundle container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.proxy.resources.create-ca-bundle.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.proxy.resources.create-ca-bundle.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.proxy.resources.haproxy

Define resource requests/limits for the haproxy container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.proxy.resources.haproxy.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.proxy.resources.haproxy.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.proxy.resources.service-reload

Define resource requests/limits for the service-reload container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.proxy.resources.service-reload.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.proxy.resources.service-reload.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.mysqlConfig

Additional MySQL configuration. This is more detailed than typical configuration snippets because of the special optimizer_switch config option.

Name	Type	Description	Required
client-server	object	Configuration options for the client-server section.	false
galera	object	Configuration options for the galera section.	false
mysqld	object	Configuration options for the mysqld section.	false
sst	object	Configuration options for the sst section.	false

OctaviaDeployment.spec.database.mysqlConfig.mysqld

Configuration options for the mysqld section.

Name	Type	Description	Required
optimizer_switch	map[string]boolean	Boolean flags for individual optimizer switches. See MariaDB upstream configuration for details.	false

OctaviaDeployment.spec.database.resources

Name	Type	Description	Required
backup-creator	object	Define resource requests/limits for the backup-creator container	false
backup-shifter	object	Define resource requests/limits for the backup-shifter container	false
mariadb-galera	object	Define resource requests/limits for the mariadb-galera container	false
mysqld-exporter	object	Define resource requests/limits for the mysqld-exporter container	false

OctaviaDeployment.spec.database.resources.backup-creator

Define resource requests/limits for the backup-creator container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.backup-creator.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.backup-creator.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.resources.backup-shifter

Define resource requests/limits for the backup-shifter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.backup-shifter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.backup-shifter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.resources.mariadb-galera

Define resource requests/limits for the mariadb-galera container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.mariadb-galera.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.mariadb-galera.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.database.resources.mysqld-exporter

Define resource requests/limits for the mysqld-exporter container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.database.resources.mysqld-exporter.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.database.resources.mysqld-exporter.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.health_manager

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

OctaviaDeployment.spec.health_manager.resources

Name	Type	Description	Required
octavia-health-manager	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.health_manager.resources.octavia-health-manager

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.health_manager.resources.octavia-health-manager.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.health_manager.resources.octavia-health-manager.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.housekeeping

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

OctaviaDeployment.spec.housekeeping.resources

Name	Type	Description	Required
octavia-housekeeping	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.housekeeping.resources.octavia-housekeeping

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.housekeeping.resources.octavia-housekeeping.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.housekeeping.resources.octavia-housekeeping.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

OctaviaDeployment.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

OctaviaDeployment.spec.memcached

Memcached deployment configuration

Name	Type	Description	Required
connections	integer	Maximum number of parallel connections Default: 1024	false
memory	integer	Maximum memory used for the cache Default: 512	false
replicas	integer	Number of replicas for the service Default: 3	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

OctaviaDeployment.spec.memcached.resources

Name	Type	Description	Required
memcached	object	Define resource requests/limits for the memcached container	false

OctaviaDeployment.spec.memcached.resources.memcached

Define resource requests/limits for the memcached container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.memcached.resources.memcached.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.memcached.resources.memcached.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.messageQueue

Configure the RabbitMQ instance.

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 3	false
resources	object	It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .	false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false
storageClassName	string	Storage class name. If unset, the cluster-wide default storage class will be used. If that storage class is not set or does not work, the deployment will be broken. Changing storage classes after the initial rollout requires manual intervention.	false
storageSize	string	Size to request for the PVC. Changing the size after the initial rollout requires manual intervention. Default: 8Gi	false
tolerateNodeDown	boolean	If set, Kubernetes will not evict the pod after 300s in case of a NodeDown or Node unreachable. Default: false	false

OctaviaDeployment.spec.messageQueue.resources

It is recommended to set these resource limits to bypass problems with cgroup limits for RabbitMQ. The infra operator will use these values to configure RabbitMQ resource limits separately by setting the fields total_memory_available_override_value and default_worker_pool_size inside /etc/rabbitmq/rabbitmq.conf .

Name	Type	Description	Required
rabbitmq	object	Define resource requests/limits for the RabbitMQ container	false

OctaviaDeployment.spec.messageQueue.resources.rabbitmq

Define resource requests/limits for the RabbitMQ container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.messageQueue.resources.rabbitmq.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.messageQueue.resources.rabbitmq.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

OctaviaDeployment.spec.worker

Name	Type	Description	Required
replicas	integer	Number of replicas for the service Default: 1	false
resources	object		false
scheduleRuleWhenUnsatisfiable	enum	whenUnsatisfiable indicates how to deal with a Pod if it doesn’t satisfy the spread constraint Enum: ScheduleAnyway, DoNotSchedule Default: ScheduleAnyway	false

OctaviaDeployment.spec.worker.resources

Name	Type	Description	Required
octavia-worker	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.worker.resources.octavia-worker

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.worker.resources.octavia-worker.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.worker.resources.octavia-worker.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

OctaviaDeployment.spec.jobResources

Name	Type	Description	Required
octavia-db-load-metadefs-job	object	Define resource requests/limits for the container	false
octavia-db-sync-job	object	Define resource requests/limits for the container	false
octavia-db-upgrade-post-job	object	Define resource requests/limits for the container	false
octavia-db-upgrade-pre-job	object	Define resource requests/limits for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-load-metadefs-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-load-metadefs-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-load-metadefs-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-sync-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-sync-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-sync-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-post-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-post-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-post-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-pre-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-pre-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

OctaviaDeployment.spec.jobResources.octavia-db-upgrade-pre-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

OctaviaDeployment.spec.octaviaSecrets[index]

A single secret injection configuration. This causes the operator to read the referenced Secret, extract the individual data entries and put them into the corresponding configuration paths, according to the items.

Name	Type	Description	Required
items	[]object	Assignment of Secret keys to configuration keys	true
secretName	string	Name of the Kubernetes Secret to read	true

OctaviaDeployment.spec.octaviaSecrets[index].items[index]

Name	Type	Description	Required
key	string	Key name in the Secret	true
path	string	Path inside the configuration to put the value in. Path must be in the form of /section/key. For example, to put a value into the debug key in the DEFAULT section, you would use /DEFAULT/debug.	true

OctaviaDeployment.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

OctaviaDeployment.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

OctaviaDeployment.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

TempestCronJob

Name	Type	Description	Required
spec	object		true
status	object		false

TempestCronJob.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
target	object		true
account_cleanup	boolean	Default: false	false
exclude	[]string		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
preprovisioned_users	object		false
pushgateway	string		false
region	string	Default: RegionOne	false
resources	object		false
schedule	string	The schedule is given in standard cron notation. Default: 0 0 * * *	false
serial	boolean	Default: false	false
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: 32.0.0, 36.0.0, 41.0.0	false
tempestConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

TempestCronJob.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

TempestCronJob.spec.target

Name	Type	Description	Required
regex	string		false
service	enum	Enum: cinder, glance, keystone, nova, neutron, barbican, telemetry, designate, all	false

TempestCronJob.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

TempestCronJob.spec.preprovisioned_users

Name	Type	Description	Required
key	string		true
secret	object		true

TempestCronJob.spec.preprovisioned_users.secret

Name	Type	Description	Required
name	string		true

TempestCronJob.spec.resources

Name	Type	Description	Required
tempest-job	object	Define resource requests/limits for the container	false

TempestCronJob.spec.resources.tempest-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

TempestCronJob.spec.resources.tempest-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

TempestCronJob.spec.resources.tempest-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

TempestCronJob.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

TempestCronJob.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

TempestJob

Name	Type	Description	Required
spec	object		true
status	object		false

TempestJob.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
target	object		true
account_cleanup	boolean	Default: false	false
exclude	[]string		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
preprovisioned_users	object		false
pushgateway	string		false
region	string	Default: RegionOne	false
resources	object		false
serial	boolean	Default: false	false
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: 32.0.0, 36.0.0, 41.0.0	false
tempestConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false

TempestJob.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

TempestJob.spec.target

Name	Type	Description	Required
regex	string		false
service	enum	Enum: cinder, glance, keystone, nova, neutron, barbican, telemetry, designate, all	false

TempestJob.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

TempestJob.spec.preprovisioned_users

Name	Type	Description	Required
key	string		true
secret	object		true

TempestJob.spec.preprovisioned_users.secret

Name	Type	Description	Required
name	string		true

TempestJob.spec.resources

Name	Type	Description	Required
tempest-job	object	Define resource requests/limits for the container	false

TempestJob.spec.resources.tempest-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

TempestJob.spec.resources.tempest-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

TempestJob.spec.resources.tempest-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

TempestJob.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, BackingOff, Completed, Failed	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

TempestJob.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

YaookDisruptionBudget

Name	Type	Description	Required
spec	object		false
status	object		false

YaookDisruptionBudget.spec

Name	Type	Description	Required
maxUnavailable	int or string	Minimum: 0	true
nodeSelectors	[]object		true
disruptiveMaintenance	boolean	If this flag is true, virtual machines will be cold migrated from the hypervisor Default: false	false
preventDeletion	boolean	If this is true, Resources will not be deleted immediately if their coresponding node-label is removed. Manual deletion of novacomputenode resource is needed. Default: false	false
spareNodes	object		false

YaookDisruptionBudget.spec.nodeSelectors[index]

Name	Type	Description	Required
matchLabels	map[string]string		true

YaookDisruptionBudget.spec.spareNodes

Name	Type	Description	Required
amount	int or string	Minimum: 1	true
spareAggregateRef	object		true
spotTrait	string		false

YaookDisruptionBudget.spec.spareNodes.spareAggregateRef

Name	Type	Description	Required
name	string		true

YaookDisruptionBudget.status

Name	Type	Description	Required
nodes	[]object		false

YaookDisruptionBudget.status.nodes[index]

Name	Type	Description	Required
availableInstances	integer		true
configuredInstances	integer		true
existingInstances	integer		true
lastUpdateTime	string		true
readyInstances	integer		true
type	string		true
updatedInstances	integer		true
spareNodes	[]string		false

apps.yaook.cloud/v1

Resource Types:

• ConfiguredDaemonSet

ConfiguredDaemonSet

Name	Type	Description	Required
spec	object		true
status	object		false

ConfiguredDaemonSet.spec

Name	Type	Description	Required
targetNodes	[]string		true
template	object		true
volumeTemplates	[]object		true
updateStrategy	object		false

ConfiguredDaemonSet.spec.template

Name	Type	Description	Required
spec	object		true
metadata	object		false

ConfiguredDaemonSet.spec.volumeTemplates[index]

Name	Type	Description	Required
nodeMap	map[string]object		true
volumeName	string		true
default	object		false

ConfiguredDaemonSet.spec.volumeTemplates[index].nodeMap[key]

Name	Type	Description	Required
template	object		true

ConfiguredDaemonSet.spec.volumeTemplates[index].default

Name	Type	Description	Required
template	object		true

ConfiguredDaemonSet.spec.updateStrategy

Name	Type	Description	Required
rollingUpdate	object		false
type	enum	Enum: rollingUpdate Default: rollingUpdate	false

ConfiguredDaemonSet.spec.updateStrategy.rollingUpdate

Name	Type	Description	Required
maxUnavailable	integer	Default: 1 Minimum: 1	false

ConfiguredDaemonSet.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
currentNumberScheduled	integer		false
numberAvailable	integer		false
numberReady	integer		false
updatedGeneration	integer		false
updatedNumberScheduled	integer		false

ConfiguredDaemonSet.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

network.yaook.cloud/v1

Resource Types:

• NeutronOVNBGPAgent

• NeutronOVNAgent

NeutronOVNBGPAgent

Name	Type	Description	Required
spec	object		true
status	object		false

NeutronOVNBGPAgent.spec

Name	Type	Description	Required
bgpNodeAnnotationSuffix	string		true
bridgeName	string	Name of the provider bridge to which the BGP interface should be added.	true
localAS	integer	The AS number to be used on the BGP agent side. Minimum: 1 Maximum: 4.294967295e+09	true
lockName	string		true
peers	map[string]object		true
addressScopes	[]string	List of address scope IDs for the subnet, in case you are using ovn_stretched_l2_bgp_driver	false
bgpAgentConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
debug	boolean	Enable debug logging. Default: false	false
driver	enum	Name of the ovn-bgp-agent driver that can be used. Please check ovn-bgp-agent docs for further details. Enum: ovn_bgp_driver, ovn_stretched_l2_bgp_driver, ovn_evpn_driver Default: ovn_stretched_l2_bgp_driver	false
hostname	string		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
issuerRef	object		false
resources	object		false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
syncInterval	integer	The interval time(seconds) when it should resync with southbound database. Default: 120	false

NeutronOVNBGPAgent.spec.peers[key]

Name	Type	Description	Required
AS	integer	The AS number to be peered with. Minimum: 1 Maximum: 4.294967295e+09	true
IP	string	List of peer IPs that have the same AS number and can be added to the same peer group.	true

NeutronOVNBGPAgent.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NeutronOVNBGPAgent.spec.issuerRef

Name	Type	Description	Required
name	string		true

NeutronOVNBGPAgent.spec.resources

Name	Type	Description	Required
frr-bgpd	object	Define resource requests/limits for the container	false
frr-zebra	object	Define resource requests/limits for the container	false
ovn-bgp-agent	object	Define resource requests/limits for the container	false

NeutronOVNBGPAgent.spec.resources.frr-bgpd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNBGPAgent.spec.resources.frr-bgpd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNBGPAgent.spec.resources.frr-bgpd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNBGPAgent.spec.resources.frr-zebra

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNBGPAgent.spec.resources.frr-zebra.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNBGPAgent.spec.resources.frr-zebra.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNBGPAgent.spec.resources.ovn-bgp-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNBGPAgent.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NeutronOVNBGPAgent.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
eviction	object		false
state	enum	Enum: Creating, Enabled, Disabled, Evicting, DisabledAndCleared Default: Creating	false
updatedGeneration	integer		false

NeutronOVNBGPAgent.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected, Evicted, Enabled, BoundToNode, RequiresRecreation	true

NeutronOVNBGPAgent.status.eviction

Name	Type	Description	Required
reason	string		true

NeutronOVNAgent

Name	Type	Description	Required
spec	object		true
status	object		false

NeutronOVNAgent.spec

Name	Type	Description	Required
caConfigMapName	string		true
deployedOnComputeNode	boolean		true
issuerRef	object		true
keystoneRef	object	Keystone deployment to link this service to	true
novaRef	object		true
southboundServers	[]string		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
bridgeConfig	[]object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
imageRef	object		false
jemallocBackgroundThreads	integer	Maximum number of jemalloc background threads that are used to purge unused memory. Having 1-2 background threads can help to avoid ovn-controller latency spikes in large deployments. Setting this to zero (default) disables background threads. Minimum: 0	false
neutronMetadataAgentConfig	[]map[string]object		false
northboundServers	[]string		false
ovnMonitorAll	boolean	Default: true	false
region	object	Configure the Region to use for this OpenStack service.	false
resources	object		false
scrapeInterval	integer	Time in milliseconds the metrics of the local ovsdb server are scraped	false
serviceMonitor	object	Configure the ServiceMonitor objects created by the operator.	false
southboundInactivityProbe	integer	Time in milliseconds till ovsdb server see connection as inactive	false
state	enum	Enum: Enabled, Disabled, DisabledAndCleared Default: Enabled	false

NeutronOVNAgent.spec.issuerRef

Name	Type	Description	Required
name	string		true

NeutronOVNAgent.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

NeutronOVNAgent.spec.novaRef

Name	Type	Description	Required
name	string		true

NeutronOVNAgent.spec.bridgeConfig[index]

Name	Type	Description	Required
bridgeName	string		true
openstackPhysicalNetwork	string	This must be the same as –provider-physical-network, when setting up the provider network	true
uplinkDevice	string		true

NeutronOVNAgent.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NeutronOVNAgent.spec.imageRef

Name	Type	Description	Required
neutron-ovn-agent	string		false
ovn	string		false
ovs	string		false

NeutronOVNAgent.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

NeutronOVNAgent.spec.resources

Name	Type	Description	Required
neutron-ovn-metadata-agent	object	Define resource requests/limits for the container	false
ovn-controller	object	Define resource requests/limits for the container	false
ovs-vswitchd	object	Define resource requests/limits for the container	false
ovs-vswitchd-monitoring	object	Define resource requests/limits for the container	false
ovsdb-server	object	Define resource requests/limits for the container	false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.neutron-ovn-metadata-agent.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovn-controller

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovn-controller.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovn-controller.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovs-vswitchd-monitoring.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.resources.ovsdb-server

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NeutronOVNAgent.spec.resources.ovsdb-server.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NeutronOVNAgent.spec.resources.ovsdb-server.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NeutronOVNAgent.spec.serviceMonitor

Configure the ServiceMonitor objects created by the operator.

Name	Type	Description	Required
additionalLabels	map[string]string	Additional labels to set on the ServiceMonitor metadata.	false

NeutronOVNAgent.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
eviction	object		false
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
ovnVersion	string		false
state	enum	Enum: Creating, Enabled, Disabled, Evicting, DisabledAndCleared Default: Creating	false
updatedGeneration	integer		false

NeutronOVNAgent.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected, Evicted, Enabled, BoundToNode, RequiresRecreation	true

NeutronOVNAgent.status.eviction

Name	Type	Description	Required
reason	string		true

compute.yaook.cloud/v1

Resource Types:

• NovaComputeNode

• NovaHostAggregate

• SSHIdentity

NovaComputeNode

Name	Type	Description	Required
spec	object		true
status	object		false

NovaComputeNode.spec

Name	Type	Description	Required
caConfigMapName	string		true
cephBackend	object		true
keystoneRef	object	Keystone deployment to link this service to	true
messageQueue	object		true
novaConfig	[]map[string]object		true
publicKeysSecretRef	object		true
targetRelease	enum	The release to deploy. Changing this will trigger an upgrade. Enum: zed, 2023.1, 2023.2, 2024.1	true
appliedDisruptionBudget	string		false
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
computeProviderConfig	[]object		false
ephemeralStorage	object		false
eviction	object	Compute node eviction configuration	false
hostAggregates	[]string		false
ids	object		false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
imageRef	object		false
isSpareNode	boolean		false
memcachedRef	object		false
region	object	Configure the Region to use for this OpenStack service.	false
resources	object		false
state	enum	Enum: Enabled, Disabled, DisabledAndCleared Default: Enabled	false
sysinfoConfigMapRef	object		false
vnc	object		false

NovaComputeNode.spec.cephBackend

Name	Type	Description	Required
enabled	boolean		true
cephConfig	map[string]object	The keys of this object are the configuration file sections, the values are objects whose keys correspond to config keys within that section.	false
keyringSecretName	string		false
user	string		false
uuid	string		false

NovaComputeNode.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

NovaComputeNode.spec.messageQueue

Name	Type	Description	Required
amqpServerRef	object		true

NovaComputeNode.spec.messageQueue.amqpServerRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.publicKeysSecretRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.ephemeralStorage

Name	Type	Description	Required
storageClassName	string		true
storageSize	string		true

NovaComputeNode.spec.eviction

Compute node eviction configuration

Name	Type	Description	Required
ironicNodeShutdown	object	Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE	false
manager	object	Default: map[]	false
netboxCreds	object	Secret reference to Credentials for netbox, containing keys: URL, TOKEN	false
netboxSetFailed	boolean	option to set a node to failed in netbox if it is to be evicted Default: false	false
volumeLockDurationSeconds	integer	wait for releasing the volume lock during the eviction Default: 0	false

NovaComputeNode.spec.eviction.ironicNodeShutdown

Secret reference to Credentials for Ironic, containing: OS_AUTH_URL, OS_USERNAME, OS_PASSWORD, OS_PROJECT_NAME, OS_REGION_NAME, OS_INTERFACE

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaComputeNode.spec.eviction.ironicNodeShutdown.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.eviction.manager

Name	Type	Description	Required
enabled	boolean	Defines if the Eviction Manager will be deployed. Default: false	false
interval	integer	The interval at which the operator polls the Compute Node status in seconds. Default: 15	false
max_per_hour	integer	The number of computenodes that are allowed to change to down in the last hour, before the Eviction Manager stops creating eviction jobs. Default: 5	false

NovaComputeNode.spec.eviction.netboxCreds

Secret reference to Credentials for netbox, containing keys: URL, TOKEN

Name	Type	Description	Required
credentialsSecretRef	object		true

NovaComputeNode.spec.eviction.netboxCreds.credentialsSecretRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.ids

Name	Type	Description	Required
cinderGid	integer		false

NovaComputeNode.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.imageRef

Name	Type	Description	Required
nova-compute	string		false

NovaComputeNode.spec.memcachedRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.region

Configure the Region to use for this OpenStack service.

Name	Type	Description	Required
name	string	Name of the OpenStack region to connect with and to set up the own endpoints in. Default: RegionOne	false
parent	string		false

NovaComputeNode.spec.resources

Name	Type	Description	Required
chown-nova	object	Define resource requests/limits for the container	false
compute-evict-job	object	Define resource requests/limits for the container	false
keygen	object	Define resource requests/limits for the container	false
libvirtd	object	Define resource requests/limits for the container	false
nova-compute	object	Define resource requests/limits for the container	false
nova-compute-ssh	object	Define resource requests/limits for the container	false

NovaComputeNode.spec.resources.chown-nova

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.chown-nova.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.chown-nova.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.compute-evict-job

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.compute-evict-job.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.compute-evict-job.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.keygen

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.keygen.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.keygen.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.libvirtd

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.libvirtd.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.libvirtd.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.nova-compute

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.nova-compute.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.nova-compute.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.resources.nova-compute-ssh

Define resource requests/limits for the container

Name	Type	Description	Required
limits	object	Define resource limits for the container	false
requests	object	Define resource requests for the container	false

NovaComputeNode.spec.resources.nova-compute-ssh.limits

Define resource limits for the container

Name	Type	Description	Required
cpu	string	CPU time limit for the container	false
memory	string	Memory limit for the container	false

NovaComputeNode.spec.resources.nova-compute-ssh.requests

Define resource requests for the container

Name	Type	Description	Required
cpu	string	CPU time request for the container	false
memory	string	Memory request for the container	false

NovaComputeNode.spec.sysinfoConfigMapRef

Name	Type	Description	Required
name	string		true

NovaComputeNode.spec.vnc

Name	Type	Description	Required
baseUrl	string		true
issuerRef	object	Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).	true

NovaComputeNode.spec.vnc.issuerRef

Reference an issuer for the certificates used internally by YAOOK (and, by default, also for external services unless overridden).

Name	Type	Description	Required
name	string	Name of the cert-manager Issuer object Default: ca-issuer	false

NovaComputeNode.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
eviction	object		false
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
state	enum	Enum: Creating, Enabled, Disabled, Evicting, DisabledAndCleared Default: Creating	false
updatedGeneration	integer		false

NovaComputeNode.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected, Evicted, Enabled, BoundToNode, RequiresRecreation	true

NovaComputeNode.status.eviction

Name	Type	Description	Required
reason	string		true

NovaHostAggregate

Name	Type	Description	Required
spec	object		true
status	object		false

NovaHostAggregate.spec

Name	Type	Description	Required
keystoneRef	object	Keystone deployment to link this service to	true
novaRef	object		true
caCertificates	[]string	CA Certificates that should be added to all services can be placed here. CAs that issue certificates to the service are automatically added and do not need to be specified.	false
imagePullSecrets	[]object	References to image pull secrets which should be included in all Pods spawned directly or indirectly by this resource.	false
properties	object		false
targetRelease	string	The release to deploy. Changing this will trigger an upgrade.	false
zone	string		false

NovaHostAggregate.spec.keystoneRef

Keystone deployment to link this service to

Name	Type	Description	Required
name	string		true
kind	enum	Specify the kind of Keystone deployment to reference Enum: KeystoneDeployment, ExternalKeystoneDeployment Default: KeystoneDeployment	false

NovaHostAggregate.spec.novaRef

Name	Type	Description	Required
name	string		true

NovaHostAggregate.spec.imagePullSecrets[index]

Name	Type	Description	Required
name	string		true

NovaHostAggregate.status

Name	Type	Description	Required
conditions	[]object		true
observedGeneration	integer		true
phase	enum	Enum: Created, Updating, WaitingForDependency, Updated, BackingOff, InvalidConfiguration	true
installedRelease	string	The last successfully deployed release.	false
nextRelease	string	The next release to roll out. This differs from installedRelease during upgrades and from targetRelease during multi-step upgrades.	false
updatedGeneration	integer		false

NovaHostAggregate.status.conditions[index]

Name	Type	Description	Required
lastTransitionTime	string		true
lastUpdateTime	string		true
message	string		true
reason	string		true
status	string		true
type	enum	Enum: Converged, GarbageCollected	true

SSHIdentity

Name	Type	Description	Required
status	object		false

SSHIdentity.status

Name	Type	Description	Required
keys	object		true

SSHIdentity.status.keys

Name	Type	Description	Required
host	[]string		true
user	[]string		true