Packages:

config.openservicemesh.io/v1alpha1

Package v1alpha1 is the v1alpha1 version of the API.

Resource Types:

    CertificateSpec

    (Appears on:MeshConfigSpec)

    CertificateSpec is type to reperesent OSM’s certificate management configuration.

    Field Description
    serviceCertValidityDuration
    string

    ServiceCertValidityDuration defines the service certificate validity duration.

    ExternalAuthzSpec

    (Appears on:TrafficSpec)

    ExternalAuthzSpec is a type to represent external authorization configuration.

    Field Description
    enable
    bool

    Enable defines a boolean indicating if the external authorization policy is to be enabled.
    address
    string

    Address defines the remote address of the external authorization endpoint.
    port
    uint16

    Port defines the destination port of the remote external authorization endpoint.
    statPrefix
    string

    StatPrefix defines a prefix for the stats sink for this external authorization policy.
    timeout
    string

    Timeout defines the timeout in which a response from the external authorization endpoint. is expected to execute.
    failureModeAllow
    bool

    FailureModeAllow defines a boolean indicating if traffic should be allowed on a failure to get a response against the external authorization endpoint.

    MeshConfig

    MeshConfig is the type used to represent the mesh configuration.

    Field Description
    metadata
    Kubernetes meta/v1.ObjectMeta     		(Optional)

    Object’s metadata.

    Refer to the Kubernetes API documentation for the fields of the metadata field.
    spec
    MeshConfigSpec     		(Optional)

    Spec is the MeshConfig specification.



    sidecar
    SidecarSpec

    Sidecar defines the configurations of the proxy sidecar in a mesh.
    traffic
    TrafficSpec

    Traffic defines the traffic management configurations for a mesh instance.
    observability
    ObservabilitySpec

    Observalility defines the observability configurations for a mesh instance.
    certificate
    CertificateSpec

    Certificate defines the certificate management configurations for a mesh instance.

    MeshConfigSpec

    (Appears on:MeshConfig)

    MeshConfigSpec is the spec for OSM’s configuration.

    Field Description
    sidecar
    SidecarSpec

    Sidecar defines the configurations of the proxy sidecar in a mesh.
    traffic
    TrafficSpec

    Traffic defines the traffic management configurations for a mesh instance.
    observability
    ObservabilitySpec

    Observalility defines the observability configurations for a mesh instance.
    certificate
    CertificateSpec

    Certificate defines the certificate management configurations for a mesh instance.

    ObservabilitySpec

    (Appears on:MeshConfigSpec)

    ObservabilitySpec is the type to represent OSM’s observability configurations.

    Field Description
    enableDebugServer
    bool

    EnableDebugServer defines if the debug endpoint on the OSM controller pod is enabled.
    tracing
    TracingSpec

    Tracing defines OSM’s tracing configuration.

    SidecarSpec

    (Appears on:MeshConfigSpec)

    SidecarSpec is the type used to represent the specifications for the proxy sidecar.

    Field Description
    enablePrivilegedInitContainer
    bool

    EnablePrivilegedInitContainer defines a boolean indicating whether the init container for a meshed pod should run as privileged.
    logLevel
    string

    LogLevel defines the logging level for the sidecar’s logs.
    envoyImage
    string

    EnvoyImage defines the container image used for the Envoy proxy sidecar.
    initContainerImage
    string

    InitContainerImage defines the container image used for the init container injected to meshed pods.
    maxDataPlaneConnections
    int

    MaxDataPlaneConnections defines the maximum allowed data plane connections from a proxy sidecar to the OSM controller.
    configResyncInterval
    string

    ConfigResyncInterval defines the resync interval for regular proxy broadcast updates.
    resources
    Kubernetes core/v1.ResourceRequirements

    Resources defines the compute resources for the sidecar.

    TracingSpec

    (Appears on:ObservabilitySpec)

    TracingSpec is the type to represent OSM’s tracing configuration.

    Field Description
    enable
    bool

    Enable defines a boolean indicating if the sidecars are enabled for tracing.
    port
    int16

    Port defines the tracing collector’s port.
    address
    string

    Address defines the tracing collectio’s hostname.
    endpoint
    string

    Endpoint defines the API endpoint for tracing requests sent to the collector.

    TrafficSpec

    (Appears on:MeshConfigSpec)

    TrafficSpec is the type used to represent OSM’s traffic management configuration.

    Field Description
    enableEgress
    bool

    EnableEgress defines a boolean indicating if mesh-wide Egress is enabled.
    outboundIPRangeExclusionList
    []string

    OutboundIPRangeExclusionList defines a global list of IP address ranges to exclude from outbound traffic interception by the sidecar proxy.
    outboundPortExclusionList
    []int

    OutboundPortExclusionList defines a global list of ports to exclude from outbound traffic interception by the sidecar proxy.
    useHTTPSIngress
    bool

    UseHTTPSIngress defines a boolean indicating if HTTPS Ingress is enabled globally in the mesh.
    enablePermissiveTrafficPolicyMode
    bool

    EnablePermissiveTrafficPolicyMode defines a boolean indicating if permissive traffic policy mode is enabled mesh-wide.
    inboundExternalAuthorization
    ExternalAuthzSpec

    InboundExternalAuthorization defines a ruleset that, if enabled, will configure a remote external authorization endpoint for all inbound and ingress traffic in the mesh.

    Generated with gen-crd-api-reference-docs on git commit 3f794156.