Discover modules > cue.dev/x/crd/bitnami.com/sealed-secrets > v1alpha1
v0.0.0
#SealedSecret: ¶

SealedSecret is the K8s representation of a "sealed Secret" - a regular k8s Secret that has been sealed (encrypted) using the controller's key.

apiVersion: "bitnami.com/v1alpha1" ¶

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

kind: "SealedSecret" ¶

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

metadata!: ¶
name!: string ¶
namespace!: string ¶
labels?: [string]: string ¶
annotations?: [string]: string ¶
spec!: ¶

SealedSecretSpec is the specification of a SealedSecret.

data?: string ¶

Data is deprecated and will be removed eventually. Use per-value EncryptedData instead.

encryptedData!: [string]: string ... ¶
template?: ¶

Template defines the structure of the Secret that will be created from this sealed secret.

data?: null | { [string]: string } ¶

Keys that should be templated using decrypted data.

immutable?: bool ¶

Immutable, if set to true, ensures that data stored in the Secret cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.

metadata?:
click to see definition
null | {
	annotations?: {
		[string]: string
	}
	finalizers?: [...string]
	labels?: {
		[string]: string
	}
	name?:      string
	namespace?: string
	...
}
¶

Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#metadata

type?: string ¶

Used to facilitate programmatic handling of secret data.

status?: ¶

SealedSecretStatus is the most recently observed status of the SealedSecret.

conditions?:
click to see definition
[...{
	lastTransitionTime?: time.Time
	lastUpdateTime?:     time.Time
	message?:            string
	reason?:             string
	status!:             string
	type!:               string
}]
¶

Represents the latest available observations of a sealed secret's current state.

observedGeneration?: int & >=-9223372036854775808 & <=9223372036854775807 ¶

ObservedGeneration reflects the generation most recently observed by the sealed-secrets controller.

Source files

  • schema.cue