diff --git a/.checksums b/.checksums
index 8c8b47d18f9..fb26329d5d3 100644
--- a/.checksums
+++ b/.checksums
@@ -6,7 +6,7 @@
# if this checksum has changed as part of any non-release specific changes, please apply your changes to the
# development version of the helm charts in ./packaging/helm-charts
### IMPORTANT ###
-HELM_CHART_CHECKSUM="1b849c733d16236b0fe8b9fd8dfec036f2eb5ffd -"
+HELM_CHART_CHECKSUM="8f91663fcf9ef6547447935b87c15507e3f79e61 -"
### IMPORTANT ###
# if the below line has changed, this means the ./install directory has changed
@@ -14,7 +14,7 @@ HELM_CHART_CHECKSUM="1b849c733d16236b0fe8b9fd8dfec036f2eb5ffd -"
# if this checksum has changed as part of any non-release specific changes, please apply your changes to the
# development version of the helm charts in ./packaging/install
### IMPORTANT ###
-INSTALL_CHECKSUM="bf8702e013e395e058995517a422dbf2acd47fb4 -"
+INSTALL_CHECKSUM="21c80eb3697d0668d9e4a3da45fe83f0c9ffb692 -"
### IMPORTANT ###
# if the below line has changed, this means the ./examples directory has changed
@@ -22,4 +22,4 @@ INSTALL_CHECKSUM="bf8702e013e395e058995517a422dbf2acd47fb4 -"
# if this checksum has changed as part of any non-release specific changes, please apply your changes to the
# development version of the helm charts in ./packaging/examples
### IMPORTANT ###
-EXAMPLES_CHECKSUM="d4862b639539f19403a79b3fd31058be182a9cc8 -"
+EXAMPLES_CHECKSUM="5a9c3865b7ef2ddd69128435fbfaf5a3ec0f5ef7 -"
diff --git a/api/pom.xml b/api/pom.xml
index 82e8e544326..ebac5874dff 100644
--- a/api/pom.xml
+++ b/api/pom.xml
@@ -4,7 +4,7 @@
io.strimzi
strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
api
diff --git a/certificate-manager/pom.xml b/certificate-manager/pom.xml
index 4c564581a53..fe5bc6eea19 100644
--- a/certificate-manager/pom.xml
+++ b/certificate-manager/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
certificate-manager
diff --git a/cluster-operator/pom.xml b/cluster-operator/pom.xml
index 8608dd0aa58..c1018a921f8 100644
--- a/cluster-operator/pom.xml
+++ b/cluster-operator/pom.xml
@@ -4,7 +4,7 @@
io.strimzi
strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
cluster-operator
diff --git a/config-model-generator/pom.xml b/config-model-generator/pom.xml
index 09ce10ae564..0010c3ac76e 100644
--- a/config-model-generator/pom.xml
+++ b/config-model-generator/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/config-model/pom.xml b/config-model/pom.xml
index 4b59e154aa8..884be95ddab 100644
--- a/config-model/pom.xml
+++ b/config-model/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/crd-annotations/pom.xml b/crd-annotations/pom.xml
index e9a1ac5042a..9986bffa6d2 100644
--- a/crd-annotations/pom.xml
+++ b/crd-annotations/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/crd-generator/pom.xml b/crd-generator/pom.xml
index 299d3127b87..8b115e45331 100644
--- a/crd-generator/pom.xml
+++ b/crd-generator/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
crd-generator
diff --git a/documentation/shared/attributes.adoc b/documentation/shared/attributes.adoc
index bba1c28917d..6d696bcaeb8 100644
--- a/documentation/shared/attributes.adoc
+++ b/documentation/shared/attributes.adoc
@@ -25,15 +25,15 @@
:KubernetesVersion: 1.16 and later
// Kafka upgrade attributes used in kafka upgrades section
-:DefaultKafkaVersion: 3.1.0
-:KafkaVersionLower: 3.0.0
-:KafkaVersionHigher: 3.1.0
+:DefaultKafkaVersion: 3.2.0
+:KafkaVersionLower: 3.1.0
+:KafkaVersionHigher: 3.2.0
:ExampleImageTagUpgrades: quay.io/strimzi/kafka:{ProductVersion}-kafka-{KafkaVersionHigher}
//inter-broker protocol and log message version
-:DefaultInterBrokerVersion: 3.1
-:InterBrokerVersionLower: 3.0
-:InterBrokerVersionHigher: 3.1
+:DefaultInterBrokerVersion: 3.2
+:InterBrokerVersionLower: 3.1
+:InterBrokerVersionHigher: 3.2
// Source and download links
:ReleaseDownload: https://github.com/strimzi/strimzi-kafka-operator/releases[GitHub releases page^]
diff --git a/examples/connect/kafka-connect-build.yaml b/examples/connect/kafka-connect-build.yaml
new file mode 100644
index 00000000000..57d715b4cb9
--- /dev/null
+++ b/examples/connect/kafka-connect-build.yaml
@@ -0,0 +1,43 @@
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaConnect
+metadata:
+ name: my-connect-cluster
+# annotations:
+# # use-connector-resources configures this KafkaConnect
+# # to use KafkaConnector resources to avoid
+# # needing to call the Connect REST API directly
+# strimzi.io/use-connector-resources: "true"
+spec:
+ version: 3.1.0
+ replicas: 1
+ bootstrapServers: my-cluster-kafka-bootstrap:9093
+ tls:
+ trustedCertificates:
+ - secretName: my-cluster-cluster-ca-cert
+ certificate: ca.crt
+ config:
+ group.id: connect-cluster
+ offset.storage.topic: connect-cluster-offsets
+ config.storage.topic: connect-cluster-configs
+ status.storage.topic: connect-cluster-status
+ # -1 means it will use the default replication factor configured in the broker
+ config.storage.replication.factor: -1
+ offset.storage.replication.factor: -1
+ status.storage.replication.factor: -1
+ build:
+ output:
+ type: docker
+ # This image will last only for 24 hours and might be overwritten by other users
+ # Strimzi will use this tag to push the image. But it will use the digest to pull
+ # the container image to make sure it pulls exactly the image we just built. So
+ # it should not happen that you pull someone else's container image. However, we
+ # recommend changing this to your own container registry or using a different
+ # image name for any other than demo purposes.
+ image: ttl.sh/strimzi-connect-example-3.1.0:24h
+ plugins:
+ - name: kafka-connect-file
+ artifacts:
+ - type: maven
+ group: org.apache.kafka
+ artifact: connect-file
+ version: 3.1.0
diff --git a/examples/connect/kafka-connect.yaml b/examples/connect/kafka-connect.yaml
index 14f54b4b60d..ca6ecdcd68c 100644
--- a/examples/connect/kafka-connect.yaml
+++ b/examples/connect/kafka-connect.yaml
@@ -8,7 +8,7 @@ metadata:
# # needing to call the Connect REST API directly
# strimzi.io/use-connector-resources: "true"
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
bootstrapServers: my-cluster-kafka-bootstrap:9093
tls:
diff --git a/examples/connect/source-connector.yaml b/examples/connect/source-connector.yaml
index e9590acafdc..5112f6d0bd6 100644
--- a/examples/connect/source-connector.yaml
+++ b/examples/connect/source-connector.yaml
@@ -1,3 +1,7 @@
+# To use the KafkaConnector resource, you have to first enable the connector operator using
+# the strimzi.io/use-connector-resources annotation on the KafkaConnect custom resource.
+# From Apache Kafka 3.1.1 and 3.2.0, you also have to add the FileStreamSourceConnector
+# connector to the container image. You can do that using the kafka-connect-build.yaml example.
apiVersion: kafka.strimzi.io/v1beta2
kind: KafkaConnector
metadata:
diff --git a/examples/cruise-control/kafka-cruise-control.yaml b/examples/cruise-control/kafka-cruise-control.yaml
index b72e0b94eea..41ba371c19e 100644
--- a/examples/cruise-control/kafka-cruise-control.yaml
+++ b/examples/cruise-control/kafka-cruise-control.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: plain
diff --git a/examples/cruise-control/kafka-rebalance-add-brokers.yaml b/examples/cruise-control/kafka-rebalance-add-brokers.yaml
new file mode 100644
index 00000000000..05095666053
--- /dev/null
+++ b/examples/cruise-control/kafka-rebalance-add-brokers.yaml
@@ -0,0 +1,10 @@
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaRebalance
+metadata:
+ name: my-rebalance
+ labels:
+ strimzi.io/cluster: my-cluster
+# no goals specified, using the default goals from the Cruise Control configuration
+spec:
+ mode: add-broker
+ brokers: [3, 4]
diff --git a/examples/cruise-control/kafka-rebalance.yaml b/examples/cruise-control/kafka-rebalance-full.yaml
similarity index 100%
rename from examples/cruise-control/kafka-rebalance.yaml
rename to examples/cruise-control/kafka-rebalance-full.yaml
diff --git a/examples/cruise-control/kafka-rebalance-remove-brokers.yaml b/examples/cruise-control/kafka-rebalance-remove-brokers.yaml
new file mode 100644
index 00000000000..6ce807e2833
--- /dev/null
+++ b/examples/cruise-control/kafka-rebalance-remove-brokers.yaml
@@ -0,0 +1,10 @@
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaRebalance
+metadata:
+ name: my-rebalance
+ labels:
+ strimzi.io/cluster: my-cluster
+# no goals specified, using the default goals from the Cruise Control configuration
+spec:
+ mode: remove-broker
+ brokers: [3, 4]
diff --git a/examples/kafka/kafka-ephemeral-single.yaml b/examples/kafka/kafka-ephemeral-single.yaml
index 61ceaba6804..ecad18f81a5 100644
--- a/examples/kafka/kafka-ephemeral-single.yaml
+++ b/examples/kafka/kafka-ephemeral-single.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
listeners:
- name: plain
diff --git a/examples/kafka/kafka-ephemeral.yaml b/examples/kafka/kafka-ephemeral.yaml
index 21172a9460c..2e365413b79 100644
--- a/examples/kafka/kafka-ephemeral.yaml
+++ b/examples/kafka/kafka-ephemeral.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: plain
diff --git a/examples/kafka/kafka-jbod.yaml b/examples/kafka/kafka-jbod.yaml
index 30db3ae86d3..bf0a43caf32 100644
--- a/examples/kafka/kafka-jbod.yaml
+++ b/examples/kafka/kafka-jbod.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: plain
diff --git a/examples/kafka/kafka-persistent-single.yaml b/examples/kafka/kafka-persistent-single.yaml
index 36f38f074a2..46f1fa6068c 100644
--- a/examples/kafka/kafka-persistent-single.yaml
+++ b/examples/kafka/kafka-persistent-single.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
listeners:
- name: plain
diff --git a/examples/kafka/kafka-persistent.yaml b/examples/kafka/kafka-persistent.yaml
index 7e71f75d04f..9e93f0a25c2 100644
--- a/examples/kafka/kafka-persistent.yaml
+++ b/examples/kafka/kafka-persistent.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: plain
diff --git a/examples/metrics/grafana-dashboards/strimzi-kafka-connect.json b/examples/metrics/grafana-dashboards/strimzi-kafka-connect.json
index 1483a9617d7..ad747e4d7a1 100644
--- a/examples/metrics/grafana-dashboards/strimzi-kafka-connect.json
+++ b/examples/metrics/grafana-dashboards/strimzi-kafka-connect.json
@@ -1001,6 +1001,12 @@
"interval": "",
"legendFormat": "#producer connections",
"refId": "B"
+ },
+ {
+ "expr": "sum(kafka_admin_client_connection_count{strimzi_io_kind=~\"KafkaConnect.*\",strimzi_io_cluster=\"$strimzi_connect_cluster_name\"})",
+ "legendFormat": "#admin connections",
+ "interval": "",
+ "refId": "C"
}
],
"thresholds": [],
diff --git a/examples/metrics/grafana-dashboards/strimzi-kafka-mirror-maker-2.json b/examples/metrics/grafana-dashboards/strimzi-kafka-mirror-maker-2.json
index 382ad1184ca..575a20c0876 100644
--- a/examples/metrics/grafana-dashboards/strimzi-kafka-mirror-maker-2.json
+++ b/examples/metrics/grafana-dashboards/strimzi-kafka-mirror-maker-2.json
@@ -866,6 +866,291 @@
"alignLevel": null
}
},
+ {
+ "aliasColors": {},
+ "bars": false,
+ "dashLength": 10,
+ "dashes": false,
+ "datasource": "${DS_PROMETHEUS}",
+ "fieldConfig": {
+ "defaults": {
+ "custom": {}
+ },
+ "overrides": []
+ },
+ "fill": 1,
+ "fillGradient": 0,
+ "gridPos": {
+ "h": 8,
+ "w": 8,
+ "x": 0,
+ "y": 15
+ },
+ "hiddenSeries": false,
+ "id": 43,
+ "legend": {
+ "avg": false,
+ "current": false,
+ "max": false,
+ "min": false,
+ "show": false,
+ "total": false,
+ "values": false
+ },
+ "lines": true,
+ "linewidth": 1,
+ "nullPointMode": "null",
+ "options": {
+ "alertThreshold": true
+ },
+ "percentage": false,
+ "pluginVersion": "7.3.7",
+ "pointradius": 2,
+ "points": false,
+ "renderer": "flot",
+ "seriesOverrides": [],
+ "spaceLength": 10,
+ "stack": false,
+ "steppedLine": false,
+ "targets": [
+ {
+ "expr": "sum(kafka_connect_source_task_source_record_active_count{connector=~\"\\\".*SourceConnector\\\"\"})",
+ "interval": "",
+ "legendFormat": "{{connector}}",
+ "refId": "A"
+ }
+ ],
+ "thresholds": [],
+ "timeFrom": null,
+ "timeRegions": [],
+ "timeShift": null,
+ "title": "Source Connector - Connect Outstanding Messages Queue",
+ "tooltip": {
+ "shared": true,
+ "sort": 0,
+ "value_type": "individual"
+ },
+ "type": "graph",
+ "xaxis": {
+ "buckets": null,
+ "mode": "time",
+ "name": null,
+ "show": true,
+ "values": []
+ },
+ "yaxes": [
+ {
+ "format": "short",
+ "label": "msgs",
+ "logBase": 1,
+ "max": null,
+ "min": null,
+ "show": true
+ },
+ {
+ "format": "short",
+ "label": null,
+ "logBase": 1,
+ "max": null,
+ "min": null,
+ "show": true
+ }
+ ],
+ "yaxis": {
+ "align": false,
+ "alignLevel": null
+ }
+ },
+ {
+ "aliasColors": {},
+ "bars": false,
+ "dashLength": 10,
+ "dashes": false,
+ "datasource": "${DS_PROMETHEUS}",
+ "fieldConfig": {
+ "defaults": {
+ "custom": {}
+ },
+ "overrides": []
+ },
+ "fill": 1,
+ "fillGradient": 0,
+ "gridPos": {
+ "h": 8,
+ "w": 8,
+ "x": 8,
+ "y": 15
+ },
+ "hiddenSeries": false,
+ "id": 44,
+ "legend": {
+ "avg": false,
+ "current": false,
+ "max": false,
+ "min": false,
+ "show": false,
+ "total": false,
+ "values": false
+ },
+ "lines": true,
+ "linewidth": 1,
+ "nullPointMode": "null",
+ "options": {
+ "alertThreshold": true
+ },
+ "percentage": false,
+ "pluginVersion": "7.3.7",
+ "pointradius": 2,
+ "points": false,
+ "renderer": "flot",
+ "seriesOverrides": [],
+ "spaceLength": 10,
+ "stack": false,
+ "steppedLine": false,
+ "targets": [
+ {
+ "expr": "sum(kafka_producer_buffer_available_bytes{clientid=~\"\\\".*SourceConnector-[0-9]+\\\"\"})",
+ "interval": "",
+ "legendFormat": "{{clientid}}",
+ "refId": "A"
+ }
+ ],
+ "thresholds": [],
+ "timeFrom": null,
+ "timeRegions": [],
+ "timeShift": null,
+ "title": "Source Connector - Producer Available Buffer",
+ "tooltip": {
+ "shared": true,
+ "sort": 0,
+ "value_type": "individual"
+ },
+ "type": "graph",
+ "xaxis": {
+ "buckets": null,
+ "mode": "time",
+ "name": null,
+ "show": true,
+ "values": []
+ },
+ "yaxes": [
+ {
+ "format": "short",
+ "label": "bytes",
+ "logBase": 1,
+ "max": null,
+ "min": null,
+ "show": true
+ },
+ {
+ "format": "short",
+ "label": null,
+ "logBase": 1,
+ "max": null,
+ "min": null,
+ "show": true
+ }
+ ],
+ "yaxis": {
+ "align": false,
+ "alignLevel": null
+ }
+ },
+ {
+ "aliasColors": {},
+ "bars": false,
+ "dashLength": 10,
+ "dashes": false,
+ "datasource": "${DS_PROMETHEUS}",
+ "fieldConfig": {
+ "defaults": {
+ "custom": {}
+ },
+ "overrides": []
+ },
+ "fill": 1,
+ "fillGradient": 0,
+ "gridPos": {
+ "h": 8,
+ "w": 8,
+ "x": 16,
+ "y": 15
+ },
+ "hiddenSeries": false,
+ "id": 45,
+ "legend": {
+ "avg": false,
+ "current": false,
+ "max": false,
+ "min": false,
+ "show": false,
+ "total": false,
+ "values": false
+ },
+ "lines": true,
+ "linewidth": 1,
+ "nullPointMode": "null",
+ "options": {
+ "alertThreshold": true
+ },
+ "percentage": false,
+ "pluginVersion": "7.3.7",
+ "pointradius": 2,
+ "points": false,
+ "renderer": "flot",
+ "seriesOverrides": [],
+ "spaceLength": 10,
+ "stack": false,
+ "steppedLine": false,
+ "targets": [
+ {
+ "expr": "sum(kafka_connect_connector_task_offset_commit_avg_time_ms{connector=~\"\\\".*SourceConnector\\\"\", task=~\"[0-9]+\"})/count(kafka_connect_connector_task_offset_commit_avg_time_ms{connector=~\"\\\".*SourceConnector\\\"\", task=~\"[0-9]+\"})",
+ "interval": "",
+ "legendFormat": "{{connector}}-{{task}}",
+ "refId": "A"
+ }
+ ],
+ "thresholds": [],
+ "timeFrom": null,
+ "timeRegions": [],
+ "timeShift": null,
+ "title": "Source Connector - Average Offset Commit Time",
+ "tooltip": {
+ "shared": true,
+ "sort": 0,
+ "value_type": "individual"
+ },
+ "type": "graph",
+ "xaxis": {
+ "buckets": null,
+ "mode": "time",
+ "name": null,
+ "show": true,
+ "values": []
+ },
+ "yaxes": [
+ {
+ "format": "short",
+ "label": "ms",
+ "logBase": 1,
+ "max": null,
+ "min": null,
+ "show": true
+ },
+ {
+ "format": "short",
+ "label": null,
+ "logBase": 1,
+ "max": null,
+ "min": null,
+ "show": true
+ }
+ ],
+ "yaxis": {
+ "align": false,
+ "alignLevel": null
+ }
+ },
{
"datasource": "${DS_PROMETHEUS}",
"fieldConfig": {
@@ -983,7 +1268,7 @@
"h": 10,
"w": 12,
"x": 0,
- "y": 15
+ "y": 23
},
"id": 39,
"options": {
@@ -1198,7 +1483,7 @@
"h": 5,
"w": 12,
"x": 12,
- "y": 15
+ "y": 23
},
"id": 40,
"options": {
@@ -1425,7 +1710,7 @@
"h": 5,
"w": 12,
"x": 12,
- "y": 20
+ "y": 28
},
"id": 41,
"options": {
@@ -1538,7 +1823,7 @@
"h": 9,
"w": 12,
"x": 0,
- "y": 25
+ "y": 33
},
"hiddenSeries": false,
"id": 34,
@@ -1648,7 +1933,7 @@
"h": 9,
"w": 12,
"x": 12,
- "y": 25
+ "y": 33
},
"id": 36,
"options": {
diff --git a/examples/metrics/jmxtrans/jmxtrans.yaml b/examples/metrics/jmxtrans/jmxtrans.yaml
index 970bf648dcc..827f8545a63 100644
--- a/examples/metrics/jmxtrans/jmxtrans.yaml
+++ b/examples/metrics/jmxtrans/jmxtrans.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 2
listeners:
- name: plain
diff --git a/examples/metrics/kafka-connect-metrics.yaml b/examples/metrics/kafka-connect-metrics.yaml
index 782394c480b..d80af2b38c6 100644
--- a/examples/metrics/kafka-connect-metrics.yaml
+++ b/examples/metrics/kafka-connect-metrics.yaml
@@ -5,7 +5,7 @@ metadata:
labels:
app: my-connect-cluster
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
bootstrapServers: my-cluster-kafka-bootstrap:9092
metricsConfig:
@@ -116,7 +116,7 @@ data:
#kafka.connect:type=source-task-metrics,connector="{connector}",task="{task}"
#kafka.connect:type=sink-task-metrics,connector="{connector}",task="{task}"
#kafka.connect:type=connector-task-metrics,connector="{connector}",task="{task}"
- - pattern: kafka.connect<>(.+-total|.+-count|.+-ms|.+-ratio|.+-avg|.+-failures|.+-requests|.+-timestamp|.+-logged|.+-errors|.+-retries|.+-skipped)
+ - pattern: kafka.connect<>(.+-total|.+-count|.+-ms|.+-ratio|.+-seq-no|.+-rate|.+-max|.+-avg|.+-failures|.+-requests|.+-timestamp|.+-logged|.+-errors|.+-retries|.+-skipped)
name: kafka_connect_$1_$4
labels:
connector: "$2"
diff --git a/examples/metrics/kafka-cruise-control-metrics.yaml b/examples/metrics/kafka-cruise-control-metrics.yaml
index d396b36e65d..aaff2193371 100644
--- a/examples/metrics/kafka-cruise-control-metrics.yaml
+++ b/examples/metrics/kafka-cruise-control-metrics.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: plain
diff --git a/examples/metrics/kafka-metrics.yaml b/examples/metrics/kafka-metrics.yaml
index 049c348376d..16bb40c5e07 100644
--- a/examples/metrics/kafka-metrics.yaml
+++ b/examples/metrics/kafka-metrics.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: plain
diff --git a/examples/metrics/kafka-mirror-maker-2-metrics.yaml b/examples/metrics/kafka-mirror-maker-2-metrics.yaml
index 61cbdc80616..f2ad83009f3 100644
--- a/examples/metrics/kafka-mirror-maker-2-metrics.yaml
+++ b/examples/metrics/kafka-mirror-maker-2-metrics.yaml
@@ -5,7 +5,7 @@ metadata:
labels:
app: my-mm2-cluster
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
connectCluster: "my-cluster-target"
clusters:
diff --git a/examples/mirror-maker/kafka-mirror-maker-2-custom-replication-policy.yaml b/examples/mirror-maker/kafka-mirror-maker-2-custom-replication-policy.yaml
index 53abddffd57..5e4c960093b 100644
--- a/examples/mirror-maker/kafka-mirror-maker-2-custom-replication-policy.yaml
+++ b/examples/mirror-maker/kafka-mirror-maker-2-custom-replication-policy.yaml
@@ -3,7 +3,7 @@ kind: KafkaMirrorMaker2
metadata:
name: my-mirror-maker-2
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
connectCluster: "my-target-cluster"
clusters:
diff --git a/examples/mirror-maker/kafka-mirror-maker-2-sync-groups.yaml b/examples/mirror-maker/kafka-mirror-maker-2-sync-groups.yaml
index bf4c46bd514..9f32340c49c 100644
--- a/examples/mirror-maker/kafka-mirror-maker-2-sync-groups.yaml
+++ b/examples/mirror-maker/kafka-mirror-maker-2-sync-groups.yaml
@@ -3,7 +3,7 @@ kind: KafkaMirrorMaker2
metadata:
name: my-mirror-maker-2
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
connectCluster: "my-target-cluster"
clusters:
diff --git a/examples/mirror-maker/kafka-mirror-maker-2-tls.yaml b/examples/mirror-maker/kafka-mirror-maker-2-tls.yaml
index 98adaf033f3..aa5fd79b8fb 100644
--- a/examples/mirror-maker/kafka-mirror-maker-2-tls.yaml
+++ b/examples/mirror-maker/kafka-mirror-maker-2-tls.yaml
@@ -3,7 +3,7 @@ kind: KafkaMirrorMaker2
metadata:
name: my-mirror-maker-2
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
connectCluster: "my-target-cluster"
clusters:
diff --git a/examples/mirror-maker/kafka-mirror-maker-2.yaml b/examples/mirror-maker/kafka-mirror-maker-2.yaml
index 2378f71036a..156decee168 100644
--- a/examples/mirror-maker/kafka-mirror-maker-2.yaml
+++ b/examples/mirror-maker/kafka-mirror-maker-2.yaml
@@ -3,7 +3,7 @@ kind: KafkaMirrorMaker2
metadata:
name: my-mirror-maker-2
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
connectCluster: "my-target-cluster"
clusters:
diff --git a/examples/mirror-maker/kafka-mirror-maker-tls.yaml b/examples/mirror-maker/kafka-mirror-maker-tls.yaml
index 7ed0dae2abb..04deb7e6fb5 100644
--- a/examples/mirror-maker/kafka-mirror-maker-tls.yaml
+++ b/examples/mirror-maker/kafka-mirror-maker-tls.yaml
@@ -3,7 +3,7 @@ kind: KafkaMirrorMaker
metadata:
name: my-mirror-maker
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
consumer:
bootstrapServers: my-source-cluster-kafka-bootstrap:9093
diff --git a/examples/mirror-maker/kafka-mirror-maker.yaml b/examples/mirror-maker/kafka-mirror-maker.yaml
index c67432c9dd5..59bcf7633b5 100644
--- a/examples/mirror-maker/kafka-mirror-maker.yaml
+++ b/examples/mirror-maker/kafka-mirror-maker.yaml
@@ -3,7 +3,7 @@ kind: KafkaMirrorMaker
metadata:
name: my-mirror-maker
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
consumer:
bootstrapServers: my-source-cluster-kafka-bootstrap:9092
diff --git a/examples/mirror-maker/kafka-source.yaml b/examples/mirror-maker/kafka-source.yaml
index 336732dc305..87d02c93822 100644
--- a/examples/mirror-maker/kafka-source.yaml
+++ b/examples/mirror-maker/kafka-source.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-source-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
listeners:
- name: plain
diff --git a/examples/mirror-maker/kafka-target.yaml b/examples/mirror-maker/kafka-target.yaml
index f5850bf89ab..da63ebcd413 100644
--- a/examples/mirror-maker/kafka-target.yaml
+++ b/examples/mirror-maker/kafka-target.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-target-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
listeners:
- name: plain
diff --git a/examples/security/keycloak-authorization/README.md b/examples/security/keycloak-authorization/README.md
index d7f777b5539..e4eea15b331 100644
--- a/examples/security/keycloak-authorization/README.md
+++ b/examples/security/keycloak-authorization/README.md
@@ -5,10 +5,10 @@ This folder contains an example `Kafka` custom resource configured for OAuth 2.0
- the corresponding `oauth` authentication
The folder also contains a Keycloak realm export to import into your Keycloak instance to support the example.
-Full instructions for the example are available in the [Strimzi Documentation](https://strimzi.io/docs/operators/0.28.0/using.html#con-oauth-authorization-keycloak-example).
+Full instructions for the example are available in the [Strimzi Documentation](https://strimzi.io/docs/operators/0.29.0/using.html#con-oauth-authorization-keycloak-example).
* [kafka-authz-realm.json](./kafka-authz-realm.json)
* The Keycloak realm export file
* [kafka-ephemeral-oauth-single-keycloak-authz.yaml](./kafka-ephemeral-oauth-single-keycloak-authz.yaml)
* The Kafka CR that defines a single-node Kafka cluster with `oauth` authentication and `keycloak` authorization,
- using the `kafka-authz` realm. See [full example instructions](https://strimzi.io/docs/operators/0.28.0/using.html#con-oauth-authorization-keycloak-example) for proper preparation and deployment.
+ using the `kafka-authz` realm. See [full example instructions](https://strimzi.io/docs/operators/0.29.0/using.html#con-oauth-authorization-keycloak-example) for proper preparation and deployment.
diff --git a/examples/security/keycloak-authorization/kafka-ephemeral-oauth-single-keycloak-authz.yaml b/examples/security/keycloak-authorization/kafka-ephemeral-oauth-single-keycloak-authz.yaml
index fda5eb0284a..fd280669a23 100644
--- a/examples/security/keycloak-authorization/kafka-ephemeral-oauth-single-keycloak-authz.yaml
+++ b/examples/security/keycloak-authorization/kafka-ephemeral-oauth-single-keycloak-authz.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
listeners:
- name: tls
diff --git a/examples/security/scram-sha-512-auth/connect.yaml b/examples/security/scram-sha-512-auth/connect.yaml
index 4c04d6d31d3..395e4523d3e 100644
--- a/examples/security/scram-sha-512-auth/connect.yaml
+++ b/examples/security/scram-sha-512-auth/connect.yaml
@@ -96,7 +96,7 @@ metadata:
# # needing to call the Connect REST API directly
# strimzi.io/use-connector-resources: "true"
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
bootstrapServers: my-cluster-kafka-bootstrap:9093
tls:
diff --git a/examples/security/scram-sha-512-auth/kafka.yaml b/examples/security/scram-sha-512-auth/kafka.yaml
index e2920fdac8a..eb88c727528 100644
--- a/examples/security/scram-sha-512-auth/kafka.yaml
+++ b/examples/security/scram-sha-512-auth/kafka.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: tls
diff --git a/examples/security/scram-sha-512-auth/mirror-maker-2.yaml b/examples/security/scram-sha-512-auth/mirror-maker-2.yaml
new file mode 100644
index 00000000000..320a2545280
--- /dev/null
+++ b/examples/security/scram-sha-512-auth/mirror-maker-2.yaml
@@ -0,0 +1,322 @@
+apiVersion: kafka.strimzi.io/v1beta2
+kind: Kafka
+metadata:
+ name: my-source-cluster
+spec:
+ kafka:
+ version: 3.2.0
+ replicas: 1
+ listeners:
+ - name: tls
+ port: 9093
+ type: internal
+ tls: true
+ authentication:
+ type: scram-sha-512
+ authorization:
+ type: simple
+ config:
+ offsets.topic.replication.factor: 1
+ transaction.state.log.replication.factor: 1
+ transaction.state.log.min.isr: 1
+ default.replication.factor: 1
+ min.insync.replicas: 1
+ inter.broker.protocol.version: "3.1"
+ storage:
+ type: jbod
+ volumes:
+ - id: 0
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ zookeeper:
+ replicas: 1
+ storage:
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ entityOperator:
+ topicOperator: {}
+ userOperator: {}
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: Kafka
+metadata:
+ name: my-target-cluster
+spec:
+ kafka:
+ version: 3.2.0
+ replicas: 1
+ listeners:
+ - name: tls
+ port: 9093
+ type: internal
+ tls: true
+ authentication:
+ type: scram-sha-512
+ authorization:
+ type: simple
+ config:
+ offsets.topic.replication.factor: 1
+ transaction.state.log.replication.factor: 1
+ transaction.state.log.min.isr: 1
+ default.replication.factor: 1
+ min.insync.replicas: 1
+ inter.broker.protocol.version: "3.1"
+ storage:
+ type: jbod
+ volumes:
+ - id: 0
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ zookeeper:
+ replicas: 1
+ storage:
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ entityOperator:
+ userOperator: {}
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaUser
+metadata:
+ name: my-source-user
+ labels:
+ strimzi.io/cluster: my-source-cluster
+spec:
+ authentication:
+ type: scram-sha-512
+ authorization:
+ type: simple
+ acls:
+ # MirrorSourceConnector
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: Create
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: DescribeConfigs
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: Write
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Read
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: DescribeConfigs
+ # MirrorCheckpointConnector
+ - resource:
+ type: cluster
+ operation: Describe
+ - resource: # Needed for every group for which offsets are synced
+ type: group
+ name: "*"
+ operation: Describe
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: Read
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaUser
+metadata:
+ name: my-target-user
+ labels:
+ strimzi.io/cluster: my-target-cluster
+spec:
+ authentication:
+ type: scram-sha-512
+ authorization:
+ type: simple
+ acls:
+ # Underlying Kafka Connects internal topics used to store configuration, offsets or status
+ - resource:
+ type: group
+ name: mirrormaker2-cluster
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Describe
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: DescribeConfigs
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Write
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Create
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Describe
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: DescribeConfigs
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Write
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Create
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Write
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Describe
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: DescribeConfigs
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Create
+ # MirrorSourceConnector
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Create
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Alter
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: AlterConfigs
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Write
+ # MirrorCheckpointConnector
+ - resource:
+ type: cluster
+ operation: Describe
+ - resource:
+ type: topic
+ name: my-source-cluster.checkpoints.internal
+ operation: Create
+ - resource:
+ type: topic
+ name: my-source-cluster.checkpoints.internal
+ operation: Describe
+ - resource:
+ type: topic
+ name: my-source-cluster.checkpoints.internal
+ operation: Write
+ - resource: # Needed for every group for which the offset is synced
+ type: group
+ name: "*"
+ operation: Read
+ - resource: # Needed for every group for which the offset is synced
+ type: group
+ name: "*"
+ operation: Describe
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Read
+ # MirrorHeartbeatConnector
+ - resource:
+ type: topic
+ name: heartbeats
+ operation: Create
+ - resource:
+ type: topic
+ name: heartbeats
+ operation: Describe
+ - resource:
+ type: topic
+ name: heartbeats
+ operation: Write
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaMirrorMaker2
+metadata:
+ name: my-mirror-maker-2
+spec:
+ version: 3.2.0
+ replicas: 1
+ connectCluster: "my-target-cluster"
+ clusters:
+ - alias: "my-source-cluster"
+ bootstrapServers: my-source-cluster-kafka-bootstrap:9093
+ tls:
+ trustedCertificates:
+ - secretName: my-source-cluster-cluster-ca-cert
+ certificate: ca.crt
+ authentication:
+ type: scram-sha-512
+ username: my-source-user
+ passwordSecret:
+ secretName: my-source-user
+ password: password
+ - alias: "my-target-cluster"
+ bootstrapServers: my-target-cluster-kafka-bootstrap:9093
+ tls:
+ trustedCertificates:
+ - secretName: my-target-cluster-cluster-ca-cert
+ certificate: ca.crt
+ authentication:
+ type: scram-sha-512
+ username: my-target-user
+ passwordSecret:
+ secretName: my-target-user
+ password: password
+ config:
+ # -1 means it will use the default replication factor configured in the broker
+ config.storage.replication.factor: -1
+ offset.storage.replication.factor: -1
+ status.storage.replication.factor: -1
+ mirrors:
+ - sourceCluster: "my-source-cluster"
+ targetCluster: "my-target-cluster"
+ sourceConnector:
+ config:
+ replication.factor: 1
+ offset-syncs.topic.replication.factor: 1
+ sync.topic.acls.enabled: "false"
+ heartbeatConnector:
+ config:
+ heartbeats.topic.replication.factor: 1
+ checkpointConnector:
+ config:
+ checkpoints.topic.replication.factor: 1
+ sync.group.offsets.enabled: "true"
+ topicsPattern: ".*"
+ groupsPattern: ".*"
diff --git a/examples/security/tls-auth/connect.yaml b/examples/security/tls-auth/connect.yaml
index 21b409f9a44..c5fb6966c42 100644
--- a/examples/security/tls-auth/connect.yaml
+++ b/examples/security/tls-auth/connect.yaml
@@ -96,7 +96,7 @@ metadata:
# # needing to call the Connect REST API directly
# strimzi.io/use-connector-resources: "true"
spec:
- version: 3.1.0
+ version: 3.2.0
replicas: 1
bootstrapServers: my-cluster-kafka-bootstrap:9093
tls:
diff --git a/examples/security/tls-auth/kafka.yaml b/examples/security/tls-auth/kafka.yaml
index 1f3b0dcb3f9..b82479b9bd2 100644
--- a/examples/security/tls-auth/kafka.yaml
+++ b/examples/security/tls-auth/kafka.yaml
@@ -4,7 +4,7 @@ metadata:
name: my-cluster
spec:
kafka:
- version: 3.1.0
+ version: 3.2.0
replicas: 3
listeners:
- name: tls
diff --git a/examples/security/tls-auth/mirror-maker-2.yaml b/examples/security/tls-auth/mirror-maker-2.yaml
new file mode 100644
index 00000000000..f8b90fa7913
--- /dev/null
+++ b/examples/security/tls-auth/mirror-maker-2.yaml
@@ -0,0 +1,322 @@
+apiVersion: kafka.strimzi.io/v1beta2
+kind: Kafka
+metadata:
+ name: my-source-cluster
+spec:
+ kafka:
+ version: 3.2.0
+ replicas: 1
+ listeners:
+ - name: tls
+ port: 9093
+ type: internal
+ tls: true
+ authentication:
+ type: tls
+ authorization:
+ type: simple
+ config:
+ offsets.topic.replication.factor: 1
+ transaction.state.log.replication.factor: 1
+ transaction.state.log.min.isr: 1
+ default.replication.factor: 1
+ min.insync.replicas: 1
+ inter.broker.protocol.version: "3.1"
+ storage:
+ type: jbod
+ volumes:
+ - id: 0
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ zookeeper:
+ replicas: 1
+ storage:
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ entityOperator:
+ topicOperator: {}
+ userOperator: {}
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: Kafka
+metadata:
+ name: my-target-cluster
+spec:
+ kafka:
+ version: 3.2.0
+ replicas: 1
+ listeners:
+ - name: tls
+ port: 9093
+ type: internal
+ tls: true
+ authentication:
+ type: tls
+ authorization:
+ type: simple
+ config:
+ offsets.topic.replication.factor: 1
+ transaction.state.log.replication.factor: 1
+ transaction.state.log.min.isr: 1
+ default.replication.factor: 1
+ min.insync.replicas: 1
+ inter.broker.protocol.version: "3.1"
+ storage:
+ type: jbod
+ volumes:
+ - id: 0
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ zookeeper:
+ replicas: 1
+ storage:
+ type: persistent-claim
+ size: 100Gi
+ deleteClaim: false
+ entityOperator:
+ userOperator: {}
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaUser
+metadata:
+ name: my-source-user
+ labels:
+ strimzi.io/cluster: my-source-cluster
+spec:
+ authentication:
+ type: tls
+ authorization:
+ type: simple
+ acls:
+ # MirrorSourceConnector
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: Create
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: DescribeConfigs
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: Write
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Read
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: DescribeConfigs
+ # MirrorCheckpointConnector
+ - resource:
+ type: cluster
+ operation: Describe
+ - resource: # Needed for every group for which offsets are synced
+ type: group
+ name: "*"
+ operation: Describe
+ - resource: # Not needed if offset-syncs.topic.location=target
+ type: topic
+ name: mm2-offset-syncs.my-target-cluster.internal
+ operation: Read
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaUser
+metadata:
+ name: my-target-user
+ labels:
+ strimzi.io/cluster: my-target-cluster
+spec:
+ authentication:
+ type: tls
+ authorization:
+ type: simple
+ acls:
+ # Underlying Kafka Connects internal topics used to store configuration, offsets or status
+ - resource:
+ type: group
+ name: mirrormaker2-cluster
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Describe
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: DescribeConfigs
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Write
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-configs
+ operation: Create
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Describe
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: DescribeConfigs
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Write
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-status
+ operation: Create
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Read
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Write
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Describe
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: DescribeConfigs
+ - resource:
+ type: topic
+ name: mirrormaker2-cluster-offsets
+ operation: Create
+ # MirrorSourceConnector
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Create
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Alter
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: AlterConfigs
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Write
+ # MirrorCheckpointConnector
+ - resource:
+ type: cluster
+ operation: Describe
+ - resource:
+ type: topic
+ name: my-source-cluster.checkpoints.internal
+ operation: Create
+ - resource:
+ type: topic
+ name: my-source-cluster.checkpoints.internal
+ operation: Describe
+ - resource:
+ type: topic
+ name: my-source-cluster.checkpoints.internal
+ operation: Write
+ - resource: # Needed for every group for which the offset is synced
+ type: group
+ name: "*"
+ operation: Read
+ - resource: # Needed for every group for which the offset is synced
+ type: group
+ name: "*"
+ operation: Describe
+ - resource: # Needed for every topic which is mirrored
+ type: topic
+ name: "*"
+ operation: Read
+ # MirrorHeartbeatConnector
+ - resource:
+ type: topic
+ name: heartbeats
+ operation: Create
+ - resource:
+ type: topic
+ name: heartbeats
+ operation: Describe
+ - resource:
+ type: topic
+ name: heartbeats
+ operation: Write
+---
+
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaMirrorMaker2
+metadata:
+ name: my-mirror-maker-2
+spec:
+ version: 3.2.0
+ replicas: 1
+ connectCluster: "my-target-cluster"
+ clusters:
+ - alias: "my-source-cluster"
+ bootstrapServers: my-source-cluster-kafka-bootstrap:9093
+ tls:
+ trustedCertificates:
+ - secretName: my-source-cluster-cluster-ca-cert
+ certificate: ca.crt
+ authentication:
+ type: tls
+ certificateAndKey:
+ secretName: my-source-user
+ certificate: user.crt
+ key: user.key
+ - alias: "my-target-cluster"
+ bootstrapServers: my-target-cluster-kafka-bootstrap:9093
+ tls:
+ trustedCertificates:
+ - secretName: my-target-cluster-cluster-ca-cert
+ certificate: ca.crt
+ authentication:
+ type: tls
+ certificateAndKey:
+ secretName: my-target-user
+ certificate: user.crt
+ key: user.key
+ config:
+ # -1 means it will use the default replication factor configured in the broker
+ config.storage.replication.factor: -1
+ offset.storage.replication.factor: -1
+ status.storage.replication.factor: -1
+ mirrors:
+ - sourceCluster: "my-source-cluster"
+ targetCluster: "my-target-cluster"
+ sourceConnector:
+ config:
+ replication.factor: 1
+ offset-syncs.topic.replication.factor: 1
+ sync.topic.acls.enabled: "false"
+ heartbeatConnector:
+ config:
+ heartbeats.topic.replication.factor: 1
+ checkpointConnector:
+ config:
+ checkpoints.topic.replication.factor: 1
+ sync.group.offsets.enabled: "true"
+ topicsPattern: ".*"
+ groupsPattern: ".*"
diff --git a/helm-charts/helm3/strimzi-kafka-operator/README.md b/helm-charts/helm3/strimzi-kafka-operator/README.md
index a6732694a74..31f3164f9c4 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/README.md
+++ b/helm-charts/helm3/strimzi-kafka-operator/README.md
@@ -98,7 +98,7 @@ the documentation for more details.
| `watchAnyNamespace` | Watch the whole Kubernetes cluster (all namespaces) | `false` |
| `defaultImageRegistry` | Default image registry for all the images | `quay.io` |
| `defaultImageRepository` | Default image registry for all the images | `strimzi` |
-| `defaultImageTag` | Default image tag for all the images except Kafka Bridge | `0.28.0` |
+| `defaultImageTag` | Default image tag for all the images except Kafka Bridge | `0.29.0` |
| `image.registry` | Override default Cluster Operator image registry | `nil` |
| `image.repository` | Override default Cluster Operator image repository | `nil` |
| `image.name` | Cluster Operator image name | `cluster-operator` |
@@ -148,10 +148,6 @@ the documentation for more details.
| `kafkaInit.image.repository` | Override default Init Kafka image repository | `nil` |
| `kafkaInit.image.name` | Init Kafka image name | `operator` |
| `kafkaInit.image.tag` | Override default Init Kafka image tag | `nil` |
-| `tlsSidecarCruiseControl.image.registry` | Override default TLS Sidecar for Cruise Control image registry | `nil` |
-| `tlsSidecarCruiseControl.image.repository` | Override default TLS Sidecar for Cruise Control image repository | `nil` |
-| `tlsSidecarCruiseControl.image.name` | TLS Sidecar for Cruise Control image name | `kafka` |
-| `tlsSidecarCruiseControl.image.tag` | Override default TLS Sidecar for Cruise Control image tag prefix | `nil` |
| `tlsSidecarTopicOperator.image.registry` | Override default TLS Sidecar for Topic Operator image registry | `nil` |
| `tlsSidecarTopicOperator.image.repository` | Override default TLS Sidecar for Topic Operator image repository | `nil` |
| `tlsSidecarTopicOperator.image.name` | TLS Sidecar for Topic Operator image name | `kafka` |
@@ -159,7 +155,7 @@ the documentation for more details.
| `kafkaBridge.image.registry` | Override default Kafka Bridge image registry | `quay.io` |
| `kafkaBridge.image.repository` | Override default Kafka Bridge image repository | `strimzi` |
| `kafkaBridge.image.name` | Kafka Bridge image name | `kafka-bridge` |
-| `kafkaBridge.image.tag` | Override default Kafka Bridge image tag | `0.21.4` |
+| `kafkaBridge.image.tag` | Override default Kafka Bridge image tag | `0.21.5` |
| `kanikoExecutor.image.registry` | Override default Kaniko Executor image registry | `nil` |
| `kanikoExecutor.image.repository` | Override default Kaniko Executor image repository | `nil` |
| `kanikoExecutor.image.name` | Kaniko Executor image name | `kaniko-executor` |
@@ -187,6 +183,7 @@ the documentation for more details.
| `mavenBuilder.image.repository` | Maven Builder image repository | `nil` |
| `mavenBuilder.image.name` | Override default Maven Builder image name | `maven-builder` |
| `mavenBuilder.image.tag` | Override default Maven Builder image tag | `nil` |
+| `logConfiguration` | Override default `log4j.properties` content | `nil` |
Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/040-Crd-kafka.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/040-Crd-kafka.yaml
index 07d89756ffd..25eaa85a78a 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/040-Crd-kafka.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/040-Crd-kafka.yaml
@@ -37,11 +37,11 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
- name: Warnings
description: Warnings related to the custom resource
- jsonPath: .status.conditions[?(@.type=="Warning")].status
+ jsonPath: ".status.conditions[?(@.type==\"Warning\")].status"
type: string
schema:
openAPIV3Schema:
@@ -55,7 +55,7 @@ spec:
properties:
version:
type: string
- description: The kafka broker version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version.
+ description: "The kafka broker version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
minimum: 1
@@ -71,12 +71,12 @@ spec:
properties:
name:
type: string
- pattern: ^[a-z0-9]{1,11}$
+ pattern: "^[a-z0-9]{1,11}$"
description: Name of the listener. The name will be used to identify the listener and the related Kubernetes objects. The name has to be unique within given a Kafka cluster. The name can consist of lowercase characters and numbers and be up to 11 characters long.
port:
type: integer
minimum: 9092
- description: Port number used by the listener inside Kafka. The port number has to be unique within a given Kafka cluster. Allowed port numbers are 9092 and higher with the exception of ports 9404 and 9999, which are already used for Prometheus and JMX. Depending on the listener type, the port number might not be the same as the port number that connects Kafka clients.
+ description: "Port number used by the listener inside Kafka. The port number has to be unique within a given Kafka cluster. Allowed port numbers are 9092 and higher with the exception of ports 9404 and 9999, which are already used for Prometheus and JMX. Depending on the listener type, the port number might not be the same as the port number that connects Kafka clients."
type:
type: string
enum:
@@ -100,7 +100,7 @@ spec:
description: Configure whether the access token type check is performed or not. This should be set to `false` if the authorization server does not include 'typ' claim in JWT token. Defaults to `true`.
checkAudience:
type: boolean
- description: Enable or disable audience checking. Audience checks identify the recipients of tokens. If audience checking is enabled, the OAuth Client ID also has to be configured using the `clientId` property. The Kafka broker will reject tokens that do not have its `clientId` in their `aud` (audience) claim.Default value is `false`.
+ description: "Enable or disable audience checking. Audience checks identify the recipients of tokens. If audience checking is enabled, the OAuth Client ID also has to be configured using the `clientId` property. The Kafka broker will reject tokens that do not have its `clientId` in their `aud` (audience) claim.Default value is `false`."
checkIssuer:
type: boolean
description: Enable or disable issuer checking. By default issuer is checked using the value configured by `validIssuerUri`. Default value is `true`.
@@ -128,7 +128,7 @@ spec:
description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka broker can use to authenticate against the authorization server and use the introspect endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
customClaimCheck:
type: string
description: JsonPath filter query to be applied to the JWT token or to the response of the introspection endpoint for additional token validation. Not set by default.
@@ -149,19 +149,19 @@ spec:
description: The fallback username claim to be used for the user id if the claim specified by `userNameClaim` is not present. This is useful when `client_credentials` authentication only results in the client id being provided in another claim. It only takes effect if `userNameClaim` is set.
fallbackUserNamePrefix:
type: string
- description: The prefix to use with the value of `fallbackUserNameClaim` to construct the user id. This only takes effect if `fallbackUserNameClaim` is true, and the value is present for the claim. Mapping usernames and client ids into the same user id space is useful in preventing name collisions.
+ description: "The prefix to use with the value of `fallbackUserNameClaim` to construct the user id. This only takes effect if `fallbackUserNameClaim` is true, and the value is present for the claim. Mapping usernames and client ids into the same user id space is useful in preventing name collisions."
groupsClaim:
type: string
description: JsonPath query used to extract groups for the user during authentication. Extracted groups can be used by a custom authorizer. By default no groups are extracted.
groupsClaimDelimiter:
type: string
- description: A delimiter used to parse groups when they are extracted as a single String value rather than a JSON array. Default value is ',' (comma).
+ description: "A delimiter used to parse groups when they are extracted as a single String value rather than a JSON array. Default value is ',' (comma)."
introspectionEndpointUri:
type: string
description: URI of the token introspection endpoint which can be used to validate opaque non-JWT tokens.
jwksEndpointUri:
type: string
- description: URI of the JWKS certificate endpoint, which can be used for local JWT validation.
+ description: "URI of the JWKS certificate endpoint, which can be used for local JWT validation."
jwksExpirySeconds:
type: integer
minimum: 1
@@ -169,7 +169,7 @@ spec:
jwksMinRefreshPauseSeconds:
type: integer
minimum: 0
- description: The minimum pause between two consecutive refreshes. When an unknown signing key is encountered the refresh is scheduled immediately, but will always wait for this minimum pause. Defaults to 1 second.
+ description: "The minimum pause between two consecutive refreshes. When an unknown signing key is encountered the refresh is scheduled immediately, but will always wait for this minimum pause. Defaults to 1 second."
jwksRefreshSeconds:
type: integer
minimum: 1
@@ -180,10 +180,10 @@ spec:
description: Configuration to be used for a specific listener. All values are prefixed with listener.name.__.
maxSecondsWithoutReauthentication:
type: integer
- description: Maximum number of seconds the authenticated session remains valid without re-authentication. This enables Apache Kafka re-authentication feature, and causes sessions to expire when the access token expires. If the access token expires before max time or if max time is reached, the client has to re-authenticate, otherwise the server will drop the connection. Not set by default - the authenticated session does not expire when the access token expires. This option only applies to SASL_OAUTHBEARER authentication mechanism (when `enableOauthBearer` is `true`).
+ description: "Maximum number of seconds the authenticated session remains valid without re-authentication. This enables Apache Kafka re-authentication feature, and causes sessions to expire when the access token expires. If the access token expires before max time or if max time is reached, the client has to re-authenticate, otherwise the server will drop the connection. Not set by default - the authenticated session does not expire when the access token expires. This option only applies to SASL_OAUTHBEARER authentication mechanism (when `enableOauthBearer` is `true`)."
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
sasl:
type: boolean
description: Enable or disable SASL on this listener.
@@ -219,7 +219,7 @@ spec:
description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
- description: URI of the Token Endpoint to use with SASL_PLAIN mechanism when the client authenticates with `clientId` and a `secret`. If set, the client can authenticate over SASL_PLAIN by either setting `username` to `clientId`, and setting `password` to client `secret`, or by setting `username` to account username, and `password` to access token prefixed with `$accessToken:`. If this option is not set, the `password` is always interpreted as an access token (without a prefix), and `username` as the account username (a so called 'no-client-credentials' mode).
+ description: "URI of the Token Endpoint to use with SASL_PLAIN mechanism when the client authenticates with `clientId` and a `secret`. If set, the client can authenticate over SASL_PLAIN by either setting `username` to `clientId`, and setting `password` to client `secret`, or by setting `username` to account username, and `password` to access token prefixed with `$accessToken:`. If this option is not set, the `password` is always interpreted as an access token (without a prefix), and `username` as the account username (a so called 'no-client-credentials' mode)."
type:
type: string
enum:
@@ -233,13 +233,13 @@ spec:
description: 'URI of the User Info Endpoint to use as a fallback to obtaining the user id when the Introspection Endpoint does not return information that can be used for the user id. '
userNameClaim:
type: string
- description: Name of the claim from the JWT authentication token, Introspection Endpoint response or User Info Endpoint response which will be used to extract the user id. Defaults to `sub`.
+ description: "Name of the claim from the JWT authentication token, Introspection Endpoint response or User Info Endpoint response which will be used to extract the user id. Defaults to `sub`."
validIssuerUri:
type: string
description: URI of the token issuer used for authentication.
validTokenType:
type: string
- description: Valid value for the `token_type` attribute returned by the Introspection Endpoint. No default value, and not checked by default.
+ description: "Valid value for the `token_type` attribute returned by the Introspection Endpoint. No default value, and not checked by default."
required:
- type
description: Authentication configuration for this listener.
@@ -268,12 +268,12 @@ spec:
enum:
- Local
- Cluster
- description: Specifies whether the service routes external traffic to node-local or cluster-wide endpoints. `Cluster` may cause a second hop to another node and obscures the client source IP. `Local` avoids a second hop for LoadBalancer and Nodeport type services and preserves the client source IP (when supported by the infrastructure). If unspecified, Kubernetes will use `Cluster` as the default.This field can be used only with `loadbalancer` or `nodeport` type listener.
+ description: "Specifies whether the service routes external traffic to node-local or cluster-wide endpoints. `Cluster` may cause a second hop to another node and obscures the client source IP. `Local` avoids a second hop for LoadBalancer and Nodeport type services and preserves the client source IP (when supported by the infrastructure). If unspecified, Kubernetes will use `Cluster` as the default.This field can be used only with `loadbalancer` or `nodeport` type listener."
loadBalancerSourceRanges:
type: array
items:
type: string
- description: A list of CIDR ranges (for example `10.0.0.0/8` or `130.211.204.1/32`) from which clients can connect to load balancer type listeners. If supported by the platform, traffic through the loadbalancer is restricted to the specified CIDR ranges. This field is applicable only for loadbalancer type services and is ignored if the cloud provider does not support the feature. For more information, see https://v1-17.docs.kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/. This field can be used only with `loadbalancer` type listener.
+ description: "A list of CIDR ranges (for example `10.0.0.0/8` or `130.211.204.1/32`) from which clients can connect to load balancer type listeners. If supported by the platform, traffic through the loadbalancer is restricted to the specified CIDR ranges. This field is applicable only for loadbalancer type services and is ignored if the cloud provider does not support the feature. This field can be used only with `loadbalancer` type listener."
bootstrap:
type: object
properties:
@@ -294,11 +294,11 @@ spec:
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations that will be added to the `Ingress`, `Route`, or `Service` resource. You can use this field to configure DNS providers such as External DNS. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners.
+ description: "Annotations that will be added to the `Ingress`, `Route`, or `Service` resource. You can use this field to configure DNS providers such as External DNS. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners."
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels that will be added to the `Ingress`, `Route`, or `Service` resource. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners.
+ description: "Labels that will be added to the `Ingress`, `Route`, or `Service` resource. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners."
description: Bootstrap configuration.
brokers:
type: array
@@ -326,11 +326,11 @@ spec:
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations that will be added to the `Ingress` or `Service` resource. You can use this field to configure DNS providers such as External DNS. This field can be used only with `loadbalancer`, `nodeport`, or `ingress` type listeners.
+ description: "Annotations that will be added to the `Ingress` or `Service` resource. You can use this field to configure DNS providers such as External DNS. This field can be used only with `loadbalancer`, `nodeport`, or `ingress` type listeners."
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels that will be added to the `Ingress`, `Route`, or `Service` resource. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners.
+ description: "Labels that will be added to the `Ingress`, `Route`, or `Service` resource. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners."
required:
- broker
description: Per-broker configurations.
@@ -340,7 +340,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -348,18 +348,18 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
createBootstrapService:
type: boolean
description: Whether to create the bootstrap service or not. The bootstrap service is created by default (if not specified differently). This field can be used with the `loadBalancer` type listener.
class:
type: string
- description: Configures the `Ingress` class that defines which `Ingress` controller will be used. This field can be used only with `ingress` type listener. If not specified, the default Ingress controller will be used.
+ description: "Configures the `Ingress` class that defines which `Ingress` controller will be used. This field can be used only with `ingress` type listener. If not specified, the default Ingress controller will be used."
finalizers:
type: array
items:
type: string
- description: A list of finalizers which will be configured for the `LoadBalancer` type Services created for this listener. If supported by the platform, the finalizer `service.kubernetes.io/load-balancer-cleanup` to make sure that the external load balancer is deleted together with the service.For more information, see https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#garbage-collecting-load-balancers. This field can be used only with `loadbalancer` type listeners.
+ description: "A list of finalizers which will be configured for the `LoadBalancer` type Services created for this listener. If supported by the platform, the finalizer `service.kubernetes.io/load-balancer-cleanup` to make sure that the external load balancer is deleted together with the service.For more information, see https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#garbage-collecting-load-balancers. This field can be used only with `loadbalancer` type listeners."
maxConnectionCreationRate:
type: integer
description: The maximum connection creation rate we allow in this listener at any time. New connections will be throttled if the limit is reached.
@@ -386,7 +386,7 @@ spec:
This field is used to select the preferred address type, which is checked first. If no address is found for this address type, the other types are checked in the default order. This field can only be used with `nodeport` type listener.
useServiceDnsDomain:
type: boolean
- description: Configures whether the Kubernetes service DNS domain should be used or not. If set to `true`, the generated addresses will contain the service DNS domain suffix (by default `.cluster.local`, can be configured using environment variable `KUBERNETES_SERVICE_DNS_DOMAIN`). Defaults to `false`.This field can be used only with `internal` type listener.
+ description: "Configures whether the Kubernetes service DNS domain should be used or not. If set to `true`, the generated addresses will contain the service DNS domain suffix (by default `.cluster.local`, can be configured using environment variable `KUBERNETES_SERVICE_DNS_DOMAIN`). Defaults to `false`.This field can be used only with `internal` type listener."
description: Additional listener configuration.
networkPolicyPeers:
type: array
@@ -440,7 +440,7 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: List of peers which should be able to connect to this listener. Peers in this list are combined using a logical OR operation. If this field is empty or missing, all connections will be allowed for this listener. If this field is present and contains at least one item, the listener only allows the traffic which matches at least one item in this list.
+ description: "List of peers which should be able to connect to this listener. Peers in this list are combined using a logical OR operation. If this field is empty or missing, all connections will be allowed for this listener. If this field is present and contains at least one item, the listener only allows the traffic which matches at least one item in this list."
required:
- name
- port
@@ -450,7 +450,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'Kafka broker config properties with the following prefixes cannot be set: listeners, advertised., broker., listener., host.name, port, inter.broker.listener.name, sasl., ssl., security., password., log.dir, zookeeper.connect, zookeeper.set.acl, zookeeper.ssl, zookeeper.clientCnxnSocket, authorizer., super.user, cruise.control.metrics.topic, cruise.control.metrics.reporter.bootstrap.servers (with the exception of: zookeeper.connection.timeout.ms, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols,cruise.control.metrics.topic.num.partitions, cruise.control.metrics.topic.replication.factor, cruise.control.metrics.topic.retention.ms,cruise.control.metrics.topic.auto.create.retries, cruise.control.metrics.topic.auto.create.timeout.ms,cruise.control.metrics.topic.min.insync.replicas).'
+ description: "Kafka broker config properties with the following prefixes cannot be set: listeners, advertised., broker., listener., host.name, port, inter.broker.listener.name, sasl., ssl., security., password., log.dir, zookeeper.connect, zookeeper.set.acl, zookeeper.ssl, zookeeper.clientCnxnSocket, authorizer., super.user, cruise.control.metrics.topic, cruise.control.metrics.reporter.bootstrap.servers,node.id, process.roles, controller. (with the exception of: zookeeper.connection.timeout.ms, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols,cruise.control.metrics.topic.num.partitions, cruise.control.metrics.topic.replication.factor, cruise.control.metrics.topic.retention.ms,cruise.control.metrics.topic.auto.create.retries, cruise.control.metrics.topic.auto.create.timeout.ms,cruise.control.metrics.topic.min.insync.replicas,controller.quorum.election.backoff.max.ms, controller.quorum.election.timeout.ms, controller.quorum.fetch.timeout.ms)."
storage:
type: object
properties:
@@ -482,18 +482,18 @@ spec:
description: Specifies a specific persistent volume to use. It contains key:value pairs representing labels for selecting such a volume.
size:
type: string
- description: When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim.
+ description: "When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim."
sizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi).
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: "When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi)."
type:
type: string
enum:
- ephemeral
- persistent-claim
- jbod
- description: Storage type, must be either 'ephemeral', 'persistent-claim', or 'jbod'.
+ description: "Storage type, must be either 'ephemeral', 'persistent-claim', or 'jbod'."
volumes:
type: array
items:
@@ -527,17 +527,17 @@ spec:
description: Specifies a specific persistent volume to use. It contains key:value pairs representing labels for selecting such a volume.
size:
type: string
- description: When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim.
+ description: "When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim."
sizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi).
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: "When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi)."
type:
type: string
enum:
- ephemeral
- persistent-claim
- description: Storage type, must be either 'ephemeral' or 'persistent-claim'.
+ description: "Storage type, must be either 'ephemeral' or 'persistent-claim'."
required:
- type
description: List of volumes as Storage objects representing the JBOD disks array.
@@ -549,17 +549,17 @@ spec:
properties:
allowOnError:
type: boolean
- description: Defines whether a Kafka client should be allowed or denied by default when the authorizer fails to query the Open Policy Agent, for example, when it is temporarily unavailable). Defaults to `false` - all actions will be denied.
+ description: "Defines whether a Kafka client should be allowed or denied by default when the authorizer fails to query the Open Policy Agent, for example, when it is temporarily unavailable). Defaults to `false` - all actions will be denied."
authorizerClass:
type: string
- description: Authorization implementation class, which must be available in classpath.
+ description: "Authorization implementation class, which must be available in classpath."
clientId:
type: string
description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
minimum: 1
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
delegateToKafkaAcls:
type: boolean
description: Whether authorization decision should be delegated to the 'Simple' authorizer if DENIED by Keycloak Authorization Services policies. Default value is `false`.
@@ -579,7 +579,7 @@ spec:
grantsRefreshPoolSize:
type: integer
minimum: 1
- description: The number of threads to use to refresh grants for active sessions. The more threads, the more parallelism, so the sooner the job completes. However, using more threads places a heavier load on the authorization server. The default value is 5.
+ description: "The number of threads to use to refresh grants for active sessions. The more threads, the more parallelism, so the sooner the job completes. However, using more threads places a heavier load on the authorization server. The default value is 5."
initialCacheCapacity:
type: integer
description: Initial capacity of the local cache used by the authorizer to avoid querying the Open Policy Agent for every request Defaults to `5000`.
@@ -589,12 +589,12 @@ spec:
readTimeoutSeconds:
type: integer
minimum: 1
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
superUsers:
type: array
items:
type: string
- description: List of super users, which are user principals with unlimited access rights.
+ description: "List of super users, which are user principals with unlimited access rights."
supportsAdminApi:
type: boolean
description: Indicates whether the custom authorizer supports the APIs for managing ACLs using the Kafka Admin API. Defaults to `false`.
@@ -623,7 +623,7 @@ spec:
- opa
- keycloak
- custom
- description: Authorization type. Currently, the supported types are `simple`, `keycloak`, `opa` and `custom`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization. `keycloak` authorization type uses Keycloak Authorization Services for authorization. `opa` authorization type uses Open Policy Agent based authorization.`custom` authorization type uses user-provided implementation for authorization.
+ description: "Authorization type. Currently, the supported types are `simple`, `keycloak`, `opa` and `custom`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization. `keycloak` authorization type uses Keycloak Authorization Services for authorization. `opa` authorization type uses Open Policy Agent based authorization.`custom` authorization type uses user-provided implementation for authorization."
url:
type: string
example: http://opa:8181/v1/data/kafka/authz/allow
@@ -701,11 +701,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -769,7 +769,7 @@ spec:
optional:
type: boolean
description: Reference to the key in the ConfigMap containing the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -786,7 +786,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -816,11 +816,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
podManagementPolicy:
type: string
@@ -838,11 +838,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -851,7 +851,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -911,7 +911,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1219,10 +1219,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1237,8 +1237,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -1283,11 +1283,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -1295,7 +1295,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -1303,7 +1303,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka bootstrap `Service`.
brokersService:
type: object
@@ -1314,11 +1314,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -1326,7 +1326,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -1334,7 +1334,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka broker `Service`.
externalBootstrapService:
type: object
@@ -1345,11 +1345,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka external bootstrap `Service`.
perPodService:
@@ -1361,11 +1361,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka per-pod `Services` used for access from outside of Kubernetes.
externalBootstrapRoute:
@@ -1377,11 +1377,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka external bootstrap `Route`.
perPodRoute:
@@ -1393,11 +1393,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka per-pod `Routes` used for access from outside of OpenShift.
externalBootstrapIngress:
@@ -1409,11 +1409,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka external bootstrap `Ingress`.
perPodIngress:
@@ -1425,11 +1425,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka per-pod `Ingress` used for access from outside of Kubernetes.
persistentVolumeClaim:
@@ -1441,11 +1441,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for all Kafka `PersistentVolumeClaims`.
podDisruptionBudget:
@@ -1457,16 +1457,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka `PodDisruptionBudget`.
kafkaContainer:
type: object
@@ -1625,11 +1625,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Secret with Kafka Cluster certificate public key.
serviceAccount:
@@ -1641,11 +1641,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka service account.
jmxSecret:
@@ -1657,11 +1657,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Secret of the Kafka Cluster JMX authentication.
clusterRoleBinding:
@@ -1673,11 +1673,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka ClusterRoleBinding.
podSet:
@@ -1689,14 +1689,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka `StrimziPodSet` resource.
- description: Template for Kafka cluster resources. The template allows users to specify how are the `StatefulSet`, `Pods` and `Services` generated.
+ description: "Template for Kafka cluster resources. The template allows users to specify how are the `StatefulSet`, `Pods` and `Services` generated."
required:
- replicas
- listeners
@@ -1743,24 +1743,24 @@ spec:
description: Specifies a specific persistent volume to use. It contains key:value pairs representing labels for selecting such a volume.
size:
type: string
- description: When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim.
+ description: "When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim."
sizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi).
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: "When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi)."
type:
type: string
enum:
- ephemeral
- persistent-claim
- description: Storage type, must be either 'ephemeral' or 'persistent-claim'.
+ description: "Storage type, must be either 'ephemeral' or 'persistent-claim'."
required:
- type
description: Storage configuration (disk). Cannot be updated.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The ZooKeeper broker config. Properties with the following prefixes cannot be set: server., dataDir, dataLogDir, clientPort, authProvider, quorum.auth, requireClientAuthScheme, snapshot.trust.empty, standaloneEnabled, reconfigEnabled, 4lw.commands.whitelist, secureClientPort, ssl., serverCnxnFactory, sslQuorum (with the exception of: ssl.protocol, ssl.quorum.protocol, ssl.enabledProtocols, ssl.quorum.enabledProtocols, ssl.ciphersuites, ssl.quorum.ciphersuites, ssl.hostnameVerification, ssl.quorum.hostnameVerification).'
+ description: "The ZooKeeper broker config. Properties with the following prefixes cannot be set: server., dataDir, dataLogDir, clientPort, authProvider, quorum.auth, requireClientAuthScheme, snapshot.trust.empty, standaloneEnabled, reconfigEnabled, 4lw.commands.whitelist, secureClientPort, ssl., serverCnxnFactory, sslQuorum (with the exception of: ssl.protocol, ssl.quorum.protocol, ssl.enabledProtocols, ssl.quorum.enabledProtocols, ssl.ciphersuites, ssl.quorum.ciphersuites, ssl.hostnameVerification, ssl.quorum.hostnameVerification)."
livenessProbe:
type: object
properties:
@@ -1818,11 +1818,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -1886,7 +1886,7 @@ spec:
optional:
type: boolean
description: Reference to the key in the ConfigMap containing the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -1903,7 +1903,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -1933,11 +1933,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
podManagementPolicy:
type: string
@@ -1955,11 +1955,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -1968,7 +1968,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -2028,7 +2028,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -2336,10 +2336,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -2354,8 +2354,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -2400,11 +2400,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -2412,7 +2412,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -2420,7 +2420,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for ZooKeeper client `Service`.
nodesService:
type: object
@@ -2431,11 +2431,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -2443,7 +2443,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -2451,7 +2451,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for ZooKeeper nodes `Service`.
persistentVolumeClaim:
type: object
@@ -2462,11 +2462,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for all ZooKeeper `PersistentVolumeClaims`.
podDisruptionBudget:
@@ -2478,16 +2478,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for ZooKeeper `PodDisruptionBudget`.
zookeeperContainer:
type: object
@@ -2572,11 +2572,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the ZooKeeper service account.
jmxSecret:
@@ -2588,11 +2588,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Secret of the Zookeeper Cluster JMX authentication.
podSet:
@@ -2604,14 +2604,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for ZooKeeper `StrimziPodSet` resource.
- description: Template for ZooKeeper cluster resources. The template allows users to specify how are the `StatefulSet`, `Pods` and `Services` generated.
+ description: "Template for ZooKeeper cluster resources. The template allows users to specify how are the `StatefulSet`, `Pods` and `Services` generated."
required:
- replicas
- storage
@@ -2734,7 +2734,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -2761,11 +2761,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -2874,7 +2874,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -2901,11 +2901,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -3013,11 +3013,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Entity Operator `Deployment`.
pod:
@@ -3029,11 +3029,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -3042,7 +3042,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -3102,7 +3102,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -3410,10 +3410,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -3428,8 +3428,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -3696,11 +3696,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Entity Operator service account.
description: Template for Entity Operator resources. The template allows users to specify how is the `Deployment` and `Pods` generated.
@@ -3713,7 +3713,7 @@ spec:
description: If true then Certificate Authority certificates will be generated automatically. Otherwise the user will need to provide a Secret with the CA certificate. Default is true.
generateSecretOwnerReference:
type: boolean
- description: If `true`, the Cluster and Client CA Secrets are configured with the `ownerReference` set to the `Kafka` resource. If the `Kafka` resource is deleted when `true`, the CA Secrets are also deleted. If `false`, the `ownerReference` is disabled. If the `Kafka` resource is deleted when `false`, the CA Secrets are retained and available for reuse. Default is `true`.
+ description: "If `true`, the Cluster and Client CA Secrets are configured with the `ownerReference` set to the `Kafka` resource. If the `Kafka` resource is deleted when `true`, the CA Secrets are also deleted. If `false`, the `ownerReference` is disabled. If the `Kafka` resource is deleted when `false`, the CA Secrets are retained and available for reuse. Default is `true`."
validityDays:
type: integer
minimum: 1
@@ -3721,7 +3721,7 @@ spec:
renewalDays:
type: integer
minimum: 1
- description: The number of days in the certificate renewal period. This is the number of days before the a certificate expires during which renewal actions may be performed. When `generateCertificateAuthority` is true, this will cause the generation of a new certificate. When `generateCertificateAuthority` is true, this will cause extra logging at WARN level about the pending certificate expiry. Default is 30.
+ description: "The number of days in the certificate renewal period. This is the number of days before the a certificate expires during which renewal actions may be performed. When `generateCertificateAuthority` is true, this will cause the generation of a new certificate. When `generateCertificateAuthority` is true, this will cause extra logging at WARN level about the pending certificate expiry. Default is 30."
certificateExpirationPolicy:
type: string
enum:
@@ -3737,7 +3737,7 @@ spec:
description: If true then Certificate Authority certificates will be generated automatically. Otherwise the user will need to provide a Secret with the CA certificate. Default is true.
generateSecretOwnerReference:
type: boolean
- description: If `true`, the Cluster and Client CA Secrets are configured with the `ownerReference` set to the `Kafka` resource. If the `Kafka` resource is deleted when `true`, the CA Secrets are also deleted. If `false`, the `ownerReference` is disabled. If the `Kafka` resource is deleted when `false`, the CA Secrets are retained and available for reuse. Default is `true`.
+ description: "If `true`, the Cluster and Client CA Secrets are configured with the `ownerReference` set to the `Kafka` resource. If the `Kafka` resource is deleted when `true`, the CA Secrets are also deleted. If `false`, the `ownerReference` is disabled. If the `Kafka` resource is deleted when `false`, the CA Secrets are retained and available for reuse. Default is `true`."
validityDays:
type: integer
minimum: 1
@@ -3745,7 +3745,7 @@ spec:
renewalDays:
type: integer
minimum: 1
- description: The number of days in the certificate renewal period. This is the number of days before the a certificate expires during which renewal actions may be performed. When `generateCertificateAuthority` is true, this will cause the generation of a new certificate. When `generateCertificateAuthority` is true, this will cause extra logging at WARN level about the pending certificate expiry. Default is 30.
+ description: "The number of days in the certificate renewal period. This is the number of days before the a certificate expires during which renewal actions may be performed. When `generateCertificateAuthority` is true, this will cause the generation of a new certificate. When `generateCertificateAuthority` is true, this will cause extra logging at WARN level about the pending certificate expiry. Default is 30."
certificateExpirationPolicy:
type: string
enum:
@@ -3903,11 +3903,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -3937,7 +3937,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -3967,11 +3967,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Cruise Control `Deployment`.
pod:
@@ -3983,11 +3983,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -3996,7 +3996,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -4056,7 +4056,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -4364,10 +4364,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -4382,8 +4382,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -4428,11 +4428,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -4440,7 +4440,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -4448,7 +4448,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Cruise Control API `Service`.
podDisruptionBudget:
type: object
@@ -4459,16 +4459,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Cruise Control `PodDisruptionBudget`.
cruiseControlContainer:
type: object
@@ -4627,21 +4627,21 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Cruise Control service account.
- description: Template to specify how Cruise Control resources, `Deployments` and `Pods`, are generated.
+ description: "Template to specify how Cruise Control resources, `Deployments` and `Pods`, are generated."
brokerCapacity:
type: object
properties:
disk:
type: string
- pattern: ^[0-9]+([.][0-9]*)?([KMGTPE]i?|e[0-9]+)?$
- description: Broker capacity for disk in bytes. Use a number value with either standard Kubernetes byte units (K, M, G, or T), their bibyte (power of two) equivalents (Ki, Mi, Gi, or Ti), or a byte value with or without E notation. For example, 100000M, 100000Mi, 104857600000, or 1e+11.
+ pattern: "^[0-9]+([.][0-9]*)?([KMGTPE]i?|e[0-9]+)?$"
+ description: "Broker capacity for disk in bytes. Use a number value with either standard Kubernetes byte units (K, M, G, or T), their bibyte (power of two) equivalents (Ki, Mi, Gi, or Ti), or a byte value with or without E notation. For example, 100000M, 100000Mi, 104857600000, or 1e+11."
cpuUtilization:
type: integer
minimum: 0
@@ -4649,17 +4649,17 @@ spec:
description: Broker capacity for CPU resource utilization as a percentage (0 - 100).
inboundNetwork:
type: string
- pattern: ^[0-9]+([KMG]i?)?B/s$
- description: Broker capacity for inbound network throughput in bytes per second. Use an integer value with standard Kubernetes byte units (K, M, G) or their bibyte (power of two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s.
+ pattern: "^[0-9]+([KMG]i?)?B/s$"
+ description: "Broker capacity for inbound network throughput in bytes per second. Use an integer value with standard Kubernetes byte units (K, M, G) or their bibyte (power of two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s."
outboundNetwork:
type: string
- pattern: ^[0-9]+([KMG]i?)?B/s$
- description: Broker capacity for outbound network throughput in bytes per second. Use an integer value with standard Kubernetes byte units (K, M, G) or their bibyte (power of two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s.
+ pattern: "^[0-9]+([KMG]i?)?B/s$"
+ description: "Broker capacity for outbound network throughput in bytes per second. Use an integer value with standard Kubernetes byte units (K, M, G) or their bibyte (power of two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s."
description: The Cruise Control `brokerCapacity` configuration.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Cruise Control configuration. For a full list of configuration options refer to https://github.com/linkedin/cruise-control/wiki/Configurations. Note that properties with the following prefixes cannot be set: bootstrap.servers, client.id, zookeeper., network., security., failed.brokers.zk.path,webserver.http., webserver.api.urlprefix, webserver.session.path, webserver.accesslog., two.step., request.reason.required,metric.reporter.sampler.bootstrap.servers, metric.reporter.topic, partition.metric.sample.store.topic, broker.metric.sample.store.topic,capacity.config.file, self.healing., ssl. (with the exception of: ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols, webserver.http.cors.enabled, webserver.http.cors.origin, webserver.http.cors.exposeheaders, webserver.security.enable, webserver.ssl.enable).'
+ description: "The Cruise Control configuration. For a full list of configuration options refer to https://github.com/linkedin/cruise-control/wiki/Configurations. Note that properties with the following prefixes cannot be set: bootstrap.servers, client.id, zookeeper., network., security., failed.brokers.zk.path,webserver.http., webserver.api.urlprefix, webserver.session.path, webserver.accesslog., two.step., request.reason.required,metric.reporter.sampler.bootstrap.servers, capacity.config.file, self.healing., ssl., kafka.broker.failure.detection.enable, topic.config.provider.class (with the exception of: ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols, webserver.http.cors.enabled, webserver.http.cors.origin, webserver.http.cors.exposeheaders, webserver.security.enable, webserver.ssl.enable)."
metricsConfig:
type: object
properties:
@@ -4681,7 +4681,7 @@ spec:
optional:
type: boolean
description: Reference to the key in the ConfigMap containing the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -4700,7 +4700,7 @@ spec:
properties:
outputType:
type: string
- description: Template for setting the format of the data that will be pushed.For more information see https://github.com/jmxtrans/jmxtrans/wiki/OutputWriters[JmxTrans OutputWriters].
+ description: "Template for setting the format of the data that will be pushed.For more information see https://github.com/jmxtrans/jmxtrans/wiki/OutputWriters[JmxTrans OutputWriters]."
host:
type: string
description: The DNS/hostname of the remote host that the data is pushed to.
@@ -4714,17 +4714,17 @@ spec:
type: array
items:
type: string
- description: Template for filtering data to be included in response to a wildcard query. For more information see https://github.com/jmxtrans/jmxtrans/wiki/Queries[JmxTrans queries].
+ description: "Template for filtering data to be included in response to a wildcard query. For more information see https://github.com/jmxtrans/jmxtrans/wiki/Queries[JmxTrans queries]."
name:
type: string
description: Template for setting the name of the output definition. This is used to identify where to send the results of queries should be sent.
required:
- outputType
- name
- description: Defines the output hosts that will be referenced later on. For more information on these properties see, xref:type-JmxTransOutputDefinitionTemplate-reference[`JmxTransOutputDefinitionTemplate` schema reference].
+ description: "Defines the output hosts that will be referenced later on. For more information on these properties see, xref:type-JmxTransOutputDefinitionTemplate-reference[`JmxTransOutputDefinitionTemplate` schema reference]."
logLevel:
type: string
- description: Sets the logging level of the JmxTrans deployment.For more information see, https://github.com/jmxtrans/jmxtrans-agent/wiki/Troubleshooting[JmxTrans Logging Level].
+ description: "Sets the logging level of the JmxTrans deployment.For more information see, https://github.com/jmxtrans/jmxtrans-agent/wiki/Troubleshooting[JmxTrans Logging Level]."
kafkaQueries:
type: array
items:
@@ -4742,12 +4742,12 @@ spec:
type: array
items:
type: string
- description: List of the names of output definitions specified in the spec.kafka.jmxTrans.outputDefinitions that have defined where JMX metrics are pushed to, and in which data format.
+ description: "List of the names of output definitions specified in the spec.kafka.jmxTrans.outputDefinitions that have defined where JMX metrics are pushed to, and in which data format."
required:
- targetMBean
- attributes
- outputs
- description: Queries to send to the Kafka brokers to define what data should be read from each broker. For more information on these properties see, xref:type-JmxTransQueryTemplate-reference[`JmxTransQueryTemplate` schema reference].
+ description: "Queries to send to the Kafka brokers to define what data should be read from each broker. For more information on these properties see, xref:type-JmxTransQueryTemplate-reference[`JmxTransQueryTemplate` schema reference]."
resources:
type: object
properties:
@@ -4770,11 +4770,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for JmxTrans `Deployment`.
pod:
@@ -4786,11 +4786,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -4799,7 +4799,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -4859,7 +4859,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -5167,10 +5167,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -5185,8 +5185,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -5305,18 +5305,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the JMX Trans service account.
description: Template for JmxTrans resources.
required:
- outputDefinitions
- kafkaQueries
- description: Configuration for JmxTrans. When the property is present a JmxTrans deployment is created for gathering JMX metrics from each Kafka broker. For more information see https://github.com/jmxtrans/jmxtrans[JmxTrans GitHub].
+ description: "Configuration for JmxTrans. When the property is present a JmxTrans deployment is created for gathering JMX metrics from each Kafka broker. For more information see https://github.com/jmxtrans/jmxtrans[JmxTrans GitHub]."
kafkaExporter:
type: object
properties:
@@ -5341,10 +5341,10 @@ spec:
description: CPU and memory resources to reserve.
logging:
type: string
- description: 'Only log messages with the given severity or above. Valid levels: [`info`, `debug`, `trace`]. Default log level is `info`.'
+ description: "Only log messages with the given severity or above. Valid levels: [`info`, `debug`, `trace`]. Default log level is `info`."
enableSaramaLogging:
type: boolean
- description: Enable Sarama logging, a Go client library used by the Kafka Exporter.
+ description: "Enable Sarama logging, a Go client library used by the Kafka Exporter."
template:
type: object
properties:
@@ -5357,11 +5357,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka Exporter `Deployment`.
pod:
@@ -5373,11 +5373,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -5386,7 +5386,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -5446,7 +5446,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -5754,10 +5754,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -5772,8 +5772,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -5818,11 +5818,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka Exporter `Service`.
container:
@@ -5908,11 +5908,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Exporter service account.
description: Customization of deployment templates and pods.
@@ -5964,16 +5964,16 @@ spec:
minimum: 1
description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness check.
- description: Configuration of the Kafka Exporter. Kafka Exporter can provide additional metrics, for example lag of consumer group at topic/partition.
+ description: "Configuration of the Kafka Exporter. Kafka Exporter can provide additional metrics, for example lag of consumer group at topic/partition."
maintenanceTimeWindows:
type: array
items:
type: string
- description: A list of time windows for maintenance tasks (that is, certificates renewal). Each time window is defined by a cron expression.
+ description: "A list of time windows for maintenance tasks (that is, certificates renewal). Each time window is defined by a cron expression."
required:
- kafka
- zookeeper
- description: The specification of the Kafka and ZooKeeper clusters, and Topic Operator.
+ description: "The specification of the Kafka and ZooKeeper clusters, and Topic Operator."
status:
type: object
properties:
@@ -5984,13 +5984,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -6008,7 +6008,7 @@ spec:
properties:
type:
type: string
- description: '*The `type` property has been deprecated, and should now be configured using `name`.* The name of the listener.'
+ description: "*The `type` property has been deprecated, and should now be configured using `name`.* The name of the listener."
name:
type: string
description: The name of the listener.
@@ -6036,4 +6036,4 @@ spec:
clusterId:
type: string
description: Kafka cluster Id.
- description: The status of the Kafka and ZooKeeper clusters, and Topic Operator.
+ description: "The status of the Kafka and ZooKeeper clusters, and Topic Operator."
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/041-Crd-kafkaconnect.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/041-Crd-kafkaconnect.yaml
index 360416104f2..91191afbd7d 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/041-Crd-kafkaconnect.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/041-Crd-kafkaconnect.yaml
@@ -37,7 +37,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -48,7 +48,7 @@ spec:
properties:
version:
type: string
- description: The Kafka Connect version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version.
+ description: "The Kafka Connect version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
description: The number of pods in the Kafka Connect group.
@@ -98,7 +98,7 @@ spec:
description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -134,7 +134,7 @@ spec:
description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
description: Enable or disable TLS hostname verification. Default value is `false`.
@@ -156,7 +156,7 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
@@ -199,7 +199,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -209,7 +209,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connect configuration. Properties with the following prefixes cannot be set: ssl., sasl., security., listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes, producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The Kafka Connect configuration. Properties with the following prefixes cannot be set: ssl., sasl., security., listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes, producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
resources:
type: object
properties:
@@ -277,11 +277,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -326,7 +326,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -344,6 +344,19 @@ spec:
required:
- type
description: Logging configuration for Kafka Connect.
+ clientRackInitImage:
+ type: string
+ description: The image of the init container used for initializing the `client.rack`.
+ rack:
+ type: object
+ properties:
+ topologyKey:
+ type: string
+ example: topology.kubernetes.io/zone
+ description: A key that matches labels assigned to the Kubernetes cluster nodes. The value of the label is used to set the broker's `broker.rack` config and `client.rack` in Kafka Connect.
+ required:
+ - topologyKey
+ description: Configuration of the node label which will be used as the `client.rack` consumer configuration.
tracing:
type: object
properties:
@@ -367,11 +380,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
@@ -389,11 +402,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -402,7 +415,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -462,7 +475,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -770,10 +783,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -788,8 +801,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -834,11 +847,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -846,7 +859,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -854,7 +867,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka Connect API `Service`.
connectContainer:
type: object
@@ -1013,16 +1026,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka Connect `PodDisruptionBudget`.
serviceAccount:
type: object
@@ -1033,11 +1046,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect service account.
clusterRoleBinding:
@@ -1049,11 +1062,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect ClusterRoleBinding.
buildPod:
@@ -1065,11 +1078,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -1078,7 +1091,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -1138,7 +1151,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1446,10 +1459,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1464,8 +1477,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -1584,11 +1597,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
pullSecret:
type: string
@@ -1603,11 +1616,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect Build service account.
jmxSecret:
@@ -1619,14 +1632,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Secret of the Kafka Connect Cluster JMX authentication.
- description: Template for Kafka Connect and Kafka Mirror Maker 2 resources. The template allows users to specify how the `Deployment`, `Pods` and `Service` are generated.
+ description: "Template for Kafka Connect and Kafka Mirror Maker 2 resources. The template allows users to specify how the `Deployment`, `Pods` and `Service` are generated."
externalConfiguration:
type: object
properties:
@@ -1730,7 +1743,7 @@ spec:
type: array
items:
type: string
- description: 'Configures additional options which will be passed to the Kaniko executor when building the new Connect image. Allowed options are: --customPlatform, --insecure, --insecure-pull, --insecure-registry, --log-format, --log-timestamp, --registry-mirror, --reproducible, --single-snapshot, --skip-tls-verify, --skip-tls-verify-pull, --skip-tls-verify-registry, --verbosity, --snapshotMode, --use-new-run. These options will be used only on Kubernetes where the Kaniko executor is used. They will be ignored on OpenShift. The options are described in the link:https://github.com/GoogleContainerTools/kaniko[Kaniko GitHub repository^]. Changing this field does not trigger new build of the Kafka Connect image.'
+ description: "Configures additional options which will be passed to the Kaniko executor when building the new Connect image. Allowed options are: --customPlatform, --insecure, --insecure-pull, --insecure-registry, --log-format, --log-timestamp, --registry-mirror, --reproducible, --single-snapshot, --skip-tls-verify, --skip-tls-verify-pull, --skip-tls-verify-registry, --verbosity, --snapshotMode, --use-new-run. These options will be used only on Kubernetes where the Kaniko executor is used. They will be ignored on OpenShift. The options are described in the link:https://github.com/GoogleContainerTools/kaniko[Kaniko GitHub repository^]. Changing this field does not trigger new build of the Kafka Connect image."
image:
type: string
description: The name of the image which will be built. Required.
@@ -1764,8 +1777,8 @@ spec:
properties:
name:
type: string
- pattern: ^[a-z0-9][-_a-z0-9]*[a-z0-9]$
- description: 'The unique name of the connector plugin. Will be used to generate the path where the connector artifacts will be stored. The name has to be unique within the KafkaConnect resource. The name has to follow the following pattern: `^[a-z][-_a-z0-9]*[a-z]$`. Required.'
+ pattern: "^[a-z0-9][-_a-z0-9]*[a-z0-9]$"
+ description: "The unique name of the connector plugin. Will be used to generate the path where the connector artifacts will be stored. The name has to be unique within the KafkaConnect resource. The name has to follow the following pattern: `^[a-z][-_a-z0-9]*[a-z]$`. Required."
artifacts:
type: array
items:
@@ -1782,13 +1795,13 @@ spec:
description: Maven group id. Applicable to the `maven` artifact type only.
insecure:
type: boolean
- description: By default, connections using TLS are verified to check they are secure. The server certificate used must be valid, trusted, and contain the server name. By setting this option to `true`, all TLS verification is disabled and the artifact will be downloaded, even when the server is considered insecure.
+ description: "By default, connections using TLS are verified to check they are secure. The server certificate used must be valid, trusted, and contain the server name. By setting this option to `true`, all TLS verification is disabled and the artifact will be downloaded, even when the server is considered insecure."
repository:
type: string
description: Maven repository to download the artifact from. Applicable to the `maven` artifact type only.
sha512sum:
type: string
- description: 'SHA512 checksum of the artifact. Optional. If specified, the checksum will be verified while building the new container. If not specified, the downloaded artifact will not be verified. Not applicable to the `maven` artifact type. '
+ description: "SHA512 checksum of the artifact. Optional. If specified, the checksum will be verified while building the new container. If not specified, the downloaded artifact will not be verified. Not applicable to the `maven` artifact type. "
type:
type: string
enum:
@@ -1797,11 +1810,11 @@ spec:
- zip
- maven
- other
- description: Artifact type. Currently, the supported artifact types are `tgz`, `jar`, `zip`, `other` and `maven`.
+ description: "Artifact type. Currently, the supported artifact types are `tgz`, `jar`, `zip`, `other` and `maven`."
url:
type: string
- pattern: ^(https?|ftp)://[-a-zA-Z0-9+&@#/%?=~_|!:,.;]*[-a-zA-Z0-9+&@#/%=~_|]$
- description: URL of the artifact which will be downloaded. Strimzi does not do any security scanning of the downloaded artifacts. For security reasons, you should first verify the artifacts manually and configure the checksum verification to make sure the same artifact is used in the automated build. Required for `jar`, `zip`, `tgz` and `other` artifacts. Not applicable to the `maven` artifact type.
+ pattern: "^(https?|ftp)://[-a-zA-Z0-9+&@#/%?=~_|!:,.;]*[-a-zA-Z0-9+&@#/%=~_|]$"
+ description: "URL of the artifact which will be downloaded. Strimzi does not do any security scanning of the downloaded artifacts. For security reasons, you should first verify the artifacts manually and configure the checksum verification to make sure the same artifact is used in the automated build. Required for `jar`, `zip`, `tgz` and `other` artifacts. Not applicable to the `maven` artifact type."
version:
type: string
description: Maven version number. Applicable to the `maven` artifact type only.
@@ -1816,9 +1829,6 @@ spec:
- output
- plugins
description: Configures how the Connect container image should be built. Optional.
- clientRackInitImage:
- type: string
- description: The image of the init container used for initializing the `client.rack`.
metricsConfig:
type: object
properties:
@@ -1840,21 +1850,11 @@ spec:
optional:
type: boolean
description: Reference to the key in the ConfigMap containing the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
description: Metrics configuration.
- rack:
- type: object
- properties:
- topologyKey:
- type: string
- example: topology.kubernetes.io/zone
- description: A key that matches labels assigned to the Kubernetes cluster nodes. The value of the label is used to set the broker's `broker.rack` config and `client.rack` in Kafka Connect.
- required:
- - topologyKey
- description: Configuration of the node label which will be used as the client.rack consumer configuration.
required:
- bootstrapServers
description: The specification of the Kafka Connect cluster.
@@ -1868,13 +1868,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/042-Crd-strimzipodset.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/042-Crd-strimzipodset.yaml
index 0b9c04b46e5..7fc4af3f1f0 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/042-Crd-strimzipodset.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/042-Crd-strimzipodset.yaml
@@ -69,7 +69,7 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Selector is a label query which matches all the pods managed by this `StrimziPodSet`. Only `matchLabels` is supported. If `matchExpressions` is set, it will be ignored.
+ description: "Selector is a label query which matches all the pods managed by this `StrimziPodSet`. Only `matchLabels` is supported. If `matchExpressions` is set, it will be ignored."
pods:
type: array
items:
@@ -90,13 +90,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/043-Crd-kafkatopic.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/043-Crd-kafkatopic.yaml
index ba1aa93276a..3ded35f9ef2 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/043-Crd-kafkatopic.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/043-Crd-kafkatopic.yaml
@@ -41,7 +41,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -53,7 +53,7 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
@@ -77,13 +77,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -118,7 +118,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -130,7 +130,7 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
@@ -154,13 +154,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -195,7 +195,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -207,7 +207,7 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
@@ -231,13 +231,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/044-Crd-kafkauser.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/044-Crd-kafkauser.yaml
index 8e34f0b82ee..1de98b18ead 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/044-Crd-kafkauser.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/044-Crd-kafkauser.yaml
@@ -41,7 +41,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -72,7 +72,7 @@ spec:
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -108,7 +108,7 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
@@ -120,7 +120,7 @@ spec:
enum:
- literal
- prefix
- description: Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -128,7 +128,7 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
description: Indicates the resource for which given ACL rule applies.
@@ -161,7 +161,7 @@ spec:
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
@@ -183,11 +183,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
@@ -202,13 +202,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -246,7 +246,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -277,7 +277,7 @@ spec:
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -313,7 +313,7 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
@@ -325,7 +325,7 @@ spec:
enum:
- literal
- prefix
- description: Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -333,7 +333,7 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
description: Indicates the resource for which given ACL rule applies.
@@ -366,7 +366,7 @@ spec:
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
@@ -388,11 +388,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
@@ -407,13 +407,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -451,7 +451,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -482,7 +482,7 @@ spec:
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -518,7 +518,7 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
@@ -530,7 +530,7 @@ spec:
enum:
- literal
- prefix
- description: Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -538,7 +538,7 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
description: Indicates the resource for which given ACL rule applies.
@@ -571,7 +571,7 @@ spec:
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
@@ -593,11 +593,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
@@ -612,13 +612,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/045-Crd-kafkamirrormaker.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/045-Crd-kafkamirrormaker.yaml
index 645352261e0..30a79822423 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/045-Crd-kafkamirrormaker.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/045-Crd-kafkamirrormaker.yaml
@@ -47,7 +47,7 @@ spec:
priority: 1
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -58,7 +58,7 @@ spec:
properties:
version:
type: string
- description: The Kafka MirrorMaker version. Defaults to {DefaultKafkaVersion}. Consult the documentation to understand the process required to upgrade or downgrade the version.
+ description: "The Kafka MirrorMaker version. Defaults to {DefaultKafkaVersion}. Consult the documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
minimum: 0
@@ -103,7 +103,7 @@ spec:
description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -139,7 +139,7 @@ spec:
description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
description: Enable or disable TLS hostname verification. Default value is `false`.
@@ -161,7 +161,7 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
@@ -204,7 +204,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -214,7 +214,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The MirrorMaker consumer config. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl., security., interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The MirrorMaker consumer config. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl., security., interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
tls:
type: object
properties:
@@ -268,7 +268,7 @@ spec:
description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -304,7 +304,7 @@ spec:
description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
description: Enable or disable TLS hostname verification. Default value is `false`.
@@ -326,7 +326,7 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
@@ -369,7 +369,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -379,7 +379,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The MirrorMaker producer config. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, sasl., security., interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The MirrorMaker producer config. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, sasl., security., interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
tls:
type: object
properties:
@@ -414,10 +414,10 @@ spec:
description: CPU and memory resources to reserve.
whitelist:
type: string
- description: List of topics which are included for mirroring. This option allows any regular expression using Java-style regular expressions. Mirroring two topics named A and B is achieved by using the expression `A\|B`. Or, as a special case, you can mirror all topics using the regular expression `*`. You can also specify multiple regular expressions separated by commas.
+ description: "List of topics which are included for mirroring. This option allows any regular expression using Java-style regular expressions. Mirroring two topics named A and B is achieved by using the expression `A\\|B`. Or, as a special case, you can mirror all topics using the regular expression `*`. You can also specify multiple regular expressions separated by commas."
include:
type: string
- description: List of topics which are included for mirroring. This option allows any regular expression using Java-style regular expressions. Mirroring two topics named A and B is achieved by using the expression `A\|B`. Or, as a special case, you can mirror all topics using the regular expression `*`. You can also specify multiple regular expressions separated by commas.
+ description: "List of topics which are included for mirroring. This option allows any regular expression using Java-style regular expressions. Mirroring two topics named A and B is achieved by using the expression `A\\|B`. Or, as a special case, you can mirror all topics using the regular expression `*`. You can also specify multiple regular expressions separated by commas."
jvmOptions:
type: object
properties:
@@ -427,11 +427,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -461,7 +461,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -500,7 +500,7 @@ spec:
optional:
type: boolean
description: Reference to the key in the ConfigMap containing the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -528,11 +528,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
@@ -550,11 +550,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -563,7 +563,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -623,7 +623,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -931,10 +931,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -949,8 +949,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -995,16 +995,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka MirrorMaker `PodDisruptionBudget`.
mirrorMakerContainer:
type: object
@@ -1089,14 +1089,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka MirrorMaker service account.
- description: Template to specify how Kafka MirrorMaker resources, `Deployments` and `Pods`, are generated.
+ description: "Template to specify how Kafka MirrorMaker resources, `Deployments` and `Pods`, are generated."
livenessProbe:
type: object
properties:
@@ -1169,13 +1169,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/046-Crd-kafkabridge.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/046-Crd-kafkabridge.yaml
index 92a4fdd1f48..ed2187d783e 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/046-Crd-kafkabridge.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/046-Crd-kafkabridge.yaml
@@ -42,7 +42,7 @@ spec:
priority: 1
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -101,7 +101,7 @@ spec:
description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -137,7 +137,7 @@ spec:
description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
description: Enable or disable TLS hostname verification. Default value is `false`.
@@ -159,7 +159,7 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
@@ -202,7 +202,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -248,7 +248,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka consumer configuration used for consumer instances created by the bridge. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl., security. (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The Kafka consumer configuration used for consumer instances created by the bridge. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl., security. (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
description: Kafka consumer related configuration.
producer:
type: object
@@ -256,7 +256,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka producer configuration used for producer instances created by the bridge. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, sasl., security. (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The Kafka producer configuration used for producer instances created by the bridge. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, sasl., security. (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
description: Kafka producer related configuration.
resources:
type: object
@@ -277,11 +277,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -311,7 +311,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -392,11 +392,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
@@ -414,11 +414,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -427,7 +427,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -487,7 +487,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -795,10 +795,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -813,8 +813,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -859,11 +859,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -871,7 +871,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -879,7 +879,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka Bridge API `Service`.
podDisruptionBudget:
type: object
@@ -890,16 +890,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka Bridge `PodDisruptionBudget`.
bridgeContainer:
type: object
@@ -984,11 +984,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Bridge service account.
description: Template for Kafka Bridge resources. The template allows users to specify how is the `Deployment` and `Pods` generated.
@@ -1016,13 +1016,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/047-Crd-kafkaconnector.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/047-Crd-kafkaconnector.yaml
index 5bbd9e208b4..4ce86f80910 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/047-Crd-kafkaconnector.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/047-Crd-kafkaconnector.yaml
@@ -44,7 +44,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -63,7 +63,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
description: Whether the connector should be paused. Defaults to false.
@@ -78,13 +78,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -98,7 +98,7 @@ spec:
connectorStatus:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: The connector status, as reported by the Kafka Connect REST API.
+ description: "The connector status, as reported by the Kafka Connect REST API."
tasksMax:
type: integer
description: The maximum number of tasks for the Kafka Connector.
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/048-Crd-kafkamirrormaker2.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/048-Crd-kafkamirrormaker2.yaml
index 8cfb7bf1199..06261b0213d 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/048-Crd-kafkamirrormaker2.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/048-Crd-kafkamirrormaker2.yaml
@@ -37,7 +37,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -48,7 +48,7 @@ spec:
properties:
version:
type: string
- description: The Kafka Connect version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version.
+ description: "The Kafka Connect version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
description: The number of pods in the Kafka Connect group.
@@ -65,7 +65,7 @@ spec:
properties:
alias:
type: string
- pattern: ^[a-zA-Z0-9\._\-]{1,100}$
+ pattern: "^[a-zA-Z0-9\\._\\-]{1,100}$"
description: Alias used to reference the Kafka cluster.
bootstrapServers:
type: string
@@ -110,7 +110,7 @@ spec:
description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -146,7 +146,7 @@ spec:
description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
description: Enable or disable TLS hostname verification. Default value is `false`.
@@ -168,7 +168,7 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
@@ -211,7 +211,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -221,7 +221,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The MirrorMaker 2.0 cluster config. Properties with the following prefixes cannot be set: ssl., sasl., security., listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes, producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The MirrorMaker 2.0 cluster config. Properties with the following prefixes cannot be set: ssl., sasl., security., listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes, producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
required:
- alias
- bootstrapServers
@@ -247,7 +247,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
description: Whether the connector should be paused. Defaults to false.
@@ -262,7 +262,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
description: Whether the connector should be paused. Defaults to false.
@@ -277,14 +277,14 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
description: Whether the connector should be paused. Defaults to false.
description: The specification of the Kafka MirrorMaker 2.0 checkpoint connector.
topicsPattern:
type: string
- description: A regular expression matching the topics to be mirrored, for example, "topic1\|topic2\|topic3". Comma-separated lists are also supported.
+ description: "A regular expression matching the topics to be mirrored, for example, \"topic1\\|topic2\\|topic3\". Comma-separated lists are also supported."
topicsBlacklistPattern:
type: string
description: A regular expression matching the topics to exclude from mirroring. Comma-separated lists are also supported.
@@ -371,11 +371,11 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
@@ -420,7 +420,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -438,6 +438,19 @@ spec:
required:
- type
description: Logging configuration for Kafka Connect.
+ clientRackInitImage:
+ type: string
+ description: The image of the init container used for initializing the `client.rack`.
+ rack:
+ type: object
+ properties:
+ topologyKey:
+ type: string
+ example: topology.kubernetes.io/zone
+ description: A key that matches labels assigned to the Kubernetes cluster nodes. The value of the label is used to set the broker's `broker.rack` config and `client.rack` in Kafka Connect.
+ required:
+ - topologyKey
+ description: Configuration of the node label which will be used as the `client.rack` consumer configuration.
tracing:
type: object
properties:
@@ -461,11 +474,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
@@ -483,11 +496,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -496,7 +509,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -556,7 +569,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -864,10 +877,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -882,8 +895,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -928,11 +941,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -940,7 +953,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -948,7 +961,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka Connect API `Service`.
connectContainer:
type: object
@@ -1107,16 +1120,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka Connect `PodDisruptionBudget`.
serviceAccount:
type: object
@@ -1127,11 +1140,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect service account.
clusterRoleBinding:
@@ -1143,11 +1156,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect ClusterRoleBinding.
buildPod:
@@ -1159,11 +1172,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -1172,7 +1185,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -1232,7 +1245,7 @@ spec:
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1540,10 +1553,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1558,8 +1571,8 @@ spec:
description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
description: Indicates whether information about services should be injected into Pod's environment variables.
@@ -1678,11 +1691,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
pullSecret:
type: string
@@ -1697,11 +1710,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect Build service account.
jmxSecret:
@@ -1713,14 +1726,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Secret of the Kafka Connect Cluster JMX authentication.
- description: Template for Kafka Connect and Kafka Mirror Maker 2 resources. The template allows users to specify how the `Deployment`, `Pods` and `Service` are generated.
+ description: "Template for Kafka Connect and Kafka Mirror Maker 2 resources. The template allows users to specify how the `Deployment`, `Pods` and `Service` are generated."
externalConfiguration:
type: object
properties:
@@ -1835,7 +1848,7 @@ spec:
optional:
type: boolean
description: Reference to the key in the ConfigMap containing the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -1853,13 +1866,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
@@ -1893,7 +1906,7 @@ spec:
items:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: List of MirrorMaker 2.0 connector statuses, as reported by the Kafka Connect REST API.
+ description: "List of MirrorMaker 2.0 connector statuses, as reported by the Kafka Connect REST API."
labelSelector:
type: string
description: Label selector for pods providing this resource.
diff --git a/helm-charts/helm3/strimzi-kafka-operator/crds/049-Crd-kafkarebalance.yaml b/helm-charts/helm3/strimzi-kafka-operator/crds/049-Crd-kafkarebalance.yaml
index 80befc7d16d..ee95e2ae6ad 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/crds/049-Crd-kafkarebalance.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/crds/049-Crd-kafkarebalance.yaml
@@ -31,6 +31,26 @@ spec:
description: The name of the Kafka cluster this resource rebalances
jsonPath: .metadata.labels.strimzi\.io/cluster
type: string
+ - name: PendingProposal
+ description: A proposal has been requested from Cruise Control
+ jsonPath: ".status.conditions[?(@.type==\"PendingProposal\")].status"
+ type: string
+ - name: ProposalReady
+ description: A proposal is ready and waiting for approval
+ jsonPath: ".status.conditions[?(@.type==\"ProposalReady\")].status"
+ type: string
+ - name: Rebalancing
+ description: Cruise Control is doing the rebalance
+ jsonPath: ".status.conditions[?(@.type==\"Rebalancing\")].status"
+ type: string
+ - name: Ready
+ description: The rebalance is complete
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
+ type: string
+ - name: NotReady
+ description: There is an error on the custom resource
+ jsonPath: ".status.conditions[?(@.type==\"NotReady\")].status"
+ type: string
schema:
openAPIV3Schema:
type: object
@@ -38,17 +58,29 @@ spec:
spec:
type: object
properties:
+ mode:
+ type: string
+ enum:
+ - full
+ - add-brokers
+ - remove-brokers
+ description: "Mode to run the rebalancing. The supported modes are `full`, `add-brokers`, `remove-brokers`.\nIf not specified, the `full` mode is used by default. \n\n* `full` mode runs the rebalancing across all the brokers in the cluster.\n* `add-brokers` mode can be used after scaling up the cluster to move some replicas to the newly added brokers.\n* `remove-brokers` mode can be used before scaling down the cluster to move replicas out of the brokers to be removed.\n"
+ brokers:
+ type: array
+ items:
+ type: integer
+ description: The list of newly added brokers in case of scaling up or the ones to be removed in case of scaling down to use for rebalancing. This list can be used only with rebalancing mode `add-brokers` and `removed-brokers`. It is ignored with `full` mode.
goals:
type: array
items:
type: string
- description: A list of goals, ordered by decreasing priority, to use for generating and executing the rebalance proposal. The supported goals are available at https://github.com/linkedin/cruise-control#goals. If an empty goals list is provided, the goals declared in the default.goals Cruise Control configuration parameter are used.
+ description: "A list of goals, ordered by decreasing priority, to use for generating and executing the rebalance proposal. The supported goals are available at https://github.com/linkedin/cruise-control#goals. If an empty goals list is provided, the goals declared in the default.goals Cruise Control configuration parameter are used."
skipHardGoalCheck:
type: boolean
description: Whether to allow the hard goals specified in the Kafka CR to be skipped in optimization proposal generation. This can be useful when some of those hard goals are preventing a balance solution being found. Default is false.
rebalanceDisk:
type: boolean
- description: Enables intra-broker disk balancing, which balances disk space utilization between disks on the same broker. Only applies to Kafka deployments that use JBOD storage with multiple disks. When enabled, inter-broker balancing is disabled. Default is false.
+ description: "Enables intra-broker disk balancing, which balances disk space utilization between disks on the same broker. Only applies to Kafka deployments that use JBOD storage with multiple disks. When enabled, inter-broker balancing is disabled. Default is false."
excludedTopics:
type: string
description: A regular expression where any matching topics will be excluded from the calculation of optimization proposals. This expression will be parsed by the java.util.regex.Pattern class; for more information on the supported format consult the documentation for that class.
@@ -67,12 +99,12 @@ spec:
replicationThrottle:
type: integer
minimum: 0
- description: The upper bound, in bytes per second, on the bandwidth used to move replicas. There is no limit by default.
+ description: "The upper bound, in bytes per second, on the bandwidth used to move replicas. There is no limit by default."
replicaMovementStrategies:
type: array
items:
type: string
- description: A list of strategy class names used to determine the execution order for the replica movements in the generated optimization proposal. By default BaseReplicaMovementStrategy is used, which will execute the replica movements in the order that they were generated.
+ description: "A list of strategy class names used to determine the execution order for the replica movements in the generated optimization proposal. By default BaseReplicaMovementStrategy is used, which will execute the replica movements in the order that they were generated."
description: The specification of the Kafka rebalance.
status:
type: object
@@ -84,13 +116,13 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
description: The reason for the condition's last transition (a single word in CamelCase).
diff --git a/helm-charts/helm3/strimzi-kafka-operator/templates/050-ConfigMap-strimzi-cluster-operator.yaml b/helm-charts/helm3/strimzi-kafka-operator/templates/050-ConfigMap-strimzi-cluster-operator.yaml
index 66405ed9593..1c26ff87f62 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/templates/050-ConfigMap-strimzi-cluster-operator.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/templates/050-ConfigMap-strimzi-cluster-operator.yaml
@@ -6,6 +6,9 @@ metadata:
app: strimzi
data:
log4j2.properties: |
+ {{- if .Values.logConfiguration }}
+ {{- tpl .Values.logConfiguration . | nindent 4 }}
+ {{- else }}
name = COConfig
monitorInterval = 30
@@ -17,19 +20,16 @@ data:
rootLogger.level = {{ default .Values.logLevel .Values.logLevelOverride }}
rootLogger.appenderRefs = stdout
rootLogger.appenderRef.console.ref = STDOUT
- rootLogger.additivity = false
# Kafka AdminClient logging is a bit noisy at INFO level
logger.kafka.name = org.apache.kafka
logger.kafka.level = WARN
- logger.kafka.additivity = false
# Zookeeper is very verbose even on INFO level -> We set it to WARN by default
logger.zookeepertrustmanager.name = org.apache.zookeeper
logger.zookeepertrustmanager.level = WARN
- logger.zookeepertrustmanager.additivity = false
# Keeps separate level for Netty logging -> to not be changed by the root logger
logger.netty.name = io.netty
logger.netty.level = INFO
- logger.netty.additivity = false
+ {{- end }}
diff --git a/helm-charts/helm3/strimzi-kafka-operator/templates/_kafka_image_map.tpl b/helm-charts/helm3/strimzi-kafka-operator/templates/_kafka_image_map.tpl
index 8159ea5540b..baff773ab7c 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/templates/_kafka_image_map.tpl
+++ b/helm-charts/helm3/strimzi-kafka-operator/templates/_kafka_image_map.tpl
@@ -6,27 +6,37 @@
{{/* Generate the kafka image map */}}
{{- define "strimzi.kafka.image.map" }}
- name: STRIMZI_DEFAULT_TLS_SIDECAR_ENTITY_OPERATOR_IMAGE
- value: {{ default .Values.defaultImageRegistry .Values.tlsSidecarEntityOperator.image.registry }}/{{ default .Values.defaultImageRepository .Values.tlsSidecarEntityOperator.image.repository }}/{{ .Values.tlsSidecarEntityOperator.image.name }}:{{ default .Values.defaultImageTag .Values.tlsSidecarEntityOperator.image.tagPrefix }}-kafka-3.1.0
+ value: {{ default .Values.defaultImageRegistry .Values.tlsSidecarEntityOperator.image.registry }}/{{ default .Values.defaultImageRepository .Values.tlsSidecarEntityOperator.image.repository }}/{{ .Values.tlsSidecarEntityOperator.image.name }}:{{ default .Values.defaultImageTag .Values.tlsSidecarEntityOperator.image.tagPrefix }}-kafka-3.2.0
- name: STRIMZI_DEFAULT_KAFKA_EXPORTER_IMAGE
- value: {{ default .Values.defaultImageRegistry .Values.kafkaExporter.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaExporter.image.repository }}/{{ .Values.kafkaExporter.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaExporter.image.tagPrefix }}-kafka-3.1.0
+ value: {{ default .Values.defaultImageRegistry .Values.kafkaExporter.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaExporter.image.repository }}/{{ .Values.kafkaExporter.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaExporter.image.tagPrefix }}-kafka-3.2.0
- name: STRIMZI_DEFAULT_CRUISE_CONTROL_IMAGE
- value: {{ default .Values.defaultImageRegistry .Values.cruiseControl.image.registry }}/{{ default .Values.defaultImageRepository .Values.cruiseControl.image.repository }}/{{ .Values.cruiseControl.image.name }}:{{ default .Values.defaultImageTag .Values.cruiseControl.image.tagPrefix }}-kafka-3.1.0
- - name: STRIMZI_DEFAULT_TLS_SIDECAR_CRUISE_CONTROL_IMAGE
- value: {{ default .Values.defaultImageRegistry .Values.tlsSidecarCruiseControl.image.registry }}/{{ default .Values.defaultImageRepository .Values.tlsSidecarCruiseControl.image.repository }}/{{ .Values.tlsSidecarCruiseControl.image.name }}:{{ default .Values.defaultImageTag .Values.tlsSidecarCruiseControl.image.tagPrefix }}-kafka-3.1.0
+ value: {{ default .Values.defaultImageRegistry .Values.cruiseControl.image.registry }}/{{ default .Values.defaultImageRepository .Values.cruiseControl.image.repository }}/{{ .Values.cruiseControl.image.name }}:{{ default .Values.defaultImageTag .Values.cruiseControl.image.tagPrefix }}-kafka-3.2.0
- name: STRIMZI_KAFKA_IMAGES
value: |
3.0.0={{ default .Values.defaultImageRegistry .Values.kafka.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafka.image.repository }}/{{ .Values.kafka.image.name }}:{{ default .Values.defaultImageTag .Values.kafka.image.tagPrefix }}-kafka-3.0.0
+ 3.0.1={{ default .Values.defaultImageRegistry .Values.kafka.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafka.image.repository }}/{{ .Values.kafka.image.name }}:{{ default .Values.defaultImageTag .Values.kafka.image.tagPrefix }}-kafka-3.0.1
3.1.0={{ default .Values.defaultImageRegistry .Values.kafka.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafka.image.repository }}/{{ .Values.kafka.image.name }}:{{ default .Values.defaultImageTag .Values.kafka.image.tagPrefix }}-kafka-3.1.0
+ 3.1.1={{ default .Values.defaultImageRegistry .Values.kafka.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafka.image.repository }}/{{ .Values.kafka.image.name }}:{{ default .Values.defaultImageTag .Values.kafka.image.tagPrefix }}-kafka-3.1.1
+ 3.2.0={{ default .Values.defaultImageRegistry .Values.kafka.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafka.image.repository }}/{{ .Values.kafka.image.name }}:{{ default .Values.defaultImageTag .Values.kafka.image.tagPrefix }}-kafka-3.2.0
- name: STRIMZI_KAFKA_CONNECT_IMAGES
value: |
3.0.0={{ default .Values.defaultImageRegistry .Values.kafkaConnect.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaConnect.image.repository }}/{{ .Values.kafkaConnect.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaConnect.image.tagPrefix }}-kafka-3.0.0
+ 3.0.1={{ default .Values.defaultImageRegistry .Values.kafkaConnect.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaConnect.image.repository }}/{{ .Values.kafkaConnect.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaConnect.image.tagPrefix }}-kafka-3.0.1
3.1.0={{ default .Values.defaultImageRegistry .Values.kafkaConnect.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaConnect.image.repository }}/{{ .Values.kafkaConnect.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaConnect.image.tagPrefix }}-kafka-3.1.0
+ 3.1.1={{ default .Values.defaultImageRegistry .Values.kafkaConnect.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaConnect.image.repository }}/{{ .Values.kafkaConnect.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaConnect.image.tagPrefix }}-kafka-3.1.1
+ 3.2.0={{ default .Values.defaultImageRegistry .Values.kafkaConnect.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaConnect.image.repository }}/{{ .Values.kafkaConnect.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaConnect.image.tagPrefix }}-kafka-3.2.0
- name: STRIMZI_KAFKA_MIRROR_MAKER_IMAGES
value: |
3.0.0={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker.image.repository }}/{{ .Values.kafkaMirrorMaker.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker.image.tagPrefix }}-kafka-3.0.0
+ 3.0.1={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker.image.repository }}/{{ .Values.kafkaMirrorMaker.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker.image.tagPrefix }}-kafka-3.0.1
3.1.0={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker.image.repository }}/{{ .Values.kafkaMirrorMaker.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker.image.tagPrefix }}-kafka-3.1.0
+ 3.1.1={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker.image.repository }}/{{ .Values.kafkaMirrorMaker.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker.image.tagPrefix }}-kafka-3.1.1
+ 3.2.0={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker.image.repository }}/{{ .Values.kafkaMirrorMaker.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker.image.tagPrefix }}-kafka-3.2.0
- name: STRIMZI_KAFKA_MIRROR_MAKER_2_IMAGES
value: |
3.0.0={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker2.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker2.image.repository }}/{{ .Values.kafkaMirrorMaker2.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker2.image.tagPrefix }}-kafka-3.0.0
+ 3.0.1={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker2.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker2.image.repository }}/{{ .Values.kafkaMirrorMaker2.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker2.image.tagPrefix }}-kafka-3.0.1
3.1.0={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker2.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker2.image.repository }}/{{ .Values.kafkaMirrorMaker2.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker2.image.tagPrefix }}-kafka-3.1.0
+ 3.1.1={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker2.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker2.image.repository }}/{{ .Values.kafkaMirrorMaker2.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker2.image.tagPrefix }}-kafka-3.1.1
+ 3.2.0={{ default .Values.defaultImageRegistry .Values.kafkaMirrorMaker2.image.registry }}/{{ default .Values.defaultImageRepository .Values.kafkaMirrorMaker2.image.repository }}/{{ .Values.kafkaMirrorMaker2.image.name }}:{{ default .Values.defaultImageTag .Values.kafkaMirrorMaker2.image.tagPrefix }}-kafka-3.2.0
{{- end -}}
diff --git a/helm-charts/helm3/strimzi-kafka-operator/values.yaml b/helm-charts/helm3/strimzi-kafka-operator/values.yaml
index f005b947ba3..0947ebbc81b 100644
--- a/helm-charts/helm3/strimzi-kafka-operator/values.yaml
+++ b/helm-charts/helm3/strimzi-kafka-operator/values.yaml
@@ -7,7 +7,7 @@ watchAnyNamespace: false
defaultImageRegistry: quay.io
defaultImageRepository: strimzi
-defaultImageTag: 0.28.0
+defaultImageTag: 0.29.0
image:
registry: ""
@@ -16,6 +16,7 @@ image:
tag: ""
logVolume: co-config-volume
logConfigMap: strimzi-cluster-operator
+logConfiguration: ""
logLevel: ${env:STRIMZI_LOG_LEVEL:-INFO}
fullReconciliationIntervalMs: 120000
operationTimeoutMs: 300000
@@ -96,7 +97,7 @@ kafkaBridge:
registry: ""
repository:
name: kafka-bridge
- tag: 0.21.4
+ tag: 0.21.5
kafkaExporter:
image:
registry: ""
@@ -121,12 +122,6 @@ cruiseControl:
repository: ""
name: kafka
tagPrefix: ""
-tlsSidecarCruiseControl:
- image:
- registry: ""
- repository: ""
- name: kafka
- tagPrefix: ""
kanikoExecutor:
image:
registry: ""
diff --git a/install/cluster-operator/040-Crd-kafka.yaml b/install/cluster-operator/040-Crd-kafka.yaml
index df2d58753c4..cd39c0afcdc 100644
--- a/install/cluster-operator/040-Crd-kafka.yaml
+++ b/install/cluster-operator/040-Crd-kafka.yaml
@@ -36,11 +36,11 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
- name: Warnings
description: Warnings related to the custom resource
- jsonPath: .status.conditions[?(@.type=="Warning")].status
+ jsonPath: ".status.conditions[?(@.type==\"Warning\")].status"
type: string
schema:
openAPIV3Schema:
@@ -54,17 +54,14 @@ spec:
properties:
version:
type: string
- description: The kafka broker version. Defaults to {DefaultKafkaVersion}.
- Consult the user documentation to understand the process required
- to upgrade or downgrade the version.
+ description: "The kafka broker version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
minimum: 1
description: The number of pods in the cluster.
image:
type: string
- description: The docker image for the pods. The default value
- depends on the configured `Kafka.spec.kafka.version`.
+ description: The docker image for the pods. The default value depends on the configured `Kafka.spec.kafka.version`.
listeners:
type: array
minItems: 1
@@ -73,22 +70,12 @@ spec:
properties:
name:
type: string
- pattern: ^[a-z0-9]{1,11}$
- description: Name of the listener. The name will be used
- to identify the listener and the related Kubernetes objects.
- The name has to be unique within given a Kafka cluster.
- The name can consist of lowercase characters and numbers
- and be up to 11 characters long.
+ pattern: "^[a-z0-9]{1,11}$"
+ description: Name of the listener. The name will be used to identify the listener and the related Kubernetes objects. The name has to be unique within given a Kafka cluster. The name can consist of lowercase characters and numbers and be up to 11 characters long.
port:
type: integer
minimum: 9092
- description: Port number used by the listener inside Kafka.
- The port number has to be unique within a given Kafka
- cluster. Allowed port numbers are 9092 and higher with
- the exception of ports 9404 and 9999, which are already
- used for Prometheus and JMX. Depending on the listener
- type, the port number might not be the same as the port
- number that connects Kafka clients.
+ description: "Port number used by the listener inside Kafka. The port number has to be unique within a given Kafka cluster. Allowed port numbers are 9092 and higher with the exception of ports 9404 and 9999, which are already used for Prometheus and JMX. Depending on the listener type, the port number might not be the same as the port number that connects Kafka clients."
type:
type: string
enum:
@@ -97,193 +84,105 @@ spec:
- loadbalancer
- nodeport
- ingress
- description: "Type of the listener. Currently the supported\
- \ types are `internal`, `route`, `loadbalancer`, `nodeport`\
- \ and `ingress`. \n\n* `internal` type exposes Kafka internally\
- \ only within the Kubernetes cluster.\n* `route` type\
- \ uses OpenShift Routes to expose Kafka.\n* `loadbalancer`\
- \ type uses LoadBalancer type services to expose Kafka.\n\
- * `nodeport` type uses NodePort type services to expose\
- \ Kafka.\n* `ingress` type uses Kubernetes Nginx Ingress\
- \ to expose Kafka.\n"
+ description: "Type of the listener. Currently the supported types are `internal`, `route`, `loadbalancer`, `nodeport` and `ingress`. \n\n* `internal` type exposes Kafka internally only within the Kubernetes cluster.\n* `route` type uses OpenShift Routes to expose Kafka.\n* `loadbalancer` type uses LoadBalancer type services to expose Kafka.\n* `nodeport` type uses NodePort type services to expose Kafka.\n* `ingress` type uses Kubernetes Nginx Ingress to expose Kafka.\n"
tls:
type: boolean
- description: Enables TLS encryption on the listener. This
- is a required property.
+ description: Enables TLS encryption on the listener. This is a required property.
authentication:
type: object
properties:
accessTokenIsJwt:
type: boolean
- description: Configure whether the access token is treated
- as JWT. This must be set to `false` if the authorization
- server returns opaque tokens. Defaults to `true`.
+ description: Configure whether the access token is treated as JWT. This must be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
checkAccessTokenType:
type: boolean
- description: Configure whether the access token type
- check is performed or not. This should be set to `false`
- if the authorization server does not include 'typ'
- claim in JWT token. Defaults to `true`.
+ description: Configure whether the access token type check is performed or not. This should be set to `false` if the authorization server does not include 'typ' claim in JWT token. Defaults to `true`.
checkAudience:
type: boolean
- description: Enable or disable audience checking. Audience
- checks identify the recipients of tokens. If audience
- checking is enabled, the OAuth Client ID also has
- to be configured using the `clientId` property. The
- Kafka broker will reject tokens that do not have its
- `clientId` in their `aud` (audience) claim.Default
- value is `false`.
+ description: "Enable or disable audience checking. Audience checks identify the recipients of tokens. If audience checking is enabled, the OAuth Client ID also has to be configured using the `clientId` property. The Kafka broker will reject tokens that do not have its `clientId` in their `aud` (audience) claim.Default value is `false`."
checkIssuer:
type: boolean
- description: Enable or disable issuer checking. By default
- issuer is checked using the value configured by `validIssuerUri`.
- Default value is `true`.
+ description: Enable or disable issuer checking. By default issuer is checked using the value configured by `validIssuerUri`. Default value is `true`.
clientAudience:
type: string
- description: The audience to use when making requests
- to the authorization server's token endpoint. Used
- for inter-broker authentication and for configuring
- OAuth 2.0 over PLAIN using the `clientId` and `secret`
- method.
+ description: The audience to use when making requests to the authorization server's token endpoint. Used for inter-broker authentication and for configuring OAuth 2.0 over PLAIN using the `clientId` and `secret` method.
clientId:
type: string
- description: OAuth Client ID which the Kafka broker
- can use to authenticate against the authorization
- server and use the introspect endpoint URI.
+ description: OAuth Client ID which the Kafka broker can use to authenticate against the authorization server and use the introspect endpoint URI.
clientScope:
type: string
- description: The scope to use when making requests to
- the authorization server's token endpoint. Used for
- inter-broker authentication and for configuring OAuth
- 2.0 over PLAIN using the `clientId` and `secret` method.
+ description: The scope to use when making requests to the authorization server's token endpoint. Used for inter-broker authentication and for configuring OAuth 2.0 over PLAIN using the `clientId` and `secret` method.
clientSecret:
type: object
properties:
key:
type: string
- description: The key under which the secret value
- is stored in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the
- OAuth client secret which the Kafka broker can use
- to authenticate against the authorization server and
- use the introspect endpoint URI.
+ description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka broker can use to authenticate against the authorization server and use the introspect endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting
- to authorization server. If not set, the effective
- connect timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
customClaimCheck:
type: string
- description: JsonPath filter query to be applied to
- the JWT token or to the response of the introspection
- endpoint for additional token validation. Not set
- by default.
+ description: JsonPath filter query to be applied to the JWT token or to the response of the introspection endpoint for additional token validation. Not set by default.
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification.
- Default value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
enableECDSA:
type: boolean
- description: Enable or disable ECDSA support by installing
- BouncyCastle crypto provider. ECDSA support is always
- enabled. The BouncyCastle libraries are no longer
- packaged with Strimzi. Value is ignored.
+ description: Enable or disable ECDSA support by installing BouncyCastle crypto provider. ECDSA support is always enabled. The BouncyCastle libraries are no longer packaged with Strimzi. Value is ignored.
enableOauthBearer:
type: boolean
- description: Enable or disable OAuth authentication
- over SASL_OAUTHBEARER. Default value is `true`.
+ description: Enable or disable OAuth authentication over SASL_OAUTHBEARER. Default value is `true`.
enablePlain:
type: boolean
- description: Enable or disable OAuth authentication
- over SASL_PLAIN. There is no re-authentication support
- when this mechanism is used. Default value is `false`.
+ description: Enable or disable OAuth authentication over SASL_PLAIN. There is no re-authentication support when this mechanism is used. Default value is `false`.
fallbackUserNameClaim:
type: string
- description: The fallback username claim to be used
- for the user id if the claim specified by `userNameClaim`
- is not present. This is useful when `client_credentials`
- authentication only results in the client id being
- provided in another claim. It only takes effect if
- `userNameClaim` is set.
+ description: The fallback username claim to be used for the user id if the claim specified by `userNameClaim` is not present. This is useful when `client_credentials` authentication only results in the client id being provided in another claim. It only takes effect if `userNameClaim` is set.
fallbackUserNamePrefix:
type: string
- description: The prefix to use with the value of `fallbackUserNameClaim`
- to construct the user id. This only takes effect if
- `fallbackUserNameClaim` is true, and the value is
- present for the claim. Mapping usernames and client
- ids into the same user id space is useful in preventing
- name collisions.
+ description: "The prefix to use with the value of `fallbackUserNameClaim` to construct the user id. This only takes effect if `fallbackUserNameClaim` is true, and the value is present for the claim. Mapping usernames and client ids into the same user id space is useful in preventing name collisions."
groupsClaim:
type: string
- description: JsonPath query used to extract groups for
- the user during authentication. Extracted groups can
- be used by a custom authorizer. By default no groups
- are extracted.
+ description: JsonPath query used to extract groups for the user during authentication. Extracted groups can be used by a custom authorizer. By default no groups are extracted.
groupsClaimDelimiter:
type: string
- description: A delimiter used to parse groups when they
- are extracted as a single String value rather than
- a JSON array. Default value is ',' (comma).
+ description: "A delimiter used to parse groups when they are extracted as a single String value rather than a JSON array. Default value is ',' (comma)."
introspectionEndpointUri:
type: string
- description: URI of the token introspection endpoint
- which can be used to validate opaque non-JWT tokens.
+ description: URI of the token introspection endpoint which can be used to validate opaque non-JWT tokens.
jwksEndpointUri:
type: string
- description: URI of the JWKS certificate endpoint, which
- can be used for local JWT validation.
+ description: "URI of the JWKS certificate endpoint, which can be used for local JWT validation."
jwksExpirySeconds:
type: integer
minimum: 1
- description: Configures how often are the JWKS certificates
- considered valid. The expiry interval has to be at
- least 60 seconds longer then the refresh interval
- specified in `jwksRefreshSeconds`. Defaults to 360
- seconds.
+ description: Configures how often are the JWKS certificates considered valid. The expiry interval has to be at least 60 seconds longer then the refresh interval specified in `jwksRefreshSeconds`. Defaults to 360 seconds.
jwksMinRefreshPauseSeconds:
type: integer
minimum: 0
- description: The minimum pause between two consecutive
- refreshes. When an unknown signing key is encountered
- the refresh is scheduled immediately, but will always
- wait for this minimum pause. Defaults to 1 second.
+ description: "The minimum pause between two consecutive refreshes. When an unknown signing key is encountered the refresh is scheduled immediately, but will always wait for this minimum pause. Defaults to 1 second."
jwksRefreshSeconds:
type: integer
minimum: 1
- description: Configures how often are the JWKS certificates
- refreshed. The refresh interval has to be at least
- 60 seconds shorter then the expiry interval specified
- in `jwksExpirySeconds`. Defaults to 300 seconds.
+ description: Configures how often are the JWKS certificates refreshed. The refresh interval has to be at least 60 seconds shorter then the expiry interval specified in `jwksExpirySeconds`. Defaults to 300 seconds.
listenerConfig:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Configuration to be used for a specific
- listener. All values are prefixed with listener.name.__.
+ description: Configuration to be used for a specific listener. All values are prefixed with listener.name.__.
maxSecondsWithoutReauthentication:
type: integer
- description: Maximum number of seconds the authenticated
- session remains valid without re-authentication. This
- enables Apache Kafka re-authentication feature, and
- causes sessions to expire when the access token expires.
- If the access token expires before max time or if
- max time is reached, the client has to re-authenticate,
- otherwise the server will drop the connection. Not
- set by default - the authenticated session does not
- expire when the access token expires. This option
- only applies to SASL_OAUTHBEARER authentication mechanism
- (when `enableOauthBearer` is `true`).
+ description: "Maximum number of seconds the authenticated session remains valid without re-authentication. This enables Apache Kafka re-authentication feature, and causes sessions to expire when the access token expires. If the access token expires before max time or if max time is reached, the client has to re-authenticate, otherwise the server will drop the connection. Not set by default - the authenticated session does not expire when the access token expires. This option only applies to SASL_OAUTHBEARER authentication mechanism (when `enableOauthBearer` is `true`)."
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting
- to authorization server. If not set, the effective
- read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
sasl:
type: boolean
description: Enable or disable SASL on this listener.
@@ -294,12 +193,10 @@ spec:
properties:
key:
type: string
- description: The key under which the secret value
- is stored in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret
- containing the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
@@ -311,30 +208,17 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate
- in the Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
- description: The name of the Secret containing
- the certificate.
+ description: The name of the Secret containing the certificate.
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection
- to the OAuth server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
- description: URI of the Token Endpoint to use with SASL_PLAIN
- mechanism when the client authenticates with `clientId`
- and a `secret`. If set, the client can authenticate
- over SASL_PLAIN by either setting `username` to `clientId`,
- and setting `password` to client `secret`, or by setting
- `username` to account username, and `password` to
- access token prefixed with `$accessToken:`. If this
- option is not set, the `password` is always interpreted
- as an access token (without a prefix), and `username`
- as the account username (a so called 'no-client-credentials'
- mode).
+ description: "URI of the Token Endpoint to use with SASL_PLAIN mechanism when the client authenticates with `clientId` and a `secret`. If set, the client can authenticate over SASL_PLAIN by either setting `username` to `clientId`, and setting `password` to client `secret`, or by setting `username` to account username, and `password` to access token prefixed with `$accessToken:`. If this option is not set, the `password` is always interpreted as an access token (without a prefix), and `username` as the account username (a so called 'no-client-credentials' mode)."
type:
type: string
enum:
@@ -342,32 +226,19 @@ spec:
- scram-sha-512
- oauth
- custom
- description: Authentication type. `oauth` type uses
- SASL OAUTHBEARER Authentication. `scram-sha-512` type
- uses SASL SCRAM-SHA-512 Authentication. `tls` type
- uses TLS Client Authentication. `tls` type is supported
- only on TLS listeners.`custom` type allows for any
- authentication type to be used.
+ description: Authentication type. `oauth` type uses SASL OAUTHBEARER Authentication. `scram-sha-512` type uses SASL SCRAM-SHA-512 Authentication. `tls` type uses TLS Client Authentication. `tls` type is supported only on TLS listeners.`custom` type allows for any authentication type to be used.
userInfoEndpointUri:
type: string
- description: 'URI of the User Info Endpoint to use as
- a fallback to obtaining the user id when the Introspection
- Endpoint does not return information that can be used
- for the user id. '
+ description: 'URI of the User Info Endpoint to use as a fallback to obtaining the user id when the Introspection Endpoint does not return information that can be used for the user id. '
userNameClaim:
type: string
- description: Name of the claim from the JWT authentication
- token, Introspection Endpoint response or User Info
- Endpoint response which will be used to extract the
- user id. Defaults to `sub`.
+ description: "Name of the claim from the JWT authentication token, Introspection Endpoint response or User Info Endpoint response which will be used to extract the user id. Defaults to `sub`."
validIssuerUri:
type: string
description: URI of the token issuer used for authentication.
validTokenType:
type: string
- description: Valid value for the `token_type` attribute
- returned by the Introspection Endpoint. No default
- value, and not checked by default.
+ description: "Valid value for the `token_type` attribute returned by the Introspection Endpoint. No default value, and not checked by default."
required:
- type
description: Authentication configuration for this listener.
@@ -379,53 +250,29 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in
- the Secret.
+ description: The name of the file certificate in the Secret.
key:
type: string
- description: The name of the private key in the
- Secret.
+ description: The name of the private key in the Secret.
secretName:
type: string
- description: The name of the Secret containing the
- certificate.
+ description: The name of the Secret containing the certificate.
required:
- certificate
- key
- secretName
- description: Reference to the `Secret` which holds the
- certificate and private key pair which will be used
- for this listener. The certificate can optionally
- contain the whole chain. This field can be used only
- with listeners with enabled TLS encryption.
+ description: Reference to the `Secret` which holds the certificate and private key pair which will be used for this listener. The certificate can optionally contain the whole chain. This field can be used only with listeners with enabled TLS encryption.
externalTrafficPolicy:
type: string
enum:
- Local
- Cluster
- description: Specifies whether the service routes external
- traffic to node-local or cluster-wide endpoints. `Cluster`
- may cause a second hop to another node and obscures
- the client source IP. `Local` avoids a second hop
- for LoadBalancer and Nodeport type services and preserves
- the client source IP (when supported by the infrastructure).
- If unspecified, Kubernetes will use `Cluster` as the
- default.This field can be used only with `loadbalancer`
- or `nodeport` type listener.
+ description: "Specifies whether the service routes external traffic to node-local or cluster-wide endpoints. `Cluster` may cause a second hop to another node and obscures the client source IP. `Local` avoids a second hop for LoadBalancer and Nodeport type services and preserves the client source IP (when supported by the infrastructure). If unspecified, Kubernetes will use `Cluster` as the default.This field can be used only with `loadbalancer` or `nodeport` type listener."
loadBalancerSourceRanges:
type: array
items:
type: string
- description: A list of CIDR ranges (for example `10.0.0.0/8`
- or `130.211.204.1/32`) from which clients can connect
- to load balancer type listeners. If supported by the
- platform, traffic through the loadbalancer is restricted
- to the specified CIDR ranges. This field is applicable
- only for loadbalancer type services and is ignored
- if the cloud provider does not support the feature.
- For more information, see https://v1-17.docs.kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/.
- This field can be used only with `loadbalancer` type
- listener.
+ description: "A list of CIDR ranges (for example `10.0.0.0/8` or `130.211.204.1/32`) from which clients can connect to load balancer type listeners. If supported by the platform, traffic through the loadbalancer is restricted to the specified CIDR ranges. This field is applicable only for loadbalancer type services and is ignored if the cloud provider does not support the feature. This field can be used only with `loadbalancer` type listener."
bootstrap:
type: object
properties:
@@ -433,48 +280,24 @@ spec:
type: array
items:
type: string
- description: Additional alternative names for the
- bootstrap service. The alternative names will
- be added to the list of subject alternative names
- of the TLS certificates.
+ description: Additional alternative names for the bootstrap service. The alternative names will be added to the list of subject alternative names of the TLS certificates.
host:
type: string
- description: The bootstrap host. This field will
- be used in the Ingress resource or in the Route
- resource to specify the desired hostname. This
- field can be used only with `route` (optional)
- or `ingress` (required) type listeners.
+ description: The bootstrap host. This field will be used in the Ingress resource or in the Route resource to specify the desired hostname. This field can be used only with `route` (optional) or `ingress` (required) type listeners.
nodePort:
type: integer
- description: Node port for the bootstrap service.
- This field can be used only with `nodeport` type
- listener.
+ description: Node port for the bootstrap service. This field can be used only with `nodeport` type listener.
loadBalancerIP:
type: string
- description: The loadbalancer is requested with
- the IP address specified in this field. This feature
- depends on whether the underlying cloud provider
- supports specifying the `loadBalancerIP` when
- a load balancer is created. This field is ignored
- if the cloud provider does not support the feature.This
- field can be used only with `loadbalancer` type
- listener.
+ description: The loadbalancer is requested with the IP address specified in this field. This feature depends on whether the underlying cloud provider supports specifying the `loadBalancerIP` when a load balancer is created. This field is ignored if the cloud provider does not support the feature.This field can be used only with `loadbalancer` type listener.
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations that will be added to the
- `Ingress`, `Route`, or `Service` resource. You
- can use this field to configure DNS providers
- such as External DNS. This field can be used only
- with `loadbalancer`, `nodeport`, `route`, or `ingress`
- type listeners.
+ description: "Annotations that will be added to the `Ingress`, `Route`, or `Service` resource. You can use this field to configure DNS providers such as External DNS. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners."
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels that will be added to the `Ingress`,
- `Route`, or `Service` resource. This field can
- be used only with `loadbalancer`, `nodeport`,
- `route`, or `ingress` type listeners.
+ description: "Labels that will be added to the `Ingress`, `Route`, or `Service` resource. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners."
description: Bootstrap configuration.
brokers:
type: array
@@ -483,55 +306,30 @@ spec:
properties:
broker:
type: integer
- description: ID of the kafka broker (broker identifier).
- Broker IDs start from 0 and correspond to the
- number of broker replicas.
+ description: ID of the kafka broker (broker identifier). Broker IDs start from 0 and correspond to the number of broker replicas.
advertisedHost:
type: string
- description: The host name which will be used
- in the brokers' `advertised.brokers`.
+ description: The host name which will be used in the brokers' `advertised.brokers`.
advertisedPort:
type: integer
- description: The port number which will be used
- in the brokers' `advertised.brokers`.
+ description: The port number which will be used in the brokers' `advertised.brokers`.
host:
type: string
- description: The broker host. This field will
- be used in the Ingress resource or in the Route
- resource to specify the desired hostname. This
- field can be used only with `route` (optional)
- or `ingress` (required) type listeners.
+ description: The broker host. This field will be used in the Ingress resource or in the Route resource to specify the desired hostname. This field can be used only with `route` (optional) or `ingress` (required) type listeners.
nodePort:
type: integer
- description: Node port for the per-broker service.
- This field can be used only with `nodeport`
- type listener.
+ description: Node port for the per-broker service. This field can be used only with `nodeport` type listener.
loadBalancerIP:
type: string
- description: The loadbalancer is requested with
- the IP address specified in this field. This
- feature depends on whether the underlying cloud
- provider supports specifying the `loadBalancerIP`
- when a load balancer is created. This field
- is ignored if the cloud provider does not support
- the feature.This field can be used only with
- `loadbalancer` type listener.
+ description: The loadbalancer is requested with the IP address specified in this field. This feature depends on whether the underlying cloud provider supports specifying the `loadBalancerIP` when a load balancer is created. This field is ignored if the cloud provider does not support the feature.This field can be used only with `loadbalancer` type listener.
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations that will be added to
- the `Ingress` or `Service` resource. You can
- use this field to configure DNS providers such
- as External DNS. This field can be used only
- with `loadbalancer`, `nodeport`, or `ingress`
- type listeners.
+ description: "Annotations that will be added to the `Ingress` or `Service` resource. You can use this field to configure DNS providers such as External DNS. This field can be used only with `loadbalancer`, `nodeport`, or `ingress` type listeners."
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels that will be added to the
- `Ingress`, `Route`, or `Service` resource. This
- field can be used only with `loadbalancer`,
- `nodeport`, `route`, or `ingress` type listeners.
+ description: "Labels that will be added to the `Ingress`, `Route`, or `Service` resource. This field can be used only with `loadbalancer`, `nodeport`, `route`, or `ingress` type listeners."
required:
- broker
description: Per-broker configurations.
@@ -541,16 +339,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by
- the service. Available options are `SingleStack`,
- `PreferDualStack` and `RequireDualStack`. `SingleStack`
- is for a single IP family. `PreferDualStack` is for
- two IP families on dual-stack configured clusters
- or a single IP family on single-stack clusters. `RequireDualStack`
- fails unless there are two IP families on dual-stack
- configured clusters. If unspecified, Kubernetes will
- choose the default value based on the service type.
- Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -558,46 +347,24 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on
- the `ipFamilyPolicy` setting. Available on Kubernetes
- 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
createBootstrapService:
type: boolean
- description: Whether to create the bootstrap service
- or not. The bootstrap service is created by default
- (if not specified differently). This field can be
- used with the `loadBalancer` type listener.
+ description: Whether to create the bootstrap service or not. The bootstrap service is created by default (if not specified differently). This field can be used with the `loadBalancer` type listener.
class:
type: string
- description: Configures the `Ingress` class that defines
- which `Ingress` controller will be used. This field
- can be used only with `ingress` type listener. If
- not specified, the default Ingress controller will
- be used.
+ description: "Configures the `Ingress` class that defines which `Ingress` controller will be used. This field can be used only with `ingress` type listener. If not specified, the default Ingress controller will be used."
finalizers:
type: array
items:
type: string
- description: A list of finalizers which will be configured
- for the `LoadBalancer` type Services created for this
- listener. If supported by the platform, the finalizer
- `service.kubernetes.io/load-balancer-cleanup` to make
- sure that the external load balancer is deleted together
- with the service.For more information, see https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#garbage-collecting-load-balancers.
- This field can be used only with `loadbalancer` type
- listeners.
+ description: "A list of finalizers which will be configured for the `LoadBalancer` type Services created for this listener. If supported by the platform, the finalizer `service.kubernetes.io/load-balancer-cleanup` to make sure that the external load balancer is deleted together with the service.For more information, see https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#garbage-collecting-load-balancers. This field can be used only with `loadbalancer` type listeners."
maxConnectionCreationRate:
type: integer
- description: The maximum connection creation rate we
- allow in this listener at any time. New connections
- will be throttled if the limit is reached.
+ description: The maximum connection creation rate we allow in this listener at any time. New connections will be throttled if the limit is reached.
maxConnections:
type: integer
- description: The maximum number of connections we allow
- for this listener in the broker at any time. New connections
- are blocked if the limit is reached.
+ description: The maximum number of connections we allow for this listener in the broker at any time. New connections are blocked if the limit is reached.
preferredNodePortAddressType:
type: string
enum:
@@ -618,13 +385,7 @@ spec:
This field is used to select the preferred address type, which is checked first. If no address is found for this address type, the other types are checked in the default order. This field can only be used with `nodeport` type listener.
useServiceDnsDomain:
type: boolean
- description: Configures whether the Kubernetes service
- DNS domain should be used or not. If set to `true`,
- the generated addresses will contain the service DNS
- domain suffix (by default `.cluster.local`, can be
- configured using environment variable `KUBERNETES_SERVICE_DNS_DOMAIN`).
- Defaults to `false`.This field can be used only with
- `internal` type listener.
+ description: "Configures whether the Kubernetes service DNS domain should be used or not. If set to `true`, the generated addresses will contain the service DNS domain suffix (by default `.cluster.local`, can be configured using environment variable `KUBERNETES_SERVICE_DNS_DOMAIN`). Defaults to `false`.This field can be used only with `internal` type listener."
description: Additional listener configuration.
networkPolicyPeers:
type: array
@@ -678,13 +439,7 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: List of peers which should be able to connect
- to this listener. Peers in this list are combined using
- a logical OR operation. If this field is empty or missing,
- all connections will be allowed for this listener. If
- this field is present and contains at least one item,
- the listener only allows the traffic which matches at
- least one item in this list.
+ description: "List of peers which should be able to connect to this listener. Peers in this list are combined using a logical OR operation. If this field is empty or missing, all connections will be allowed for this listener. If this field is present and contains at least one item, the listener only allows the traffic which matches at least one item in this list."
required:
- name
- port
@@ -694,16 +449,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'Kafka broker config properties with the following
- prefixes cannot be set: listeners, advertised., broker., listener.,
- host.name, port, inter.broker.listener.name, sasl., ssl., security.,
- password., log.dir, zookeeper.connect, zookeeper.set.acl, zookeeper.ssl,
- zookeeper.clientCnxnSocket, authorizer., super.user, cruise.control.metrics.topic,
- cruise.control.metrics.reporter.bootstrap.servers (with the
- exception of: zookeeper.connection.timeout.ms, ssl.cipher.suites,
- ssl.protocol, ssl.enabled.protocols,cruise.control.metrics.topic.num.partitions,
- cruise.control.metrics.topic.replication.factor, cruise.control.metrics.topic.retention.ms,cruise.control.metrics.topic.auto.create.retries,
- cruise.control.metrics.topic.auto.create.timeout.ms,cruise.control.metrics.topic.min.insync.replicas).'
+ description: "Kafka broker config properties with the following prefixes cannot be set: listeners, advertised., broker., listener., host.name, port, inter.broker.listener.name, sasl., ssl., security., password., log.dir, zookeeper.connect, zookeeper.set.acl, zookeeper.ssl, zookeeper.clientCnxnSocket, authorizer., super.user, cruise.control.metrics.topic, cruise.control.metrics.reporter.bootstrap.servers,node.id, process.roles, controller. (with the exception of: zookeeper.connection.timeout.ms, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols,cruise.control.metrics.topic.num.partitions, cruise.control.metrics.topic.replication.factor, cruise.control.metrics.topic.retention.ms,cruise.control.metrics.topic.auto.create.retries, cruise.control.metrics.topic.auto.create.timeout.ms,cruise.control.metrics.topic.min.insync.replicas,controller.quorum.election.backoff.max.ms, controller.quorum.election.timeout.ms, controller.quorum.fetch.timeout.ms)."
storage:
type: object
properties:
@@ -712,13 +458,11 @@ spec:
description: The storage class to use for dynamic volume allocation.
deleteClaim:
type: boolean
- description: Specifies if the persistent volume claim has
- to be deleted when the cluster is un-deployed.
+ description: Specifies if the persistent volume claim has to be deleted when the cluster is un-deployed.
id:
type: integer
minimum: 0
- description: Storage identification number. It is mandatory
- only for storage volumes defined in a storage of type 'jbod'.
+ description: Storage identification number. It is mandatory only for storage volumes defined in a storage of type 'jbod'.
overrides:
type: array
items:
@@ -726,39 +470,29 @@ spec:
properties:
class:
type: string
- description: The storage class to use for dynamic volume
- allocation for this broker.
+ description: The storage class to use for dynamic volume allocation for this broker.
broker:
type: integer
description: Id of the kafka broker (broker identifier).
- description: Overrides for individual brokers. The `overrides`
- field allows to specify a different configuration for different
- brokers.
+ description: Overrides for individual brokers. The `overrides` field allows to specify a different configuration for different brokers.
selector:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Specifies a specific persistent volume to use.
- It contains key:value pairs representing labels for selecting
- such a volume.
+ description: Specifies a specific persistent volume to use. It contains key:value pairs representing labels for selecting such a volume.
size:
type: string
- description: When type=persistent-claim, defines the size
- of the persistent volume claim (i.e 1Gi). Mandatory when
- type=persistent-claim.
+ description: "When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim."
sizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: When type=ephemeral, defines the total amount
- of local storage required for this EmptyDir volume (for
- example 1Gi).
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: "When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi)."
type:
type: string
enum:
- ephemeral
- persistent-claim
- jbod
- description: Storage type, must be either 'ephemeral', 'persistent-claim',
- or 'jbod'.
+ description: "Storage type, must be either 'ephemeral', 'persistent-claim', or 'jbod'."
volumes:
type: array
items:
@@ -766,18 +500,14 @@ spec:
properties:
class:
type: string
- description: The storage class to use for dynamic volume
- allocation.
+ description: The storage class to use for dynamic volume allocation.
deleteClaim:
type: boolean
- description: Specifies if the persistent volume claim
- has to be deleted when the cluster is un-deployed.
+ description: Specifies if the persistent volume claim has to be deleted when the cluster is un-deployed.
id:
type: integer
minimum: 0
- description: Storage identification number. It is mandatory
- only for storage volumes defined in a storage of type
- 'jbod'.
+ description: Storage identification number. It is mandatory only for storage volumes defined in a storage of type 'jbod'.
overrides:
type: array
items:
@@ -785,42 +515,31 @@ spec:
properties:
class:
type: string
- description: The storage class to use for dynamic
- volume allocation for this broker.
+ description: The storage class to use for dynamic volume allocation for this broker.
broker:
type: integer
description: Id of the kafka broker (broker identifier).
- description: Overrides for individual brokers. The `overrides`
- field allows to specify a different configuration
- for different brokers.
+ description: Overrides for individual brokers. The `overrides` field allows to specify a different configuration for different brokers.
selector:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Specifies a specific persistent volume
- to use. It contains key:value pairs representing labels
- for selecting such a volume.
+ description: Specifies a specific persistent volume to use. It contains key:value pairs representing labels for selecting such a volume.
size:
type: string
- description: When type=persistent-claim, defines the
- size of the persistent volume claim (i.e 1Gi). Mandatory
- when type=persistent-claim.
+ description: "When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim."
sizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: When type=ephemeral, defines the total
- amount of local storage required for this EmptyDir
- volume (for example 1Gi).
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: "When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi)."
type:
type: string
enum:
- ephemeral
- persistent-claim
- description: Storage type, must be either 'ephemeral'
- or 'persistent-claim'.
+ description: "Storage type, must be either 'ephemeral' or 'persistent-claim'."
required:
- type
- description: List of volumes as Storage objects representing
- the JBOD disks array.
+ description: List of volumes as Storage objects representing the JBOD disks array.
required:
- type
description: Storage configuration (disk). Cannot be updated.
@@ -829,86 +548,55 @@ spec:
properties:
allowOnError:
type: boolean
- description: Defines whether a Kafka client should be allowed
- or denied by default when the authorizer fails to query
- the Open Policy Agent, for example, when it is temporarily
- unavailable). Defaults to `false` - all actions will be
- denied.
+ description: "Defines whether a Kafka client should be allowed or denied by default when the authorizer fails to query the Open Policy Agent, for example, when it is temporarily unavailable). Defaults to `false` - all actions will be denied."
authorizerClass:
type: string
- description: Authorization implementation class, which must
- be available in classpath.
+ description: "Authorization implementation class, which must be available in classpath."
clientId:
type: string
- description: OAuth Client ID which the Kafka client can use
- to authenticate against the OAuth server and use the token
- endpoint URI.
+ description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
minimum: 1
- description: The connect timeout in seconds when connecting
- to authorization server. If not set, the effective connect
- timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
delegateToKafkaAcls:
type: boolean
- description: Whether authorization decision should be delegated
- to the 'Simple' authorizer if DENIED by Keycloak Authorization
- Services policies. Default value is `false`.
+ description: Whether authorization decision should be delegated to the 'Simple' authorizer if DENIED by Keycloak Authorization Services policies. Default value is `false`.
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification.
- Default value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
enableMetrics:
type: boolean
- description: Defines whether the Open Policy Agent authorizer
- plugin should provide metrics. Defaults to `false`.
+ description: Defines whether the Open Policy Agent authorizer plugin should provide metrics. Defaults to `false`.
expireAfterMs:
type: integer
- description: The expiration of the records kept in the local
- cache to avoid querying the Open Policy Agent for every
- request. Defines how often the cached authorization decisions
- are reloaded from the Open Policy Agent server. In milliseconds.
- Defaults to `3600000`.
+ description: The expiration of the records kept in the local cache to avoid querying the Open Policy Agent for every request. Defines how often the cached authorization decisions are reloaded from the Open Policy Agent server. In milliseconds. Defaults to `3600000`.
grantsRefreshPeriodSeconds:
type: integer
minimum: 0
- description: The time between two consecutive grants refresh
- runs in seconds. The default value is 60.
+ description: The time between two consecutive grants refresh runs in seconds. The default value is 60.
grantsRefreshPoolSize:
type: integer
minimum: 1
- description: The number of threads to use to refresh grants
- for active sessions. The more threads, the more parallelism,
- so the sooner the job completes. However, using more threads
- places a heavier load on the authorization server. The default
- value is 5.
+ description: "The number of threads to use to refresh grants for active sessions. The more threads, the more parallelism, so the sooner the job completes. However, using more threads places a heavier load on the authorization server. The default value is 5."
initialCacheCapacity:
type: integer
- description: Initial capacity of the local cache used by the
- authorizer to avoid querying the Open Policy Agent for every
- request Defaults to `5000`.
+ description: Initial capacity of the local cache used by the authorizer to avoid querying the Open Policy Agent for every request Defaults to `5000`.
maximumCacheSize:
type: integer
- description: Maximum capacity of the local cache used by the
- authorizer to avoid querying the Open Policy Agent for every
- request. Defaults to `50000`.
+ description: Maximum capacity of the local cache used by the authorizer to avoid querying the Open Policy Agent for every request. Defaults to `50000`.
readTimeoutSeconds:
type: integer
minimum: 1
- description: The read timeout in seconds when connecting to
- authorization server. If not set, the effective read timeout
- is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
superUsers:
type: array
items:
type: string
- description: List of super users, which are user principals
- with unlimited access rights.
+ description: "List of super users, which are user principals with unlimited access rights."
supportsAdminApi:
type: boolean
- description: Indicates whether the custom authorizer supports
- the APIs for managing ACLs using the Kafka Admin API. Defaults
- to `false`.
+ description: Indicates whether the custom authorizer supports the APIs for managing ACLs using the Kafka Admin API. Defaults to `false`.
tlsTrustedCertificates:
type: array
items:
@@ -916,16 +604,14 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
description: The name of the Secret containing the certificate.
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection to the
- OAuth server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
description: Authorization server token endpoint URI.
@@ -936,20 +622,11 @@ spec:
- opa
- keycloak
- custom
- description: Authorization type. Currently, the supported
- types are `simple`, `keycloak`, `opa` and `custom`. `simple`
- authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization. `keycloak` authorization type uses
- Keycloak Authorization Services for authorization. `opa`
- authorization type uses Open Policy Agent based authorization.`custom`
- authorization type uses user-provided implementation for
- authorization.
+ description: "Authorization type. Currently, the supported types are `simple`, `keycloak`, `opa` and `custom`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization. `keycloak` authorization type uses Keycloak Authorization Services for authorization. `opa` authorization type uses Open Policy Agent based authorization.`custom` authorization type uses user-provided implementation for authorization."
url:
type: string
example: http://opa:8181/v1/data/kafka/authz/allow
- description: The URL used to connect to the Open Policy Agent
- server. The URL has to include the policy which will be
- queried by the authorizer. This option is required.
+ description: The URL used to connect to the Open Policy Agent server. The URL has to include the policy which will be queried by the authorizer. This option is required.
required:
- type
description: Authorization configuration for Kafka brokers.
@@ -959,47 +636,36 @@ spec:
topologyKey:
type: string
example: topology.kubernetes.io/zone
- description: A key that matches labels assigned to the Kubernetes
- cluster nodes. The value of the label is used to set the
- broker's `broker.rack` config and `client.rack` in Kafka
- Connect.
+ description: A key that matches labels assigned to the Kubernetes cluster nodes. The value of the label is used to set the broker's `broker.rack` config and `client.rack` in Kafka Connect.
required:
- topologyKey
description: Configuration of the `broker.rack` broker config.
brokerRackInitImage:
type: string
- description: The image of the init container used for initializing
- the `broker.rack`.
+ description: The image of the init container used for initializing the `broker.rack`.
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -1007,30 +673,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
jvmOptions:
type: object
@@ -1041,16 +700,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -1062,8 +720,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
jmxOptions:
type: object
@@ -1075,13 +732,10 @@ spec:
type: string
enum:
- password
- description: Authentication type. Currently the only supported
- types are `password`.`password` type creates a username
- and protected port with no TLS.
+ description: Authentication type. Currently the only supported types are `password`.`password` type creates a username and protected port with no TLS.
required:
- type
- description: Authentication configuration for connecting to
- the JMX port.
+ description: Authentication configuration for connecting to the JMX port.
description: JMX Options for Kafka brokers.
resources:
type: object
@@ -1100,8 +754,7 @@ spec:
type: string
enum:
- jmxPrometheusExporter
- description: Metrics type. Only 'jmxPrometheusExporter' supported
- currently.
+ description: Metrics type. Only 'jmxPrometheusExporter' supported currently.
valueFrom:
type: object
properties:
@@ -1114,11 +767,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter
- configuration is stored. For details of the structure of
- this configuration, see the {JMXExporter}.
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -1135,7 +785,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -1148,10 +798,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration for Kafka.
@@ -1167,24 +815,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
podManagementPolicy:
type: string
enum:
- OrderedReady
- Parallel
- description: PodManagementPolicy which will be used for
- this StatefulSet. Valid values are `Parallel` and `OrderedReady`.
- Defaults to `Parallel`.
+ description: PodManagementPolicy which will be used for this StatefulSet. Valid values are `Parallel` and `OrderedReady`. Defaults to `Parallel`.
description: Template for Kafka `StatefulSet`.
pod:
type: object
@@ -1195,15 +837,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -1212,13 +850,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same
- namespace to use for pulling any of the images used
- by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment
- variable in Cluster Operator and the `imagePullSecrets`
- option are specified, only the `imagePullSecrets` variable
- is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable
- is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -1274,21 +906,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes
- and common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds
- after the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly
- halted with a kill signal. Set this value to longer
- than the expected cleanup time for your process. Value
- must be a non-negative integer. A zero value indicates
- delete immediately. You might need to increase the grace
- period for very large Kafka clusters, so that the Kafka
- brokers have enough time to transfer their work to another
- broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1596,14 +1218,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch
- this `Pod`. If not specified, the default scheduler
- will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1615,19 +1233,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an
- optional list of hosts and IPs that will be injected
- into the Pod's hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -1669,15 +1282,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -1685,16 +1294,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the
- service. Available options are `SingleStack`, `PreferDualStack`
- and `RequireDualStack`. `SingleStack` is for a single
- IP family. `PreferDualStack` is for two IP families
- on dual-stack configured clusters or a single IP family
- on single-stack clusters. `RequireDualStack` fails unless
- there are two IP families on dual-stack configured clusters.
- If unspecified, Kubernetes will choose the default value
- based on the service type. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -1702,11 +1302,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the
- `ipFamilyPolicy` setting. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka bootstrap `Service`.
brokersService:
type: object
@@ -1717,15 +1313,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -1733,16 +1325,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the
- service. Available options are `SingleStack`, `PreferDualStack`
- and `RequireDualStack`. `SingleStack` is for a single
- IP family. `PreferDualStack` is for two IP families
- on dual-stack configured clusters or a single IP family
- on single-stack clusters. `RequireDualStack` fails unless
- there are two IP families on dual-stack configured clusters.
- If unspecified, Kubernetes will choose the default value
- based on the service type. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -1750,11 +1333,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the
- `ipFamilyPolicy` setting. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka broker `Service`.
externalBootstrapService:
type: object
@@ -1765,15 +1344,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka external bootstrap `Service`.
perPodService:
@@ -1785,18 +1360,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Kafka per-pod `Services` used for
- access from outside of Kubernetes.
+ description: Template for Kafka per-pod `Services` used for access from outside of Kubernetes.
externalBootstrapRoute:
type: object
properties:
@@ -1806,15 +1376,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka external bootstrap `Route`.
perPodRoute:
@@ -1826,18 +1392,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Kafka per-pod `Routes` used for
- access from outside of OpenShift.
+ description: Template for Kafka per-pod `Routes` used for access from outside of OpenShift.
externalBootstrapIngress:
type: object
properties:
@@ -1847,15 +1408,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka external bootstrap `Ingress`.
perPodIngress:
@@ -1867,18 +1424,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Kafka per-pod `Ingress` used for
- access from outside of Kubernetes.
+ description: Template for Kafka per-pod `Ingress` used for access from outside of Kubernetes.
persistentVolumeClaim:
type: object
properties:
@@ -1888,15 +1440,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for all Kafka `PersistentVolumeClaims`.
podDisruptionBudget:
@@ -1908,26 +1456,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow
- automatic Pod eviction. A Pod eviction is allowed when
- the `maxUnavailable` number of pods or fewer are unavailable
- after the eviction. Setting this value to 0 prevents
- all voluntary evictions, so the pods must be evicted
- manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka `PodDisruptionBudget`.
kafkaContainer:
type: object
@@ -1943,8 +1481,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -2018,8 +1555,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -2088,18 +1624,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Secret with Kafka Cluster certificate
- public key.
+ description: Template for Secret with Kafka Cluster certificate public key.
serviceAccount:
type: object
properties:
@@ -2109,15 +1640,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka service account.
jmxSecret:
@@ -2129,18 +1656,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Secret of the Kafka Cluster JMX
- authentication.
+ description: Template for Secret of the Kafka Cluster JMX authentication.
clusterRoleBinding:
type: object
properties:
@@ -2150,15 +1672,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka ClusterRoleBinding.
podSet:
@@ -2170,20 +1688,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka `StrimziPodSet` resource.
- description: Template for Kafka cluster resources. The template
- allows users to specify how are the `StatefulSet`, `Pods` and
- `Services` generated.
+ description: "Template for Kafka cluster resources. The template allows users to specify how are the `StatefulSet`, `Pods` and `Services` generated."
required:
- replicas
- listeners
@@ -2207,13 +1719,11 @@ spec:
description: The storage class to use for dynamic volume allocation.
deleteClaim:
type: boolean
- description: Specifies if the persistent volume claim has
- to be deleted when the cluster is un-deployed.
+ description: Specifies if the persistent volume claim has to be deleted when the cluster is un-deployed.
id:
type: integer
minimum: 0
- description: Storage identification number. It is mandatory
- only for storage volumes defined in a storage of type 'jbod'.
+ description: Storage identification number. It is mandatory only for storage volumes defined in a storage of type 'jbod'.
overrides:
type: array
items:
@@ -2221,81 +1731,58 @@ spec:
properties:
class:
type: string
- description: The storage class to use for dynamic volume
- allocation for this broker.
+ description: The storage class to use for dynamic volume allocation for this broker.
broker:
type: integer
description: Id of the kafka broker (broker identifier).
- description: Overrides for individual brokers. The `overrides`
- field allows to specify a different configuration for different
- brokers.
+ description: Overrides for individual brokers. The `overrides` field allows to specify a different configuration for different brokers.
selector:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Specifies a specific persistent volume to use.
- It contains key:value pairs representing labels for selecting
- such a volume.
+ description: Specifies a specific persistent volume to use. It contains key:value pairs representing labels for selecting such a volume.
size:
type: string
- description: When type=persistent-claim, defines the size
- of the persistent volume claim (i.e 1Gi). Mandatory when
- type=persistent-claim.
+ description: "When type=persistent-claim, defines the size of the persistent volume claim (i.e 1Gi). Mandatory when type=persistent-claim."
sizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: When type=ephemeral, defines the total amount
- of local storage required for this EmptyDir volume (for
- example 1Gi).
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: "When type=ephemeral, defines the total amount of local storage required for this EmptyDir volume (for example 1Gi)."
type:
type: string
enum:
- ephemeral
- persistent-claim
- description: Storage type, must be either 'ephemeral' or 'persistent-claim'.
+ description: "Storage type, must be either 'ephemeral' or 'persistent-claim'."
required:
- type
description: Storage configuration (disk). Cannot be updated.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The ZooKeeper broker config. Properties with the
- following prefixes cannot be set: server., dataDir, dataLogDir,
- clientPort, authProvider, quorum.auth, requireClientAuthScheme,
- snapshot.trust.empty, standaloneEnabled, reconfigEnabled, 4lw.commands.whitelist,
- secureClientPort, ssl., serverCnxnFactory, sslQuorum (with the
- exception of: ssl.protocol, ssl.quorum.protocol, ssl.enabledProtocols,
- ssl.quorum.enabledProtocols, ssl.ciphersuites, ssl.quorum.ciphersuites,
- ssl.hostnameVerification, ssl.quorum.hostnameVerification).'
+ description: "The ZooKeeper broker config. Properties with the following prefixes cannot be set: server., dataDir, dataLogDir, clientPort, authProvider, quorum.auth, requireClientAuthScheme, snapshot.trust.empty, standaloneEnabled, reconfigEnabled, 4lw.commands.whitelist, secureClientPort, ssl., serverCnxnFactory, sslQuorum (with the exception of: ssl.protocol, ssl.quorum.protocol, ssl.enabledProtocols, ssl.quorum.enabledProtocols, ssl.ciphersuites, ssl.quorum.ciphersuites, ssl.hostnameVerification, ssl.quorum.hostnameVerification)."
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -2303,30 +1790,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
jvmOptions:
type: object
@@ -2337,16 +1817,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -2358,8 +1837,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
jmxOptions:
type: object
@@ -2371,13 +1849,10 @@ spec:
type: string
enum:
- password
- description: Authentication type. Currently the only supported
- types are `password`.`password` type creates a username
- and protected port with no TLS.
+ description: Authentication type. Currently the only supported types are `password`.`password` type creates a username and protected port with no TLS.
required:
- type
- description: Authentication configuration for connecting to
- the JMX port.
+ description: Authentication configuration for connecting to the JMX port.
description: JMX Options for Zookeeper nodes.
resources:
type: object
@@ -2396,8 +1871,7 @@ spec:
type: string
enum:
- jmxPrometheusExporter
- description: Metrics type. Only 'jmxPrometheusExporter' supported
- currently.
+ description: Metrics type. Only 'jmxPrometheusExporter' supported currently.
valueFrom:
type: object
properties:
@@ -2410,11 +1884,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter
- configuration is stored. For details of the structure of
- this configuration, see the {JMXExporter}.
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -2431,7 +1902,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -2444,10 +1915,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration for ZooKeeper.
@@ -2463,24 +1932,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
podManagementPolicy:
type: string
enum:
- OrderedReady
- Parallel
- description: PodManagementPolicy which will be used for
- this StatefulSet. Valid values are `Parallel` and `OrderedReady`.
- Defaults to `Parallel`.
+ description: PodManagementPolicy which will be used for this StatefulSet. Valid values are `Parallel` and `OrderedReady`. Defaults to `Parallel`.
description: Template for ZooKeeper `StatefulSet`.
pod:
type: object
@@ -2491,15 +1954,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -2508,13 +1967,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same
- namespace to use for pulling any of the images used
- by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment
- variable in Cluster Operator and the `imagePullSecrets`
- option are specified, only the `imagePullSecrets` variable
- is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable
- is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -2570,21 +2023,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes
- and common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds
- after the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly
- halted with a kill signal. Set this value to longer
- than the expected cleanup time for your process. Value
- must be a non-negative integer. A zero value indicates
- delete immediately. You might need to increase the grace
- period for very large Kafka clusters, so that the Kafka
- brokers have enough time to transfer their work to another
- broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -2892,14 +2335,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch
- this `Pod`. If not specified, the default scheduler
- will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -2911,19 +2350,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an
- optional list of hosts and IPs that will be injected
- into the Pod's hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -2965,15 +2399,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -2981,16 +2411,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the
- service. Available options are `SingleStack`, `PreferDualStack`
- and `RequireDualStack`. `SingleStack` is for a single
- IP family. `PreferDualStack` is for two IP families
- on dual-stack configured clusters or a single IP family
- on single-stack clusters. `RequireDualStack` fails unless
- there are two IP families on dual-stack configured clusters.
- If unspecified, Kubernetes will choose the default value
- based on the service type. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -2998,11 +2419,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the
- `ipFamilyPolicy` setting. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for ZooKeeper client `Service`.
nodesService:
type: object
@@ -3013,15 +2430,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -3029,16 +2442,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the
- service. Available options are `SingleStack`, `PreferDualStack`
- and `RequireDualStack`. `SingleStack` is for a single
- IP family. `PreferDualStack` is for two IP families
- on dual-stack configured clusters or a single IP family
- on single-stack clusters. `RequireDualStack` fails unless
- there are two IP families on dual-stack configured clusters.
- If unspecified, Kubernetes will choose the default value
- based on the service type. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -3046,11 +2450,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the
- `ipFamilyPolicy` setting. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for ZooKeeper nodes `Service`.
persistentVolumeClaim:
type: object
@@ -3061,15 +2461,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for all ZooKeeper `PersistentVolumeClaims`.
podDisruptionBudget:
@@ -3081,26 +2477,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow
- automatic Pod eviction. A Pod eviction is allowed when
- the `maxUnavailable` number of pods or fewer are unavailable
- after the eviction. Setting this value to 0 prevents
- all voluntary evictions, so the pods must be evicted
- manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for ZooKeeper `PodDisruptionBudget`.
zookeeperContainer:
type: object
@@ -3116,8 +2502,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -3186,15 +2571,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the ZooKeeper service account.
jmxSecret:
@@ -3206,18 +2587,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Secret of the Zookeeper Cluster
- JMX authentication.
+ description: Template for Secret of the Zookeeper Cluster JMX authentication.
podSet:
type: object
properties:
@@ -3227,20 +2603,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for ZooKeeper `StrimziPodSet` resource.
- description: Template for ZooKeeper cluster resources. The template
- allows users to specify how are the `StatefulSet`, `Pods` and
- `Services` generated.
+ description: "Template for ZooKeeper cluster resources. The template allows users to specify how are the `StatefulSet`, `Pods` and `Services` generated."
required:
- replicas
- storage
@@ -3271,31 +2641,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod startup checking.
livenessProbe:
type: object
@@ -3303,31 +2665,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -3335,31 +2689,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
resources:
type: object
@@ -3387,8 +2733,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or
- 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -3401,10 +2746,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap
- containing the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration.
@@ -3417,16 +2760,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection
- logging is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -3438,8 +2780,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which
- will be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
description: Configuration of the Topic Operator.
userOperator:
@@ -3461,39 +2802,30 @@ spec:
description: Timeout for the ZooKeeper session.
secretPrefix:
type: string
- description: The prefix that will be added to the KafkaUser
- name to be used as the Secret name.
+ description: The prefix that will be added to the KafkaUser name to be used as the Secret name.
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -3501,31 +2833,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
resources:
type: object
@@ -3549,8 +2873,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or
- 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -3563,10 +2886,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap
- containing the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration.
@@ -3579,16 +2900,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection
- logging is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -3600,8 +2920,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which
- will be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
description: Configuration of the User Operator.
tlsSidecar:
@@ -3616,31 +2935,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
logLevel:
type: string
@@ -3653,39 +2964,30 @@ spec:
- notice
- info
- debug
- description: The log level for the TLS sidecar. Default value
- is `notice`.
+ description: The log level for the TLS sidecar. Default value is `notice`.
readinessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
resources:
type: object
@@ -3710,15 +3012,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Entity Operator `Deployment`.
pod:
@@ -3730,15 +3028,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -3747,13 +3041,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same
- namespace to use for pulling any of the images used
- by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment
- variable in Cluster Operator and the `imagePullSecrets`
- option are specified, only the `imagePullSecrets` variable
- is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable
- is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -3809,21 +3097,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes
- and common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds
- after the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly
- halted with a kill signal. Set this value to longer
- than the expected cleanup time for your process. Value
- must be a non-negative integer. A zero value indicates
- delete immediately. You might need to increase the grace
- period for very large Kafka clusters, so that the Kafka
- brokers have enough time to transfer their work to another
- broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -4131,14 +3409,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch
- this `Pod`. If not specified, the default scheduler
- will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -4150,19 +3424,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an
- optional list of hosts and IPs that will be injected
- into the Pod's hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -4209,8 +3478,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -4284,8 +3552,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -4359,8 +3626,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -4419,8 +3685,7 @@ spec:
runAsUserName:
type: string
description: Security context for the container.
- description: Template for the Entity Operator TLS sidecar
- container.
+ description: Template for the Entity Operator TLS sidecar container.
serviceAccount:
type: object
properties:
@@ -4430,101 +3695,62 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Entity Operator service account.
- description: Template for Entity Operator resources. The template
- allows users to specify how is the `Deployment` and `Pods` generated.
+ description: Template for Entity Operator resources. The template allows users to specify how is the `Deployment` and `Pods` generated.
description: Configuration of the Entity Operator.
clusterCa:
type: object
properties:
generateCertificateAuthority:
type: boolean
- description: If true then Certificate Authority certificates will
- be generated automatically. Otherwise the user will need to
- provide a Secret with the CA certificate. Default is true.
+ description: If true then Certificate Authority certificates will be generated automatically. Otherwise the user will need to provide a Secret with the CA certificate. Default is true.
generateSecretOwnerReference:
type: boolean
- description: If `true`, the Cluster and Client CA Secrets are
- configured with the `ownerReference` set to the `Kafka` resource.
- If the `Kafka` resource is deleted when `true`, the CA Secrets
- are also deleted. If `false`, the `ownerReference` is disabled.
- If the `Kafka` resource is deleted when `false`, the CA Secrets
- are retained and available for reuse. Default is `true`.
+ description: "If `true`, the Cluster and Client CA Secrets are configured with the `ownerReference` set to the `Kafka` resource. If the `Kafka` resource is deleted when `true`, the CA Secrets are also deleted. If `false`, the `ownerReference` is disabled. If the `Kafka` resource is deleted when `false`, the CA Secrets are retained and available for reuse. Default is `true`."
validityDays:
type: integer
minimum: 1
- description: The number of days generated certificates should
- be valid for. The default is 365.
+ description: The number of days generated certificates should be valid for. The default is 365.
renewalDays:
type: integer
minimum: 1
- description: The number of days in the certificate renewal period.
- This is the number of days before the a certificate expires
- during which renewal actions may be performed. When `generateCertificateAuthority`
- is true, this will cause the generation of a new certificate.
- When `generateCertificateAuthority` is true, this will cause
- extra logging at WARN level about the pending certificate expiry.
- Default is 30.
+ description: "The number of days in the certificate renewal period. This is the number of days before the a certificate expires during which renewal actions may be performed. When `generateCertificateAuthority` is true, this will cause the generation of a new certificate. When `generateCertificateAuthority` is true, this will cause extra logging at WARN level about the pending certificate expiry. Default is 30."
certificateExpirationPolicy:
type: string
enum:
- renew-certificate
- replace-key
- description: How should CA certificate expiration be handled when
- `generateCertificateAuthority=true`. The default is for a new
- CA certificate to be generated reusing the existing private
- key.
+ description: How should CA certificate expiration be handled when `generateCertificateAuthority=true`. The default is for a new CA certificate to be generated reusing the existing private key.
description: Configuration of the cluster certificate authority.
clientsCa:
type: object
properties:
generateCertificateAuthority:
type: boolean
- description: If true then Certificate Authority certificates will
- be generated automatically. Otherwise the user will need to
- provide a Secret with the CA certificate. Default is true.
+ description: If true then Certificate Authority certificates will be generated automatically. Otherwise the user will need to provide a Secret with the CA certificate. Default is true.
generateSecretOwnerReference:
type: boolean
- description: If `true`, the Cluster and Client CA Secrets are
- configured with the `ownerReference` set to the `Kafka` resource.
- If the `Kafka` resource is deleted when `true`, the CA Secrets
- are also deleted. If `false`, the `ownerReference` is disabled.
- If the `Kafka` resource is deleted when `false`, the CA Secrets
- are retained and available for reuse. Default is `true`.
+ description: "If `true`, the Cluster and Client CA Secrets are configured with the `ownerReference` set to the `Kafka` resource. If the `Kafka` resource is deleted when `true`, the CA Secrets are also deleted. If `false`, the `ownerReference` is disabled. If the `Kafka` resource is deleted when `false`, the CA Secrets are retained and available for reuse. Default is `true`."
validityDays:
type: integer
minimum: 1
- description: The number of days generated certificates should
- be valid for. The default is 365.
+ description: The number of days generated certificates should be valid for. The default is 365.
renewalDays:
type: integer
minimum: 1
- description: The number of days in the certificate renewal period.
- This is the number of days before the a certificate expires
- during which renewal actions may be performed. When `generateCertificateAuthority`
- is true, this will cause the generation of a new certificate.
- When `generateCertificateAuthority` is true, this will cause
- extra logging at WARN level about the pending certificate expiry.
- Default is 30.
+ description: "The number of days in the certificate renewal period. This is the number of days before the a certificate expires during which renewal actions may be performed. When `generateCertificateAuthority` is true, this will cause the generation of a new certificate. When `generateCertificateAuthority` is true, this will cause extra logging at WARN level about the pending certificate expiry. Default is 30."
certificateExpirationPolicy:
type: string
enum:
- renew-certificate
- replace-key
- description: How should CA certificate expiration be handled when
- `generateCertificateAuthority=true`. The default is for a new
- CA certificate to be generated reusing the existing private
- key.
+ description: How should CA certificate expiration be handled when `generateCertificateAuthority=true`. The default is for a new CA certificate to be generated reusing the existing private key.
description: Configuration of the clients certificate authority.
cruiseControl:
type: object
@@ -4544,31 +3770,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
logLevel:
type: string
@@ -4581,39 +3799,30 @@ spec:
- notice
- info
- debug
- description: The log level for the TLS sidecar. Default value
- is `notice`.
+ description: The log level for the TLS sidecar. Default value is `notice`.
readinessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe
- to be considered failed after having succeeded. Defaults
- to 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health
- is first checked. Default to 15 seconds. Minimum value
- is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe
- to be considered successful after having failed. Defaults
- to 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
resources:
type: object
@@ -4635,38 +3844,30 @@ spec:
requests:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: CPU and memory resources to reserve for the Cruise
- Control container.
+ description: CPU and memory resources to reserve for the Cruise Control container.
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking for the Cruise Control container.
readinessProbe:
type: object
@@ -4674,30 +3875,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking for the Cruise Control container.
jvmOptions:
type: object
@@ -4708,16 +3902,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -4729,8 +3922,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for the Cruise Control container.
logging:
type: object
@@ -4744,7 +3936,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -4757,10 +3949,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration (Log4j 2) for Cruise Control.
@@ -4776,15 +3966,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Cruise Control `Deployment`.
pod:
@@ -4796,15 +3982,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -4813,13 +3995,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same
- namespace to use for pulling any of the images used
- by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment
- variable in Cluster Operator and the `imagePullSecrets`
- option are specified, only the `imagePullSecrets` variable
- is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable
- is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -4875,21 +4051,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes
- and common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds
- after the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly
- halted with a kill signal. Set this value to longer
- than the expected cleanup time for your process. Value
- must be a non-negative integer. A zero value indicates
- delete immediately. You might need to increase the grace
- period for very large Kafka clusters, so that the Kafka
- brokers have enough time to transfer their work to another
- broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -5197,14 +4363,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch
- this `Pod`. If not specified, the default scheduler
- will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -5216,19 +4378,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an
- optional list of hosts and IPs that will be injected
- into the Pod's hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -5270,15 +4427,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -5286,16 +4439,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the
- service. Available options are `SingleStack`, `PreferDualStack`
- and `RequireDualStack`. `SingleStack` is for a single
- IP family. `PreferDualStack` is for two IP families
- on dual-stack configured clusters or a single IP family
- on single-stack clusters. `RequireDualStack` fails unless
- there are two IP families on dual-stack configured clusters.
- If unspecified, Kubernetes will choose the default value
- based on the service type. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -5303,11 +4447,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the
- `ipFamilyPolicy` setting. Available on Kubernetes 1.20
- and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Cruise Control API `Service`.
podDisruptionBudget:
type: object
@@ -5318,26 +4458,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow
- automatic Pod eviction. A Pod eviction is allowed when
- the `maxUnavailable` number of pods or fewer are unavailable
- after the eviction. Setting this value to 0 prevents
- all voluntary evictions, so the pods must be evicted
- manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Cruise Control `PodDisruptionBudget`.
cruiseControlContainer:
type: object
@@ -5353,8 +4483,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -5428,8 +4557,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -5498,66 +4626,39 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Cruise Control service account.
- description: Template to specify how Cruise Control resources,
- `Deployments` and `Pods`, are generated.
+ description: "Template to specify how Cruise Control resources, `Deployments` and `Pods`, are generated."
brokerCapacity:
type: object
properties:
disk:
type: string
- pattern: ^[0-9]+([.][0-9]*)?([KMGTPE]i?|e[0-9]+)?$
- description: Broker capacity for disk in bytes. Use a number
- value with either standard Kubernetes byte units (K, M,
- G, or T), their bibyte (power of two) equivalents (Ki, Mi,
- Gi, or Ti), or a byte value with or without E notation.
- For example, 100000M, 100000Mi, 104857600000, or 1e+11.
+ pattern: "^[0-9]+([.][0-9]*)?([KMGTPE]i?|e[0-9]+)?$"
+ description: "Broker capacity for disk in bytes. Use a number value with either standard Kubernetes byte units (K, M, G, or T), their bibyte (power of two) equivalents (Ki, Mi, Gi, or Ti), or a byte value with or without E notation. For example, 100000M, 100000Mi, 104857600000, or 1e+11."
cpuUtilization:
type: integer
minimum: 0
maximum: 100
- description: Broker capacity for CPU resource utilization
- as a percentage (0 - 100).
+ description: Broker capacity for CPU resource utilization as a percentage (0 - 100).
inboundNetwork:
type: string
- pattern: ^[0-9]+([KMG]i?)?B/s$
- description: Broker capacity for inbound network throughput
- in bytes per second. Use an integer value with standard
- Kubernetes byte units (K, M, G) or their bibyte (power of
- two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s.
+ pattern: "^[0-9]+([KMG]i?)?B/s$"
+ description: "Broker capacity for inbound network throughput in bytes per second. Use an integer value with standard Kubernetes byte units (K, M, G) or their bibyte (power of two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s."
outboundNetwork:
type: string
- pattern: ^[0-9]+([KMG]i?)?B/s$
- description: Broker capacity for outbound network throughput
- in bytes per second. Use an integer value with standard
- Kubernetes byte units (K, M, G) or their bibyte (power of
- two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s.
+ pattern: "^[0-9]+([KMG]i?)?B/s$"
+ description: "Broker capacity for outbound network throughput in bytes per second. Use an integer value with standard Kubernetes byte units (K, M, G) or their bibyte (power of two) equivalents (Ki, Mi, Gi) per second. For example, 10000KiB/s."
description: The Cruise Control `brokerCapacity` configuration.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Cruise Control configuration. For a full list
- of configuration options refer to https://github.com/linkedin/cruise-control/wiki/Configurations.
- Note that properties with the following prefixes cannot be set:
- bootstrap.servers, client.id, zookeeper., network., security.,
- failed.brokers.zk.path,webserver.http., webserver.api.urlprefix,
- webserver.session.path, webserver.accesslog., two.step., request.reason.required,metric.reporter.sampler.bootstrap.servers,
- metric.reporter.topic, partition.metric.sample.store.topic,
- broker.metric.sample.store.topic,capacity.config.file, self.healing.,
- ssl. (with the exception of: ssl.cipher.suites, ssl.protocol,
- ssl.enabled.protocols, webserver.http.cors.enabled, webserver.http.cors.origin,
- webserver.http.cors.exposeheaders, webserver.security.enable,
- webserver.ssl.enable).'
+ description: "The Cruise Control configuration. For a full list of configuration options refer to https://github.com/linkedin/cruise-control/wiki/Configurations. Note that properties with the following prefixes cannot be set: bootstrap.servers, client.id, zookeeper., network., security., failed.brokers.zk.path,webserver.http., webserver.api.urlprefix, webserver.session.path, webserver.accesslog., two.step., request.reason.required,metric.reporter.sampler.bootstrap.servers, capacity.config.file, self.healing., ssl., kafka.broker.failure.detection.enable, topic.config.provider.class (with the exception of: ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols, webserver.http.cors.enabled, webserver.http.cors.origin, webserver.http.cors.exposeheaders, webserver.security.enable, webserver.ssl.enable)."
metricsConfig:
type: object
properties:
@@ -5565,8 +4666,7 @@ spec:
type: string
enum:
- jmxPrometheusExporter
- description: Metrics type. Only 'jmxPrometheusExporter' supported
- currently.
+ description: Metrics type. Only 'jmxPrometheusExporter' supported currently.
valueFrom:
type: object
properties:
@@ -5579,17 +4679,13 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter
- configuration is stored. For details of the structure of
- this configuration, see the {JMXExporter}.
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
description: Metrics configuration.
- description: Configuration for Cruise Control deployment. Deploys
- a Cruise Control instance when specified.
+ description: Configuration for Cruise Control deployment. Deploys a Cruise Control instance when specified.
jmxTrans:
type: object
properties:
@@ -5603,45 +4699,31 @@ spec:
properties:
outputType:
type: string
- description: Template for setting the format of the data
- that will be pushed.For more information see https://github.com/jmxtrans/jmxtrans/wiki/OutputWriters[JmxTrans
- OutputWriters].
+ description: "Template for setting the format of the data that will be pushed.For more information see https://github.com/jmxtrans/jmxtrans/wiki/OutputWriters[JmxTrans OutputWriters]."
host:
type: string
- description: The DNS/hostname of the remote host that the
- data is pushed to.
+ description: The DNS/hostname of the remote host that the data is pushed to.
port:
type: integer
- description: The port of the remote host that the data is
- pushed to.
+ description: The port of the remote host that the data is pushed to.
flushDelayInSeconds:
type: integer
- description: How many seconds the JmxTrans waits before
- pushing a new set of data out.
+ description: How many seconds the JmxTrans waits before pushing a new set of data out.
typeNames:
type: array
items:
type: string
- description: Template for filtering data to be included
- in response to a wildcard query. For more information
- see https://github.com/jmxtrans/jmxtrans/wiki/Queries[JmxTrans
- queries].
+ description: "Template for filtering data to be included in response to a wildcard query. For more information see https://github.com/jmxtrans/jmxtrans/wiki/Queries[JmxTrans queries]."
name:
type: string
- description: Template for setting the name of the output
- definition. This is used to identify where to send the
- results of queries should be sent.
+ description: Template for setting the name of the output definition. This is used to identify where to send the results of queries should be sent.
required:
- outputType
- name
- description: Defines the output hosts that will be referenced
- later on. For more information on these properties see, xref:type-JmxTransOutputDefinitionTemplate-reference[`JmxTransOutputDefinitionTemplate`
- schema reference].
+ description: "Defines the output hosts that will be referenced later on. For more information on these properties see, xref:type-JmxTransOutputDefinitionTemplate-reference[`JmxTransOutputDefinitionTemplate` schema reference]."
logLevel:
type: string
- description: Sets the logging level of the JmxTrans deployment.For
- more information see, https://github.com/jmxtrans/jmxtrans-agent/wiki/Troubleshooting[JmxTrans
- Logging Level].
+ description: "Sets the logging level of the JmxTrans deployment.For more information see, https://github.com/jmxtrans/jmxtrans-agent/wiki/Troubleshooting[JmxTrans Logging Level]."
kafkaQueries:
type: array
items:
@@ -5649,32 +4731,22 @@ spec:
properties:
targetMBean:
type: string
- description: If using wildcards instead of a specific MBean
- then the data is gathered from multiple MBeans. Otherwise
- if specifying an MBean then data is gathered from that
- specified MBean.
+ description: If using wildcards instead of a specific MBean then the data is gathered from multiple MBeans. Otherwise if specifying an MBean then data is gathered from that specified MBean.
attributes:
type: array
items:
type: string
- description: Determine which attributes of the targeted
- MBean should be included.
+ description: Determine which attributes of the targeted MBean should be included.
outputs:
type: array
items:
type: string
- description: List of the names of output definitions specified
- in the spec.kafka.jmxTrans.outputDefinitions that have
- defined where JMX metrics are pushed to, and in which
- data format.
+ description: "List of the names of output definitions specified in the spec.kafka.jmxTrans.outputDefinitions that have defined where JMX metrics are pushed to, and in which data format."
required:
- targetMBean
- attributes
- outputs
- description: Queries to send to the Kafka brokers to define what
- data should be read from each broker. For more information on
- these properties see, xref:type-JmxTransQueryTemplate-reference[`JmxTransQueryTemplate`
- schema reference].
+ description: "Queries to send to the Kafka brokers to define what data should be read from each broker. For more information on these properties see, xref:type-JmxTransQueryTemplate-reference[`JmxTransQueryTemplate` schema reference]."
resources:
type: object
properties:
@@ -5697,15 +4769,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for JmxTrans `Deployment`.
pod:
@@ -5717,15 +4785,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -5734,13 +4798,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same
- namespace to use for pulling any of the images used
- by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment
- variable in Cluster Operator and the `imagePullSecrets`
- option are specified, only the `imagePullSecrets` variable
- is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable
- is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -5796,21 +4854,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes
- and common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds
- after the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly
- halted with a kill signal. Set this value to longer
- than the expected cleanup time for your process. Value
- must be a non-negative integer. A zero value indicates
- delete immediately. You might need to increase the grace
- period for very large Kafka clusters, so that the Kafka
- brokers have enough time to transfer their work to another
- broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -6118,14 +5166,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch
- this `Pod`. If not specified, the default scheduler
- will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -6137,19 +5181,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an
- optional list of hosts and IPs that will be injected
- into the Pod's hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -6196,8 +5235,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -6266,25 +5304,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the JMX Trans service account.
description: Template for JmxTrans resources.
required:
- outputDefinitions
- kafkaQueries
- description: Configuration for JmxTrans. When the property is present
- a JmxTrans deployment is created for gathering JMX metrics from
- each Kafka broker. For more information see https://github.com/jmxtrans/jmxtrans[JmxTrans
- GitHub].
+ description: "Configuration for JmxTrans. When the property is present a JmxTrans deployment is created for gathering JMX metrics from each Kafka broker. For more information see https://github.com/jmxtrans/jmxtrans[JmxTrans GitHub]."
kafkaExporter:
type: object
properties:
@@ -6293,12 +5324,10 @@ spec:
description: The docker image for the pods.
groupRegex:
type: string
- description: Regular expression to specify which consumer groups
- to collect. Default value is `.*`.
+ description: Regular expression to specify which consumer groups to collect. Default value is `.*`.
topicRegex:
type: string
- description: Regular expression to specify which topics to collect.
- Default value is `.*`.
+ description: Regular expression to specify which topics to collect. Default value is `.*`.
resources:
type: object
properties:
@@ -6311,13 +5340,10 @@ spec:
description: CPU and memory resources to reserve.
logging:
type: string
- description: 'Only log messages with the given severity or above.
- Valid levels: [`info`, `debug`, `trace`]. Default log level
- is `info`.'
+ description: "Only log messages with the given severity or above. Valid levels: [`info`, `debug`, `trace`]. Default log level is `info`."
enableSaramaLogging:
type: boolean
- description: Enable Sarama logging, a Go client library used by
- the Kafka Exporter.
+ description: "Enable Sarama logging, a Go client library used by the Kafka Exporter."
template:
type: object
properties:
@@ -6330,15 +5356,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka Exporter `Deployment`.
pod:
@@ -6350,15 +5372,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -6367,13 +5385,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same
- namespace to use for pulling any of the images used
- by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment
- variable in Cluster Operator and the `imagePullSecrets`
- option are specified, only the `imagePullSecrets` variable
- is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable
- is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -6429,21 +5441,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes
- and common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds
- after the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly
- halted with a kill signal. Set this value to longer
- than the expected cleanup time for your process. Value
- must be a non-negative integer. A zero value indicates
- delete immediately. You might need to increase the grace
- period for very large Kafka clusters, so that the Kafka
- brokers have enough time to transfer their work to another
- broker before they are terminated. Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -6751,14 +5753,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch
- this `Pod`. If not specified, the default scheduler
- will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -6770,19 +5768,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an
- optional list of hosts and IPs that will be injected
- into the Pod's hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -6824,15 +5817,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for Kafka Exporter `Service`.
container:
@@ -6849,8 +5838,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -6919,15 +5907,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Exporter service account.
description: Customization of deployment templates and pods.
@@ -6937,30 +5921,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness check.
readinessProbe:
type: object
@@ -6968,45 +5945,34 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to
- be considered failed after having succeeded. Defaults to
- 3. Minimum value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is
- first checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe.
- Default to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to
- be considered successful after having failed. Defaults to
- 1. Must be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check.
- Default to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness check.
- description: Configuration of the Kafka Exporter. Kafka Exporter can
- provide additional metrics, for example lag of consumer group at
- topic/partition.
+ description: "Configuration of the Kafka Exporter. Kafka Exporter can provide additional metrics, for example lag of consumer group at topic/partition."
maintenanceTimeWindows:
type: array
items:
type: string
- description: A list of time windows for maintenance tasks (that is,
- certificates renewal). Each time window is defined by a cron expression.
+ description: "A list of time windows for maintenance tasks (that is, certificates renewal). Each time window is defined by a cron expression."
required:
- kafka
- zookeeper
- description: The specification of the Kafka and ZooKeeper clusters, and
- Topic Operator.
+ description: "The specification of the Kafka and ZooKeeper clusters, and Topic Operator."
status:
type: object
properties:
@@ -7017,30 +5983,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
listeners:
type: array
items:
@@ -7048,8 +6007,7 @@ spec:
properties:
type:
type: string
- description: '*The `type` property has been deprecated, and
- should now be configured using `name`.* The name of the listener.'
+ description: "*The `type` property has been deprecated, and should now be configured using `name`.* The name of the listener."
name:
type: string
description: The name of the listener.
@@ -7060,26 +6018,21 @@ spec:
properties:
host:
type: string
- description: The DNS name or IP address of the Kafka bootstrap
- service.
+ description: The DNS name or IP address of the Kafka bootstrap service.
port:
type: integer
description: The port of the Kafka bootstrap service.
description: A list of the addresses for this listener.
bootstrapServers:
type: string
- description: A comma-separated list of `host:port` pairs for
- connecting to the Kafka cluster using this listener.
+ description: A comma-separated list of `host:port` pairs for connecting to the Kafka cluster using this listener.
certificates:
type: array
items:
type: string
- description: A list of TLS certificates which can be used to
- verify the identity of the server when connecting to the given
- listener. Set only for `tls` and `external` listeners.
+ description: A list of TLS certificates which can be used to verify the identity of the server when connecting to the given listener. Set only for `tls` and `external` listeners.
description: Addresses of the internal and external listeners.
clusterId:
type: string
description: Kafka cluster Id.
- description: The status of the Kafka and ZooKeeper clusters, and Topic
- Operator.
+ description: "The status of the Kafka and ZooKeeper clusters, and Topic Operator."
diff --git a/install/cluster-operator/041-Crd-kafkaconnect.yaml b/install/cluster-operator/041-Crd-kafkaconnect.yaml
index 275d1a33c23..0659f44170a 100644
--- a/install/cluster-operator/041-Crd-kafkaconnect.yaml
+++ b/install/cluster-operator/041-Crd-kafkaconnect.yaml
@@ -36,7 +36,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -47,9 +47,7 @@ spec:
properties:
version:
type: string
- description: The Kafka Connect version. Defaults to {DefaultKafkaVersion}.
- Consult the user documentation to understand the process required
- to upgrade or downgrade the version.
+ description: "The Kafka Connect version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
description: The number of pods in the Kafka Connect group.
@@ -58,8 +56,7 @@ spec:
description: The docker image for the pods.
bootstrapServers:
type: string
- description: Bootstrap servers to connect to. This should be given
- as a comma separated list of __:__ pairs.
+ description: Bootstrap servers to connect to. This should be given as a comma separated list of __:__ pairs.
tls:
type: object
properties:
@@ -87,29 +84,20 @@ spec:
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the access token
- which was obtained from the authorization server.
+ description: Link to Kubernetes Secret containing the access token which was obtained from the authorization server.
accessTokenIsJwt:
type: boolean
- description: Configure whether access token should be treated
- as JWT. This should be set to `false` if the authorization server
- returns opaque tokens. Defaults to `true`.
+ description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against
- the authorization server. Some authorization servers require
- the audience to be explicitly set. The possible values depend
- on how the authorization server is configured. By default, `audience`
- is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -126,51 +114,38 @@ spec:
- certificate
- key
- secretName
- description: Reference to the `Secret` which holds the certificate
- and private key pair.
+ description: Reference to the `Secret` which holds the certificate and private key pair.
clientId:
type: string
- description: OAuth Client ID which the Kafka client can use to
- authenticate against the OAuth server and use the token endpoint
- URI.
+ description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
clientSecret:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the OAuth client
- secret which the Kafka client can use to authenticate against
- the OAuth server and use the token endpoint URI.
+ description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to
- authorization server. If not set, the effective connect timeout
- is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification. Default
- value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
maxTokenExpirySeconds:
type: integer
- description: Set or limit time-to-live of the access tokens to
- the specified number of seconds. This should be set if the authorization
- server returns opaque tokens.
+ description: Set or limit time-to-live of the access tokens to the specified number of seconds. This should be set if the authorization server returns opaque tokens.
passwordSecret:
type: object
properties:
password:
type: string
- description: The name of the key in the Secret under which
- the password is stored.
+ description: The name of the key in the Secret under which the password is stored.
secretName:
type: string
description: The name of the Secret containing the password.
@@ -180,32 +155,23 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization
- server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the refresh
- token which can be used to obtain access token from the authorization
- server.
+ description: Link to Kubernetes Secret containing the refresh token which can be used to obtain access token from the authorization server.
scope:
type: string
- description: OAuth scope to use when authenticating against the
- authorization server. Some authorization servers require this
- to be set. The possible values depend on how authorization server
- is configured. By default `scope` is not specified when doing
- the token endpoint request.
+ description: OAuth scope to use when authenticating against the authorization server. Some authorization servers require this to be set. The possible values depend on how authorization server is configured. By default `scope` is not specified when doing the token endpoint request.
tlsTrustedCertificates:
type: array
items:
@@ -220,8 +186,7 @@ spec:
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection to the OAuth
- server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
description: Authorization server token endpoint URI.
@@ -233,13 +198,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported
- types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`.
- `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256
- and SASL SCRAM-SHA-512 Authentication, respectively. `plain`
- type uses SASL PLAIN Authentication. `oauth` type uses SASL
- OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication.
- The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -249,11 +208,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connect configuration. Properties with the
- following prefixes cannot be set: ssl., sasl., security., listeners,
- plugin.path, rest., bootstrap.servers, consumer.interceptor.classes,
- producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm,
- ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The Kafka Connect configuration. Properties with the following prefixes cannot be set: ssl., sasl., security., listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes, producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
resources:
type: object
properties:
@@ -263,38 +218,30 @@ spec:
requests:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: The maximum limits for CPU and memory resources and the
- requested initial resources.
+ description: The maximum limits for CPU and memory resources and the requested initial resources.
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -302,30 +249,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
jvmOptions:
type: object
@@ -336,16 +276,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -357,8 +296,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
jmxOptions:
type: object
@@ -370,13 +308,10 @@ spec:
type: string
enum:
- password
- description: Authentication type. Currently the only supported
- types are `password`.`password` type creates a username
- and protected port with no TLS.
+ description: Authentication type. Currently the only supported types are `password`.`password` type creates a username and protected port with no TLS.
required:
- type
- description: Authentication configuration for connecting to the
- JMX port.
+ description: Authentication configuration for connecting to the JMX port.
description: JMX Options.
logging:
type: object
@@ -390,7 +325,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -403,13 +338,24 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration for Kafka Connect.
+ clientRackInitImage:
+ type: string
+ description: The image of the init container used for initializing the `client.rack`.
+ rack:
+ type: object
+ properties:
+ topologyKey:
+ type: string
+ example: topology.kubernetes.io/zone
+ description: A key that matches labels assigned to the Kubernetes cluster nodes. The value of the label is used to set the broker's `broker.rack` config and `client.rack` in Kafka Connect.
+ required:
+ - topologyKey
+ description: Configuration of the node label which will be used as the `client.rack` consumer configuration.
tracing:
type: object
properties:
@@ -417,8 +363,7 @@ spec:
type: string
enum:
- jaeger
- description: Type of the tracing used. Currently the only supported
- type is `jaeger` for Jaeger tracing.
+ description: Type of the tracing used. Currently the only supported type is `jaeger` for Jaeger tracing.
required:
- type
description: The configuration of tracing in Kafka Connect.
@@ -434,24 +379,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
enum:
- RollingUpdate
- Recreate
- description: DeploymentStrategy which will be used for this
- Deployment. Valid values are `RollingUpdate` and `Recreate`.
- Defaults to `RollingUpdate`.
+ description: DeploymentStrategy which will be used for this Deployment. Valid values are `RollingUpdate` and `Recreate`. Defaults to `RollingUpdate`.
description: Template for Kafka Connect `Deployment`.
pod:
type: object
@@ -462,15 +401,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -479,12 +414,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace
- to use for pulling any of the images used by this Pod. When
- the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in
- Cluster Operator and the `imagePullSecrets` option are specified,
- only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS`
- variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -540,21 +470,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes and
- common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after
- the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly halted
- with a kill signal. Set this value to longer than the expected
- cleanup time for your process. Value must be a non-negative
- integer. A zero value indicates delete immediately. You
- might need to increase the grace period for very large Kafka
- clusters, so that the Kafka brokers have enough time to
- transfer their work to another broker before they are terminated.
- Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -862,13 +782,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this
- `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -880,19 +797,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an optional
- list of hosts and IPs that will be injected into the Pod's
- hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -934,15 +846,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -950,15 +858,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service.
- Available options are `SingleStack`, `PreferDualStack` and
- `RequireDualStack`. `SingleStack` is for a single IP family.
- `PreferDualStack` is for two IP families on dual-stack configured
- clusters or a single IP family on single-stack clusters.
- `RequireDualStack` fails unless there are two IP families
- on dual-stack configured clusters. If unspecified, Kubernetes
- will choose the default value based on the service type.
- Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -966,10 +866,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the `ipFamilyPolicy`
- setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka Connect API `Service`.
connectContainer:
type: object
@@ -985,8 +882,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1060,8 +956,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1130,25 +1025,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic
- Pod eviction. A Pod eviction is allowed when the `maxUnavailable`
- number of pods or fewer are unavailable after the eviction.
- Setting this value to 0 prevents all voluntary evictions,
- so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka Connect `PodDisruptionBudget`.
serviceAccount:
type: object
@@ -1159,15 +1045,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect service account.
clusterRoleBinding:
@@ -1179,15 +1061,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect ClusterRoleBinding.
buildPod:
@@ -1199,15 +1077,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -1216,12 +1090,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace
- to use for pulling any of the images used by this Pod. When
- the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in
- Cluster Operator and the `imagePullSecrets` option are specified,
- only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS`
- variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -1277,21 +1146,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes and
- common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after
- the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly halted
- with a kill signal. Set this value to longer than the expected
- cleanup time for your process. Value must be a non-negative
- integer. A zero value indicates delete immediately. You
- might need to increase the grace period for very large Kafka
- clusters, so that the Kafka brokers have enough time to
- transfer their work to another broker before they are terminated.
- Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1599,13 +1458,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this
- `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1617,19 +1473,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an optional
- list of hosts and IPs that will be injected into the Pod's
- hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -1661,8 +1512,7 @@ spec:
whenUnsatisfiable:
type: string
description: The pod's topology spread constraints.
- description: Template for Kafka Connect Build `Pods`. The build
- pod is used only on Kubernetes.
+ description: Template for Kafka Connect Build `Pods`. The build pod is used only on Kubernetes.
buildContainer:
type: object
properties:
@@ -1677,8 +1527,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1737,8 +1586,7 @@ spec:
runAsUserName:
type: string
description: Security context for the container.
- description: Template for the Kafka Connect Build container. The
- build container is used only on Kubernetes.
+ description: Template for the Kafka Connect Build container. The build container is used only on Kubernetes.
buildConfig:
type: object
properties:
@@ -1748,24 +1596,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
pullSecret:
type: string
- description: Container Registry Secret with the credentials
- for pulling the base image.
- description: Template for the Kafka Connect BuildConfig used to
- build new container images. The BuildConfig is used only on
- OpenShift.
+ description: Container Registry Secret with the credentials for pulling the base image.
+ description: Template for the Kafka Connect BuildConfig used to build new container images. The BuildConfig is used only on OpenShift.
buildServiceAccount:
type: object
properties:
@@ -1775,15 +1615,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect Build service account.
jmxSecret:
@@ -1795,21 +1631,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Secret of the Kafka Connect Cluster
- JMX authentication.
- description: Template for Kafka Connect and Kafka Mirror Maker 2 resources.
- The template allows users to specify how the `Deployment`, `Pods`
- and `Service` are generated.
+ description: Template for Secret of the Kafka Connect Cluster JMX authentication.
+ description: "Template for Kafka Connect and Kafka Mirror Maker 2 resources. The template allows users to specify how the `Deployment`, `Pods` and `Service` are generated."
externalConfiguration:
type: object
properties:
@@ -1820,9 +1649,7 @@ spec:
properties:
name:
type: string
- description: Name of the environment variable which will
- be passed to the Kafka Connect pods. The name of the environment
- variable cannot start with `KAFKA_` or `STRIMZI_`.
+ description: Name of the environment variable which will be passed to the Kafka Connect pods. The name of the environment variable cannot start with `KAFKA_` or `STRIMZI_`.
valueFrom:
type: object
properties:
@@ -1846,15 +1673,11 @@ spec:
optional:
type: boolean
description: Reference to a key in a Secret.
- description: Value of the environment variable which will
- be passed to the Kafka Connect pods. It can be passed
- either as a reference to Secret or ConfigMap field. The
- field has to specify exactly one Secret or ConfigMap.
+ description: Value of the environment variable which will be passed to the Kafka Connect pods. It can be passed either as a reference to Secret or ConfigMap field. The field has to specify exactly one Secret or ConfigMap.
required:
- name
- valueFrom
- description: Makes data from a Secret or ConfigMap available in
- the Kafka Connect pods as environment variables.
+ description: Makes data from a Secret or ConfigMap available in the Kafka Connect pods as environment variables.
volumes:
type: array
items:
@@ -1880,12 +1703,10 @@ spec:
type: string
optional:
type: boolean
- description: Reference to a key in a ConfigMap. Exactly
- one Secret or ConfigMap has to be specified.
+ description: Reference to a key in a ConfigMap. Exactly one Secret or ConfigMap has to be specified.
name:
type: string
- description: Name of the volume which will be added to the
- Kafka Connect pods.
+ description: Name of the volume which will be added to the Kafka Connect pods.
secret:
type: object
properties:
@@ -1906,14 +1727,11 @@ spec:
type: boolean
secretName:
type: string
- description: Reference to a key in a Secret. Exactly one
- Secret or ConfigMap has to be specified.
+ description: Reference to a key in a Secret. Exactly one Secret or ConfigMap has to be specified.
required:
- name
- description: Makes data from a Secret or ConfigMap available in
- the Kafka Connect pods as volumes.
- description: Pass data from Secrets or ConfigMaps to the Kafka Connect
- pods and use them to configure connectors.
+ description: Makes data from a Secret or ConfigMap available in the Kafka Connect pods as volumes.
+ description: Pass data from Secrets or ConfigMaps to the Kafka Connect pods and use them to configure connectors.
build:
type: object
properties:
@@ -1924,38 +1742,23 @@ spec:
type: array
items:
type: string
- description: 'Configures additional options which will be
- passed to the Kaniko executor when building the new Connect
- image. Allowed options are: --customPlatform, --insecure,
- --insecure-pull, --insecure-registry, --log-format, --log-timestamp,
- --registry-mirror, --reproducible, --single-snapshot, --skip-tls-verify,
- --skip-tls-verify-pull, --skip-tls-verify-registry, --verbosity,
- --snapshotMode, --use-new-run. These options will be used
- only on Kubernetes where the Kaniko executor is used. They
- will be ignored on OpenShift. The options are described
- in the link:https://github.com/GoogleContainerTools/kaniko[Kaniko
- GitHub repository^]. Changing this field does not trigger
- new build of the Kafka Connect image.'
+ description: "Configures additional options which will be passed to the Kaniko executor when building the new Connect image. Allowed options are: --customPlatform, --insecure, --insecure-pull, --insecure-registry, --log-format, --log-timestamp, --registry-mirror, --reproducible, --single-snapshot, --skip-tls-verify, --skip-tls-verify-pull, --skip-tls-verify-registry, --verbosity, --snapshotMode, --use-new-run. These options will be used only on Kubernetes where the Kaniko executor is used. They will be ignored on OpenShift. The options are described in the link:https://github.com/GoogleContainerTools/kaniko[Kaniko GitHub repository^]. Changing this field does not trigger new build of the Kafka Connect image."
image:
type: string
description: The name of the image which will be built. Required.
pushSecret:
type: string
- description: Container Registry Secret with the credentials
- for pushing the newly built image.
+ description: Container Registry Secret with the credentials for pushing the newly built image.
type:
type: string
enum:
- docker
- imagestream
- description: Output type. Must be either `docker` for pushing
- the newly build image to Docker compatible registry or `imagestream`
- for pushing the image to OpenShift ImageStream. Required.
+ description: Output type. Must be either `docker` for pushing the newly build image to Docker compatible registry or `imagestream` for pushing the image to OpenShift ImageStream. Required.
required:
- image
- type
- description: Configures where should the newly built image be
- stored. Required.
+ description: Configures where should the newly built image be stored. Required.
resources:
type: object
properties:
@@ -1973,12 +1776,8 @@ spec:
properties:
name:
type: string
- pattern: ^[a-z0-9][-_a-z0-9]*[a-z0-9]$
- description: 'The unique name of the connector plugin. Will
- be used to generate the path where the connector artifacts
- will be stored. The name has to be unique within the KafkaConnect
- resource. The name has to follow the following pattern:
- `^[a-z][-_a-z0-9]*[a-z]$`. Required.'
+ pattern: "^[a-z0-9][-_a-z0-9]*[a-z0-9]$"
+ description: "The unique name of the connector plugin. Will be used to generate the path where the connector artifacts will be stored. The name has to be unique within the KafkaConnect resource. The name has to follow the following pattern: `^[a-z][-_a-z0-9]*[a-z]$`. Required."
artifacts:
type: array
items:
@@ -1986,35 +1785,22 @@ spec:
properties:
artifact:
type: string
- description: Maven artifact id. Applicable to the
- `maven` artifact type only.
+ description: Maven artifact id. Applicable to the `maven` artifact type only.
fileName:
type: string
- description: Name under which the artifact will be
- stored.
+ description: Name under which the artifact will be stored.
group:
type: string
- description: Maven group id. Applicable to the `maven`
- artifact type only.
+ description: Maven group id. Applicable to the `maven` artifact type only.
insecure:
type: boolean
- description: By default, connections using TLS are
- verified to check they are secure. The server certificate
- used must be valid, trusted, and contain the server
- name. By setting this option to `true`, all TLS
- verification is disabled and the artifact will be
- downloaded, even when the server is considered insecure.
+ description: "By default, connections using TLS are verified to check they are secure. The server certificate used must be valid, trusted, and contain the server name. By setting this option to `true`, all TLS verification is disabled and the artifact will be downloaded, even when the server is considered insecure."
repository:
type: string
- description: Maven repository to download the artifact
- from. Applicable to the `maven` artifact type only.
+ description: Maven repository to download the artifact from. Applicable to the `maven` artifact type only.
sha512sum:
type: string
- description: 'SHA512 checksum of the artifact. Optional.
- If specified, the checksum will be verified while
- building the new container. If not specified, the
- downloaded artifact will not be verified. Not applicable
- to the `maven` artifact type. '
+ description: "SHA512 checksum of the artifact. Optional. If specified, the checksum will be verified while building the new container. If not specified, the downloaded artifact will not be verified. Not applicable to the `maven` artifact type. "
type:
type: string
enum:
@@ -2023,42 +1809,25 @@ spec:
- zip
- maven
- other
- description: Artifact type. Currently, the supported
- artifact types are `tgz`, `jar`, `zip`, `other`
- and `maven`.
+ description: "Artifact type. Currently, the supported artifact types are `tgz`, `jar`, `zip`, `other` and `maven`."
url:
type: string
- pattern: ^(https?|ftp)://[-a-zA-Z0-9+&@#/%?=~_|!:,.;]*[-a-zA-Z0-9+&@#/%=~_|]$
- description: URL of the artifact which will be downloaded.
- Strimzi does not do any security scanning of the
- downloaded artifacts. For security reasons, you
- should first verify the artifacts manually and configure
- the checksum verification to make sure the same
- artifact is used in the automated build. Required
- for `jar`, `zip`, `tgz` and `other` artifacts. Not
- applicable to the `maven` artifact type.
+ pattern: "^(https?|ftp)://[-a-zA-Z0-9+&@#/%?=~_|!:,.;]*[-a-zA-Z0-9+&@#/%=~_|]$"
+ description: "URL of the artifact which will be downloaded. Strimzi does not do any security scanning of the downloaded artifacts. For security reasons, you should first verify the artifacts manually and configure the checksum verification to make sure the same artifact is used in the automated build. Required for `jar`, `zip`, `tgz` and `other` artifacts. Not applicable to the `maven` artifact type."
version:
type: string
- description: Maven version number. Applicable to the
- `maven` artifact type only.
+ description: Maven version number. Applicable to the `maven` artifact type only.
required:
- type
- description: List of artifacts which belong to this connector
- plugin. Required.
+ description: List of artifacts which belong to this connector plugin. Required.
required:
- name
- artifacts
- description: List of connector plugins which should be added to
- the Kafka Connect. Required.
+ description: List of connector plugins which should be added to the Kafka Connect. Required.
required:
- output
- plugins
- description: Configures how the Connect container image should be
- built. Optional.
- clientRackInitImage:
- type: string
- description: The image of the init container used for initializing
- the `client.rack`.
+ description: Configures how the Connect container image should be built. Optional.
metricsConfig:
type: object
properties:
@@ -2066,8 +1835,7 @@ spec:
type: string
enum:
- jmxPrometheusExporter
- description: Metrics type. Only 'jmxPrometheusExporter' supported
- currently.
+ description: Metrics type. Only 'jmxPrometheusExporter' supported currently.
valueFrom:
type: object
properties:
@@ -2080,28 +1848,12 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter
- configuration is stored. For details of the structure of this
- configuration, see the {JMXExporter}.
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
description: Metrics configuration.
- rack:
- type: object
- properties:
- topologyKey:
- type: string
- example: topology.kubernetes.io/zone
- description: A key that matches labels assigned to the Kubernetes
- cluster nodes. The value of the label is used to set the broker's
- `broker.rack` config and `client.rack` in Kafka Connect.
- required:
- - topologyKey
- description: Configuration of the node label which will be used as
- the client.rack consumer configuration.
required:
- bootstrapServers
description: The specification of the Kafka Connect cluster.
@@ -2115,34 +1867,26 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
url:
type: string
- description: The URL of the REST API endpoint for managing and monitoring
- Kafka Connect connectors.
+ description: The URL of the REST API endpoint for managing and monitoring Kafka Connect connectors.
connectorPlugins:
type: array
items:
@@ -2150,21 +1894,18 @@ spec:
properties:
type:
type: string
- description: The type of the connector plugin. The available
- types are `sink` and `source`.
+ description: The type of the connector plugin. The available types are `sink` and `source`.
version:
type: string
description: The version of the connector plugin.
class:
type: string
description: The class of the connector plugin.
- description: The list of connector plugins available in this Kafka
- Connect deployment.
+ description: The list of connector plugins available in this Kafka Connect deployment.
labelSelector:
type: string
description: Label selector for pods providing this resource.
replicas:
type: integer
- description: The current number of pods being used to provide this
- resource.
+ description: The current number of pods being used to provide this resource.
description: The status of the Kafka Connect cluster.
diff --git a/install/cluster-operator/042-Crd-strimzipodset.yaml b/install/cluster-operator/042-Crd-strimzipodset.yaml
index 03054660498..497a6169a0d 100644
--- a/install/cluster-operator/042-Crd-strimzipodset.yaml
+++ b/install/cluster-operator/042-Crd-strimzipodset.yaml
@@ -68,9 +68,7 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Selector is a label query which matches all the pods
- managed by this `StrimziPodSet`. Only `matchLabels` is supported.
- If `matchExpressions` is set, it will be ignored.
+ description: "Selector is a label query which matches all the pods managed by this `StrimziPodSet`. Only `matchLabels` is supported. If `matchExpressions` is set, it will be ignored."
pods:
type: array
items:
@@ -91,39 +89,30 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
pods:
type: integer
description: Number of pods managed by the StrimziPodSet controller.
readyPods:
type: integer
- description: Number of pods managed by the StrimziPodSet controller
- that are ready.
+ description: Number of pods managed by the StrimziPodSet controller that are ready.
currentPods:
type: integer
- description: Number of pods managed by the StrimziPodSet controller
- that have the current revision.
+ description: Number of pods managed by the StrimziPodSet controller that have the current revision.
description: The status of the StrimziPodSet.
diff --git a/install/cluster-operator/043-Crd-kafkatopic.yaml b/install/cluster-operator/043-Crd-kafkatopic.yaml
index eee9bad30fa..bdacdd5bcfa 100644
--- a/install/cluster-operator/043-Crd-kafkatopic.yaml
+++ b/install/cluster-operator/043-Crd-kafkatopic.yaml
@@ -40,7 +40,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -52,26 +52,19 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This
- cannot be decreased after topic creation. It can be increased after
- topic creation, but it is important to understand the consequences
- that has, especially for topics with semantic partitioning. When
- absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
maximum: 32767
- description: The number of replicas the topic should have. When absent
- this will default to the broker configuration for `default.replication.factor`.
+ description: The number of replicas the topic should have. When absent this will default to the broker configuration for `default.replication.factor`.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
description: The topic configuration.
topicName:
type: string
- description: The name of the topic. When absent this will default
- to the metadata.name of the topic. It is recommended to not set
- this unless the topic name is not a valid Kubernetes resource name.
+ description: The name of the topic. When absent this will default to the metadata.name of the topic. It is recommended to not set this unless the topic name is not a valid Kubernetes resource name.
description: The specification of the topic.
status:
type: object
@@ -83,30 +76,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
topicName:
type: string
description: Topic name.
@@ -131,7 +117,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -143,26 +129,19 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This
- cannot be decreased after topic creation. It can be increased after
- topic creation, but it is important to understand the consequences
- that has, especially for topics with semantic partitioning. When
- absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
maximum: 32767
- description: The number of replicas the topic should have. When absent
- this will default to the broker configuration for `default.replication.factor`.
+ description: The number of replicas the topic should have. When absent this will default to the broker configuration for `default.replication.factor`.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
description: The topic configuration.
topicName:
type: string
- description: The name of the topic. When absent this will default
- to the metadata.name of the topic. It is recommended to not set
- this unless the topic name is not a valid Kubernetes resource name.
+ description: The name of the topic. When absent this will default to the metadata.name of the topic. It is recommended to not set this unless the topic name is not a valid Kubernetes resource name.
description: The specification of the topic.
status:
type: object
@@ -174,30 +153,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
topicName:
type: string
description: Topic name.
@@ -222,7 +194,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -234,26 +206,19 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This
- cannot be decreased after topic creation. It can be increased after
- topic creation, but it is important to understand the consequences
- that has, especially for topics with semantic partitioning. When
- absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
maximum: 32767
- description: The number of replicas the topic should have. When absent
- this will default to the broker configuration for `default.replication.factor`.
+ description: The number of replicas the topic should have. When absent this will default to the broker configuration for `default.replication.factor`.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
description: The topic configuration.
topicName:
type: string
- description: The name of the topic. When absent this will default
- to the metadata.name of the topic. It is recommended to not set
- this unless the topic name is not a valid Kubernetes resource name.
+ description: The name of the topic. When absent this will default to the metadata.name of the topic. It is recommended to not set this unless the topic name is not a valid Kubernetes resource name.
description: The specification of the topic.
status:
type: object
@@ -265,30 +230,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
topicName:
type: string
description: Topic name.
diff --git a/install/cluster-operator/044-Crd-kafkauser.yaml b/install/cluster-operator/044-Crd-kafkauser.yaml
index b260891c962..cf5994fbbd8 100644
--- a/install/cluster-operator/044-Crd-kafkauser.yaml
+++ b/install/cluster-operator/044-Crd-kafkauser.yaml
@@ -40,7 +40,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -67,13 +67,11 @@ spec:
type: string
optional:
type: boolean
- description: Selects a key of a Secret in the resource's
- namespace.
+ description: Selects a key of a Secret in the resource's namespace.
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a
- new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -83,18 +81,7 @@ spec:
description: Authentication type.
required:
- type
- description: "Authentication mechanism enabled for this Kafka user.\
- \ The supported authentication mechanisms are `scram-sha-512`, `tls`,\
- \ and `tls-external`. \n\n* `scram-sha-512` generates a secret with\
- \ SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with\
- \ user certificate for mutual TLS authentication.\n* `tls-external`\
- \ does not generate a user certificate. But prepares the user\
- \ for using mutual TLS authentication using a user certificate generated\
- \ outside the User Operator.\n ACLs and quotas set for this user\
- \ are configured in the `CN=` format.\n\nAuthentication\
- \ is optional. If authentication is not configured, no credentials\
- \ are generated. ACLs and quotas set for the user are configured\
- \ in the `` format suitable for SASL authentication."
+ description: "Authentication mechanism enabled for this Kafka user. The supported authentication mechanisms are `scram-sha-512`, `tls`, and `tls-external`. \n\n* `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with user certificate for mutual TLS authentication.\n* `tls-external` does not generate a user certificate. But prepares the user for using mutual TLS authentication using a user certificate generated outside the User Operator.\n ACLs and quotas set for this user are configured in the `CN=` format.\n\nAuthentication is optional. If authentication is not configured, no credentials are generated. ACLs and quotas set for the user are configured in the `` format suitable for SASL authentication."
authorization:
type: object
properties:
@@ -105,8 +92,7 @@ spec:
properties:
host:
type: string
- description: The host from which the action described in
- the ACL rule is allowed or denied.
+ description: The host from which the action described in the ACL rule is allowed or denied.
operation:
type: string
enum:
@@ -121,29 +107,19 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied.
- Supported operations are: Read, Write, Create, Delete,
- Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs,
- IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
name:
type: string
- description: Name of resource for which given ACL rule
- applies. Can be combined with `patternType` field
- to use prefix pattern.
+ description: Name of resource for which given ACL rule applies. Can be combined with `patternType` field to use prefix pattern.
patternType:
type: string
enum:
- literal
- prefix
- description: Describes the pattern used in the resource
- field. The supported types are `literal` and `prefix`.
- With `literal` pattern type, the resource field will
- be used as a definition of a full name. With `prefix`
- pattern type, the resource name will be used only
- as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -151,33 +127,25 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types
- are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
- description: Indicates the resource for which given ACL
- rule applies.
+ description: Indicates the resource for which given ACL rule applies.
type:
type: string
enum:
- allow
- deny
- description: The type of the rule. Currently the only supported
- type is `allow`. ACL rules with type `allow` are used
- to allow user to execute the specified operations. Default
- value is `allow`.
+ description: The type of the rule. Currently the only supported type is `allow`. ACL rules with type `allow` are used to allow user to execute the specified operations. Default value is `allow`.
required:
- operation
- resource
- description: List of ACL rules which should be applied to this
- user.
+ description: List of ACL rules which should be applied to this user.
type:
type: string
enum:
- simple
- description: Authorization type. Currently the only supported
- type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization.
+ description: Authorization type. Currently the only supported type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization.
required:
- acls
- type
@@ -188,30 +156,20 @@ spec:
consumerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can fetch from a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can fetch from a broker before the clients in the group are throttled. Defined on a per-broker basis.
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted
- for the create topics request, the create partitions request
- and the delete topics request. The rate is accumulated by the
- number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can publish to a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can publish to a broker before the clients in the group are throttled. Defined on a per-broker basis.
requestPercentage:
type: integer
minimum: 0
- description: A quota on the maximum CPU utilization of each client
- group as a percentage of network and I/O threads.
- description: Quotas on requests to control the broker resources used
- by clients. Network bandwidth and request rate quotas can be enforced.Kafka
- documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
+ description: A quota on the maximum CPU utilization of each client group as a percentage of network and I/O threads.
+ description: Quotas on requests to control the broker resources used by clients. Network bandwidth and request rate quotas can be enforced.Kafka documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
template:
type: object
properties:
@@ -224,19 +182,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for KafkaUser resources. The template allows
- users to specify how the `Secret` with password or TLS certificates
- is generated.
+ description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
description: The specification of the user.
status:
@@ -249,30 +201,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
username:
type: string
description: Username.
@@ -300,7 +245,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -327,13 +272,11 @@ spec:
type: string
optional:
type: boolean
- description: Selects a key of a Secret in the resource's
- namespace.
+ description: Selects a key of a Secret in the resource's namespace.
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a
- new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -343,18 +286,7 @@ spec:
description: Authentication type.
required:
- type
- description: "Authentication mechanism enabled for this Kafka user.\
- \ The supported authentication mechanisms are `scram-sha-512`, `tls`,\
- \ and `tls-external`. \n\n* `scram-sha-512` generates a secret with\
- \ SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with\
- \ user certificate for mutual TLS authentication.\n* `tls-external`\
- \ does not generate a user certificate. But prepares the user\
- \ for using mutual TLS authentication using a user certificate generated\
- \ outside the User Operator.\n ACLs and quotas set for this user\
- \ are configured in the `CN=` format.\n\nAuthentication\
- \ is optional. If authentication is not configured, no credentials\
- \ are generated. ACLs and quotas set for the user are configured\
- \ in the `` format suitable for SASL authentication."
+ description: "Authentication mechanism enabled for this Kafka user. The supported authentication mechanisms are `scram-sha-512`, `tls`, and `tls-external`. \n\n* `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with user certificate for mutual TLS authentication.\n* `tls-external` does not generate a user certificate. But prepares the user for using mutual TLS authentication using a user certificate generated outside the User Operator.\n ACLs and quotas set for this user are configured in the `CN=` format.\n\nAuthentication is optional. If authentication is not configured, no credentials are generated. ACLs and quotas set for the user are configured in the `` format suitable for SASL authentication."
authorization:
type: object
properties:
@@ -365,8 +297,7 @@ spec:
properties:
host:
type: string
- description: The host from which the action described in
- the ACL rule is allowed or denied.
+ description: The host from which the action described in the ACL rule is allowed or denied.
operation:
type: string
enum:
@@ -381,29 +312,19 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied.
- Supported operations are: Read, Write, Create, Delete,
- Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs,
- IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
name:
type: string
- description: Name of resource for which given ACL rule
- applies. Can be combined with `patternType` field
- to use prefix pattern.
+ description: Name of resource for which given ACL rule applies. Can be combined with `patternType` field to use prefix pattern.
patternType:
type: string
enum:
- literal
- prefix
- description: Describes the pattern used in the resource
- field. The supported types are `literal` and `prefix`.
- With `literal` pattern type, the resource field will
- be used as a definition of a full name. With `prefix`
- pattern type, the resource name will be used only
- as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -411,33 +332,25 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types
- are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
- description: Indicates the resource for which given ACL
- rule applies.
+ description: Indicates the resource for which given ACL rule applies.
type:
type: string
enum:
- allow
- deny
- description: The type of the rule. Currently the only supported
- type is `allow`. ACL rules with type `allow` are used
- to allow user to execute the specified operations. Default
- value is `allow`.
+ description: The type of the rule. Currently the only supported type is `allow`. ACL rules with type `allow` are used to allow user to execute the specified operations. Default value is `allow`.
required:
- operation
- resource
- description: List of ACL rules which should be applied to this
- user.
+ description: List of ACL rules which should be applied to this user.
type:
type: string
enum:
- simple
- description: Authorization type. Currently the only supported
- type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization.
+ description: Authorization type. Currently the only supported type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization.
required:
- acls
- type
@@ -448,30 +361,20 @@ spec:
consumerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can fetch from a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can fetch from a broker before the clients in the group are throttled. Defined on a per-broker basis.
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted
- for the create topics request, the create partitions request
- and the delete topics request. The rate is accumulated by the
- number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can publish to a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can publish to a broker before the clients in the group are throttled. Defined on a per-broker basis.
requestPercentage:
type: integer
minimum: 0
- description: A quota on the maximum CPU utilization of each client
- group as a percentage of network and I/O threads.
- description: Quotas on requests to control the broker resources used
- by clients. Network bandwidth and request rate quotas can be enforced.Kafka
- documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
+ description: A quota on the maximum CPU utilization of each client group as a percentage of network and I/O threads.
+ description: Quotas on requests to control the broker resources used by clients. Network bandwidth and request rate quotas can be enforced.Kafka documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
template:
type: object
properties:
@@ -484,19 +387,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for KafkaUser resources. The template allows
- users to specify how the `Secret` with password or TLS certificates
- is generated.
+ description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
description: The specification of the user.
status:
@@ -509,30 +406,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
username:
type: string
description: Username.
@@ -560,7 +450,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -587,13 +477,11 @@ spec:
type: string
optional:
type: boolean
- description: Selects a key of a Secret in the resource's
- namespace.
+ description: Selects a key of a Secret in the resource's namespace.
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a
- new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -603,18 +491,7 @@ spec:
description: Authentication type.
required:
- type
- description: "Authentication mechanism enabled for this Kafka user.\
- \ The supported authentication mechanisms are `scram-sha-512`, `tls`,\
- \ and `tls-external`. \n\n* `scram-sha-512` generates a secret with\
- \ SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with\
- \ user certificate for mutual TLS authentication.\n* `tls-external`\
- \ does not generate a user certificate. But prepares the user\
- \ for using mutual TLS authentication using a user certificate generated\
- \ outside the User Operator.\n ACLs and quotas set for this user\
- \ are configured in the `CN=` format.\n\nAuthentication\
- \ is optional. If authentication is not configured, no credentials\
- \ are generated. ACLs and quotas set for the user are configured\
- \ in the `` format suitable for SASL authentication."
+ description: "Authentication mechanism enabled for this Kafka user. The supported authentication mechanisms are `scram-sha-512`, `tls`, and `tls-external`. \n\n* `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with user certificate for mutual TLS authentication.\n* `tls-external` does not generate a user certificate. But prepares the user for using mutual TLS authentication using a user certificate generated outside the User Operator.\n ACLs and quotas set for this user are configured in the `CN=` format.\n\nAuthentication is optional. If authentication is not configured, no credentials are generated. ACLs and quotas set for the user are configured in the `` format suitable for SASL authentication."
authorization:
type: object
properties:
@@ -625,8 +502,7 @@ spec:
properties:
host:
type: string
- description: The host from which the action described in
- the ACL rule is allowed or denied.
+ description: The host from which the action described in the ACL rule is allowed or denied.
operation:
type: string
enum:
@@ -641,29 +517,19 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied.
- Supported operations are: Read, Write, Create, Delete,
- Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs,
- IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
name:
type: string
- description: Name of resource for which given ACL rule
- applies. Can be combined with `patternType` field
- to use prefix pattern.
+ description: Name of resource for which given ACL rule applies. Can be combined with `patternType` field to use prefix pattern.
patternType:
type: string
enum:
- literal
- prefix
- description: Describes the pattern used in the resource
- field. The supported types are `literal` and `prefix`.
- With `literal` pattern type, the resource field will
- be used as a definition of a full name. With `prefix`
- pattern type, the resource name will be used only
- as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -671,33 +537,25 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types
- are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
- description: Indicates the resource for which given ACL
- rule applies.
+ description: Indicates the resource for which given ACL rule applies.
type:
type: string
enum:
- allow
- deny
- description: The type of the rule. Currently the only supported
- type is `allow`. ACL rules with type `allow` are used
- to allow user to execute the specified operations. Default
- value is `allow`.
+ description: The type of the rule. Currently the only supported type is `allow`. ACL rules with type `allow` are used to allow user to execute the specified operations. Default value is `allow`.
required:
- operation
- resource
- description: List of ACL rules which should be applied to this
- user.
+ description: List of ACL rules which should be applied to this user.
type:
type: string
enum:
- simple
- description: Authorization type. Currently the only supported
- type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization.
+ description: Authorization type. Currently the only supported type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization.
required:
- acls
- type
@@ -708,30 +566,20 @@ spec:
consumerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can fetch from a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can fetch from a broker before the clients in the group are throttled. Defined on a per-broker basis.
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted
- for the create topics request, the create partitions request
- and the delete topics request. The rate is accumulated by the
- number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can publish to a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can publish to a broker before the clients in the group are throttled. Defined on a per-broker basis.
requestPercentage:
type: integer
minimum: 0
- description: A quota on the maximum CPU utilization of each client
- group as a percentage of network and I/O threads.
- description: Quotas on requests to control the broker resources used
- by clients. Network bandwidth and request rate quotas can be enforced.Kafka
- documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
+ description: A quota on the maximum CPU utilization of each client group as a percentage of network and I/O threads.
+ description: Quotas on requests to control the broker resources used by clients. Network bandwidth and request rate quotas can be enforced.Kafka documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
template:
type: object
properties:
@@ -744,19 +592,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for KafkaUser resources. The template allows
- users to specify how the `Secret` with password or TLS certificates
- is generated.
+ description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
description: The specification of the user.
status:
@@ -769,30 +611,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
username:
type: string
description: Username.
diff --git a/install/cluster-operator/045-Crd-kafkamirrormaker.yaml b/install/cluster-operator/045-Crd-kafkamirrormaker.yaml
index fc083456a58..e0c504d26d8 100644
--- a/install/cluster-operator/045-Crd-kafkamirrormaker.yaml
+++ b/install/cluster-operator/045-Crd-kafkamirrormaker.yaml
@@ -46,7 +46,7 @@ spec:
priority: 1
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -57,9 +57,7 @@ spec:
properties:
version:
type: string
- description: The Kafka MirrorMaker version. Defaults to {DefaultKafkaVersion}.
- Consult the documentation to understand the process required to
- upgrade or downgrade the version.
+ description: "The Kafka MirrorMaker version. Defaults to {DefaultKafkaVersion}. Consult the documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
minimum: 0
@@ -73,20 +71,16 @@ spec:
numStreams:
type: integer
minimum: 1
- description: Specifies the number of consumer stream threads to
- create.
+ description: Specifies the number of consumer stream threads to create.
offsetCommitInterval:
type: integer
- description: Specifies the offset auto-commit interval in ms.
- Default value is 60000.
+ description: Specifies the offset auto-commit interval in ms. Default value is 60000.
bootstrapServers:
type: string
- description: A list of host:port pairs for establishing the initial
- connection to the Kafka cluster.
+ description: A list of host:port pairs for establishing the initial connection to the Kafka cluster.
groupId:
type: string
- description: A unique string that identifies the consumer group
- this consumer belongs to.
+ description: A unique string that identifies the consumer group this consumer belongs to.
authentication:
type: object
properties:
@@ -95,30 +89,20 @@ spec:
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the access
- token which was obtained from the authorization server.
+ description: Link to Kubernetes Secret containing the access token which was obtained from the authorization server.
accessTokenIsJwt:
type: boolean
- description: Configure whether access token should be treated
- as JWT. This should be set to `false` if the authorization
- server returns opaque tokens. Defaults to `true`.
+ description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against
- the authorization server. Some authorization servers require
- the audience to be explicitly set. The possible values depend
- on how the authorization server is configured. By default,
- `audience` is not specified when performing the token endpoint
- request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -135,51 +119,38 @@ spec:
- certificate
- key
- secretName
- description: Reference to the `Secret` which holds the certificate
- and private key pair.
+ description: Reference to the `Secret` which holds the certificate and private key pair.
clientId:
type: string
- description: OAuth Client ID which the Kafka client can use
- to authenticate against the OAuth server and use the token
- endpoint URI.
+ description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
clientSecret:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the OAuth
- client secret which the Kafka client can use to authenticate
- against the OAuth server and use the token endpoint URI.
+ description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting
- to authorization server. If not set, the effective connect
- timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification.
- Default value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
maxTokenExpirySeconds:
type: integer
- description: Set or limit time-to-live of the access tokens
- to the specified number of seconds. This should be set if
- the authorization server returns opaque tokens.
+ description: Set or limit time-to-live of the access tokens to the specified number of seconds. This should be set if the authorization server returns opaque tokens.
passwordSecret:
type: object
properties:
password:
type: string
- description: The name of the key in the Secret under which
- the password is stored.
+ description: The name of the key in the Secret under which the password is stored.
secretName:
type: string
description: The name of the Secret containing the password.
@@ -189,33 +160,23 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to
- authorization server. If not set, the effective read timeout
- is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the refresh
- token which can be used to obtain access token from the
- authorization server.
+ description: Link to Kubernetes Secret containing the refresh token which can be used to obtain access token from the authorization server.
scope:
type: string
- description: OAuth scope to use when authenticating against
- the authorization server. Some authorization servers require
- this to be set. The possible values depend on how authorization
- server is configured. By default `scope` is not specified
- when doing the token endpoint request.
+ description: OAuth scope to use when authenticating against the authorization server. Some authorization servers require this to be set. The possible values depend on how authorization server is configured. By default `scope` is not specified when doing the token endpoint request.
tlsTrustedCertificates:
type: array
items:
@@ -223,16 +184,14 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
description: The name of the Secret containing the certificate.
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection to the
- OAuth server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
description: Authorization server token endpoint URI.
@@ -244,29 +203,17 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported
- types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`.
- `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256
- and SASL SCRAM-SHA-512 Authentication, respectively. `plain`
- type uses SASL PLAIN Authentication. `oauth` type uses SASL
- OAUTHBEARER Authentication. The `tls` type uses TLS Client
- Authentication. The `tls` type is supported only over TLS
- connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
required:
- type
- description: Authentication configuration for connecting to the
- cluster.
+ description: Authentication configuration for connecting to the cluster.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The MirrorMaker consumer config. Properties with
- the following prefixes cannot be set: ssl., bootstrap.servers,
- group.id, sasl., security., interceptor.classes (with the exception
- of: ssl.endpoint.identification.algorithm, ssl.cipher.suites,
- ssl.protocol, ssl.enabled.protocols).'
+ description: "The MirrorMaker consumer config. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl., security., interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
tls:
type: object
properties:
@@ -277,8 +224,7 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
description: The name of the Secret containing the certificate.
@@ -286,8 +232,7 @@ spec:
- certificate
- secretName
description: Trusted certificates for TLS connection.
- description: TLS configuration for connecting MirrorMaker to the
- cluster.
+ description: TLS configuration for connecting MirrorMaker to the cluster.
required:
- bootstrapServers
- groupId
@@ -297,12 +242,10 @@ spec:
properties:
bootstrapServers:
type: string
- description: A list of host:port pairs for establishing the initial
- connection to the Kafka cluster.
+ description: A list of host:port pairs for establishing the initial connection to the Kafka cluster.
abortOnSendFailure:
type: boolean
- description: Flag to set the MirrorMaker to exit on a failed send.
- Default value is `true`.
+ description: Flag to set the MirrorMaker to exit on a failed send. Default value is `true`.
authentication:
type: object
properties:
@@ -311,30 +254,20 @@ spec:
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the access
- token which was obtained from the authorization server.
+ description: Link to Kubernetes Secret containing the access token which was obtained from the authorization server.
accessTokenIsJwt:
type: boolean
- description: Configure whether access token should be treated
- as JWT. This should be set to `false` if the authorization
- server returns opaque tokens. Defaults to `true`.
+ description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against
- the authorization server. Some authorization servers require
- the audience to be explicitly set. The possible values depend
- on how the authorization server is configured. By default,
- `audience` is not specified when performing the token endpoint
- request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -351,51 +284,38 @@ spec:
- certificate
- key
- secretName
- description: Reference to the `Secret` which holds the certificate
- and private key pair.
+ description: Reference to the `Secret` which holds the certificate and private key pair.
clientId:
type: string
- description: OAuth Client ID which the Kafka client can use
- to authenticate against the OAuth server and use the token
- endpoint URI.
+ description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
clientSecret:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the OAuth
- client secret which the Kafka client can use to authenticate
- against the OAuth server and use the token endpoint URI.
+ description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting
- to authorization server. If not set, the effective connect
- timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification.
- Default value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
maxTokenExpirySeconds:
type: integer
- description: Set or limit time-to-live of the access tokens
- to the specified number of seconds. This should be set if
- the authorization server returns opaque tokens.
+ description: Set or limit time-to-live of the access tokens to the specified number of seconds. This should be set if the authorization server returns opaque tokens.
passwordSecret:
type: object
properties:
password:
type: string
- description: The name of the key in the Secret under which
- the password is stored.
+ description: The name of the key in the Secret under which the password is stored.
secretName:
type: string
description: The name of the Secret containing the password.
@@ -405,33 +325,23 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to
- authorization server. If not set, the effective read timeout
- is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the refresh
- token which can be used to obtain access token from the
- authorization server.
+ description: Link to Kubernetes Secret containing the refresh token which can be used to obtain access token from the authorization server.
scope:
type: string
- description: OAuth scope to use when authenticating against
- the authorization server. Some authorization servers require
- this to be set. The possible values depend on how authorization
- server is configured. By default `scope` is not specified
- when doing the token endpoint request.
+ description: OAuth scope to use when authenticating against the authorization server. Some authorization servers require this to be set. The possible values depend on how authorization server is configured. By default `scope` is not specified when doing the token endpoint request.
tlsTrustedCertificates:
type: array
items:
@@ -439,16 +349,14 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
description: The name of the Secret containing the certificate.
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection to the
- OAuth server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
description: Authorization server token endpoint URI.
@@ -460,29 +368,17 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported
- types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`.
- `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256
- and SASL SCRAM-SHA-512 Authentication, respectively. `plain`
- type uses SASL PLAIN Authentication. `oauth` type uses SASL
- OAUTHBEARER Authentication. The `tls` type uses TLS Client
- Authentication. The `tls` type is supported only over TLS
- connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
required:
- type
- description: Authentication configuration for connecting to the
- cluster.
+ description: Authentication configuration for connecting to the cluster.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The MirrorMaker producer config. Properties with
- the following prefixes cannot be set: ssl., bootstrap.servers,
- sasl., security., interceptor.classes (with the exception of:
- ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol,
- ssl.enabled.protocols).'
+ description: "The MirrorMaker producer config. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, sasl., security., interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
tls:
type: object
properties:
@@ -493,8 +389,7 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
description: The name of the Secret containing the certificate.
@@ -502,8 +397,7 @@ spec:
- certificate
- secretName
description: Trusted certificates for TLS connection.
- description: TLS configuration for connecting MirrorMaker to the
- cluster.
+ description: TLS configuration for connecting MirrorMaker to the cluster.
required:
- bootstrapServers
description: Configuration of target cluster.
@@ -519,20 +413,10 @@ spec:
description: CPU and memory resources to reserve.
whitelist:
type: string
- description: List of topics which are included for mirroring. This
- option allows any regular expression using Java-style regular expressions.
- Mirroring two topics named A and B is achieved by using the expression
- `A\|B`. Or, as a special case, you can mirror all topics using the
- regular expression `*`. You can also specify multiple regular expressions
- separated by commas.
+ description: "List of topics which are included for mirroring. This option allows any regular expression using Java-style regular expressions. Mirroring two topics named A and B is achieved by using the expression `A\\|B`. Or, as a special case, you can mirror all topics using the regular expression `*`. You can also specify multiple regular expressions separated by commas."
include:
type: string
- description: List of topics which are included for mirroring. This
- option allows any regular expression using Java-style regular expressions.
- Mirroring two topics named A and B is achieved by using the expression
- `A\|B`. Or, as a special case, you can mirror all topics using the
- regular expression `*`. You can also specify multiple regular expressions
- separated by commas.
+ description: "List of topics which are included for mirroring. This option allows any regular expression using Java-style regular expressions. Mirroring two topics named A and B is achieved by using the expression `A\\|B`. Or, as a special case, you can mirror all topics using the regular expression `*`. You can also specify multiple regular expressions separated by commas."
jvmOptions:
type: object
properties:
@@ -542,16 +426,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -563,8 +446,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
logging:
type: object
@@ -578,7 +460,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -591,10 +473,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration for MirrorMaker.
@@ -605,8 +485,7 @@ spec:
type: string
enum:
- jmxPrometheusExporter
- description: Metrics type. Only 'jmxPrometheusExporter' supported
- currently.
+ description: Metrics type. Only 'jmxPrometheusExporter' supported currently.
valueFrom:
type: object
properties:
@@ -619,11 +498,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter
- configuration is stored. For details of the structure of this
- configuration, see the {JMXExporter}.
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -635,8 +511,7 @@ spec:
type: string
enum:
- jaeger
- description: Type of the tracing used. Currently the only supported
- type is `jaeger` for Jaeger tracing.
+ description: Type of the tracing used. Currently the only supported type is `jaeger` for Jaeger tracing.
required:
- type
description: The configuration of tracing in Kafka MirrorMaker.
@@ -652,24 +527,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
enum:
- RollingUpdate
- Recreate
- description: DeploymentStrategy which will be used for this
- Deployment. Valid values are `RollingUpdate` and `Recreate`.
- Defaults to `RollingUpdate`.
+ description: DeploymentStrategy which will be used for this Deployment. Valid values are `RollingUpdate` and `Recreate`. Defaults to `RollingUpdate`.
description: Template for Kafka MirrorMaker `Deployment`.
pod:
type: object
@@ -680,15 +549,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -697,12 +562,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace
- to use for pulling any of the images used by this Pod. When
- the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in
- Cluster Operator and the `imagePullSecrets` option are specified,
- only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS`
- variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -758,21 +618,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes and
- common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after
- the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly halted
- with a kill signal. Set this value to longer than the expected
- cleanup time for your process. Value must be a non-negative
- integer. A zero value indicates delete immediately. You
- might need to increase the grace period for very large Kafka
- clusters, so that the Kafka brokers have enough time to
- transfer their work to another broker before they are terminated.
- Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1080,13 +930,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this
- `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1098,19 +945,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an optional
- list of hosts and IPs that will be injected into the Pod's
- hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -1152,25 +994,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic
- Pod eviction. A Pod eviction is allowed when the `maxUnavailable`
- number of pods or fewer are unavailable after the eviction.
- Setting this value to 0 prevents all voluntary evictions,
- so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka MirrorMaker `PodDisruptionBudget`.
mirrorMakerContainer:
type: object
@@ -1186,8 +1019,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1256,49 +1088,37 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka MirrorMaker service account.
- description: Template to specify how Kafka MirrorMaker resources,
- `Deployments` and `Pods`, are generated.
+ description: "Template to specify how Kafka MirrorMaker resources, `Deployments` and `Pods`, are generated."
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -1306,30 +1126,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
oneOf:
- properties:
@@ -1355,35 +1168,27 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
labelSelector:
type: string
description: Label selector for pods providing this resource.
replicas:
type: integer
- description: The current number of pods being used to provide this
- resource.
+ description: The current number of pods being used to provide this resource.
description: The status of Kafka MirrorMaker.
diff --git a/install/cluster-operator/046-Crd-kafkabridge.yaml b/install/cluster-operator/046-Crd-kafkabridge.yaml
index aa679a83289..9d06eb7e2f6 100644
--- a/install/cluster-operator/046-Crd-kafkabridge.yaml
+++ b/install/cluster-operator/046-Crd-kafkabridge.yaml
@@ -41,7 +41,7 @@ spec:
priority: 1
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -59,8 +59,7 @@ spec:
description: The docker image for the pods.
bootstrapServers:
type: string
- description: A list of host:port pairs for establishing the initial
- connection to the Kafka cluster.
+ description: A list of host:port pairs for establishing the initial connection to the Kafka cluster.
tls:
type: object
properties:
@@ -79,8 +78,7 @@ spec:
- certificate
- secretName
description: Trusted certificates for TLS connection.
- description: TLS configuration for connecting Kafka Bridge to the
- cluster.
+ description: TLS configuration for connecting Kafka Bridge to the cluster.
authentication:
type: object
properties:
@@ -89,29 +87,20 @@ spec:
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the access token
- which was obtained from the authorization server.
+ description: Link to Kubernetes Secret containing the access token which was obtained from the authorization server.
accessTokenIsJwt:
type: boolean
- description: Configure whether access token should be treated
- as JWT. This should be set to `false` if the authorization server
- returns opaque tokens. Defaults to `true`.
+ description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against
- the authorization server. Some authorization servers require
- the audience to be explicitly set. The possible values depend
- on how the authorization server is configured. By default, `audience`
- is not specified when performing the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
@@ -128,51 +117,38 @@ spec:
- certificate
- key
- secretName
- description: Reference to the `Secret` which holds the certificate
- and private key pair.
+ description: Reference to the `Secret` which holds the certificate and private key pair.
clientId:
type: string
- description: OAuth Client ID which the Kafka client can use to
- authenticate against the OAuth server and use the token endpoint
- URI.
+ description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
clientSecret:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the OAuth client
- secret which the Kafka client can use to authenticate against
- the OAuth server and use the token endpoint URI.
+ description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting to
- authorization server. If not set, the effective connect timeout
- is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification. Default
- value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
maxTokenExpirySeconds:
type: integer
- description: Set or limit time-to-live of the access tokens to
- the specified number of seconds. This should be set if the authorization
- server returns opaque tokens.
+ description: Set or limit time-to-live of the access tokens to the specified number of seconds. This should be set if the authorization server returns opaque tokens.
passwordSecret:
type: object
properties:
password:
type: string
- description: The name of the key in the Secret under which
- the password is stored.
+ description: The name of the key in the Secret under which the password is stored.
secretName:
type: string
description: The name of the Secret containing the password.
@@ -182,32 +158,23 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting to authorization
- server. If not set, the effective read timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
key:
type: string
- description: The key under which the secret value is stored
- in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the refresh
- token which can be used to obtain access token from the authorization
- server.
+ description: Link to Kubernetes Secret containing the refresh token which can be used to obtain access token from the authorization server.
scope:
type: string
- description: OAuth scope to use when authenticating against the
- authorization server. Some authorization servers require this
- to be set. The possible values depend on how authorization server
- is configured. By default `scope` is not specified when doing
- the token endpoint request.
+ description: OAuth scope to use when authenticating against the authorization server. Some authorization servers require this to be set. The possible values depend on how authorization server is configured. By default `scope` is not specified when doing the token endpoint request.
tlsTrustedCertificates:
type: array
items:
@@ -222,8 +189,7 @@ spec:
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection to the OAuth
- server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
description: Authorization server token endpoint URI.
@@ -235,13 +201,7 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported
- types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`.
- `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256
- and SASL SCRAM-SHA-512 Authentication, respectively. `plain`
- type uses SASL PLAIN Authentication. `oauth` type uses SASL
- OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication.
- The `tls` type is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
@@ -262,8 +222,7 @@ spec:
type: array
items:
type: string
- description: List of allowed origins. Java regular expressions
- can be used.
+ description: List of allowed origins. Java regular expressions can be used.
allowedMethods:
type: array
items:
@@ -280,8 +239,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: The Kafka AdminClient configuration used for AdminClient
- instances created by the bridge.
+ description: The Kafka AdminClient configuration used for AdminClient instances created by the bridge.
description: Kafka AdminClient related configuration.
consumer:
type: object
@@ -289,11 +247,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka consumer configuration used for consumer
- instances created by the bridge. Properties with the following
- prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl.,
- security. (with the exception of: ssl.endpoint.identification.algorithm,
- ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The Kafka consumer configuration used for consumer instances created by the bridge. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, group.id, sasl., security. (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
description: Kafka consumer related configuration.
producer:
type: object
@@ -301,11 +255,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka producer configuration used for producer
- instances created by the bridge. Properties with the following
- prefixes cannot be set: ssl., bootstrap.servers, sasl., security.
- (with the exception of: ssl.endpoint.identification.algorithm,
- ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The Kafka producer configuration used for producer instances created by the bridge. Properties with the following prefixes cannot be set: ssl., bootstrap.servers, sasl., security. (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
description: Kafka producer related configuration.
resources:
type: object
@@ -326,16 +276,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -347,8 +296,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: '**Currently not supported** JVM Options for pods.'
logging:
type: object
@@ -362,7 +310,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -375,10 +323,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration for Kafka Bridge.
@@ -391,30 +337,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -422,30 +361,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
template:
type: object
@@ -459,24 +391,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
enum:
- RollingUpdate
- Recreate
- description: DeploymentStrategy which will be used for this
- Deployment. Valid values are `RollingUpdate` and `Recreate`.
- Defaults to `RollingUpdate`.
+ description: DeploymentStrategy which will be used for this Deployment. Valid values are `RollingUpdate` and `Recreate`. Defaults to `RollingUpdate`.
description: Template for Kafka Bridge `Deployment`.
pod:
type: object
@@ -487,15 +413,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -504,12 +426,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace
- to use for pulling any of the images used by this Pod. When
- the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in
- Cluster Operator and the `imagePullSecrets` option are specified,
- only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS`
- variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -565,21 +482,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes and
- common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after
- the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly halted
- with a kill signal. Set this value to longer than the expected
- cleanup time for your process. Value must be a non-negative
- integer. A zero value indicates delete immediately. You
- might need to increase the grace period for very large Kafka
- clusters, so that the Kafka brokers have enough time to
- transfer their work to another broker before they are terminated.
- Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -887,13 +794,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this
- `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -905,19 +809,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an optional
- list of hosts and IPs that will be injected into the Pod's
- hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -959,15 +858,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -975,15 +870,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service.
- Available options are `SingleStack`, `PreferDualStack` and
- `RequireDualStack`. `SingleStack` is for a single IP family.
- `PreferDualStack` is for two IP families on dual-stack configured
- clusters or a single IP family on single-stack clusters.
- `RequireDualStack` fails unless there are two IP families
- on dual-stack configured clusters. If unspecified, Kubernetes
- will choose the default value based on the service type.
- Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -991,10 +878,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the `ipFamilyPolicy`
- setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka Bridge API `Service`.
podDisruptionBudget:
type: object
@@ -1005,25 +889,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic
- Pod eviction. A Pod eviction is allowed when the `maxUnavailable`
- number of pods or fewer are unavailable after the eviction.
- Setting this value to 0 prevents all voluntary evictions,
- so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka Bridge `PodDisruptionBudget`.
bridgeContainer:
type: object
@@ -1039,8 +914,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1109,19 +983,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Bridge service account.
- description: Template for Kafka Bridge resources. The template allows
- users to specify how is the `Deployment` and `Pods` generated.
+ description: Template for Kafka Bridge resources. The template allows users to specify how is the `Deployment` and `Pods` generated.
tracing:
type: object
properties:
@@ -1129,8 +998,7 @@ spec:
type: string
enum:
- jaeger
- description: Type of the tracing used. Currently the only supported
- type is `jaeger` for Jaeger tracing.
+ description: Type of the tracing used. Currently the only supported type is `jaeger` for Jaeger tracing.
required:
- type
description: The configuration of tracing in Kafka Bridge.
@@ -1147,39 +1015,30 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
url:
type: string
- description: The URL at which external client applications can access
- the Kafka Bridge.
+ description: The URL at which external client applications can access the Kafka Bridge.
labelSelector:
type: string
description: Label selector for pods providing this resource.
replicas:
type: integer
- description: The current number of pods being used to provide this
- resource.
+ description: The current number of pods being used to provide this resource.
description: The status of the Kafka Bridge.
diff --git a/install/cluster-operator/047-Crd-kafkaconnector.yaml b/install/cluster-operator/047-Crd-kafkaconnector.yaml
index 1c5887a2e31..742c835129b 100644
--- a/install/cluster-operator/047-Crd-kafkaconnector.yaml
+++ b/install/cluster-operator/047-Crd-kafkaconnector.yaml
@@ -43,7 +43,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -62,8 +62,7 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following properties
- cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
description: Whether the connector should be paused. Defaults to false.
@@ -78,35 +77,27 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
connectorStatus:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: The connector status, as reported by the Kafka Connect
- REST API.
+ description: "The connector status, as reported by the Kafka Connect REST API."
tasksMax:
type: integer
description: The maximum number of tasks for the Kafka Connector.
diff --git a/install/cluster-operator/048-Crd-kafkamirrormaker2.yaml b/install/cluster-operator/048-Crd-kafkamirrormaker2.yaml
index 633b24179bb..6b0169fcad4 100644
--- a/install/cluster-operator/048-Crd-kafkamirrormaker2.yaml
+++ b/install/cluster-operator/048-Crd-kafkamirrormaker2.yaml
@@ -36,7 +36,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -47,9 +47,7 @@ spec:
properties:
version:
type: string
- description: The Kafka Connect version. Defaults to {DefaultKafkaVersion}.
- Consult the user documentation to understand the process required
- to upgrade or downgrade the version.
+ description: "The Kafka Connect version. Defaults to {DefaultKafkaVersion}. Consult the user documentation to understand the process required to upgrade or downgrade the version."
replicas:
type: integer
description: The number of pods in the Kafka Connect group.
@@ -58,8 +56,7 @@ spec:
description: The docker image for the pods.
connectCluster:
type: string
- description: The cluster alias used for Kafka Connect. The alias must
- match a cluster in the list at `spec.clusters`.
+ description: The cluster alias used for Kafka Connect. The alias must match a cluster in the list at `spec.clusters`.
clusters:
type: array
items:
@@ -67,12 +64,11 @@ spec:
properties:
alias:
type: string
- pattern: ^[a-zA-Z0-9\._\-]{1,100}$
+ pattern: "^[a-zA-Z0-9\\._\\-]{1,100}$"
description: Alias used to reference the Kafka cluster.
bootstrapServers:
type: string
- description: A comma-separated list of `host:port` pairs for
- establishing the connection to the Kafka cluster.
+ description: A comma-separated list of `host:port` pairs for establishing the connection to the Kafka cluster.
tls:
type: object
properties:
@@ -83,18 +79,15 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
- description: The name of the Secret containing the
- certificate.
+ description: The name of the Secret containing the certificate.
required:
- certificate
- secretName
description: Trusted certificates for TLS connection.
- description: TLS configuration for connecting MirrorMaker 2.0
- connectors to a cluster.
+ description: TLS configuration for connecting MirrorMaker 2.0 connectors to a cluster.
authentication:
type: object
properties:
@@ -103,37 +96,26 @@ spec:
properties:
key:
type: string
- description: The key under which the secret value is
- stored in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the access
- token which was obtained from the authorization server.
+ description: Link to Kubernetes Secret containing the access token which was obtained from the authorization server.
accessTokenIsJwt:
type: boolean
- description: Configure whether access token should be treated
- as JWT. This should be set to `false` if the authorization
- server returns opaque tokens. Defaults to `true`.
+ description: Configure whether access token should be treated as JWT. This should be set to `false` if the authorization server returns opaque tokens. Defaults to `true`.
audience:
type: string
- description: OAuth audience to use when authenticating against
- the authorization server. Some authorization servers require
- the audience to be explicitly set. The possible values
- depend on how the authorization server is configured.
- By default, `audience` is not specified when performing
- the token endpoint request.
+ description: "OAuth audience to use when authenticating against the authorization server. Some authorization servers require the audience to be explicitly set. The possible values depend on how the authorization server is configured. By default, `audience` is not specified when performing the token endpoint request."
certificateAndKey:
type: object
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
key:
type: string
description: The name of the private key in the Secret.
@@ -144,51 +126,38 @@ spec:
- certificate
- key
- secretName
- description: Reference to the `Secret` which holds the certificate
- and private key pair.
+ description: Reference to the `Secret` which holds the certificate and private key pair.
clientId:
type: string
- description: OAuth Client ID which the Kafka client can
- use to authenticate against the OAuth server and use the
- token endpoint URI.
+ description: OAuth Client ID which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
clientSecret:
type: object
properties:
key:
type: string
- description: The key under which the secret value is
- stored in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the OAuth
- client secret which the Kafka client can use to authenticate
- against the OAuth server and use the token endpoint URI.
+ description: Link to Kubernetes Secret containing the OAuth client secret which the Kafka client can use to authenticate against the OAuth server and use the token endpoint URI.
connectTimeoutSeconds:
type: integer
- description: The connect timeout in seconds when connecting
- to authorization server. If not set, the effective connect
- timeout is 60 seconds.
+ description: "The connect timeout in seconds when connecting to authorization server. If not set, the effective connect timeout is 60 seconds."
disableTlsHostnameVerification:
type: boolean
- description: Enable or disable TLS hostname verification.
- Default value is `false`.
+ description: Enable or disable TLS hostname verification. Default value is `false`.
maxTokenExpirySeconds:
type: integer
- description: Set or limit time-to-live of the access tokens
- to the specified number of seconds. This should be set
- if the authorization server returns opaque tokens.
+ description: Set or limit time-to-live of the access tokens to the specified number of seconds. This should be set if the authorization server returns opaque tokens.
passwordSecret:
type: object
properties:
password:
type: string
- description: The name of the key in the Secret under
- which the password is stored.
+ description: The name of the key in the Secret under which the password is stored.
secretName:
type: string
description: The name of the Secret containing the password.
@@ -198,33 +167,23 @@ spec:
description: Reference to the `Secret` which holds the password.
readTimeoutSeconds:
type: integer
- description: The read timeout in seconds when connecting
- to authorization server. If not set, the effective read
- timeout is 60 seconds.
+ description: "The read timeout in seconds when connecting to authorization server. If not set, the effective read timeout is 60 seconds."
refreshToken:
type: object
properties:
key:
type: string
- description: The key under which the secret value is
- stored in the Kubernetes Secret.
+ description: The key under which the secret value is stored in the Kubernetes Secret.
secretName:
type: string
- description: The name of the Kubernetes Secret containing
- the secret value.
+ description: The name of the Kubernetes Secret containing the secret value.
required:
- key
- secretName
- description: Link to Kubernetes Secret containing the refresh
- token which can be used to obtain access token from the
- authorization server.
+ description: Link to Kubernetes Secret containing the refresh token which can be used to obtain access token from the authorization server.
scope:
type: string
- description: OAuth scope to use when authenticating against
- the authorization server. Some authorization servers require
- this to be set. The possible values depend on how authorization
- server is configured. By default `scope` is not specified
- when doing the token endpoint request.
+ description: OAuth scope to use when authenticating against the authorization server. Some authorization servers require this to be set. The possible values depend on how authorization server is configured. By default `scope` is not specified when doing the token endpoint request.
tlsTrustedCertificates:
type: array
items:
@@ -232,17 +191,14 @@ spec:
properties:
certificate:
type: string
- description: The name of the file certificate in the
- Secret.
+ description: The name of the file certificate in the Secret.
secretName:
type: string
- description: The name of the Secret containing the
- certificate.
+ description: The name of the Secret containing the certificate.
required:
- certificate
- secretName
- description: Trusted certificates for TLS connection to
- the OAuth server.
+ description: Trusted certificates for TLS connection to the OAuth server.
tokenEndpointUri:
type: string
description: Authorization server token endpoint URI.
@@ -254,29 +210,17 @@ spec:
- scram-sha-512
- plain
- oauth
- description: Authentication type. Currently the only supported
- types are `tls`, `scram-sha-256`, `scram-sha-512`, and
- `plain`. `scram-sha-256` and `scram-sha-512` types use
- SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication,
- respectively. `plain` type uses SASL PLAIN Authentication.
- `oauth` type uses SASL OAUTHBEARER Authentication. The
- `tls` type uses TLS Client Authentication. The `tls` type
- is supported only over TLS connections.
+ description: "Authentication type. Currently the only supported types are `tls`, `scram-sha-256`, `scram-sha-512`, and `plain`. `scram-sha-256` and `scram-sha-512` types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 Authentication, respectively. `plain` type uses SASL PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER Authentication. The `tls` type uses TLS Client Authentication. The `tls` type is supported only over TLS connections."
username:
type: string
description: Username used for the authentication.
required:
- type
- description: Authentication configuration for connecting to
- the cluster.
+ description: Authentication configuration for connecting to the cluster.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The MirrorMaker 2.0 cluster config. Properties
- with the following prefixes cannot be set: ssl., sasl., security.,
- listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes,
- producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm,
- ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols).'
+ description: "The MirrorMaker 2.0 cluster config. Properties with the following prefixes cannot be set: ssl., sasl., security., listeners, plugin.path, rest., bootstrap.servers, consumer.interceptor.classes, producer.interceptor.classes (with the exception of: ssl.endpoint.identification.algorithm, ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols)."
required:
- alias
- bootstrapServers
@@ -288,14 +232,10 @@ spec:
properties:
sourceCluster:
type: string
- description: The alias of the source cluster used by the Kafka
- MirrorMaker 2.0 connectors. The alias must match a cluster
- in the list at `spec.clusters`.
+ description: The alias of the source cluster used by the Kafka MirrorMaker 2.0 connectors. The alias must match a cluster in the list at `spec.clusters`.
targetCluster:
type: string
- description: The alias of the target cluster used by the Kafka
- MirrorMaker 2.0 connectors. The alias must match a cluster
- in the list at `spec.clusters`.
+ description: The alias of the target cluster used by the Kafka MirrorMaker 2.0 connectors. The alias must match a cluster in the list at `spec.clusters`.
sourceConnector:
type: object
properties:
@@ -306,14 +246,11 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following
- properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
- description: Whether the connector should be paused. Defaults
- to false.
- description: The specification of the Kafka MirrorMaker 2.0
- source connector.
+ description: Whether the connector should be paused. Defaults to false.
+ description: The specification of the Kafka MirrorMaker 2.0 source connector.
heartbeatConnector:
type: object
properties:
@@ -324,14 +261,11 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following
- properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
- description: Whether the connector should be paused. Defaults
- to false.
- description: The specification of the Kafka MirrorMaker 2.0
- heartbeat connector.
+ description: Whether the connector should be paused. Defaults to false.
+ description: The specification of the Kafka MirrorMaker 2.0 heartbeat connector.
checkpointConnector:
type: object
properties:
@@ -342,41 +276,29 @@ spec:
config:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: 'The Kafka Connector configuration. The following
- properties cannot be set: connector.class, tasks.max.'
+ description: "The Kafka Connector configuration. The following properties cannot be set: connector.class, tasks.max."
pause:
type: boolean
- description: Whether the connector should be paused. Defaults
- to false.
- description: The specification of the Kafka MirrorMaker 2.0
- checkpoint connector.
+ description: Whether the connector should be paused. Defaults to false.
+ description: The specification of the Kafka MirrorMaker 2.0 checkpoint connector.
topicsPattern:
type: string
- description: A regular expression matching the topics to be
- mirrored, for example, "topic1\|topic2\|topic3". Comma-separated
- lists are also supported.
+ description: "A regular expression matching the topics to be mirrored, for example, \"topic1\\|topic2\\|topic3\". Comma-separated lists are also supported."
topicsBlacklistPattern:
type: string
- description: A regular expression matching the topics to exclude
- from mirroring. Comma-separated lists are also supported.
+ description: A regular expression matching the topics to exclude from mirroring. Comma-separated lists are also supported.
topicsExcludePattern:
type: string
- description: A regular expression matching the topics to exclude
- from mirroring. Comma-separated lists are also supported.
+ description: A regular expression matching the topics to exclude from mirroring. Comma-separated lists are also supported.
groupsPattern:
type: string
- description: A regular expression matching the consumer groups
- to be mirrored. Comma-separated lists are also supported.
+ description: A regular expression matching the consumer groups to be mirrored. Comma-separated lists are also supported.
groupsBlacklistPattern:
type: string
- description: A regular expression matching the consumer groups
- to exclude from mirroring. Comma-separated lists are also
- supported.
+ description: A regular expression matching the consumer groups to exclude from mirroring. Comma-separated lists are also supported.
groupsExcludePattern:
type: string
- description: A regular expression matching the consumer groups
- to exclude from mirroring. Comma-separated lists are also
- supported.
+ description: A regular expression matching the consumer groups to exclude from mirroring. Comma-separated lists are also supported.
required:
- sourceCluster
- targetCluster
@@ -390,38 +312,30 @@ spec:
requests:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: The maximum limits for CPU and memory resources and the
- requested initial resources.
+ description: The maximum limits for CPU and memory resources and the requested initial resources.
livenessProbe:
type: object
properties:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod liveness checking.
readinessProbe:
type: object
@@ -429,30 +343,23 @@ spec:
failureThreshold:
type: integer
minimum: 1
- description: Minimum consecutive failures for the probe to be
- considered failed after having succeeded. Defaults to 3. Minimum
- value is 1.
+ description: Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
initialDelaySeconds:
type: integer
minimum: 0
- description: The initial delay before first the health is first
- checked. Default to 15 seconds. Minimum value is 0.
+ description: The initial delay before first the health is first checked. Default to 15 seconds. Minimum value is 0.
periodSeconds:
type: integer
minimum: 1
- description: How often (in seconds) to perform the probe. Default
- to 10 seconds. Minimum value is 1.
+ description: How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
successThreshold:
type: integer
minimum: 1
- description: Minimum consecutive successes for the probe to be
- considered successful after having failed. Defaults to 1. Must
- be 1 for liveness. Minimum value is 1.
+ description: Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.
timeoutSeconds:
type: integer
minimum: 1
- description: The timeout for each attempted health check. Default
- to 5 seconds. Minimum value is 1.
+ description: The timeout for each attempted health check. Default to 5 seconds. Minimum value is 1.
description: Pod readiness checking.
jvmOptions:
type: object
@@ -463,16 +370,15 @@ spec:
description: A map of -XX options to the JVM.
"-Xms":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xms option to to the JVM.
"-Xmx":
type: string
- pattern: ^[0-9]+[mMgG]?$
+ pattern: "^[0-9]+[mMgG]?$"
description: -Xmx option to to the JVM.
gcLoggingEnabled:
type: boolean
- description: Specifies whether the Garbage Collection logging
- is enabled. The default is false.
+ description: Specifies whether the Garbage Collection logging is enabled. The default is false.
javaSystemProperties:
type: array
items:
@@ -484,8 +390,7 @@ spec:
value:
type: string
description: The system property value.
- description: A map of additional system properties which will
- be passed using the `-D` option to the JVM.
+ description: A map of additional system properties which will be passed using the `-D` option to the JVM.
description: JVM Options for pods.
jmxOptions:
type: object
@@ -497,13 +402,10 @@ spec:
type: string
enum:
- password
- description: Authentication type. Currently the only supported
- types are `password`.`password` type creates a username
- and protected port with no TLS.
+ description: Authentication type. Currently the only supported types are `password`.`password` type creates a username and protected port with no TLS.
required:
- type
- description: Authentication configuration for connecting to the
- JMX port.
+ description: Authentication configuration for connecting to the JMX port.
description: JMX Options.
logging:
type: object
@@ -517,7 +419,7 @@ spec:
enum:
- inline
- external
- description: Logging type, must be either 'inline' or 'external'.
+ description: "Logging type, must be either 'inline' or 'external'."
valueFrom:
type: object
properties:
@@ -530,13 +432,24 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: '`ConfigMap` entry where the logging configuration
- is stored. '
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: '`ConfigMap` entry where the logging configuration is stored. '
required:
- type
description: Logging configuration for Kafka Connect.
+ clientRackInitImage:
+ type: string
+ description: The image of the init container used for initializing the `client.rack`.
+ rack:
+ type: object
+ properties:
+ topologyKey:
+ type: string
+ example: topology.kubernetes.io/zone
+ description: A key that matches labels assigned to the Kubernetes cluster nodes. The value of the label is used to set the broker's `broker.rack` config and `client.rack` in Kafka Connect.
+ required:
+ - topologyKey
+ description: Configuration of the node label which will be used as the `client.rack` consumer configuration.
tracing:
type: object
properties:
@@ -544,8 +457,7 @@ spec:
type: string
enum:
- jaeger
- description: Type of the tracing used. Currently the only supported
- type is `jaeger` for Jaeger tracing.
+ description: Type of the tracing used. Currently the only supported type is `jaeger` for Jaeger tracing.
required:
- type
description: The configuration of tracing in Kafka Connect.
@@ -561,24 +473,18 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
deploymentStrategy:
type: string
enum:
- RollingUpdate
- Recreate
- description: DeploymentStrategy which will be used for this
- Deployment. Valid values are `RollingUpdate` and `Recreate`.
- Defaults to `RollingUpdate`.
+ description: DeploymentStrategy which will be used for this Deployment. Valid values are `RollingUpdate` and `Recreate`. Defaults to `RollingUpdate`.
description: Template for Kafka Connect `Deployment`.
pod:
type: object
@@ -589,15 +495,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -606,12 +508,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace
- to use for pulling any of the images used by this Pod. When
- the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in
- Cluster Operator and the `imagePullSecrets` option are specified,
- only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS`
- variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -667,21 +564,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes and
- common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after
- the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly halted
- with a kill signal. Set this value to longer than the expected
- cleanup time for your process. Value must be a non-negative
- integer. A zero value indicates delete immediately. You
- might need to increase the grace period for very large Kafka
- clusters, so that the Kafka brokers have enough time to
- transfer their work to another broker before they are terminated.
- Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -989,13 +876,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this
- `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1007,19 +891,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an optional
- list of hosts and IPs that will be injected into the Pod's
- hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -1061,15 +940,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
ipFamilyPolicy:
type: string
@@ -1077,15 +952,7 @@ spec:
- SingleStack
- PreferDualStack
- RequireDualStack
- description: Specifies the IP Family Policy used by the service.
- Available options are `SingleStack`, `PreferDualStack` and
- `RequireDualStack`. `SingleStack` is for a single IP family.
- `PreferDualStack` is for two IP families on dual-stack configured
- clusters or a single IP family on single-stack clusters.
- `RequireDualStack` fails unless there are two IP families
- on dual-stack configured clusters. If unspecified, Kubernetes
- will choose the default value based on the service type.
- Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Family Policy used by the service. Available options are `SingleStack`, `PreferDualStack` and `RequireDualStack`. `SingleStack` is for a single IP family. `PreferDualStack` is for two IP families on dual-stack configured clusters or a single IP family on single-stack clusters. `RequireDualStack` fails unless there are two IP families on dual-stack configured clusters. If unspecified, Kubernetes will choose the default value based on the service type. Available on Kubernetes 1.20 and newer."
ipFamilies:
type: array
items:
@@ -1093,10 +960,7 @@ spec:
enum:
- IPv4
- IPv6
- description: Specifies the IP Families used by the service.
- Available options are `IPv4` and `IPv6. If unspecified,
- Kubernetes will choose the default value based on the `ipFamilyPolicy`
- setting. Available on Kubernetes 1.20 and newer.
+ description: "Specifies the IP Families used by the service. Available options are `IPv4` and `IPv6. If unspecified, Kubernetes will choose the default value based on the `ipFamilyPolicy` setting. Available on Kubernetes 1.20 and newer."
description: Template for Kafka Connect API `Service`.
connectContainer:
type: object
@@ -1112,8 +976,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1187,8 +1050,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1257,25 +1119,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
maxUnavailable:
type: integer
minimum: 0
- description: Maximum number of unavailable pods to allow automatic
- Pod eviction. A Pod eviction is allowed when the `maxUnavailable`
- number of pods or fewer are unavailable after the eviction.
- Setting this value to 0 prevents all voluntary evictions,
- so the pods must be evicted manually. Defaults to 1.
+ description: "Maximum number of unavailable pods to allow automatic Pod eviction. A Pod eviction is allowed when the `maxUnavailable` number of pods or fewer are unavailable after the eviction. Setting this value to 0 prevents all voluntary evictions, so the pods must be evicted manually. Defaults to 1."
description: Template for Kafka Connect `PodDisruptionBudget`.
serviceAccount:
type: object
@@ -1286,15 +1139,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect service account.
clusterRoleBinding:
@@ -1306,15 +1155,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect ClusterRoleBinding.
buildPod:
@@ -1326,15 +1171,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
imagePullSecrets:
type: array
@@ -1343,12 +1184,7 @@ spec:
properties:
name:
type: string
- description: List of references to secrets in the same namespace
- to use for pulling any of the images used by this Pod. When
- the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in
- Cluster Operator and the `imagePullSecrets` option are specified,
- only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS`
- variable is ignored.
+ description: "List of references to secrets in the same namespace to use for pulling any of the images used by this Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` environment variable in Cluster Operator and the `imagePullSecrets` option are specified, only the `imagePullSecrets` variable is used and the `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored."
securityContext:
type: object
properties:
@@ -1404,21 +1240,11 @@ spec:
type: boolean
runAsUserName:
type: string
- description: Configures pod-level security attributes and
- common container settings.
+ description: Configures pod-level security attributes and common container settings.
terminationGracePeriodSeconds:
type: integer
minimum: 0
- description: The grace period is the duration in seconds after
- the processes running in the pod are sent a termination
- signal, and the time when the processes are forcibly halted
- with a kill signal. Set this value to longer than the expected
- cleanup time for your process. Value must be a non-negative
- integer. A zero value indicates delete immediately. You
- might need to increase the grace period for very large Kafka
- clusters, so that the Kafka brokers have enough time to
- transfer their work to another broker before they are terminated.
- Defaults to 30 seconds.
+ description: "The grace period is the duration in seconds after the processes running in the pod are sent a termination signal, and the time when the processes are forcibly halted with a kill signal. Set this value to longer than the expected cleanup time for your process. Value must be a non-negative integer. A zero value indicates delete immediately. You might need to increase the grace period for very large Kafka clusters, so that the Kafka brokers have enough time to transfer their work to another broker before they are terminated. Defaults to 30 seconds."
affinity:
type: object
properties:
@@ -1726,13 +1552,10 @@ spec:
description: The pod's tolerations.
priorityClassName:
type: string
- description: The name of the priority class used to assign
- priority to the pods. For more information about priority
- classes, see {K8sPriorityClass}.
+ description: "The name of the priority class used to assign priority to the pods. For more information about priority classes, see {K8sPriorityClass}."
schedulerName:
type: string
- description: The name of the scheduler used to dispatch this
- `Pod`. If not specified, the default scheduler will be used.
+ description: "The name of the scheduler used to dispatch this `Pod`. If not specified, the default scheduler will be used."
hostAliases:
type: array
items:
@@ -1744,19 +1567,14 @@ spec:
type: string
ip:
type: string
- description: The pod's HostAliases. HostAliases is an optional
- list of hosts and IPs that will be injected into the Pod's
- hosts file if specified.
+ description: The pod's HostAliases. HostAliases is an optional list of hosts and IPs that will be injected into the Pod's hosts file if specified.
tmpDirSizeLimit:
type: string
- pattern: ^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$
- description: Defines the total amount (for example `1Gi`)
- of local storage required for temporary EmptyDir volume
- (`/tmp`). Default value is `1Mi`.
+ pattern: "^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$"
+ description: Defines the total amount (for example `1Gi`) of local storage required for temporary EmptyDir volume (`/tmp`). Default value is `5Mi`.
enableServiceLinks:
type: boolean
- description: Indicates whether information about services
- should be injected into Pod's environment variables.
+ description: Indicates whether information about services should be injected into Pod's environment variables.
topologySpreadConstraints:
type: array
items:
@@ -1788,8 +1606,7 @@ spec:
whenUnsatisfiable:
type: string
description: The pod's topology spread constraints.
- description: Template for Kafka Connect Build `Pods`. The build
- pod is used only on Kubernetes.
+ description: Template for Kafka Connect Build `Pods`. The build pod is used only on Kubernetes.
buildContainer:
type: object
properties:
@@ -1804,8 +1621,7 @@ spec:
value:
type: string
description: The environment variable value.
- description: Environment variables which should be applied
- to the container.
+ description: Environment variables which should be applied to the container.
securityContext:
type: object
properties:
@@ -1864,8 +1680,7 @@ spec:
runAsUserName:
type: string
description: Security context for the container.
- description: Template for the Kafka Connect Build container. The
- build container is used only on Kubernetes.
+ description: Template for the Kafka Connect Build container. The build container is used only on Kubernetes.
buildConfig:
type: object
properties:
@@ -1875,24 +1690,16 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
- description: Metadata to apply to the `PodDisruptionBudgetTemplate`
- resource.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
+ description: Metadata to apply to the `PodDisruptionBudgetTemplate` resource.
pullSecret:
type: string
- description: Container Registry Secret with the credentials
- for pulling the base image.
- description: Template for the Kafka Connect BuildConfig used to
- build new container images. The BuildConfig is used only on
- OpenShift.
+ description: Container Registry Secret with the credentials for pulling the base image.
+ description: Template for the Kafka Connect BuildConfig used to build new container images. The BuildConfig is used only on OpenShift.
buildServiceAccount:
type: object
properties:
@@ -1902,15 +1709,11 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
description: Template for the Kafka Connect Build service account.
jmxSecret:
@@ -1922,21 +1725,14 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for Secret of the Kafka Connect Cluster
- JMX authentication.
- description: Template for Kafka Connect and Kafka Mirror Maker 2 resources.
- The template allows users to specify how the `Deployment`, `Pods`
- and `Service` are generated.
+ description: Template for Secret of the Kafka Connect Cluster JMX authentication.
+ description: "Template for Kafka Connect and Kafka Mirror Maker 2 resources. The template allows users to specify how the `Deployment`, `Pods` and `Service` are generated."
externalConfiguration:
type: object
properties:
@@ -1947,9 +1743,7 @@ spec:
properties:
name:
type: string
- description: Name of the environment variable which will
- be passed to the Kafka Connect pods. The name of the environment
- variable cannot start with `KAFKA_` or `STRIMZI_`.
+ description: Name of the environment variable which will be passed to the Kafka Connect pods. The name of the environment variable cannot start with `KAFKA_` or `STRIMZI_`.
valueFrom:
type: object
properties:
@@ -1973,15 +1767,11 @@ spec:
optional:
type: boolean
description: Reference to a key in a Secret.
- description: Value of the environment variable which will
- be passed to the Kafka Connect pods. It can be passed
- either as a reference to Secret or ConfigMap field. The
- field has to specify exactly one Secret or ConfigMap.
+ description: Value of the environment variable which will be passed to the Kafka Connect pods. It can be passed either as a reference to Secret or ConfigMap field. The field has to specify exactly one Secret or ConfigMap.
required:
- name
- valueFrom
- description: Makes data from a Secret or ConfigMap available in
- the Kafka Connect pods as environment variables.
+ description: Makes data from a Secret or ConfigMap available in the Kafka Connect pods as environment variables.
volumes:
type: array
items:
@@ -2007,12 +1797,10 @@ spec:
type: string
optional:
type: boolean
- description: Reference to a key in a ConfigMap. Exactly
- one Secret or ConfigMap has to be specified.
+ description: Reference to a key in a ConfigMap. Exactly one Secret or ConfigMap has to be specified.
name:
type: string
- description: Name of the volume which will be added to the
- Kafka Connect pods.
+ description: Name of the volume which will be added to the Kafka Connect pods.
secret:
type: object
properties:
@@ -2033,14 +1821,11 @@ spec:
type: boolean
secretName:
type: string
- description: Reference to a key in a Secret. Exactly one
- Secret or ConfigMap has to be specified.
+ description: Reference to a key in a Secret. Exactly one Secret or ConfigMap has to be specified.
required:
- name
- description: Makes data from a Secret or ConfigMap available in
- the Kafka Connect pods as volumes.
- description: Pass data from Secrets or ConfigMaps to the Kafka Connect
- pods and use them to configure connectors.
+ description: Makes data from a Secret or ConfigMap available in the Kafka Connect pods as volumes.
+ description: Pass data from Secrets or ConfigMaps to the Kafka Connect pods and use them to configure connectors.
metricsConfig:
type: object
properties:
@@ -2048,8 +1833,7 @@ spec:
type: string
enum:
- jmxPrometheusExporter
- description: Metrics type. Only 'jmxPrometheusExporter' supported
- currently.
+ description: Metrics type. Only 'jmxPrometheusExporter' supported currently.
valueFrom:
type: object
properties:
@@ -2062,11 +1846,8 @@ spec:
type: string
optional:
type: boolean
- description: Reference to the key in the ConfigMap containing
- the configuration.
- description: ConfigMap entry where the Prometheus JMX Exporter
- configuration is stored. For details of the structure of this
- configuration, see the {JMXExporter}.
+ description: Reference to the key in the ConfigMap containing the configuration.
+ description: "ConfigMap entry where the Prometheus JMX Exporter configuration is stored. For details of the structure of this configuration, see the {JMXExporter}."
required:
- type
- valueFrom
@@ -2084,34 +1865,26 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
url:
type: string
- description: The URL of the REST API endpoint for managing and monitoring
- Kafka Connect connectors.
+ description: The URL of the REST API endpoint for managing and monitoring Kafka Connect connectors.
connectorPlugins:
type: array
items:
@@ -2119,28 +1892,24 @@ spec:
properties:
type:
type: string
- description: The type of the connector plugin. The available
- types are `sink` and `source`.
+ description: The type of the connector plugin. The available types are `sink` and `source`.
version:
type: string
description: The version of the connector plugin.
class:
type: string
description: The class of the connector plugin.
- description: The list of connector plugins available in this Kafka
- Connect deployment.
+ description: The list of connector plugins available in this Kafka Connect deployment.
connectors:
type: array
items:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: List of MirrorMaker 2.0 connector statuses, as reported
- by the Kafka Connect REST API.
+ description: "List of MirrorMaker 2.0 connector statuses, as reported by the Kafka Connect REST API."
labelSelector:
type: string
description: Label selector for pods providing this resource.
replicas:
type: integer
- description: The current number of pods being used to provide this
- resource.
+ description: The current number of pods being used to provide this resource.
description: The status of the Kafka MirrorMaker 2.0 cluster.
diff --git a/install/cluster-operator/049-Crd-kafkarebalance.yaml b/install/cluster-operator/049-Crd-kafkarebalance.yaml
index c847722d991..baae156afd6 100644
--- a/install/cluster-operator/049-Crd-kafkarebalance.yaml
+++ b/install/cluster-operator/049-Crd-kafkarebalance.yaml
@@ -30,6 +30,26 @@ spec:
description: The name of the Kafka cluster this resource rebalances
jsonPath: .metadata.labels.strimzi\.io/cluster
type: string
+ - name: PendingProposal
+ description: A proposal has been requested from Cruise Control
+ jsonPath: ".status.conditions[?(@.type==\"PendingProposal\")].status"
+ type: string
+ - name: ProposalReady
+ description: A proposal is ready and waiting for approval
+ jsonPath: ".status.conditions[?(@.type==\"ProposalReady\")].status"
+ type: string
+ - name: Rebalancing
+ description: Cruise Control is doing the rebalance
+ jsonPath: ".status.conditions[?(@.type==\"Rebalancing\")].status"
+ type: string
+ - name: Ready
+ description: The rebalance is complete
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
+ type: string
+ - name: NotReady
+ description: There is an error on the custom resource
+ jsonPath: ".status.conditions[?(@.type==\"NotReady\")].status"
+ type: string
schema:
openAPIV3Schema:
type: object
@@ -37,61 +57,53 @@ spec:
spec:
type: object
properties:
+ mode:
+ type: string
+ enum:
+ - full
+ - add-brokers
+ - remove-brokers
+ description: "Mode to run the rebalancing. The supported modes are `full`, `add-brokers`, `remove-brokers`.\nIf not specified, the `full` mode is used by default. \n\n* `full` mode runs the rebalancing across all the brokers in the cluster.\n* `add-brokers` mode can be used after scaling up the cluster to move some replicas to the newly added brokers.\n* `remove-brokers` mode can be used before scaling down the cluster to move replicas out of the brokers to be removed.\n"
+ brokers:
+ type: array
+ items:
+ type: integer
+ description: The list of newly added brokers in case of scaling up or the ones to be removed in case of scaling down to use for rebalancing. This list can be used only with rebalancing mode `add-brokers` and `removed-brokers`. It is ignored with `full` mode.
goals:
type: array
items:
type: string
- description: A list of goals, ordered by decreasing priority, to use
- for generating and executing the rebalance proposal. The supported
- goals are available at https://github.com/linkedin/cruise-control#goals.
- If an empty goals list is provided, the goals declared in the default.goals
- Cruise Control configuration parameter are used.
+ description: "A list of goals, ordered by decreasing priority, to use for generating and executing the rebalance proposal. The supported goals are available at https://github.com/linkedin/cruise-control#goals. If an empty goals list is provided, the goals declared in the default.goals Cruise Control configuration parameter are used."
skipHardGoalCheck:
type: boolean
- description: Whether to allow the hard goals specified in the Kafka
- CR to be skipped in optimization proposal generation. This can be
- useful when some of those hard goals are preventing a balance solution
- being found. Default is false.
+ description: Whether to allow the hard goals specified in the Kafka CR to be skipped in optimization proposal generation. This can be useful when some of those hard goals are preventing a balance solution being found. Default is false.
rebalanceDisk:
type: boolean
- description: Enables intra-broker disk balancing, which balances disk
- space utilization between disks on the same broker. Only applies
- to Kafka deployments that use JBOD storage with multiple disks.
- When enabled, inter-broker balancing is disabled. Default is false.
+ description: "Enables intra-broker disk balancing, which balances disk space utilization between disks on the same broker. Only applies to Kafka deployments that use JBOD storage with multiple disks. When enabled, inter-broker balancing is disabled. Default is false."
excludedTopics:
type: string
- description: A regular expression where any matching topics will be
- excluded from the calculation of optimization proposals. This expression
- will be parsed by the java.util.regex.Pattern class; for more information
- on the supported format consult the documentation for that class.
+ description: A regular expression where any matching topics will be excluded from the calculation of optimization proposals. This expression will be parsed by the java.util.regex.Pattern class; for more information on the supported format consult the documentation for that class.
concurrentPartitionMovementsPerBroker:
type: integer
minimum: 0
- description: The upper bound of ongoing partition replica movements
- going into/out of each broker. Default is 5.
+ description: The upper bound of ongoing partition replica movements going into/out of each broker. Default is 5.
concurrentIntraBrokerPartitionMovements:
type: integer
minimum: 0
- description: The upper bound of ongoing partition replica movements
- between disks within each broker. Default is 2.
+ description: The upper bound of ongoing partition replica movements between disks within each broker. Default is 2.
concurrentLeaderMovements:
type: integer
minimum: 0
- description: The upper bound of ongoing partition leadership movements.
- Default is 1000.
+ description: The upper bound of ongoing partition leadership movements. Default is 1000.
replicationThrottle:
type: integer
minimum: 0
- description: The upper bound, in bytes per second, on the bandwidth
- used to move replicas. There is no limit by default.
+ description: "The upper bound, in bytes per second, on the bandwidth used to move replicas. There is no limit by default."
replicaMovementStrategies:
type: array
items:
type: string
- description: A list of strategy class names used to determine the
- execution order for the replica movements in the generated optimization
- proposal. By default BaseReplicaMovementStrategy is used, which
- will execute the replica movements in the order that they were generated.
+ description: "A list of strategy class names used to determine the execution order for the replica movements in the generated optimization proposal. By default BaseReplicaMovementStrategy is used, which will execute the replica movements in the order that they were generated."
description: The specification of the Kafka rebalance.
status:
type: object
@@ -103,36 +115,26 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
sessionId:
type: string
- description: The session identifier for requests to Cruise Control
- pertaining to this KafkaRebalance resource. This is used by the
- Kafka Rebalance operator to track the status of ongoing rebalancing
- operations.
+ description: The session identifier for requests to Cruise Control pertaining to this KafkaRebalance resource. This is used by the Kafka Rebalance operator to track the status of ongoing rebalancing operations.
optimizationResult:
x-kubernetes-preserve-unknown-fields: true
type: object
diff --git a/install/cluster-operator/050-ConfigMap-strimzi-cluster-operator.yaml b/install/cluster-operator/050-ConfigMap-strimzi-cluster-operator.yaml
index bb669486961..7954a6c97aa 100644
--- a/install/cluster-operator/050-ConfigMap-strimzi-cluster-operator.yaml
+++ b/install/cluster-operator/050-ConfigMap-strimzi-cluster-operator.yaml
@@ -17,19 +17,15 @@ data:
rootLogger.level = ${env:STRIMZI_LOG_LEVEL:-INFO}
rootLogger.appenderRefs = stdout
rootLogger.appenderRef.console.ref = STDOUT
- rootLogger.additivity = false
# Kafka AdminClient logging is a bit noisy at INFO level
logger.kafka.name = org.apache.kafka
logger.kafka.level = WARN
- logger.kafka.additivity = false
# Zookeeper is very verbose even on INFO level -> We set it to WARN by default
logger.zookeepertrustmanager.name = org.apache.zookeeper
logger.zookeepertrustmanager.level = WARN
- logger.zookeepertrustmanager.additivity = false
# Keeps separate level for Netty logging -> to not be changed by the root logger
logger.netty.name = io.netty
logger.netty.level = INFO
- logger.netty.additivity = false
diff --git a/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml b/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml
index 35504589c7c..4c79f9479c3 100644
--- a/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml
+++ b/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml
@@ -27,7 +27,7 @@ spec:
name: strimzi-cluster-operator
containers:
- name: strimzi-cluster-operator
- image: quay.io/strimzi/operator:0.28.0
+ image: quay.io/strimzi/operator:0.29.0
ports:
- containerPort: 8080
name: http
@@ -48,43 +48,53 @@ spec:
- name: STRIMZI_OPERATION_TIMEOUT_MS
value: "300000"
- name: STRIMZI_DEFAULT_TLS_SIDECAR_ENTITY_OPERATOR_IMAGE
- value: quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ value: quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_DEFAULT_KAFKA_EXPORTER_IMAGE
- value: quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ value: quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_DEFAULT_CRUISE_CONTROL_IMAGE
- value: quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
- - name: STRIMZI_DEFAULT_TLS_SIDECAR_CRUISE_CONTROL_IMAGE
- value: quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ value: quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0
- 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_CONNECT_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0
- 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_MIRROR_MAKER_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0
- 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_MIRROR_MAKER_2_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0
- 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_DEFAULT_TOPIC_OPERATOR_IMAGE
- value: quay.io/strimzi/operator:0.28.0
+ value: quay.io/strimzi/operator:0.29.0
- name: STRIMZI_DEFAULT_USER_OPERATOR_IMAGE
- value: quay.io/strimzi/operator:0.28.0
+ value: quay.io/strimzi/operator:0.29.0
- name: STRIMZI_DEFAULT_KAFKA_INIT_IMAGE
- value: quay.io/strimzi/operator:0.28.0
+ value: quay.io/strimzi/operator:0.29.0
- name: STRIMZI_DEFAULT_KAFKA_BRIDGE_IMAGE
- value: quay.io/strimzi/kafka-bridge:0.21.4
+ value: quay.io/strimzi/kafka-bridge:0.21.5
- name: STRIMZI_DEFAULT_JMXTRANS_IMAGE
- value: quay.io/strimzi/jmxtrans:0.28.0
+ value: quay.io/strimzi/jmxtrans:0.29.0
- name: STRIMZI_DEFAULT_KANIKO_EXECUTOR_IMAGE
- value: quay.io/strimzi/kaniko-executor:0.28.0
+ value: quay.io/strimzi/kaniko-executor:0.29.0
- name: STRIMZI_DEFAULT_MAVEN_BUILDER
- value: quay.io/strimzi/maven-builder:0.28.0
+ value: quay.io/strimzi/maven-builder:0.29.0
- name: STRIMZI_OPERATOR_NAMESPACE
valueFrom:
fieldRef:
diff --git a/install/topic-operator/04-Crd-kafkatopic.yaml b/install/topic-operator/04-Crd-kafkatopic.yaml
index eee9bad30fa..bdacdd5bcfa 100644
--- a/install/topic-operator/04-Crd-kafkatopic.yaml
+++ b/install/topic-operator/04-Crd-kafkatopic.yaml
@@ -40,7 +40,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -52,26 +52,19 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This
- cannot be decreased after topic creation. It can be increased after
- topic creation, but it is important to understand the consequences
- that has, especially for topics with semantic partitioning. When
- absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
maximum: 32767
- description: The number of replicas the topic should have. When absent
- this will default to the broker configuration for `default.replication.factor`.
+ description: The number of replicas the topic should have. When absent this will default to the broker configuration for `default.replication.factor`.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
description: The topic configuration.
topicName:
type: string
- description: The name of the topic. When absent this will default
- to the metadata.name of the topic. It is recommended to not set
- this unless the topic name is not a valid Kubernetes resource name.
+ description: The name of the topic. When absent this will default to the metadata.name of the topic. It is recommended to not set this unless the topic name is not a valid Kubernetes resource name.
description: The specification of the topic.
status:
type: object
@@ -83,30 +76,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
topicName:
type: string
description: Topic name.
@@ -131,7 +117,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -143,26 +129,19 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This
- cannot be decreased after topic creation. It can be increased after
- topic creation, but it is important to understand the consequences
- that has, especially for topics with semantic partitioning. When
- absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
maximum: 32767
- description: The number of replicas the topic should have. When absent
- this will default to the broker configuration for `default.replication.factor`.
+ description: The number of replicas the topic should have. When absent this will default to the broker configuration for `default.replication.factor`.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
description: The topic configuration.
topicName:
type: string
- description: The name of the topic. When absent this will default
- to the metadata.name of the topic. It is recommended to not set
- this unless the topic name is not a valid Kubernetes resource name.
+ description: The name of the topic. When absent this will default to the metadata.name of the topic. It is recommended to not set this unless the topic name is not a valid Kubernetes resource name.
description: The specification of the topic.
status:
type: object
@@ -174,30 +153,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
topicName:
type: string
description: Topic name.
@@ -222,7 +194,7 @@ spec:
type: integer
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -234,26 +206,19 @@ spec:
partitions:
type: integer
minimum: 1
- description: The number of partitions the topic should have. This
- cannot be decreased after topic creation. It can be increased after
- topic creation, but it is important to understand the consequences
- that has, especially for topics with semantic partitioning. When
- absent this will default to the broker configuration for `num.partitions`.
+ description: "The number of partitions the topic should have. This cannot be decreased after topic creation. It can be increased after topic creation, but it is important to understand the consequences that has, especially for topics with semantic partitioning. When absent this will default to the broker configuration for `num.partitions`."
replicas:
type: integer
minimum: 1
maximum: 32767
- description: The number of replicas the topic should have. When absent
- this will default to the broker configuration for `default.replication.factor`.
+ description: The number of replicas the topic should have. When absent this will default to the broker configuration for `default.replication.factor`.
config:
x-kubernetes-preserve-unknown-fields: true
type: object
description: The topic configuration.
topicName:
type: string
- description: The name of the topic. When absent this will default
- to the metadata.name of the topic. It is recommended to not set
- this unless the topic name is not a valid Kubernetes resource name.
+ description: The name of the topic. When absent this will default to the metadata.name of the topic. It is recommended to not set this unless the topic name is not a valid Kubernetes resource name.
description: The specification of the topic.
status:
type: object
@@ -265,30 +230,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
topicName:
type: string
description: Topic name.
diff --git a/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml b/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml
index bfd580f6f6b..2fd9702ab5d 100644
--- a/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml
+++ b/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml
@@ -17,7 +17,7 @@ spec:
serviceAccountName: strimzi-topic-operator
containers:
- name: strimzi-topic-operator
- image: quay.io/strimzi/operator:0.28.0
+ image: quay.io/strimzi/operator:0.29.0
args:
- /opt/strimzi/bin/topic_operator_run.sh
env:
diff --git a/install/user-operator/04-Crd-kafkauser.yaml b/install/user-operator/04-Crd-kafkauser.yaml
index b260891c962..cf5994fbbd8 100644
--- a/install/user-operator/04-Crd-kafkauser.yaml
+++ b/install/user-operator/04-Crd-kafkauser.yaml
@@ -40,7 +40,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -67,13 +67,11 @@ spec:
type: string
optional:
type: boolean
- description: Selects a key of a Secret in the resource's
- namespace.
+ description: Selects a key of a Secret in the resource's namespace.
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a
- new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -83,18 +81,7 @@ spec:
description: Authentication type.
required:
- type
- description: "Authentication mechanism enabled for this Kafka user.\
- \ The supported authentication mechanisms are `scram-sha-512`, `tls`,\
- \ and `tls-external`. \n\n* `scram-sha-512` generates a secret with\
- \ SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with\
- \ user certificate for mutual TLS authentication.\n* `tls-external`\
- \ does not generate a user certificate. But prepares the user\
- \ for using mutual TLS authentication using a user certificate generated\
- \ outside the User Operator.\n ACLs and quotas set for this user\
- \ are configured in the `CN=` format.\n\nAuthentication\
- \ is optional. If authentication is not configured, no credentials\
- \ are generated. ACLs and quotas set for the user are configured\
- \ in the `` format suitable for SASL authentication."
+ description: "Authentication mechanism enabled for this Kafka user. The supported authentication mechanisms are `scram-sha-512`, `tls`, and `tls-external`. \n\n* `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with user certificate for mutual TLS authentication.\n* `tls-external` does not generate a user certificate. But prepares the user for using mutual TLS authentication using a user certificate generated outside the User Operator.\n ACLs and quotas set for this user are configured in the `CN=` format.\n\nAuthentication is optional. If authentication is not configured, no credentials are generated. ACLs and quotas set for the user are configured in the `` format suitable for SASL authentication."
authorization:
type: object
properties:
@@ -105,8 +92,7 @@ spec:
properties:
host:
type: string
- description: The host from which the action described in
- the ACL rule is allowed or denied.
+ description: The host from which the action described in the ACL rule is allowed or denied.
operation:
type: string
enum:
@@ -121,29 +107,19 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied.
- Supported operations are: Read, Write, Create, Delete,
- Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs,
- IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
name:
type: string
- description: Name of resource for which given ACL rule
- applies. Can be combined with `patternType` field
- to use prefix pattern.
+ description: Name of resource for which given ACL rule applies. Can be combined with `patternType` field to use prefix pattern.
patternType:
type: string
enum:
- literal
- prefix
- description: Describes the pattern used in the resource
- field. The supported types are `literal` and `prefix`.
- With `literal` pattern type, the resource field will
- be used as a definition of a full name. With `prefix`
- pattern type, the resource name will be used only
- as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -151,33 +127,25 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types
- are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
- description: Indicates the resource for which given ACL
- rule applies.
+ description: Indicates the resource for which given ACL rule applies.
type:
type: string
enum:
- allow
- deny
- description: The type of the rule. Currently the only supported
- type is `allow`. ACL rules with type `allow` are used
- to allow user to execute the specified operations. Default
- value is `allow`.
+ description: The type of the rule. Currently the only supported type is `allow`. ACL rules with type `allow` are used to allow user to execute the specified operations. Default value is `allow`.
required:
- operation
- resource
- description: List of ACL rules which should be applied to this
- user.
+ description: List of ACL rules which should be applied to this user.
type:
type: string
enum:
- simple
- description: Authorization type. Currently the only supported
- type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization.
+ description: Authorization type. Currently the only supported type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization.
required:
- acls
- type
@@ -188,30 +156,20 @@ spec:
consumerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can fetch from a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can fetch from a broker before the clients in the group are throttled. Defined on a per-broker basis.
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted
- for the create topics request, the create partitions request
- and the delete topics request. The rate is accumulated by the
- number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can publish to a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can publish to a broker before the clients in the group are throttled. Defined on a per-broker basis.
requestPercentage:
type: integer
minimum: 0
- description: A quota on the maximum CPU utilization of each client
- group as a percentage of network and I/O threads.
- description: Quotas on requests to control the broker resources used
- by clients. Network bandwidth and request rate quotas can be enforced.Kafka
- documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
+ description: A quota on the maximum CPU utilization of each client group as a percentage of network and I/O threads.
+ description: Quotas on requests to control the broker resources used by clients. Network bandwidth and request rate quotas can be enforced.Kafka documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
template:
type: object
properties:
@@ -224,19 +182,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for KafkaUser resources. The template allows
- users to specify how the `Secret` with password or TLS certificates
- is generated.
+ description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
description: The specification of the user.
status:
@@ -249,30 +201,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
username:
type: string
description: Username.
@@ -300,7 +245,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -327,13 +272,11 @@ spec:
type: string
optional:
type: boolean
- description: Selects a key of a Secret in the resource's
- namespace.
+ description: Selects a key of a Secret in the resource's namespace.
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a
- new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -343,18 +286,7 @@ spec:
description: Authentication type.
required:
- type
- description: "Authentication mechanism enabled for this Kafka user.\
- \ The supported authentication mechanisms are `scram-sha-512`, `tls`,\
- \ and `tls-external`. \n\n* `scram-sha-512` generates a secret with\
- \ SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with\
- \ user certificate for mutual TLS authentication.\n* `tls-external`\
- \ does not generate a user certificate. But prepares the user\
- \ for using mutual TLS authentication using a user certificate generated\
- \ outside the User Operator.\n ACLs and quotas set for this user\
- \ are configured in the `CN=` format.\n\nAuthentication\
- \ is optional. If authentication is not configured, no credentials\
- \ are generated. ACLs and quotas set for the user are configured\
- \ in the `` format suitable for SASL authentication."
+ description: "Authentication mechanism enabled for this Kafka user. The supported authentication mechanisms are `scram-sha-512`, `tls`, and `tls-external`. \n\n* `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with user certificate for mutual TLS authentication.\n* `tls-external` does not generate a user certificate. But prepares the user for using mutual TLS authentication using a user certificate generated outside the User Operator.\n ACLs and quotas set for this user are configured in the `CN=` format.\n\nAuthentication is optional. If authentication is not configured, no credentials are generated. ACLs and quotas set for the user are configured in the `` format suitable for SASL authentication."
authorization:
type: object
properties:
@@ -365,8 +297,7 @@ spec:
properties:
host:
type: string
- description: The host from which the action described in
- the ACL rule is allowed or denied.
+ description: The host from which the action described in the ACL rule is allowed or denied.
operation:
type: string
enum:
@@ -381,29 +312,19 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied.
- Supported operations are: Read, Write, Create, Delete,
- Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs,
- IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
name:
type: string
- description: Name of resource for which given ACL rule
- applies. Can be combined with `patternType` field
- to use prefix pattern.
+ description: Name of resource for which given ACL rule applies. Can be combined with `patternType` field to use prefix pattern.
patternType:
type: string
enum:
- literal
- prefix
- description: Describes the pattern used in the resource
- field. The supported types are `literal` and `prefix`.
- With `literal` pattern type, the resource field will
- be used as a definition of a full name. With `prefix`
- pattern type, the resource name will be used only
- as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -411,33 +332,25 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types
- are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
- description: Indicates the resource for which given ACL
- rule applies.
+ description: Indicates the resource for which given ACL rule applies.
type:
type: string
enum:
- allow
- deny
- description: The type of the rule. Currently the only supported
- type is `allow`. ACL rules with type `allow` are used
- to allow user to execute the specified operations. Default
- value is `allow`.
+ description: The type of the rule. Currently the only supported type is `allow`. ACL rules with type `allow` are used to allow user to execute the specified operations. Default value is `allow`.
required:
- operation
- resource
- description: List of ACL rules which should be applied to this
- user.
+ description: List of ACL rules which should be applied to this user.
type:
type: string
enum:
- simple
- description: Authorization type. Currently the only supported
- type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization.
+ description: Authorization type. Currently the only supported type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization.
required:
- acls
- type
@@ -448,30 +361,20 @@ spec:
consumerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can fetch from a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can fetch from a broker before the clients in the group are throttled. Defined on a per-broker basis.
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted
- for the create topics request, the create partitions request
- and the delete topics request. The rate is accumulated by the
- number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can publish to a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can publish to a broker before the clients in the group are throttled. Defined on a per-broker basis.
requestPercentage:
type: integer
minimum: 0
- description: A quota on the maximum CPU utilization of each client
- group as a percentage of network and I/O threads.
- description: Quotas on requests to control the broker resources used
- by clients. Network bandwidth and request rate quotas can be enforced.Kafka
- documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
+ description: A quota on the maximum CPU utilization of each client group as a percentage of network and I/O threads.
+ description: Quotas on requests to control the broker resources used by clients. Network bandwidth and request rate quotas can be enforced.Kafka documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
template:
type: object
properties:
@@ -484,19 +387,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for KafkaUser resources. The template allows
- users to specify how the `Secret` with password or TLS certificates
- is generated.
+ description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
description: The specification of the user.
status:
@@ -509,30 +406,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
username:
type: string
description: Username.
@@ -560,7 +450,7 @@ spec:
type: string
- name: Ready
description: The state of the custom resource
- jsonPath: .status.conditions[?(@.type=="Ready")].status
+ jsonPath: ".status.conditions[?(@.type==\"Ready\")].status"
type: string
schema:
openAPIV3Schema:
@@ -587,13 +477,11 @@ spec:
type: string
optional:
type: boolean
- description: Selects a key of a Secret in the resource's
- namespace.
+ description: Selects a key of a Secret in the resource's namespace.
description: Secret from which the password should be read.
required:
- valueFrom
- description: Specify the password for the user. If not set, a
- new password is generated by the User Operator.
+ description: "Specify the password for the user. If not set, a new password is generated by the User Operator."
type:
type: string
enum:
@@ -603,18 +491,7 @@ spec:
description: Authentication type.
required:
- type
- description: "Authentication mechanism enabled for this Kafka user.\
- \ The supported authentication mechanisms are `scram-sha-512`, `tls`,\
- \ and `tls-external`. \n\n* `scram-sha-512` generates a secret with\
- \ SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with\
- \ user certificate for mutual TLS authentication.\n* `tls-external`\
- \ does not generate a user certificate. But prepares the user\
- \ for using mutual TLS authentication using a user certificate generated\
- \ outside the User Operator.\n ACLs and quotas set for this user\
- \ are configured in the `CN=` format.\n\nAuthentication\
- \ is optional. If authentication is not configured, no credentials\
- \ are generated. ACLs and quotas set for the user are configured\
- \ in the `` format suitable for SASL authentication."
+ description: "Authentication mechanism enabled for this Kafka user. The supported authentication mechanisms are `scram-sha-512`, `tls`, and `tls-external`. \n\n* `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 credentials.\n* `tls` generates a secret with user certificate for mutual TLS authentication.\n* `tls-external` does not generate a user certificate. But prepares the user for using mutual TLS authentication using a user certificate generated outside the User Operator.\n ACLs and quotas set for this user are configured in the `CN=` format.\n\nAuthentication is optional. If authentication is not configured, no credentials are generated. ACLs and quotas set for the user are configured in the `` format suitable for SASL authentication."
authorization:
type: object
properties:
@@ -625,8 +502,7 @@ spec:
properties:
host:
type: string
- description: The host from which the action described in
- the ACL rule is allowed or denied.
+ description: The host from which the action described in the ACL rule is allowed or denied.
operation:
type: string
enum:
@@ -641,29 +517,19 @@ spec:
- DescribeConfigs
- IdempotentWrite
- All
- description: 'Operation which will be allowed or denied.
- Supported operations are: Read, Write, Create, Delete,
- Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs,
- IdempotentWrite and All.'
+ description: "Operation which will be allowed or denied. Supported operations are: Read, Write, Create, Delete, Alter, Describe, ClusterAction, AlterConfigs, DescribeConfigs, IdempotentWrite and All."
resource:
type: object
properties:
name:
type: string
- description: Name of resource for which given ACL rule
- applies. Can be combined with `patternType` field
- to use prefix pattern.
+ description: Name of resource for which given ACL rule applies. Can be combined with `patternType` field to use prefix pattern.
patternType:
type: string
enum:
- literal
- prefix
- description: Describes the pattern used in the resource
- field. The supported types are `literal` and `prefix`.
- With `literal` pattern type, the resource field will
- be used as a definition of a full name. With `prefix`
- pattern type, the resource name will be used only
- as a prefix. Default value is `literal`.
+ description: "Describes the pattern used in the resource field. The supported types are `literal` and `prefix`. With `literal` pattern type, the resource field will be used as a definition of a full name. With `prefix` pattern type, the resource name will be used only as a prefix. Default value is `literal`."
type:
type: string
enum:
@@ -671,33 +537,25 @@ spec:
- group
- cluster
- transactionalId
- description: Resource type. The available resource types
- are `topic`, `group`, `cluster`, and `transactionalId`.
+ description: "Resource type. The available resource types are `topic`, `group`, `cluster`, and `transactionalId`."
required:
- type
- description: Indicates the resource for which given ACL
- rule applies.
+ description: Indicates the resource for which given ACL rule applies.
type:
type: string
enum:
- allow
- deny
- description: The type of the rule. Currently the only supported
- type is `allow`. ACL rules with type `allow` are used
- to allow user to execute the specified operations. Default
- value is `allow`.
+ description: The type of the rule. Currently the only supported type is `allow`. ACL rules with type `allow` are used to allow user to execute the specified operations. Default value is `allow`.
required:
- operation
- resource
- description: List of ACL rules which should be applied to this
- user.
+ description: List of ACL rules which should be applied to this user.
type:
type: string
enum:
- simple
- description: Authorization type. Currently the only supported
- type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer`
- class for authorization.
+ description: Authorization type. Currently the only supported type is `simple`. `simple` authorization type uses Kafka's `kafka.security.authorizer.AclAuthorizer` class for authorization.
required:
- acls
- type
@@ -708,30 +566,20 @@ spec:
consumerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can fetch from a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can fetch from a broker before the clients in the group are throttled. Defined on a per-broker basis.
controllerMutationRate:
type: number
minimum: 0
- description: A quota on the rate at which mutations are accepted
- for the create topics request, the create partitions request
- and the delete topics request. The rate is accumulated by the
- number of partitions created or deleted.
+ description: "A quota on the rate at which mutations are accepted for the create topics request, the create partitions request and the delete topics request. The rate is accumulated by the number of partitions created or deleted."
producerByteRate:
type: integer
minimum: 0
- description: A quota on the maximum bytes per-second that each
- client group can publish to a broker before the clients in the
- group are throttled. Defined on a per-broker basis.
+ description: A quota on the maximum bytes per-second that each client group can publish to a broker before the clients in the group are throttled. Defined on a per-broker basis.
requestPercentage:
type: integer
minimum: 0
- description: A quota on the maximum CPU utilization of each client
- group as a percentage of network and I/O threads.
- description: Quotas on requests to control the broker resources used
- by clients. Network bandwidth and request rate quotas can be enforced.Kafka
- documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
+ description: A quota on the maximum CPU utilization of each client group as a percentage of network and I/O threads.
+ description: Quotas on requests to control the broker resources used by clients. Network bandwidth and request rate quotas can be enforced.Kafka documentation for Kafka User quotas can be found at http://kafka.apache.org/documentation/#design_quotas.
template:
type: object
properties:
@@ -744,19 +592,13 @@ spec:
labels:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Labels added to the resource template. Can
- be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Labels added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
annotations:
x-kubernetes-preserve-unknown-fields: true
type: object
- description: Annotations added to the resource template.
- Can be applied to different resources such as `StatefulSets`,
- `Deployments`, `Pods`, and `Services`.
+ description: "Annotations added to the resource template. Can be applied to different resources such as `StatefulSets`, `Deployments`, `Pods`, and `Services`."
description: Metadata applied to the resource.
- description: Template for KafkaUser resources. The template allows
- users to specify how the `Secret` with password or TLS certificates
- is generated.
+ description: Template for KafkaUser resources. The template allows users to specify how the `Secret` with password or TLS certificates is generated.
description: Template to specify how Kafka User `Secrets` are generated.
description: The specification of the user.
status:
@@ -769,30 +611,23 @@ spec:
properties:
type:
type: string
- description: The unique identifier of a condition, used to distinguish
- between other conditions in the resource.
+ description: "The unique identifier of a condition, used to distinguish between other conditions in the resource."
status:
type: string
- description: The status of the condition, either True, False
- or Unknown.
+ description: "The status of the condition, either True, False or Unknown."
lastTransitionTime:
type: string
- description: Last time the condition of a type changed from
- one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ',
- in the UTC time zone.
+ description: "Last time the condition of a type changed from one status to another. The required format is 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone."
reason:
type: string
- description: The reason for the condition's last transition
- (a single word in CamelCase).
+ description: The reason for the condition's last transition (a single word in CamelCase).
message:
type: string
- description: Human-readable message indicating details about
- the condition's last transition.
+ description: Human-readable message indicating details about the condition's last transition.
description: List of status conditions.
observedGeneration:
type: integer
- description: The generation of the CRD that was last reconciled by
- the operator.
+ description: The generation of the CRD that was last reconciled by the operator.
username:
type: string
description: Username.
diff --git a/install/user-operator/05-Deployment-strimzi-user-operator.yaml b/install/user-operator/05-Deployment-strimzi-user-operator.yaml
index 357d0197d44..0681db895d1 100644
--- a/install/user-operator/05-Deployment-strimzi-user-operator.yaml
+++ b/install/user-operator/05-Deployment-strimzi-user-operator.yaml
@@ -17,7 +17,7 @@ spec:
serviceAccountName: strimzi-user-operator
containers:
- name: strimzi-user-operator
- image: quay.io/strimzi/operator:0.28.0
+ image: quay.io/strimzi/operator:0.29.0
args:
- /opt/strimzi/bin/user_operator_run.sh
env:
diff --git a/kafka-agent/pom.xml b/kafka-agent/pom.xml
index 1c14ef64dd4..0478d2106a7 100644
--- a/kafka-agent/pom.xml
+++ b/kafka-agent/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/kafka-init/pom.xml b/kafka-init/pom.xml
index 6174167b9c3..4e5c7a807d2 100644
--- a/kafka-init/pom.xml
+++ b/kafka-init/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
kafka-init
diff --git a/mirror-maker-agent/pom.xml b/mirror-maker-agent/pom.xml
index 7036db266a8..95f1251359e 100644
--- a/mirror-maker-agent/pom.xml
+++ b/mirror-maker-agent/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/mockkube/pom.xml b/mockkube/pom.xml
index 5f609d5b915..e6ea62d34f4 100644
--- a/mockkube/pom.xml
+++ b/mockkube/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/operator-common/pom.xml b/operator-common/pom.xml
index 95d3a6504af..2d2aefe959b 100644
--- a/operator-common/pom.xml
+++ b/operator-common/pom.xml
@@ -4,7 +4,7 @@
io.strimzi
strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
operator-common
diff --git a/packaging/examples/security/keycloak-authorization/README.md b/packaging/examples/security/keycloak-authorization/README.md
index 70d49c93052..e4eea15b331 100644
--- a/packaging/examples/security/keycloak-authorization/README.md
+++ b/packaging/examples/security/keycloak-authorization/README.md
@@ -5,10 +5,10 @@ This folder contains an example `Kafka` custom resource configured for OAuth 2.0
- the corresponding `oauth` authentication
The folder also contains a Keycloak realm export to import into your Keycloak instance to support the example.
-Full instructions for the example are available in the [Strimzi Documentation](https://strimzi.io/docs/operators/in-development/using.html#con-oauth-authorization-keycloak-example).
+Full instructions for the example are available in the [Strimzi Documentation](https://strimzi.io/docs/operators/0.29.0/using.html#con-oauth-authorization-keycloak-example).
* [kafka-authz-realm.json](./kafka-authz-realm.json)
* The Keycloak realm export file
* [kafka-ephemeral-oauth-single-keycloak-authz.yaml](./kafka-ephemeral-oauth-single-keycloak-authz.yaml)
* The Kafka CR that defines a single-node Kafka cluster with `oauth` authentication and `keycloak` authorization,
- using the `kafka-authz` realm. See [full example instructions](https://strimzi.io/docs/operators/in-development/using.html#con-oauth-authorization-keycloak-example) for proper preparation and deployment.
+ using the `kafka-authz` realm. See [full example instructions](https://strimzi.io/docs/operators/0.29.0/using.html#con-oauth-authorization-keycloak-example) for proper preparation and deployment.
diff --git a/packaging/helm-charts/helm3/strimzi-kafka-operator/README.md b/packaging/helm-charts/helm3/strimzi-kafka-operator/README.md
index 13c3759102b..31f3164f9c4 100644
--- a/packaging/helm-charts/helm3/strimzi-kafka-operator/README.md
+++ b/packaging/helm-charts/helm3/strimzi-kafka-operator/README.md
@@ -98,7 +98,7 @@ the documentation for more details.
| `watchAnyNamespace` | Watch the whole Kubernetes cluster (all namespaces) | `false` |
| `defaultImageRegistry` | Default image registry for all the images | `quay.io` |
| `defaultImageRepository` | Default image registry for all the images | `strimzi` |
-| `defaultImageTag` | Default image tag for all the images except Kafka Bridge | `latest` |
+| `defaultImageTag` | Default image tag for all the images except Kafka Bridge | `0.29.0` |
| `image.registry` | Override default Cluster Operator image registry | `nil` |
| `image.repository` | Override default Cluster Operator image repository | `nil` |
| `image.name` | Cluster Operator image name | `cluster-operator` |
diff --git a/packaging/helm-charts/helm3/strimzi-kafka-operator/values.yaml b/packaging/helm-charts/helm3/strimzi-kafka-operator/values.yaml
index cefaf5c5673..0947ebbc81b 100644
--- a/packaging/helm-charts/helm3/strimzi-kafka-operator/values.yaml
+++ b/packaging/helm-charts/helm3/strimzi-kafka-operator/values.yaml
@@ -7,7 +7,7 @@ watchAnyNamespace: false
defaultImageRegistry: quay.io
defaultImageRepository: strimzi
-defaultImageTag: latest
+defaultImageTag: 0.29.0
image:
registry: ""
diff --git a/packaging/helm-charts/index.yaml b/packaging/helm-charts/index.yaml
index a121a598c53..70948a30ca8 100644
--- a/packaging/helm-charts/index.yaml
+++ b/packaging/helm-charts/index.yaml
@@ -1,6 +1,34 @@
apiVersion: v1
entries:
strimzi-kafka-operator:
+ - apiVersion: v2
+ appVersion: 0.29.0
+ created: "2022-05-13T19:43:57.590164+02:00"
+ description: 'Strimzi: Apache Kafka running on Kubernetes'
+ digest: edf3cae7d7f5d5ca17327ad0a4b61ec3fe3a8d37d32c613459fd786c786c6edc
+ home: https://strimzi.io/
+ icon: https://raw.githubusercontent.com/strimzi/strimzi-kafka-operator/main/documentation/logo/strimzi_logo.png
+ keywords:
+ - kafka
+ - queue
+ - stream
+ - event
+ - messaging
+ - datastore
+ - topic
+ maintainers:
+ - name: Frawless
+ - name: ppatierno
+ - name: samuel-hawker
+ - name: scholzj
+ - name: tombentley
+ - name: sknot-rh
+ name: strimzi-kafka-operator
+ sources:
+ - https://github.com/strimzi/strimzi-kafka-operator
+ urls:
+ - https://github.com/strimzi/strimzi-kafka-operator/releases/download/0.29.0/strimzi-kafka-operator-helm-3-chart-0.29.0.tgz
+ version: 0.29.0
- apiVersion: v2
appVersion: 0.28.0
created: "2022-02-10T18:56:27.752061+01:00"
@@ -993,4 +1021,4 @@ entries:
urls:
- https://github.com/strimzi/strimzi-kafka-operator/releases/download/0.6.0/strimzi-kafka-operator-0.6.0.tgz
version: 0.6.0
-generated: "2022-02-10T18:56:27.743563+01:00"
+generated: "2022-05-13T19:43:57.585182+02:00"
diff --git a/packaging/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml b/packaging/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml
index 9b7bed94ef3..4c79f9479c3 100644
--- a/packaging/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml
+++ b/packaging/install/cluster-operator/060-Deployment-strimzi-cluster-operator.yaml
@@ -27,7 +27,7 @@ spec:
name: strimzi-cluster-operator
containers:
- name: strimzi-cluster-operator
- image: quay.io/strimzi/operator:latest
+ image: quay.io/strimzi/operator:0.29.0
ports:
- containerPort: 8080
name: http
@@ -48,53 +48,53 @@ spec:
- name: STRIMZI_OPERATION_TIMEOUT_MS
value: "300000"
- name: STRIMZI_DEFAULT_TLS_SIDECAR_ENTITY_OPERATOR_IMAGE
- value: quay.io/strimzi/kafka:latest-kafka-3.2.0
+ value: quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_DEFAULT_KAFKA_EXPORTER_IMAGE
- value: quay.io/strimzi/kafka:latest-kafka-3.2.0
+ value: quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_DEFAULT_CRUISE_CONTROL_IMAGE
- value: quay.io/strimzi/kafka:latest-kafka-3.2.0
+ value: quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:latest-kafka-3.0.0
- 3.0.1=quay.io/strimzi/kafka:latest-kafka-3.0.1
- 3.1.0=quay.io/strimzi/kafka:latest-kafka-3.1.0
- 3.1.1=quay.io/strimzi/kafka:latest-kafka-3.1.1
- 3.2.0=quay.io/strimzi/kafka:latest-kafka-3.2.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_CONNECT_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:latest-kafka-3.0.0
- 3.0.1=quay.io/strimzi/kafka:latest-kafka-3.0.1
- 3.1.0=quay.io/strimzi/kafka:latest-kafka-3.1.0
- 3.1.1=quay.io/strimzi/kafka:latest-kafka-3.1.1
- 3.2.0=quay.io/strimzi/kafka:latest-kafka-3.2.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_MIRROR_MAKER_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:latest-kafka-3.0.0
- 3.0.1=quay.io/strimzi/kafka:latest-kafka-3.0.1
- 3.1.0=quay.io/strimzi/kafka:latest-kafka-3.1.0
- 3.1.1=quay.io/strimzi/kafka:latest-kafka-3.1.1
- 3.2.0=quay.io/strimzi/kafka:latest-kafka-3.2.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_KAFKA_MIRROR_MAKER_2_IMAGES
value: |
- 3.0.0=quay.io/strimzi/kafka:latest-kafka-3.0.0
- 3.0.1=quay.io/strimzi/kafka:latest-kafka-3.0.1
- 3.1.0=quay.io/strimzi/kafka:latest-kafka-3.1.0
- 3.1.1=quay.io/strimzi/kafka:latest-kafka-3.1.1
- 3.2.0=quay.io/strimzi/kafka:latest-kafka-3.2.0
+ 3.0.0=quay.io/strimzi/kafka:0.29.0-kafka-3.0.0
+ 3.0.1=quay.io/strimzi/kafka:0.29.0-kafka-3.0.1
+ 3.1.0=quay.io/strimzi/kafka:0.29.0-kafka-3.1.0
+ 3.1.1=quay.io/strimzi/kafka:0.29.0-kafka-3.1.1
+ 3.2.0=quay.io/strimzi/kafka:0.29.0-kafka-3.2.0
- name: STRIMZI_DEFAULT_TOPIC_OPERATOR_IMAGE
- value: quay.io/strimzi/operator:latest
+ value: quay.io/strimzi/operator:0.29.0
- name: STRIMZI_DEFAULT_USER_OPERATOR_IMAGE
- value: quay.io/strimzi/operator:latest
+ value: quay.io/strimzi/operator:0.29.0
- name: STRIMZI_DEFAULT_KAFKA_INIT_IMAGE
- value: quay.io/strimzi/operator:latest
+ value: quay.io/strimzi/operator:0.29.0
- name: STRIMZI_DEFAULT_KAFKA_BRIDGE_IMAGE
value: quay.io/strimzi/kafka-bridge:0.21.5
- name: STRIMZI_DEFAULT_JMXTRANS_IMAGE
- value: quay.io/strimzi/jmxtrans:latest
+ value: quay.io/strimzi/jmxtrans:0.29.0
- name: STRIMZI_DEFAULT_KANIKO_EXECUTOR_IMAGE
- value: quay.io/strimzi/kaniko-executor:latest
+ value: quay.io/strimzi/kaniko-executor:0.29.0
- name: STRIMZI_DEFAULT_MAVEN_BUILDER
- value: quay.io/strimzi/maven-builder:latest
+ value: quay.io/strimzi/maven-builder:0.29.0
- name: STRIMZI_OPERATOR_NAMESPACE
valueFrom:
fieldRef:
diff --git a/packaging/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml b/packaging/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml
index 2d2d28239d3..2fd9702ab5d 100644
--- a/packaging/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml
+++ b/packaging/install/topic-operator/05-Deployment-strimzi-topic-operator.yaml
@@ -17,7 +17,7 @@ spec:
serviceAccountName: strimzi-topic-operator
containers:
- name: strimzi-topic-operator
- image: quay.io/strimzi/operator:latest
+ image: quay.io/strimzi/operator:0.29.0
args:
- /opt/strimzi/bin/topic_operator_run.sh
env:
diff --git a/packaging/install/user-operator/05-Deployment-strimzi-user-operator.yaml b/packaging/install/user-operator/05-Deployment-strimzi-user-operator.yaml
index c3c216b241a..0681db895d1 100644
--- a/packaging/install/user-operator/05-Deployment-strimzi-user-operator.yaml
+++ b/packaging/install/user-operator/05-Deployment-strimzi-user-operator.yaml
@@ -17,7 +17,7 @@ spec:
serviceAccountName: strimzi-user-operator
containers:
- name: strimzi-user-operator
- image: quay.io/strimzi/operator:latest
+ image: quay.io/strimzi/operator:0.29.0
args:
- /opt/strimzi/bin/user_operator_run.sh
env:
diff --git a/pom.xml b/pom.xml
index 24c85c62c75..edfb36cac18 100644
--- a/pom.xml
+++ b/pom.xml
@@ -5,7 +5,7 @@
io.strimzi
strimzi
pom
- 0.29.0-SNAPSHOT
+ 0.29.0
diff --git a/release.version b/release.version
index 68e280f25fc..ae6dd4e2032 100644
--- a/release.version
+++ b/release.version
@@ -1 +1 @@
-0.29.0-SNAPSHOT
+0.29.0
diff --git a/systemtest/pom.xml b/systemtest/pom.xml
index 375e36d7490..d5f27008bca 100644
--- a/systemtest/pom.xml
+++ b/systemtest/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
systemtest
diff --git a/test/pom.xml b/test/pom.xml
index d0f5eaae132..78e4e0926e9 100644
--- a/test/pom.xml
+++ b/test/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/topic-operator/pom.xml b/topic-operator/pom.xml
index 0f6bc137a39..add4185f8bd 100644
--- a/topic-operator/pom.xml
+++ b/topic-operator/pom.xml
@@ -5,7 +5,7 @@
io.strimzi
strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
topic-operator
diff --git a/tracing-agent/pom.xml b/tracing-agent/pom.xml
index 76e84e42016..cf729bf762d 100644
--- a/tracing-agent/pom.xml
+++ b/tracing-agent/pom.xml
@@ -5,7 +5,7 @@
strimzi
io.strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
diff --git a/user-operator/pom.xml b/user-operator/pom.xml
index f3930b1fb68..0f28f5a67ae 100644
--- a/user-operator/pom.xml
+++ b/user-operator/pom.xml
@@ -4,7 +4,7 @@
io.strimzi
strimzi
- 0.29.0-SNAPSHOT
+ 0.29.0
4.0.0
user-operator