S3Bucket.s3.stackable.tech/v1alpha1

S3Bucket
Kind

s3.stackable.tech
Group

v1alpha1
Version

apiVersion: s3.stackable.tech/v1alpha1
kind: S3Bucket

spec object

S3 bucket specification containing the bucket name and an inlined or referenced connection specification. Learn more on the S3 concept documentation.

bucketName string required

The name of the S3 bucket.

connection object required

The definition of an S3 connection, either inline or as a reference.

inline object

S3 connection definition as a resource. Learn more on the S3 concept documentation.

accessStyle string: enum

Enum variants: PathVirtualHosted

Which access style to use. Defaults to virtual hosted-style as most of the data products out there. Have a look at the AWS documentation.

credentials object

If the S3 uses authentication you have to specify you S3 credentials. In the most cases a SecretClass providing accessKey and secretKey is sufficient.

scope object

Scope of the SecretClass.

listenerVolumes []string

The listener volume scope allows Node and Service scopes to be inferred from the applicable listeners. This must correspond to Volume names in the Pod that mount Listeners.

node boolean

The node scope is resolved to the name of the Kubernetes Node object that the Pod is running on. This will typically be the DNS name of the node.

pod boolean

The pod scope is resolved to the name of the Kubernetes Pod. This allows the secret to differentiate between StatefulSet replicas.

services []string

The service scope allows Pod objects to specify custom scopes. This should typically correspond to Service objects that the Pod participates in.

secretClass string required

SecretClass containing the LDAP bind credentials.

host string required

Host of the S3 server without any protocol or port. For example: west1.my-cloud.com.

port integer

Port the S3 server listens on. If not specified the product will determine the port to use.

region object

Bucket region used for signing headers (sigv4).

This defaults to us-east-1 which is compatible with other implementations such as Minio.

WARNING: Some products use the Hadoop S3 implementation which falls back to us-east-2.

name string

No Description Provided.

tls object

Use a TLS connection. If not specified no TLS will be used.

verification object required

The verification method used to verify the certificates of the server and/or the client.

none object

Use TLS but don't verify certificates.

server object

Use TLS and a CA certificate to verify the server.

caCert object required

CA cert to verify the server.

secretClass string

Name of the SecretClass which will provide the CA certificate. Note that a SecretClass does not need to have a key but can also work with just a CA certificate, so if you got provided with a CA cert but don't have access to the key you can still use this method.

webPki object

Use TLS and the CA certificates trusted by the common web browsers to verify the server. This can be useful when you e.g. use public AWS S3 or other public available services.

reference string

No Description Provided.