Get started (free)
Custom resource

TrustStore

A TrustStore requests information about how to validate secrets issued by a SecretClass.

View SDP dev release Download CRD (YAML)
API group
secrets.stackable.tech
API versions in dev
v1alpha1
Scope
Namespaced
Operator
Stackable Secret Operator
Roles
none

Schema

TrustStore.secrets.stackable.tech .spec fields for SDP dev.

Schema
  • secretClassName # string *
    The name of the SecretClass that the request concerns.
  • format # string · enum
    The format that the data should be converted into.
    allowed: tls-pemtls-pkcs12kerberosnull
  • targetKind # string · enum = "ConfigMap"
    Which Kubernetes kind should be used to output the requested information to. The trust information (such as a ca.crt) can be considered public information, so we put it in a ConfigMap by default. However, some tools might require it to be placed in a Secret, so we also support that. Can be either ConfigMap or Secret, defaults to ConfigMap.
    allowed: SecretConfigMap
  • tlsPemCaName # string = "ca.crt"
    The name of the key in the ConfigMap/Secret, in which the PEM encoded CA certificate should be placed. Only takes effect in case the format is tls-pem. Defaults to ca.crt.