Marketplace
BrowsePublish
Marketplace
You are viewing an outdated version of provider-gcp.Go to Latest
upbound/provider-gcp@v0.19.0
OsPolicyAssignment
osconfig.gcp.upbound.io
OsPolicyAssignment
upbound/provider-gcp@v0.19.0osconfig.gcp.upbound.io

OsPolicyAssignment is the Schema for the OsPolicyAssignments API. Represents an OSPolicyAssignment resource.

Type

CRD

Group

osconfig.gcp.upbound.io

Version

v1beta1

apiVersion: osconfig.gcp.upbound.io/v1beta1

kind: OsPolicyAssignment

API Documentation
apiVersion
string
kind
string
metadata
object
spec
object
object

OsPolicyAssignmentSpec defines the desired state of OsPolicyAssignment

forProvider
requiredobject
requiredobject

No description provided.

instanceFilter
requiredarray
requiredarray

Required. Filter to select VMs.

all
boolean
array

List of label sets used for VM exclusion. If the list has more than one label set, the VM is excluded if any of the label sets are applicable for the VM.

labels
object
array

List of label sets used for VM inclusion. If the list has more than one LabelSet, the VM is included if any of the label sets are applicable for the VM.

labels
object
array

List of inventories to select VMs. A VM is selected if its inventory data matches at least one of the following inventories.

osShortName
requiredstring
osVersion
string
location
requiredstring
osPolicies
requiredarray
requiredarray

Required. List of OS policies to be applied to the VMs.

id
requiredstring
mode
requiredstring
resourceGroups
requiredarray
requiredarray

Required. List of resource groups for the policy. For a particular VM, resource groups are evaluated in the order specified and the first resource group that is applicable is selected and the rest are ignored. If none of the resource groups are applicable for a VM, the VM is considered to be non-compliant w.r.t this policy. This behavior can be toggled by the flag allow_no_resource_group_match

array

List of inventory filters for the resource group. The resources in this resource group are applied to the target VM if it satisfies at least one of the following inventory filters. For example, to apply this resource group to VMs running either RHEL or CentOS operating systems, specify 2 items for the list with following values: inventory_filters[0].os_short_name='rhel' and inventory_filters[1].os_short_name='centos' If the list is empty, this resource group will be applied to the target VM unconditionally.

osShortName
requiredstring
osVersion
string
resources
requiredarray
requiredarray

Required. List of resources configured for this resource group. The resources are executed in the exact order specified here.

exec
array
array

Exec resource

enforce
array
array

What to run to bring this resource into the desired state. An exit code of 100 indicates "success", any other exit code indicates a failure running enforce.

args
array
array

Optional arguments to pass to the source during execution.

file
array
array

A remote or local file.

gcs
array
array

A Cloud Storage object.

bucket
requiredstring
object
requiredstring
localPath
string
remote
array
array

A generic remote file.

uri
requiredstring
interpreter
requiredstring
script
string
validate
requiredarray
requiredarray

Required. What to run to validate this resource is in the desired state. An exit code of 100 indicates "in desired state", and exit code of 101 indicates "not in desired state". Any other exit code indicates a failure running validate.

args
array
array

Optional arguments to pass to the source during execution.

file
array
array

A remote or local file.

gcs
array
array

A Cloud Storage object.

bucket
requiredstring
object
requiredstring
localPath
string
remote
array
array

A generic remote file.

uri
requiredstring
interpreter
requiredstring
script
string
file
array
array

A remote or local file.

content
string
file
array
array

A remote or local file.

gcs
array
array

A Cloud Storage object.

bucket
requiredstring
object
requiredstring
localPath
string
remote
array
array

A generic remote file.

uri
requiredstring
path
requiredstring
state
requiredstring
id
requiredstring
pkg
array
array

Package resource

apt
array
array

An Apt Repository.

name
requiredstring
deb
array
array

A deb package file.

pullDeps
boolean
source
requiredarray
requiredarray

Required. An rpm package.

gcs
array
array

A Cloud Storage object.

bucket
requiredstring
object
requiredstring
localPath
string
remote
array
array

A generic remote file.

uri
requiredstring
desiredState
requiredstring
googet
array
array

A package managed by GooGet.

name
requiredstring
msi
array
array

An MSI package.

array

Additional properties to use during installation. This should be in the format of Property=Setting. Appended to the defaults of ACTION=INSTALL REBOOT=ReallySuppress.

source
requiredarray
requiredarray

Required. An rpm package.

gcs
array
array

A Cloud Storage object.

bucket
requiredstring
object
requiredstring
localPath
string
remote
array
array

A generic remote file.

uri
requiredstring
rpm
array
array

An rpm package file.

pullDeps
boolean
source
requiredarray
requiredarray

Required. An rpm package.

gcs
array
array

A Cloud Storage object.

bucket
requiredstring
object
requiredstring
localPath
string
remote
array
array

A generic remote file.

uri
requiredstring
yum
array
array

A Yum Repository.

name
requiredstring
zypper
array
array

A Zypper Repository.

name
requiredstring
array

Package repository resource

apt
array
array

An Apt Repository.

archiveType
requiredstring
components
requiredarray
requiredarray

Required. List of components for this repository. Must contain at least one item.

distribution
requiredstring
gpgKey
string
uri
requiredstring
goo
array
array

A Goo Repository.

name
requiredstring
url
requiredstring
yum
array
array

A Yum Repository.

baseUrl
requiredstring
gpgKeys
array
array

URIs of GPG keys.

id
requiredstring
zypper
array
array

A Zypper Repository.

baseUrl
requiredstring
gpgKeys
array
array

URIs of GPG keys.

id
requiredstring
project
string
rollout
requiredarray
requiredarray

Required. Rollout to deploy the OS policy assignment. A rollout is triggered in the following situations: 1) OSPolicyAssignment is created. 2) OSPolicyAssignment is updated and the update contains changes to one of the following fields: - instance_filter - os_policies 3) OSPolicyAssignment is deleted.

disruptionBudget
requiredarray
requiredarray

Required. The maximum number (or percentage) of VMs per zone to disrupt at any given moment.

fixed
number
percent
number
minWaitDuration
requiredstring
object

ProviderConfigReference specifies how the provider that will be used to create, observe, update, and delete this managed resource should be configured.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

ProviderReference specifies the provider that will be used to create, observe, update, and delete this managed resource. Deprecated: Please use ProviderConfigReference, i.e. providerConfigRef

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
object

PublishConnectionDetailsTo specifies the connection secret config which contains a name, metadata and a reference to secret store config to which any connection details for this managed resource should be written. Connection details frequently include the endpoint, username, and password required to connect to the managed resource.

configRef
object
object

SecretStoreConfigRef specifies which secret store config should be used for this ConnectionSecret.

name
requiredstring
policy
object
object

Policies for referencing.

resolve
string
metadata
object
object

Metadata is the metadata for connection secret.

labels
object
type
string
name
requiredstring
object

WriteConnectionSecretToReference specifies the namespace and name of a Secret to which any connection details for this managed resource should be written. Connection details frequently include the endpoint, username, and password required to connect to the managed resource. This field is planned to be replaced in a future release in favor of PublishConnectionDetailsTo. Currently, both could be set independently and connection details would be published to both without affecting each other.

name
requiredstring
namespace
requiredstring
status
object
object

OsPolicyAssignmentStatus defines the observed state of OsPolicyAssignment.

object

No description provided.

baseline
boolean
deleted
boolean
etag
string
id
string
array

Required. List of OS policies to be applied to the VMs.

array

Required. List of resource groups for the policy. For a particular VM, resource groups are evaluated in the order specified and the first resource group that is applicable is selected and the rest are ignored. If none of the resource groups are applicable for a VM, the VM is considered to be non-compliant w.r.t this policy. This behavior can be toggled by the flag allow_no_resource_group_match

array

Required. List of resources configured for this resource group. The resources are executed in the exact order specified here.

file
array
array

A remote or local file.

uid
string
array

Conditions of the resource.

lastTransitionTime
requiredstring
message
string
reason
requiredstring
status
requiredstring
type
requiredstring
Marketplace

Discover the building blocks for your internal cloud platform.

© 2022 Upbound, Inc.

SolutionsProvidersConfigurations
LearnDocumentationTry for Free
MorePrivacy PolicyTerms & Conditions
Marketplace

© 2022 Upbound, Inc.

Marketplace

Discover the building blocksfor your internal cloud platform.