kubernetes-sigs
diff --git a/‎Makefile
Lines changed: 3 additions & 2 deletions b/‎Makefile
Lines changed: 3 additions & 2 deletions
diff --git a/‎apis/v1/doc.go
Lines changed: 21 additions & 0 deletions b/‎apis/v1/doc.go
Lines changed: 21 additions & 0 deletions
diff --git a/‎apis/v1/secretproviderclass_types.go
Lines changed: 94 additions & 0 deletions b/‎apis/v1/secretproviderclass_types.go
Lines changed: 94 additions & 0 deletions
diff --git a/‎apis/v1/secretproviderclasspodstatus_types.go
Lines changed: 64 additions & 0 deletions b/‎apis/v1/secretproviderclasspodstatus_types.go
Lines changed: 64 additions & 0 deletions
@@ -114,7 +114,7 @@ EKS_CLUSTER_NAME := integ-cluster-$(BUILD_TIMESTAMP_W_SEC)
 AWS_REGION := us-west-2
 
 # Produce CRDs that work back to Kubernetes 1.11 (no version conversion)
-CRD_OPTIONS ?= "crd:trivialVersions=true,preserveUnknownFields=false"
+CRD_OPTIONS ?= "crd:crdVersions=v1"
 
 ## --------------------------------------
 ## Validate golang version
@@ -488,7 +488,8 @@ e2e-aws:
 .PHONY: manifests
 manifests: $(CONTROLLER_GEN) $(KUSTOMIZE)
 	# Generate the base CRD/RBAC
-	$(CONTROLLER_GEN) $(CRD_OPTIONS) rbac:roleName=secretproviderclasses-role paths="./apis/..." paths="./controllers" output:crd:artifacts:config=config/crd/bases
+	$(CONTROLLER_GEN) $(CRD_OPTIONS) rbac:roleName=secretproviderclasses-role object:headerFile=./hack/boilerplate.go.txt paths="./apis/..." \
+		 paths="./apis/..." paths="./controllers" output:crd:artifacts:config=config/crd/bases
 	cp config/crd/bases/* manifest_staging/charts/secrets-store-csi-driver/crds
 	cp config/crd/bases/* manifest_staging/deploy/
 
 
@@ -0,0 +1,21 @@
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+// Package v1 contains API Schema definitions for the secrets-store v1 API group
+// +kubebuilder:object:generate=true
+// +k8s:deepcopy-gen=package,register
+// +groupName=secrets-store.csi.x-k8s.io
+package v1
@@ -0,0 +1,94 @@
+/*
+Copyright 2020 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package v1
+
+import (
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// Provider enum for all the provider names
+type Provider string
+
+// NOTE: json tags are required.  Any new fields you add must have json tags for the fields to be serialized.
+
+// SecretObjectData defines the desired state of synced K8s secret object data
+type SecretObjectData struct {
+	// name of the object to sync
+	ObjectName string `json:"objectName,omitempty"`
+	// data field to populate
+	Key string `json:"key,omitempty"`
+}
+
+// SecretObject defines the desired state of synced K8s secret objects
+type SecretObject struct {
+	// name of the K8s secret object
+	SecretName string `json:"secretName,omitempty"`
+	// type of K8s secret object
+	Type string `json:"type,omitempty"`
+	// labels of K8s secret object
+	Labels map[string]string `json:"labels,omitempty"`
+	// annotations of k8s secret object
+	Annotations map[string]string   `json:"annotations,omitempty"`
+	Data        []*SecretObjectData `json:"data,omitempty"`
+}
+
+// SecretProviderClassSpec defines the desired state of SecretProviderClass
+type SecretProviderClassSpec struct {
+	// Configuration for provider name
+	Provider Provider `json:"provider,omitempty"`
+	// Configuration for specific provider
+	Parameters    map[string]string `json:"parameters,omitempty"`
+	SecretObjects []*SecretObject   `json:"secretObjects,omitempty"`
+}
+
+// ByPodStatus defines the state of SecretProviderClass as seen by
+// an individual controller
+type ByPodStatus struct {
+	// id of the pod that wrote the status
+	ID string `json:"id,omitempty"`
+	// namespace of the pod that wrote the status
+	Namespace string `json:"namespace,omitempty"`
+}
+
+// SecretProviderClassStatus defines the observed state of SecretProviderClass
+type SecretProviderClassStatus struct {
+	ByPod []*ByPodStatus `json:"byPod,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:storageversion
+// +genclient
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// SecretProviderClass is the Schema for the secretproviderclasses API
+type SecretProviderClass struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   SecretProviderClassSpec   `json:"spec,omitempty"`
+	Status SecretProviderClassStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// SecretProviderClassList contains a list of SecretProviderClass
+type SecretProviderClassList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []SecretProviderClass `json:"items"`
+}
@@ -0,0 +1,64 @@
+/*
+Copyright 2020 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package v1
+
+import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+const (
+	// InternalNodeLabel used for setting the node name spc pod status belongs to
+	InternalNodeLabel = "internal.secrets-store.csi.k8s.io/node-name"
+)
+
+// NOTE: json tags are required.  Any new fields you add must have json tags for the fields to be serialized.
+
+// SecretProviderClassPodStatusStatus defines the observed state of SecretProviderClassPodStatus
+type SecretProviderClassPodStatusStatus struct {
+	PodName                 string                      `json:"podName,omitempty"`
+	SecretProviderClassName string                      `json:"secretProviderClassName,omitempty"`
+	Mounted                 bool                        `json:"mounted,omitempty"`
+	TargetPath              string                      `json:"targetPath,omitempty"`
+	Objects                 []SecretProviderClassObject `json:"objects,omitempty"`
+}
+
+// SecretProviderClassObject defines the object fetched from external secrets store
+type SecretProviderClassObject struct {
+	ID      string `json:"id,omitempty"`
+	Version string `json:"version,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:storageversion
+// +genclient
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// SecretProviderClassPodStatus is the Schema for the secretproviderclassespodstatus API
+type SecretProviderClassPodStatus struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Status SecretProviderClassPodStatusStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// SecretProviderClassPodStatusList contains a list of SecretProviderClassPodStatus
+type SecretProviderClassPodStatusList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []SecretProviderClassPodStatus `json:"items"`
+}