From 6915382b1e098d5e54d4a232f8625b3a89ea5b93 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christoph=20St=C3=A4bler?= Date: Fri, 29 Sep 2023 13:53:24 +0200 Subject: [PATCH] Add audience field in Destinations to CRDs (#7318) --- config/core/resources/apiserversource.yaml | 3 +++ config/core/resources/containersource.yaml | 3 +++ config/core/resources/pingsource.yaml | 3 +++ config/core/resources/sinkbindings.yaml | 3 +++ config/core/resources/subscription.yaml | 9 +++++++++ config/core/resources/trigger.yaml | 6 ++++++ 6 files changed, 27 insertions(+) diff --git a/config/core/resources/apiserversource.yaml b/config/core/resources/apiserversource.yaml index 4e2edde624d..e46c17ec32c 100644 --- a/config/core/resources/apiserversource.yaml +++ b/config/core/resources/apiserversource.yaml @@ -157,6 +157,9 @@ spec: CACerts: description: CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string namespaceSelector: description: NamespaceSelector is a label selector to capture the namespaces that should be watched by the source. type: object diff --git a/config/core/resources/containersource.yaml b/config/core/resources/containersource.yaml index fa74c37f8d9..50971891a1f 100644 --- a/config/core/resources/containersource.yaml +++ b/config/core/resources/containersource.yaml @@ -72,6 +72,9 @@ spec: CACerts: description: CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string # WARNING: the schema tool can not parse PodTemplateSpec, stub here and redirect to Deployment documentation. template: type: object diff --git a/config/core/resources/pingsource.yaml b/config/core/resources/pingsource.yaml index b844b88c29b..0b7ed28265e 100644 --- a/config/core/resources/pingsource.yaml +++ b/config/core/resources/pingsource.yaml @@ -109,6 +109,9 @@ spec: CACerts: description: CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string timezone: description: 'Timezone modifies the actual time relative to the specified timezone. Defaults to the system time zone. More general information diff --git a/config/core/resources/sinkbindings.yaml b/config/core/resources/sinkbindings.yaml index c5d5fdf0a53..5097493e7ef 100644 --- a/config/core/resources/sinkbindings.yaml +++ b/config/core/resources/sinkbindings.yaml @@ -78,6 +78,9 @@ spec: CACerts: description: CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string subject: description: Subject references the resource(s) whose "runtime contract" should be augmented by Binding implementations. type: object diff --git a/config/core/resources/subscription.yaml b/config/core/resources/subscription.yaml index 065db0d47be..0e32272b9a9 100644 --- a/config/core/resources/subscription.yaml +++ b/config/core/resources/subscription.yaml @@ -85,6 +85,9 @@ spec: CACerts: description: Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string retry: description: Retry is the minimum number of retries the sender should attempt when sending an event before moving it to the dead letter sink. type: integer @@ -116,6 +119,9 @@ spec: CACerts: description: Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string subscriber: description: Subscriber is reference to (optional) function for processing events. Events from the Channel will be delivered here and replies are sent to a Destination as specified by the Reply. type: object @@ -143,6 +149,9 @@ spec: CACerts: description: Certification Authority (CA) certificates in PEM format that the subscription trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string status: type: object properties: diff --git a/config/core/resources/trigger.yaml b/config/core/resources/trigger.yaml index 02968b8e412..3e8a3c090c1 100644 --- a/config/core/resources/trigger.yaml +++ b/config/core/resources/trigger.yaml @@ -94,6 +94,9 @@ spec: CACerts: description: Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string retry: description: Retry is the minimum number of retries the sender should attempt when sending an event before moving it to the dead letter sink. type: integer @@ -132,6 +135,9 @@ spec: CACerts: description: Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink. type: string + audience: + description: Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence. + type: string status: description: Status represents the current state of the Trigger. This data may be out of date. type: object