From e65fc958f016eaeb7bb4d92d2fe298b89e7cf046 Mon Sep 17 00:00:00 2001 From: Josh Hunziker Date: Tue, 4 Jun 2024 16:20:02 -0700 Subject: [PATCH] CRD update --- operator/crd/crd.yaml | 43 +++++++++++++++++++++++++++++-------------- 1 file changed, 29 insertions(+), 14 deletions(-) diff --git a/operator/crd/crd.yaml b/operator/crd/crd.yaml index 043829c..8897e3d 100644 --- a/operator/crd/crd.yaml +++ b/operator/crd/crd.yaml @@ -89,22 +89,37 @@ spec: - claimName - mountPath tls: - description: "Configure client TLS connections using a JKS or PKCS12 truststore. A JKS truststore should have its password set to 'changeit', while a PKCS12 truststore should have an empty password." + description: "Configure server and client TLS connections." type: object properties: - configMapName: - type: string - key: - type: string - type: - type: string - enum: - - jks - - pkcs12 - required: - - configMapName - - key - - type + clientConfig: + description: "Configure client TLS connections using a JKS or PKCS12 truststore. A JKS truststore should have its password set to 'changeit', while a PKCS12 truststore should have an empty password." + type: object + properties: + configMapName: + type: string + key: + type: string + type: + type: string + enum: + - jks + - pkcs12 + required: + - configMapName + - key + - type + serverConfig: + description: "Configure server TLS connections using a JKS keystore. The keystore password should be stored in a secret and referenced in the route XML as a secretSource. The format of the secret should be `server.ssl.key-password=password`." + type: object + properties: + secretName: + type: string + key: + type: string + required: + - configMapName + - key required: - routeConfigMap required: