Skip to content

The TLSPolicy Custom Resource Definition (CRD)

TLSPolicy

Field Type Required Description
spec TLSPolicySpec Yes The specification for TLSPolicy custom resource
status TLSPolicyStatus No The status for the custom resource

TLSPolicySpec

Field Type Required Description
targetRef Gateway API LocalPolicyTargetReference Yes Reference to a Kuberentes resource that the policy attaches to
issuerRef CertManager meta/v1.ObjectReference Yes IssuerRef is a reference to the issuer for the created certificate
commonName String No CommonName is a common name to be used on the created certificate
duration Kubernetes meta/v1.Duration No The requested 'duration' (i.e. lifetime) of the created certificate.
renewBefore Kubernetes meta/v1.Duration No How long before the currently issued certificate's expiry cert-manager should renew the certificate.
usages []CertManager v1.KeyUsage No Usages is the set of x509 usages that are requested for the certificate. Defaults to digital signature and key encipherment if not specified
revisionHistoryLimit Number No RevisionHistoryLimit is the maximum number of CertificateRequest revisions that are maintained in the Certificate's history
privateKey CertManager meta/v1.CertificatePrivateKey No Options to control private keys used for the Certificate

IssuerRef certmanmetav1.ObjectReference

TLSPolicyStatus

Field Type Description
observedGeneration String Number of the last observed generation of the resource. Use it to check if the status info is up to date with latest resource spec.
conditions []Kubernetes meta/v1.Condition List of conditions that define that status of the resource.