containerservice.v1beta1.kubernetesCluster
"KubernetesCluster is the Schema for the KubernetesClusters API. Manages a managed Kubernetes Cluster (also known as AKS / Azure Kubernetes Service)"
Index
fn new(name)obj metadatafn withAnnotations(annotations)fn withAnnotationsMixin(annotations)fn withClusterName(clusterName)fn withCreationTimestamp(creationTimestamp)fn withDeletionGracePeriodSeconds(deletionGracePeriodSeconds)fn withDeletionTimestamp(deletionTimestamp)fn withFinalizers(finalizers)fn withFinalizersMixin(finalizers)fn withGenerateName(generateName)fn withGeneration(generation)fn withLabels(labels)fn withLabelsMixin(labels)fn withName(name)fn withNamespace(namespace)fn withOwnerReferences(ownerReferences)fn withOwnerReferencesMixin(ownerReferences)fn withResourceVersion(resourceVersion)fn withSelfLink(selfLink)fn withUid(uid)
obj specfn withDeletionPolicy(deletionPolicy)obj spec.forProviderfn withAciConnectorLinux(aciConnectorLinux)fn withAciConnectorLinuxMixin(aciConnectorLinux)fn withApiServerAccessProfile(apiServerAccessProfile)fn withApiServerAccessProfileMixin(apiServerAccessProfile)fn withApiServerAuthorizedIpRanges(apiServerAuthorizedIpRanges)fn withApiServerAuthorizedIpRangesMixin(apiServerAuthorizedIpRanges)fn withAutoScalerProfile(autoScalerProfile)fn withAutoScalerProfileMixin(autoScalerProfile)fn withAutomaticChannelUpgrade(automaticChannelUpgrade)fn withAzureActiveDirectoryRoleBasedAccessControl(azureActiveDirectoryRoleBasedAccessControl)fn withAzureActiveDirectoryRoleBasedAccessControlMixin(azureActiveDirectoryRoleBasedAccessControl)fn withAzurePolicyEnabled(azurePolicyEnabled)fn withConfidentialComputing(confidentialComputing)fn withConfidentialComputingMixin(confidentialComputing)fn withDefaultNodePool(defaultNodePool)fn withDefaultNodePoolMixin(defaultNodePool)fn withDiskEncryptionSetId(diskEncryptionSetId)fn withDnsPrefix(dnsPrefix)fn withDnsPrefixPrivateCluster(dnsPrefixPrivateCluster)fn withEdgeZone(edgeZone)fn withEnablePodSecurityPolicy(enablePodSecurityPolicy)fn withHttpApplicationRoutingEnabled(httpApplicationRoutingEnabled)fn withHttpProxyConfig(httpProxyConfig)fn withHttpProxyConfigMixin(httpProxyConfig)fn withIdentity(identity)fn withIdentityMixin(identity)fn withImageCleanerEnabled(imageCleanerEnabled)fn withImageCleanerIntervalHours(imageCleanerIntervalHours)fn withIngressApplicationGateway(ingressApplicationGateway)fn withIngressApplicationGatewayMixin(ingressApplicationGateway)fn withKeyManagementService(keyManagementService)fn withKeyManagementServiceMixin(keyManagementService)fn withKeyVaultSecretsProvider(keyVaultSecretsProvider)fn withKeyVaultSecretsProviderMixin(keyVaultSecretsProvider)fn withKubeletIdentity(kubeletIdentity)fn withKubeletIdentityMixin(kubeletIdentity)fn withKubernetesVersion(kubernetesVersion)fn withLinuxProfile(linuxProfile)fn withLinuxProfileMixin(linuxProfile)fn withLocalAccountDisabled(localAccountDisabled)fn withLocation(location)fn withMaintenanceWindow(maintenanceWindow)fn withMaintenanceWindowMixin(maintenanceWindow)fn withMicrosoftDefender(microsoftDefender)fn withMicrosoftDefenderMixin(microsoftDefender)fn withMonitorMetrics(monitorMetrics)fn withMonitorMetricsMixin(monitorMetrics)fn withNetworkProfile(networkProfile)fn withNetworkProfileMixin(networkProfile)fn withNodeResourceGroup(nodeResourceGroup)fn withOidcIssuerEnabled(oidcIssuerEnabled)fn withOmsAgent(omsAgent)fn withOmsAgentMixin(omsAgent)fn withOpenServiceMeshEnabled(openServiceMeshEnabled)fn withPrivateClusterEnabled(privateClusterEnabled)fn withPrivateClusterPublicFqdnEnabled(privateClusterPublicFqdnEnabled)fn withPrivateDnsZoneId(privateDnsZoneId)fn withPublicNetworkAccessEnabled(publicNetworkAccessEnabled)fn withResourceGroupName(resourceGroupName)fn withRoleBasedAccessControlEnabled(roleBasedAccessControlEnabled)fn withRunCommandEnabled(runCommandEnabled)fn withServicePrincipal(servicePrincipal)fn withServicePrincipalMixin(servicePrincipal)fn withSkuTier(skuTier)fn withStorageProfile(storageProfile)fn withStorageProfileMixin(storageProfile)fn withTags(tags)fn withTagsMixin(tags)fn withWebAppRouting(webAppRouting)fn withWebAppRoutingMixin(webAppRouting)fn withWindowsProfile(windowsProfile)fn withWindowsProfileMixin(windowsProfile)fn withWorkloadAutoscalerProfile(workloadAutoscalerProfile)fn withWorkloadAutoscalerProfileMixin(workloadAutoscalerProfile)fn withWorkloadIdentityEnabled(workloadIdentityEnabled)obj spec.forProvider.aciConnectorLinuxobj spec.forProvider.apiServerAccessProfileobj spec.forProvider.autoScalerProfilefn withBalanceSimilarNodeGroups(balanceSimilarNodeGroups)fn withEmptyBulkDeleteMax(emptyBulkDeleteMax)fn withExpander(expander)fn withMaxGracefulTerminationSec(maxGracefulTerminationSec)fn withMaxNodeProvisioningTime(maxNodeProvisioningTime)fn withMaxUnreadyNodes(maxUnreadyNodes)fn withMaxUnreadyPercentage(maxUnreadyPercentage)fn withNewPodScaleUpDelay(newPodScaleUpDelay)fn withScaleDownDelayAfterAdd(scaleDownDelayAfterAdd)fn withScaleDownDelayAfterDelete(scaleDownDelayAfterDelete)fn withScaleDownDelayAfterFailure(scaleDownDelayAfterFailure)fn withScaleDownUnneeded(scaleDownUnneeded)fn withScaleDownUnready(scaleDownUnready)fn withScaleDownUtilizationThreshold(scaleDownUtilizationThreshold)fn withScanInterval(scanInterval)fn withSkipNodesWithLocalStorage(skipNodesWithLocalStorage)fn withSkipNodesWithSystemPods(skipNodesWithSystemPods)
obj spec.forProvider.azureActiveDirectoryRoleBasedAccessControlfn withAdminGroupObjectIds(adminGroupObjectIds)fn withAdminGroupObjectIdsMixin(adminGroupObjectIds)fn withAzureRbacEnabled(azureRbacEnabled)fn withClientAppId(clientAppId)fn withManaged(managed)fn withServerAppId(serverAppId)fn withTenantId(tenantId)obj spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.serverAppSecretSecretRef
obj spec.forProvider.confidentialComputingobj spec.forProvider.defaultNodePoolfn withCapacityReservationGroupId(capacityReservationGroupId)fn withCustomCaTrustEnabled(customCaTrustEnabled)fn withEnableAutoScaling(enableAutoScaling)fn withEnableHostEncryption(enableHostEncryption)fn withEnableNodePublicIp(enableNodePublicIp)fn withFipsEnabled(fipsEnabled)fn withHostGroupId(hostGroupId)fn withKubeletConfig(kubeletConfig)fn withKubeletConfigMixin(kubeletConfig)fn withKubeletDiskType(kubeletDiskType)fn withLinuxOsConfig(linuxOsConfig)fn withLinuxOsConfigMixin(linuxOsConfig)fn withMaxCount(maxCount)fn withMaxPods(maxPods)fn withMessageOfTheDay(messageOfTheDay)fn withMinCount(minCount)fn withName(name)fn withNodeCount(nodeCount)fn withNodeLabels(nodeLabels)fn withNodeLabelsMixin(nodeLabels)fn withNodeNetworkProfile(nodeNetworkProfile)fn withNodeNetworkProfileMixin(nodeNetworkProfile)fn withNodePublicIpPrefixId(nodePublicIpPrefixId)fn withNodeTaints(nodeTaints)fn withNodeTaintsMixin(nodeTaints)fn withOnlyCriticalAddonsEnabled(onlyCriticalAddonsEnabled)fn withOrchestratorVersion(orchestratorVersion)fn withOsDiskSizeGb(osDiskSizeGb)fn withOsDiskType(osDiskType)fn withOsSku(osSku)fn withPodSubnetId(podSubnetId)fn withProximityPlacementGroupId(proximityPlacementGroupId)fn withScaleDownMode(scaleDownMode)fn withTags(tags)fn withTagsMixin(tags)fn withType(type)fn withUltraSsdEnabled(ultraSsdEnabled)fn withUpgradeSettings(upgradeSettings)fn withUpgradeSettingsMixin(upgradeSettings)fn withVmSize(vmSize)fn withVnetSubnetId(vnetSubnetId)fn withWorkloadRuntime(workloadRuntime)fn withZones(zones)fn withZonesMixin(zones)obj spec.forProvider.defaultNodePool.kubeletConfigfn withAllowedUnsafeSysctls(allowedUnsafeSysctls)fn withAllowedUnsafeSysctlsMixin(allowedUnsafeSysctls)fn withContainerLogMaxLine(containerLogMaxLine)fn withContainerLogMaxSizeMb(containerLogMaxSizeMb)fn withCpuCfsQuotaEnabled(cpuCfsQuotaEnabled)fn withCpuCfsQuotaPeriod(cpuCfsQuotaPeriod)fn withCpuManagerPolicy(cpuManagerPolicy)fn withImageGcHighThreshold(imageGcHighThreshold)fn withImageGcLowThreshold(imageGcLowThreshold)fn withPodMaxPid(podMaxPid)fn withTopologyManagerPolicy(topologyManagerPolicy)
obj spec.forProvider.defaultNodePool.linuxOsConfigfn withSwapFileSizeMb(swapFileSizeMb)fn withSysctlConfig(sysctlConfig)fn withSysctlConfigMixin(sysctlConfig)fn withTransparentHugePageDefrag(transparentHugePageDefrag)fn withTransparentHugePageEnabled(transparentHugePageEnabled)obj spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfigfn withFsAioMaxNr(fsAioMaxNr)fn withFsFileMax(fsFileMax)fn withFsInotifyMaxUserWatches(fsInotifyMaxUserWatches)fn withFsNrOpen(fsNrOpen)fn withKernelThreadsMax(kernelThreadsMax)fn withNetCoreNetdevMaxBacklog(netCoreNetdevMaxBacklog)fn withNetCoreOptmemMax(netCoreOptmemMax)fn withNetCoreRmemDefault(netCoreRmemDefault)fn withNetCoreRmemMax(netCoreRmemMax)fn withNetCoreSomaxconn(netCoreSomaxconn)fn withNetCoreWmemDefault(netCoreWmemDefault)fn withNetCoreWmemMax(netCoreWmemMax)fn withNetIpv4IpLocalPortRangeMax(netIpv4IpLocalPortRangeMax)fn withNetIpv4IpLocalPortRangeMin(netIpv4IpLocalPortRangeMin)fn withNetIpv4NeighDefaultGcThresh1(netIpv4NeighDefaultGcThresh1)fn withNetIpv4NeighDefaultGcThresh2(netIpv4NeighDefaultGcThresh2)fn withNetIpv4NeighDefaultGcThresh3(netIpv4NeighDefaultGcThresh3)fn withNetIpv4TcpFinTimeout(netIpv4TcpFinTimeout)fn withNetIpv4TcpKeepaliveIntvl(netIpv4TcpKeepaliveIntvl)fn withNetIpv4TcpKeepaliveProbes(netIpv4TcpKeepaliveProbes)fn withNetIpv4TcpKeepaliveTime(netIpv4TcpKeepaliveTime)fn withNetIpv4TcpMaxSynBacklog(netIpv4TcpMaxSynBacklog)fn withNetIpv4TcpMaxTwBuckets(netIpv4TcpMaxTwBuckets)fn withNetIpv4TcpTwReuse(netIpv4TcpTwReuse)fn withNetNetfilterNfConntrackBuckets(netNetfilterNfConntrackBuckets)fn withNetNetfilterNfConntrackMax(netNetfilterNfConntrackMax)fn withVmMaxMapCount(vmMaxMapCount)fn withVmSwappiness(vmSwappiness)fn withVmVfsCachePressure(vmVfsCachePressure)
obj spec.forProvider.defaultNodePool.nodeNetworkProfileobj spec.forProvider.defaultNodePool.podSubnetIdRefobj spec.forProvider.defaultNodePool.podSubnetIdSelectorobj spec.forProvider.defaultNodePool.upgradeSettingsobj spec.forProvider.defaultNodePool.vnetSubnetIdRefobj spec.forProvider.defaultNodePool.vnetSubnetIdSelector
obj spec.forProvider.httpProxyConfigobj spec.forProvider.identityobj spec.forProvider.ingressApplicationGatewayobj spec.forProvider.keyManagementServiceobj spec.forProvider.keyVaultSecretsProviderobj spec.forProvider.kubeletIdentityobj spec.forProvider.linuxProfileobj spec.forProvider.maintenanceWindowobj spec.forProvider.microsoftDefenderobj spec.forProvider.monitorMetricsobj spec.forProvider.networkProfilefn withDnsServiceIp(dnsServiceIp)fn withDockerBridgeCidr(dockerBridgeCidr)fn withEbpfDataPlane(ebpfDataPlane)fn withIpVersions(ipVersions)fn withIpVersionsMixin(ipVersions)fn withLoadBalancerProfile(loadBalancerProfile)fn withLoadBalancerProfileMixin(loadBalancerProfile)fn withLoadBalancerSku(loadBalancerSku)fn withNatGatewayProfile(natGatewayProfile)fn withNatGatewayProfileMixin(natGatewayProfile)fn withNetworkMode(networkMode)fn withNetworkPlugin(networkPlugin)fn withNetworkPluginMode(networkPluginMode)fn withNetworkPolicy(networkPolicy)fn withOutboundType(outboundType)fn withPodCidr(podCidr)fn withPodCidrs(podCidrs)fn withPodCidrsMixin(podCidrs)fn withServiceCidr(serviceCidr)fn withServiceCidrs(serviceCidrs)fn withServiceCidrsMixin(serviceCidrs)obj spec.forProvider.networkProfile.loadBalancerProfilefn withIdleTimeoutInMinutes(idleTimeoutInMinutes)fn withManagedOutboundIpCount(managedOutboundIpCount)fn withManagedOutboundIpv6Count(managedOutboundIpv6Count)fn withOutboundIpAddressIds(outboundIpAddressIds)fn withOutboundIpAddressIdsMixin(outboundIpAddressIds)fn withOutboundIpPrefixIds(outboundIpPrefixIds)fn withOutboundIpPrefixIdsMixin(outboundIpPrefixIds)fn withOutboundPortsAllocated(outboundPortsAllocated)
obj spec.forProvider.networkProfile.natGatewayProfile
obj spec.forProvider.omsAgentobj spec.forProvider.privateDnsZoneIdRefobj spec.forProvider.privateDnsZoneIdSelectorobj spec.forProvider.resourceGroupNameRefobj spec.forProvider.resourceGroupNameSelectorobj spec.forProvider.servicePrincipalobj spec.forProvider.storageProfileobj spec.forProvider.webAppRoutingobj spec.forProvider.windowsProfileobj spec.forProvider.workloadAutoscalerProfile
obj spec.providerConfigRefobj spec.providerRefobj spec.publishConnectionDetailsToobj spec.writeConnectionSecretToRef
Fields
fn new
new(name)
new returns an instance of KubernetesCluster
obj metadata
"ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create."
fn metadata.withAnnotations
withAnnotations(annotations)
"Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: http://kubernetes.io/docs/user-guide/annotations"
fn metadata.withAnnotationsMixin
withAnnotationsMixin(annotations)
"Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: http://kubernetes.io/docs/user-guide/annotations"
Note: This function appends passed data to existing values
fn metadata.withClusterName
withClusterName(clusterName)
"The name of the cluster which the object belongs to. This is used to distinguish resources with same name and namespace in different clusters. This field is not set anywhere right now and apiserver is going to ignore it if set in create or update request."
fn metadata.withCreationTimestamp
withCreationTimestamp(creationTimestamp)
"Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers."
fn metadata.withDeletionGracePeriodSeconds
withDeletionGracePeriodSeconds(deletionGracePeriodSeconds)
"Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only."
fn metadata.withDeletionTimestamp
withDeletionTimestamp(deletionTimestamp)
"Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers."
fn metadata.withFinalizers
withFinalizers(finalizers)
"Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order. Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list."
fn metadata.withFinalizersMixin
withFinalizersMixin(finalizers)
"Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order. Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list."
Note: This function appends passed data to existing values
fn metadata.withGenerateName
withGenerateName(generateName)
"GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.\n\nIf this field is specified and the generated name exists, the server will NOT return a 409 - instead, it will either return 201 Created or 500 with Reason ServerTimeout indicating a unique name could not be found in the time allotted, and the client should retry (optionally after the time indicated in the Retry-After header).\n\nApplied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency"
fn metadata.withGeneration
withGeneration(generation)
"A sequence number representing a specific generation of the desired state. Populated by the system. Read-only."
fn metadata.withLabels
withLabels(labels)
"Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: http://kubernetes.io/docs/user-guide/labels"
fn metadata.withLabelsMixin
withLabelsMixin(labels)
"Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: http://kubernetes.io/docs/user-guide/labels"
Note: This function appends passed data to existing values
fn metadata.withName
withName(name)
"Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/identifiers#names"
fn metadata.withNamespace
withNamespace(namespace)
"Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the \"default\" namespace, but \"default\" is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.\n\nMust be a DNS_LABEL. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/namespaces"
fn metadata.withOwnerReferences
withOwnerReferences(ownerReferences)
"List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller."
fn metadata.withOwnerReferencesMixin
withOwnerReferencesMixin(ownerReferences)
"List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller."
Note: This function appends passed data to existing values
fn metadata.withResourceVersion
withResourceVersion(resourceVersion)
"An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.\n\nPopulated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency"
fn metadata.withSelfLink
withSelfLink(selfLink)
"SelfLink is a URL representing this object. Populated by the system. Read-only.\n\nDEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release."
fn metadata.withUid
withUid(uid)
"UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.\n\nPopulated by the system. Read-only. More info: http://kubernetes.io/docs/user-guide/identifiers#uids"
obj spec
"KubernetesClusterSpec defines the desired state of KubernetesCluster"
fn spec.withDeletionPolicy
withDeletionPolicy(deletionPolicy)
"DeletionPolicy specifies what will happen to the underlying external when this managed resource is deleted - either \"Delete\" or \"Orphan\" the external resource."
obj spec.forProvider
fn spec.forProvider.withAciConnectorLinux
withAciConnectorLinux(aciConnectorLinux)
"A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes."
fn spec.forProvider.withAciConnectorLinuxMixin
withAciConnectorLinuxMixin(aciConnectorLinux)
"A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes."
Note: This function appends passed data to existing values
fn spec.forProvider.withApiServerAccessProfile
withApiServerAccessProfile(apiServerAccessProfile)
"An api_server_access_profile block as defined below."
fn spec.forProvider.withApiServerAccessProfileMixin
withApiServerAccessProfileMixin(apiServerAccessProfile)
"An api_server_access_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withApiServerAuthorizedIpRanges
withApiServerAuthorizedIpRanges(apiServerAuthorizedIpRanges)
fn spec.forProvider.withApiServerAuthorizedIpRangesMixin
withApiServerAuthorizedIpRangesMixin(apiServerAuthorizedIpRanges)
Note: This function appends passed data to existing values
fn spec.forProvider.withAutoScalerProfile
withAutoScalerProfile(autoScalerProfile)
"A auto_scaler_profile block as defined below."
fn spec.forProvider.withAutoScalerProfileMixin
withAutoScalerProfileMixin(autoScalerProfile)
"A auto_scaler_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withAutomaticChannelUpgrade
withAutomaticChannelUpgrade(automaticChannelUpgrade)
"The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none."
fn spec.forProvider.withAzureActiveDirectoryRoleBasedAccessControl
withAzureActiveDirectoryRoleBasedAccessControl(azureActiveDirectoryRoleBasedAccessControl)
"A azure_active_directory_role_based_access_control block as defined below."
fn spec.forProvider.withAzureActiveDirectoryRoleBasedAccessControlMixin
withAzureActiveDirectoryRoleBasedAccessControlMixin(azureActiveDirectoryRoleBasedAccessControl)
"A azure_active_directory_role_based_access_control block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withAzurePolicyEnabled
withAzurePolicyEnabled(azurePolicyEnabled)
"Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service"
fn spec.forProvider.withConfidentialComputing
withConfidentialComputing(confidentialComputing)
"A confidential_computing block as defined below. For more details please the documentation"
fn spec.forProvider.withConfidentialComputingMixin
withConfidentialComputingMixin(confidentialComputing)
"A confidential_computing block as defined below. For more details please the documentation"
Note: This function appends passed data to existing values
fn spec.forProvider.withDefaultNodePool
withDefaultNodePool(defaultNodePool)
"A default_node_pool block as defined below."
fn spec.forProvider.withDefaultNodePoolMixin
withDefaultNodePoolMixin(defaultNodePool)
"A default_node_pool block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withDiskEncryptionSetId
withDiskEncryptionSetId(diskEncryptionSetId)
"The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation. Changing this forces a new resource to be created."
fn spec.forProvider.withDnsPrefix
withDnsPrefix(dnsPrefix)
"DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created."
fn spec.forProvider.withDnsPrefixPrivateCluster
withDnsPrefixPrivateCluster(dnsPrefixPrivateCluster)
"Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created."
fn spec.forProvider.withEdgeZone
withEdgeZone(edgeZone)
"Specifies the Edge Zone within the Azure Region where this Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created."
fn spec.forProvider.withEnablePodSecurityPolicy
withEnablePodSecurityPolicy(enablePodSecurityPolicy)
fn spec.forProvider.withHttpApplicationRoutingEnabled
withHttpApplicationRoutingEnabled(httpApplicationRoutingEnabled)
"Should HTTP Application Routing be enabled?"
fn spec.forProvider.withHttpProxyConfig
withHttpProxyConfig(httpProxyConfig)
"A http_proxy_config block as defined below."
fn spec.forProvider.withHttpProxyConfigMixin
withHttpProxyConfigMixin(httpProxyConfig)
"A http_proxy_config block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withIdentity
withIdentity(identity)
"An identity block as defined below. One of either identity or service_principal must be specified."
fn spec.forProvider.withIdentityMixin
withIdentityMixin(identity)
"An identity block as defined below. One of either identity or service_principal must be specified."
Note: This function appends passed data to existing values
fn spec.forProvider.withImageCleanerEnabled
withImageCleanerEnabled(imageCleanerEnabled)
"Specifies whether Image Cleaner is enabled."
fn spec.forProvider.withImageCleanerIntervalHours
withImageCleanerIntervalHours(imageCleanerIntervalHours)
"Specifies the interval in hours when images should be cleaned up. Defaults to 48."
fn spec.forProvider.withIngressApplicationGateway
withIngressApplicationGateway(ingressApplicationGateway)
"An ingress_application_gateway block as defined below."
fn spec.forProvider.withIngressApplicationGatewayMixin
withIngressApplicationGatewayMixin(ingressApplicationGateway)
"An ingress_application_gateway block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withKeyManagementService
withKeyManagementService(keyManagementService)
"A key_management_service block as defined below. For more details, please visit Key Management Service (KMS) etcd encryption to an AKS cluster."
fn spec.forProvider.withKeyManagementServiceMixin
withKeyManagementServiceMixin(keyManagementService)
"A key_management_service block as defined below. For more details, please visit Key Management Service (KMS) etcd encryption to an AKS cluster."
Note: This function appends passed data to existing values
fn spec.forProvider.withKeyVaultSecretsProvider
withKeyVaultSecretsProvider(keyVaultSecretsProvider)
"A key_vault_secrets_provider block as defined below."
fn spec.forProvider.withKeyVaultSecretsProviderMixin
withKeyVaultSecretsProviderMixin(keyVaultSecretsProvider)
"A key_vault_secrets_provider block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withKubeletIdentity
withKubeletIdentity(kubeletIdentity)
"A kubelet_identity block as defined below."
fn spec.forProvider.withKubeletIdentityMixin
withKubeletIdentityMixin(kubeletIdentity)
"A kubelet_identity block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withKubernetesVersion
withKubernetesVersion(kubernetesVersion)
"Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade). AKS does not require an exact patch version to be specified, minor version aliases such as 1.22 are also supported. - The minor version's latest GA patch is automatically chosen in that case. More details can be found in the documentation."
fn spec.forProvider.withLinuxProfile
withLinuxProfile(linuxProfile)
"A linux_profile block as defined below."
fn spec.forProvider.withLinuxProfileMixin
withLinuxProfileMixin(linuxProfile)
"A linux_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withLocalAccountDisabled
withLocalAccountDisabled(localAccountDisabled)
"If true local accounts will be disabled. See the documentation for more information."
fn spec.forProvider.withLocation
withLocation(location)
"The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created."
fn spec.forProvider.withMaintenanceWindow
withMaintenanceWindow(maintenanceWindow)
"A maintenance_window block as defined below."
fn spec.forProvider.withMaintenanceWindowMixin
withMaintenanceWindowMixin(maintenanceWindow)
"A maintenance_window block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withMicrosoftDefender
withMicrosoftDefender(microsoftDefender)
"A microsoft_defender block as defined below."
fn spec.forProvider.withMicrosoftDefenderMixin
withMicrosoftDefenderMixin(microsoftDefender)
"A microsoft_defender block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withMonitorMetrics
withMonitorMetrics(monitorMetrics)
"Specifies a Prometheus add-on profile for the Kubernetes Cluster. A monitor_metrics block as defined below."
fn spec.forProvider.withMonitorMetricsMixin
withMonitorMetricsMixin(monitorMetrics)
"Specifies a Prometheus add-on profile for the Kubernetes Cluster. A monitor_metrics block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withNetworkProfile
withNetworkProfile(networkProfile)
"A network_profile block as defined below."
fn spec.forProvider.withNetworkProfileMixin
withNetworkProfileMixin(networkProfile)
"A network_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withNodeResourceGroup
withNodeResourceGroup(nodeResourceGroup)
"The auto-generated Resource Group which contains the resources for this Managed Kubernetes Cluster. Changing this forces a new resource to be created."
fn spec.forProvider.withOidcIssuerEnabled
withOidcIssuerEnabled(oidcIssuerEnabled)
"Enable or Disable the OIDC issuer URL"
fn spec.forProvider.withOmsAgent
withOmsAgent(omsAgent)
"An oms_agent block as defined below."
fn spec.forProvider.withOmsAgentMixin
withOmsAgentMixin(omsAgent)
"An oms_agent block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withOpenServiceMeshEnabled
withOpenServiceMeshEnabled(openServiceMeshEnabled)
"Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS."
fn spec.forProvider.withPrivateClusterEnabled
withPrivateClusterEnabled(privateClusterEnabled)
"Should this Kubernetes Cluster have its API server only exposed on internal IP addresses? This provides a Private IP Address for the Kubernetes API on the Virtual Network where the Kubernetes Cluster is located. Defaults to false. Changing this forces a new resource to be created."
fn spec.forProvider.withPrivateClusterPublicFqdnEnabled
withPrivateClusterPublicFqdnEnabled(privateClusterPublicFqdnEnabled)
"Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false."
fn spec.forProvider.withPrivateDnsZoneId
withPrivateDnsZoneId(privateDnsZoneId)
"Either the ID of Private DNS Zone which should be delegated to this Cluster, System to have AKS manage this or None. In case of None you will need to bring your own DNS server and set up resolving, otherwise, the cluster will have issues after provisioning. Changing this forces a new resource to be created."
fn spec.forProvider.withPublicNetworkAccessEnabled
withPublicNetworkAccessEnabled(publicNetworkAccessEnabled)
"Whether public network access is allowed for this Kubernetes Cluster. Defaults to true. Changing this forces a new resource to be created."
fn spec.forProvider.withResourceGroupName
withResourceGroupName(resourceGroupName)
"Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created."
fn spec.forProvider.withRoleBasedAccessControlEnabled
withRoleBasedAccessControlEnabled(roleBasedAccessControlEnabled)
"Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created."
fn spec.forProvider.withRunCommandEnabled
withRunCommandEnabled(runCommandEnabled)
"Whether to enable run command for the cluster or not. Defaults to true."
fn spec.forProvider.withServicePrincipal
withServicePrincipal(servicePrincipal)
"A service_principal block as documented below. One of either identity or service_principal must be specified."
fn spec.forProvider.withServicePrincipalMixin
withServicePrincipalMixin(servicePrincipal)
"A service_principal block as documented below. One of either identity or service_principal must be specified."
Note: This function appends passed data to existing values
fn spec.forProvider.withSkuTier
withSkuTier(skuTier)
"The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free."
fn spec.forProvider.withStorageProfile
withStorageProfile(storageProfile)
"A storage_profile block as defined below."
fn spec.forProvider.withStorageProfileMixin
withStorageProfileMixin(storageProfile)
"A storage_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withTags
withTags(tags)
"A mapping of tags to assign to the resource."
fn spec.forProvider.withTagsMixin
withTagsMixin(tags)
"A mapping of tags to assign to the resource."
Note: This function appends passed data to existing values
fn spec.forProvider.withWebAppRouting
withWebAppRouting(webAppRouting)
"A web_app_routing block as defined below."
fn spec.forProvider.withWebAppRoutingMixin
withWebAppRoutingMixin(webAppRouting)
"A web_app_routing block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withWindowsProfile
withWindowsProfile(windowsProfile)
"A windows_profile block as defined below."
fn spec.forProvider.withWindowsProfileMixin
withWindowsProfileMixin(windowsProfile)
"A windows_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withWorkloadAutoscalerProfile
withWorkloadAutoscalerProfile(workloadAutoscalerProfile)
"A workload_autoscaler_profile block defined below."
fn spec.forProvider.withWorkloadAutoscalerProfileMixin
withWorkloadAutoscalerProfileMixin(workloadAutoscalerProfile)
"A workload_autoscaler_profile block defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.withWorkloadIdentityEnabled
withWorkloadIdentityEnabled(workloadIdentityEnabled)
"Specifies whether Azure AD Workload Identity should be enabled for the Cluster. Defaults to false."
obj spec.forProvider.aciConnectorLinux
"A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes."
fn spec.forProvider.aciConnectorLinux.withSubnetName
withSubnetName(subnetName)
"The subnet name for the virtual nodes to run."
obj spec.forProvider.aciConnectorLinux.subnetNameRef
"Reference to a Subnet in network to populate subnetName."
fn spec.forProvider.aciConnectorLinux.subnetNameRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.aciConnectorLinux.subnetNameRef.policy
"Policies for referencing."
fn spec.forProvider.aciConnectorLinux.subnetNameRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.aciConnectorLinux.subnetNameRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.aciConnectorLinux.subnetNameSelector
"Selector for a Subnet in network to populate subnetName."
fn spec.forProvider.aciConnectorLinux.subnetNameSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.aciConnectorLinux.subnetNameSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.aciConnectorLinux.subnetNameSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.aciConnectorLinux.subnetNameSelector.policy
"Policies for selection."
fn spec.forProvider.aciConnectorLinux.subnetNameSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.aciConnectorLinux.subnetNameSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.apiServerAccessProfile
"An api_server_access_profile block as defined below."
fn spec.forProvider.apiServerAccessProfile.withAuthorizedIpRanges
withAuthorizedIpRanges(authorizedIpRanges)
"Set of authorized IP ranges to allow access to API server, e.g. [\"198.51.100.0/24\"]."
fn spec.forProvider.apiServerAccessProfile.withAuthorizedIpRangesMixin
withAuthorizedIpRangesMixin(authorizedIpRanges)
"Set of authorized IP ranges to allow access to API server, e.g. [\"198.51.100.0/24\"]."
Note: This function appends passed data to existing values
fn spec.forProvider.apiServerAccessProfile.withSubnetId
withSubnetId(subnetId)
"The ID of the Subnet where the API server endpoint is delegated to."
fn spec.forProvider.apiServerAccessProfile.withVnetIntegrationEnabled
withVnetIntegrationEnabled(vnetIntegrationEnabled)
"Should API Server VNet Integration be enabled? For more details please visit Use API Server VNet Integration."
obj spec.forProvider.apiServerAccessProfile.subnetIdRef
"Reference to a Subnet in network to populate subnetId."
fn spec.forProvider.apiServerAccessProfile.subnetIdRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.apiServerAccessProfile.subnetIdRef.policy
"Policies for referencing."
fn spec.forProvider.apiServerAccessProfile.subnetIdRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.apiServerAccessProfile.subnetIdRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.apiServerAccessProfile.subnetIdSelector
"Selector for a Subnet in network to populate subnetId."
fn spec.forProvider.apiServerAccessProfile.subnetIdSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.apiServerAccessProfile.subnetIdSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.apiServerAccessProfile.subnetIdSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.apiServerAccessProfile.subnetIdSelector.policy
"Policies for selection."
fn spec.forProvider.apiServerAccessProfile.subnetIdSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.apiServerAccessProfile.subnetIdSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.autoScalerProfile
"A auto_scaler_profile block as defined below."
fn spec.forProvider.autoScalerProfile.withBalanceSimilarNodeGroups
withBalanceSimilarNodeGroups(balanceSimilarNodeGroups)
"Detect similar node groups and balance the number of nodes between them. Defaults to false."
fn spec.forProvider.autoScalerProfile.withEmptyBulkDeleteMax
withEmptyBulkDeleteMax(emptyBulkDeleteMax)
"Maximum number of empty nodes that can be deleted at the same time. Defaults to 10."
fn spec.forProvider.autoScalerProfile.withExpander
withExpander(expander)
"Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random."
fn spec.forProvider.autoScalerProfile.withMaxGracefulTerminationSec
withMaxGracefulTerminationSec(maxGracefulTerminationSec)
"Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600."
fn spec.forProvider.autoScalerProfile.withMaxNodeProvisioningTime
withMaxNodeProvisioningTime(maxNodeProvisioningTime)
"Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m."
fn spec.forProvider.autoScalerProfile.withMaxUnreadyNodes
withMaxUnreadyNodes(maxUnreadyNodes)
"Maximum Number of allowed unready nodes. Defaults to 3."
fn spec.forProvider.autoScalerProfile.withMaxUnreadyPercentage
withMaxUnreadyPercentage(maxUnreadyPercentage)
"Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45."
fn spec.forProvider.autoScalerProfile.withNewPodScaleUpDelay
withNewPodScaleUpDelay(newPodScaleUpDelay)
"For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s."
fn spec.forProvider.autoScalerProfile.withScaleDownDelayAfterAdd
withScaleDownDelayAfterAdd(scaleDownDelayAfterAdd)
"How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m."
fn spec.forProvider.autoScalerProfile.withScaleDownDelayAfterDelete
withScaleDownDelayAfterDelete(scaleDownDelayAfterDelete)
"How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval."
fn spec.forProvider.autoScalerProfile.withScaleDownDelayAfterFailure
withScaleDownDelayAfterFailure(scaleDownDelayAfterFailure)
"How long after scale down failure that scale down evaluation resumes. Defaults to 3m."
fn spec.forProvider.autoScalerProfile.withScaleDownUnneeded
withScaleDownUnneeded(scaleDownUnneeded)
"How long a node should be unneeded before it is eligible for scale down. Defaults to 10m."
fn spec.forProvider.autoScalerProfile.withScaleDownUnready
withScaleDownUnready(scaleDownUnready)
"How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m."
fn spec.forProvider.autoScalerProfile.withScaleDownUtilizationThreshold
withScaleDownUtilizationThreshold(scaleDownUtilizationThreshold)
"Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5."
fn spec.forProvider.autoScalerProfile.withScanInterval
withScanInterval(scanInterval)
"How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s."
fn spec.forProvider.autoScalerProfile.withSkipNodesWithLocalStorage
withSkipNodesWithLocalStorage(skipNodesWithLocalStorage)
"If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true."
fn spec.forProvider.autoScalerProfile.withSkipNodesWithSystemPods
withSkipNodesWithSystemPods(skipNodesWithSystemPods)
"If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true."
obj spec.forProvider.azureActiveDirectoryRoleBasedAccessControl
"A azure_active_directory_role_based_access_control block as defined below."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withAdminGroupObjectIds
withAdminGroupObjectIds(adminGroupObjectIds)
"A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withAdminGroupObjectIdsMixin
withAdminGroupObjectIdsMixin(adminGroupObjectIds)
"A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster."
Note: This function appends passed data to existing values
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withAzureRbacEnabled
withAzureRbacEnabled(azureRbacEnabled)
"Is Role Based Access Control based on Azure AD enabled?"
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withClientAppId
withClientAppId(clientAppId)
"The Client ID of an Azure Active Directory Application."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withManaged
withManaged(managed)
"Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withServerAppId
withServerAppId(serverAppId)
"The Server ID of an Azure Active Directory Application."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.withTenantId
withTenantId(tenantId)
"The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used."
obj spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.serverAppSecretSecretRef
"The Server Secret of an Azure Active Directory Application."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.serverAppSecretSecretRef.withKey
withKey(key)
"The key to select."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.serverAppSecretSecretRef.withName
withName(name)
"Name of the secret."
fn spec.forProvider.azureActiveDirectoryRoleBasedAccessControl.serverAppSecretSecretRef.withNamespace
withNamespace(namespace)
"Namespace of the secret."
obj spec.forProvider.confidentialComputing
"A confidential_computing block as defined below. For more details please the documentation"
fn spec.forProvider.confidentialComputing.withSgxQuoteHelperEnabled
withSgxQuoteHelperEnabled(sgxQuoteHelperEnabled)
"Should the SGX quote helper be enabled?"
obj spec.forProvider.defaultNodePool
"A default_node_pool block as defined below."
fn spec.forProvider.defaultNodePool.withCapacityReservationGroupId
withCapacityReservationGroupId(capacityReservationGroupId)
"Specifies the ID of the Capacity Reservation Group within which this AKS Cluster should be created. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withCustomCaTrustEnabled
withCustomCaTrustEnabled(customCaTrustEnabled)
"Specifies whether to trust a Custom CA."
fn spec.forProvider.defaultNodePool.withEnableAutoScaling
withEnableAutoScaling(enableAutoScaling)
"Should the Kubernetes Auto Scaler be enabled for this Node Pool?"
fn spec.forProvider.defaultNodePool.withEnableHostEncryption
withEnableHostEncryption(enableHostEncryption)
"Should the nodes in the Default Node Pool have host encryption enabled? Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withEnableNodePublicIp
withEnableNodePublicIp(enableNodePublicIp)
"Should nodes in this Node Pool have a Public IP Address? Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withFipsEnabled
withFipsEnabled(fipsEnabled)
"Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withHostGroupId
withHostGroupId(hostGroupId)
"Specifies the ID of the Host Group within which this AKS Cluster should be created. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withKubeletConfig
withKubeletConfig(kubeletConfig)
"A kubelet_config block as defined below. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withKubeletConfigMixin
withKubeletConfigMixin(kubeletConfig)
"A kubelet_config block as defined below. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withKubeletDiskType
withKubeletDiskType(kubeletDiskType)
"The type of disk used by kubelet. Possible values are OS and Temporary."
fn spec.forProvider.defaultNodePool.withLinuxOsConfig
withLinuxOsConfig(linuxOsConfig)
"A linux_os_config block as defined below. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withLinuxOsConfigMixin
withLinuxOsConfigMixin(linuxOsConfig)
"A linux_os_config block as defined below. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withMaxCount
withMaxCount(maxCount)
"The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000."
fn spec.forProvider.defaultNodePool.withMaxPods
withMaxPods(maxPods)
"The maximum number of pods that can run on each agent. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withMessageOfTheDay
withMessageOfTheDay(messageOfTheDay)
"A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It cannot be specified for Windows nodes and must be a static string (i.e. will be printed raw and not executed as a script). Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withMinCount
withMinCount(minCount)
"The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000."
fn spec.forProvider.defaultNodePool.withName
withName(name)
"The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withNodeCount
withNodeCount(nodeCount)
"The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count."
fn spec.forProvider.defaultNodePool.withNodeLabels
withNodeLabels(nodeLabels)
"A map of Kubernetes labels which should be applied to nodes in the Default Node Pool."
fn spec.forProvider.defaultNodePool.withNodeLabelsMixin
withNodeLabelsMixin(nodeLabels)
"A map of Kubernetes labels which should be applied to nodes in the Default Node Pool."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withNodeNetworkProfile
withNodeNetworkProfile(nodeNetworkProfile)
"A node_network_profile block as documented below."
fn spec.forProvider.defaultNodePool.withNodeNetworkProfileMixin
withNodeNetworkProfileMixin(nodeNetworkProfile)
"A node_network_profile block as documented below."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withNodePublicIpPrefixId
withNodePublicIpPrefixId(nodePublicIpPrefixId)
"Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withNodeTaints
withNodeTaints(nodeTaints)
"A list of the taints added to new nodes during node pool create and scale. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withNodeTaintsMixin
withNodeTaintsMixin(nodeTaints)
"A list of the taints added to new nodes during node pool create and scale. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withOnlyCriticalAddonsEnabled
withOnlyCriticalAddonsEnabled(onlyCriticalAddonsEnabled)
"Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withOrchestratorVersion
withOrchestratorVersion(orchestratorVersion)
"Version of Kubernetes used for the Agents. If not specified, the default node pool will be created with the version specified by kubernetes_version. If both are unspecified, the latest recommended version will be used at provisioning time (but won't auto-upgrade). AKS does not require an exact patch version to be specified, minor version aliases such as 1.22 are also supported. - The minor version's latest GA patch is automatically chosen in that case. More details can be found in the documentation."
fn spec.forProvider.defaultNodePool.withOsDiskSizeGb
withOsDiskSizeGb(osDiskSizeGb)
"The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withOsDiskType
withOsDiskType(osDiskType)
"The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withOsSku
withOsSku(osSku)
"Specifies the OS SKU used by the agent pool. Possible values include: Ubuntu, CBLMariner, Mariner, Windows2019, Windows2022. If not specified, the default is Ubuntu if OSType=Linux or Windows2019 if OSType=Windows. And the default Windows OSSKU will be changed to Windows2022 after Windows2019 is deprecated. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withPodSubnetId
withPodSubnetId(podSubnetId)
"The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withProximityPlacementGroupId
withProximityPlacementGroupId(proximityPlacementGroupId)
"The ID of the Proximity Placement Group. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withScaleDownMode
withScaleDownMode(scaleDownMode)
"Specifies the autoscaling behaviour of the Kubernetes Cluster. Allowed values are Delete and Deallocate. Defaults to Delete."
fn spec.forProvider.defaultNodePool.withTags
withTags(tags)
"A mapping of tags to assign to the Node Pool."
fn spec.forProvider.defaultNodePool.withTagsMixin
withTagsMixin(tags)
"A mapping of tags to assign to the Node Pool."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withType
withType(type)
"The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withUltraSsdEnabled
withUltraSsdEnabled(ultraSsdEnabled)
"Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withUpgradeSettings
withUpgradeSettings(upgradeSettings)
"A upgrade_settings block as documented below."
fn spec.forProvider.defaultNodePool.withUpgradeSettingsMixin
withUpgradeSettingsMixin(upgradeSettings)
"A upgrade_settings block as documented below."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.withVmSize
withVmSize(vmSize)
"The size of the Virtual Machine, such as Standard_DS2_v2. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withVnetSubnetId
withVnetSubnetId(vnetSubnetId)
"The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.withWorkloadRuntime
withWorkloadRuntime(workloadRuntime)
"Specifies the workload runtime used by the node pool. Possible values are OCIContainer."
fn spec.forProvider.defaultNodePool.withZones
withZones(zones)
"Specifies a list of Availability Zones in which this Kubernetes Cluster should be located. Changing this forces a new Kubernetes Cluster to be created."
fn spec.forProvider.defaultNodePool.withZonesMixin
withZonesMixin(zones)
"Specifies a list of Availability Zones in which this Kubernetes Cluster should be located. Changing this forces a new Kubernetes Cluster to be created."
Note: This function appends passed data to existing values
obj spec.forProvider.defaultNodePool.kubeletConfig
"A kubelet_config block as defined below. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withAllowedUnsafeSysctls
withAllowedUnsafeSysctls(allowedUnsafeSysctls)
"Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withAllowedUnsafeSysctlsMixin
withAllowedUnsafeSysctlsMixin(allowedUnsafeSysctls)
"Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.kubeletConfig.withContainerLogMaxLine
withContainerLogMaxLine(containerLogMaxLine)
"Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withContainerLogMaxSizeMb
withContainerLogMaxSizeMb(containerLogMaxSizeMb)
"Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withCpuCfsQuotaEnabled
withCpuCfsQuotaEnabled(cpuCfsQuotaEnabled)
"Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withCpuCfsQuotaPeriod
withCpuCfsQuotaPeriod(cpuCfsQuotaPeriod)
"Specifies the CPU CFS quota period value. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withCpuManagerPolicy
withCpuManagerPolicy(cpuManagerPolicy)
"Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withImageGcHighThreshold
withImageGcHighThreshold(imageGcHighThreshold)
"Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withImageGcLowThreshold
withImageGcLowThreshold(imageGcLowThreshold)
"Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withPodMaxPid
withPodMaxPid(podMaxPid)
"Specifies the maximum number of processes per pod. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.kubeletConfig.withTopologyManagerPolicy
withTopologyManagerPolicy(topologyManagerPolicy)
"Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created."
obj spec.forProvider.defaultNodePool.linuxOsConfig
"A linux_os_config block as defined below. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.withSwapFileSizeMb
withSwapFileSizeMb(swapFileSizeMb)
"Specifies the size of the swap file on each node in MB. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.withSysctlConfig
withSysctlConfig(sysctlConfig)
"A sysctl_config block as defined below. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.withSysctlConfigMixin
withSysctlConfigMixin(sysctlConfig)
"A sysctl_config block as defined below. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.defaultNodePool.linuxOsConfig.withTransparentHugePageDefrag
withTransparentHugePageDefrag(transparentHugePageDefrag)
"specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.withTransparentHugePageEnabled
withTransparentHugePageEnabled(transparentHugePageEnabled)
"Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created."
obj spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig
"A sysctl_config block as defined below. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withFsAioMaxNr
withFsAioMaxNr(fsAioMaxNr)
"The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withFsFileMax
withFsFileMax(fsFileMax)
"The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withFsInotifyMaxUserWatches
withFsInotifyMaxUserWatches(fsInotifyMaxUserWatches)
"The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withFsNrOpen
withFsNrOpen(fsNrOpen)
"The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withKernelThreadsMax
withKernelThreadsMax(kernelThreadsMax)
"The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreNetdevMaxBacklog
withNetCoreNetdevMaxBacklog(netCoreNetdevMaxBacklog)
"The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreOptmemMax
withNetCoreOptmemMax(netCoreOptmemMax)
"The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreRmemDefault
withNetCoreRmemDefault(netCoreRmemDefault)
"The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreRmemMax
withNetCoreRmemMax(netCoreRmemMax)
"The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreSomaxconn
withNetCoreSomaxconn(netCoreSomaxconn)
"The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreWmemDefault
withNetCoreWmemDefault(netCoreWmemDefault)
"The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetCoreWmemMax
withNetCoreWmemMax(netCoreWmemMax)
"The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4IpLocalPortRangeMax
withNetIpv4IpLocalPortRangeMax(netIpv4IpLocalPortRangeMax)
"The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4IpLocalPortRangeMin
withNetIpv4IpLocalPortRangeMin(netIpv4IpLocalPortRangeMin)
"The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4NeighDefaultGcThresh1
withNetIpv4NeighDefaultGcThresh1(netIpv4NeighDefaultGcThresh1)
"The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4NeighDefaultGcThresh2
withNetIpv4NeighDefaultGcThresh2(netIpv4NeighDefaultGcThresh2)
"The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4NeighDefaultGcThresh3
withNetIpv4NeighDefaultGcThresh3(netIpv4NeighDefaultGcThresh3)
"The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpFinTimeout
withNetIpv4TcpFinTimeout(netIpv4TcpFinTimeout)
"The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpKeepaliveIntvl
withNetIpv4TcpKeepaliveIntvl(netIpv4TcpKeepaliveIntvl)
"The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpKeepaliveProbes
withNetIpv4TcpKeepaliveProbes(netIpv4TcpKeepaliveProbes)
"The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpKeepaliveTime
withNetIpv4TcpKeepaliveTime(netIpv4TcpKeepaliveTime)
"The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpMaxSynBacklog
withNetIpv4TcpMaxSynBacklog(netIpv4TcpMaxSynBacklog)
"The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpMaxTwBuckets
withNetIpv4TcpMaxTwBuckets(netIpv4TcpMaxTwBuckets)
"The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetIpv4TcpTwReuse
withNetIpv4TcpTwReuse(netIpv4TcpTwReuse)
"The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetNetfilterNfConntrackBuckets
withNetNetfilterNfConntrackBuckets(netNetfilterNfConntrackBuckets)
"The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withNetNetfilterNfConntrackMax
withNetNetfilterNfConntrackMax(netNetfilterNfConntrackMax)
"The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 1048576. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withVmMaxMapCount
withVmMaxMapCount(vmMaxMapCount)
"The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withVmSwappiness
withVmSwappiness(vmSwappiness)
"The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.linuxOsConfig.sysctlConfig.withVmVfsCachePressure
withVmVfsCachePressure(vmVfsCachePressure)
"The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created."
obj spec.forProvider.defaultNodePool.nodeNetworkProfile
"A node_network_profile block as documented below."
fn spec.forProvider.defaultNodePool.nodeNetworkProfile.withNodePublicIpTags
withNodePublicIpTags(nodePublicIpTags)
"Specifies a mapping of tags to the instance-level public IPs. Changing this forces a new resource to be created."
fn spec.forProvider.defaultNodePool.nodeNetworkProfile.withNodePublicIpTagsMixin
withNodePublicIpTagsMixin(nodePublicIpTags)
"Specifies a mapping of tags to the instance-level public IPs. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
obj spec.forProvider.defaultNodePool.podSubnetIdRef
"Reference to a Subnet in network to populate podSubnetId."
fn spec.forProvider.defaultNodePool.podSubnetIdRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.defaultNodePool.podSubnetIdRef.policy
"Policies for referencing."
fn spec.forProvider.defaultNodePool.podSubnetIdRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.defaultNodePool.podSubnetIdRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.defaultNodePool.podSubnetIdSelector
"Selector for a Subnet in network to populate podSubnetId."
fn spec.forProvider.defaultNodePool.podSubnetIdSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.defaultNodePool.podSubnetIdSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.defaultNodePool.podSubnetIdSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.defaultNodePool.podSubnetIdSelector.policy
"Policies for selection."
fn spec.forProvider.defaultNodePool.podSubnetIdSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.defaultNodePool.podSubnetIdSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.defaultNodePool.upgradeSettings
"A upgrade_settings block as documented below."
fn spec.forProvider.defaultNodePool.upgradeSettings.withMaxSurge
withMaxSurge(maxSurge)
"The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade."
obj spec.forProvider.defaultNodePool.vnetSubnetIdRef
"Reference to a Subnet in network to populate vnetSubnetId."
fn spec.forProvider.defaultNodePool.vnetSubnetIdRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.defaultNodePool.vnetSubnetIdRef.policy
"Policies for referencing."
fn spec.forProvider.defaultNodePool.vnetSubnetIdRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.defaultNodePool.vnetSubnetIdRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.defaultNodePool.vnetSubnetIdSelector
"Selector for a Subnet in network to populate vnetSubnetId."
fn spec.forProvider.defaultNodePool.vnetSubnetIdSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.defaultNodePool.vnetSubnetIdSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.defaultNodePool.vnetSubnetIdSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.defaultNodePool.vnetSubnetIdSelector.policy
"Policies for selection."
fn spec.forProvider.defaultNodePool.vnetSubnetIdSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.defaultNodePool.vnetSubnetIdSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.httpProxyConfig
"A http_proxy_config block as defined below."
fn spec.forProvider.httpProxyConfig.withHttpProxy
withHttpProxy(httpProxy)
"The proxy address to be used when communicating over HTTP. Changing this forces a new resource to be created."
fn spec.forProvider.httpProxyConfig.withHttpsProxy
withHttpsProxy(httpsProxy)
"The proxy address to be used when communicating over HTTPS. Changing this forces a new resource to be created."
fn spec.forProvider.httpProxyConfig.withNoProxy
withNoProxy(noProxy)
"The list of domains that will not use the proxy for communication. Changing this forces a new resource to be created."
fn spec.forProvider.httpProxyConfig.withNoProxyMixin
withNoProxyMixin(noProxy)
"The list of domains that will not use the proxy for communication. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
obj spec.forProvider.httpProxyConfig.trustedCaSecretRef
"The base64 encoded alternative CA certificate content in PEM format."
fn spec.forProvider.httpProxyConfig.trustedCaSecretRef.withKey
withKey(key)
"The key to select."
fn spec.forProvider.httpProxyConfig.trustedCaSecretRef.withName
withName(name)
"Name of the secret."
fn spec.forProvider.httpProxyConfig.trustedCaSecretRef.withNamespace
withNamespace(namespace)
"Namespace of the secret."
obj spec.forProvider.identity
"An identity block as defined below. One of either identity or service_principal must be specified."
fn spec.forProvider.identity.withIdentityIds
withIdentityIds(identityIds)
"Specifies a list of User Assigned Managed Identity IDs to be assigned to this Kubernetes Cluster."
fn spec.forProvider.identity.withIdentityIdsMixin
withIdentityIdsMixin(identityIds)
"Specifies a list of User Assigned Managed Identity IDs to be assigned to this Kubernetes Cluster."
Note: This function appends passed data to existing values
fn spec.forProvider.identity.withType
withType(type)
"Specifies the type of Managed Service Identity that should be configured on this Kubernetes Cluster. Possible values are SystemAssigned or UserAssigned."
obj spec.forProvider.ingressApplicationGateway
"An ingress_application_gateway block as defined below."
fn spec.forProvider.ingressApplicationGateway.withGatewayId
withGatewayId(gatewayId)
"The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details."
fn spec.forProvider.ingressApplicationGateway.withGatewayName
withGatewayName(gatewayName)
"The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details."
fn spec.forProvider.ingressApplicationGateway.withSubnetCidr
withSubnetCidr(subnetCidr)
"The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details."
fn spec.forProvider.ingressApplicationGateway.withSubnetId
withSubnetId(subnetId)
"The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details."
obj spec.forProvider.ingressApplicationGateway.subnetIdRef
"Reference to a Subnet in network to populate subnetId."
fn spec.forProvider.ingressApplicationGateway.subnetIdRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.ingressApplicationGateway.subnetIdRef.policy
"Policies for referencing."
fn spec.forProvider.ingressApplicationGateway.subnetIdRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.ingressApplicationGateway.subnetIdRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.ingressApplicationGateway.subnetIdSelector
"Selector for a Subnet in network to populate subnetId."
fn spec.forProvider.ingressApplicationGateway.subnetIdSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.ingressApplicationGateway.subnetIdSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.ingressApplicationGateway.subnetIdSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.ingressApplicationGateway.subnetIdSelector.policy
"Policies for selection."
fn spec.forProvider.ingressApplicationGateway.subnetIdSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.ingressApplicationGateway.subnetIdSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.keyManagementService
"A key_management_service block as defined below. For more details, please visit Key Management Service (KMS) etcd encryption to an AKS cluster."
fn spec.forProvider.keyManagementService.withKeyVaultKeyId
withKeyVaultKeyId(keyVaultKeyId)
"Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When enabled is false, leave the field empty."
fn spec.forProvider.keyManagementService.withKeyVaultNetworkAccess
withKeyVaultNetworkAccess(keyVaultNetworkAccess)
"Network access of the key vault Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public."
obj spec.forProvider.keyVaultSecretsProvider
"A key_vault_secrets_provider block as defined below."
fn spec.forProvider.keyVaultSecretsProvider.withSecretRotationEnabled
withSecretRotationEnabled(secretRotationEnabled)
"Is secret rotation enabled?"
fn spec.forProvider.keyVaultSecretsProvider.withSecretRotationInterval
withSecretRotationInterval(secretRotationInterval)
"The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m."
obj spec.forProvider.kubeletIdentity
"A kubelet_identity block as defined below."
fn spec.forProvider.kubeletIdentity.withClientId
withClientId(clientId)
"The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically. Changing this forces a new resource to be created."
fn spec.forProvider.kubeletIdentity.withObjectId
withObjectId(objectId)
"The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically. Changing this forces a new resource to be created."
fn spec.forProvider.kubeletIdentity.withUserAssignedIdentityId
withUserAssignedIdentityId(userAssignedIdentityId)
"The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically. Changing this forces a new resource to be created."
obj spec.forProvider.linuxProfile
"A linux_profile block as defined below."
fn spec.forProvider.linuxProfile.withAdminUsername
withAdminUsername(adminUsername)
"The Admin Username for the Cluster. Changing this forces a new resource to be created."
fn spec.forProvider.linuxProfile.withSshKey
withSshKey(sshKey)
"An ssh_key block. Only one is currently allowed. Changing this will update the key on all node pools. More information can be found in the documentation."
fn spec.forProvider.linuxProfile.withSshKeyMixin
withSshKeyMixin(sshKey)
"An ssh_key block. Only one is currently allowed. Changing this will update the key on all node pools. More information can be found in the documentation."
Note: This function appends passed data to existing values
obj spec.forProvider.linuxProfile.sshKey
"An ssh_key block. Only one is currently allowed. Changing this will update the key on all node pools. More information can be found in the documentation."
fn spec.forProvider.linuxProfile.sshKey.withKeyData
withKeyData(keyData)
"The Public SSH Key used to access the cluster."
obj spec.forProvider.maintenanceWindow
"A maintenance_window block as defined below."
fn spec.forProvider.maintenanceWindow.withAllowed
withAllowed(allowed)
"One or more allowed blocks as defined below."
fn spec.forProvider.maintenanceWindow.withAllowedMixin
withAllowedMixin(allowed)
"One or more allowed blocks as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.maintenanceWindow.withNotAllowed
withNotAllowed(notAllowed)
"One or more not_allowed block as defined below."
fn spec.forProvider.maintenanceWindow.withNotAllowedMixin
withNotAllowedMixin(notAllowed)
"One or more not_allowed block as defined below."
Note: This function appends passed data to existing values
obj spec.forProvider.maintenanceWindow.allowed
"One or more allowed blocks as defined below."
fn spec.forProvider.maintenanceWindow.allowed.withDay
withDay(day)
"A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday."
fn spec.forProvider.maintenanceWindow.allowed.withHours
withHours(hours)
"An array of hour slots in a day. For example, specifying 1 will allow maintenance from 1:00am to 2:00am. Specifying 1, 2 will allow maintenance from 1:00am to 3:00m. Possible values are between 0 and 23."
fn spec.forProvider.maintenanceWindow.allowed.withHoursMixin
withHoursMixin(hours)
"An array of hour slots in a day. For example, specifying 1 will allow maintenance from 1:00am to 2:00am. Specifying 1, 2 will allow maintenance from 1:00am to 3:00m. Possible values are between 0 and 23."
Note: This function appends passed data to existing values
obj spec.forProvider.maintenanceWindow.notAllowed
"One or more not_allowed block as defined below."
fn spec.forProvider.maintenanceWindow.notAllowed.withEnd
withEnd(end)
"The end of a time span, formatted as an RFC3339 string."
fn spec.forProvider.maintenanceWindow.notAllowed.withStart
withStart(start)
"The start of a time span, formatted as an RFC3339 string."
obj spec.forProvider.microsoftDefender
"A microsoft_defender block as defined below."
fn spec.forProvider.microsoftDefender.withLogAnalyticsWorkspaceId
withLogAnalyticsWorkspaceId(logAnalyticsWorkspaceId)
"Specifies the ID of the Log Analytics Workspace where the audit logs collected by Microsoft Defender should be sent to."
obj spec.forProvider.monitorMetrics
"Specifies a Prometheus add-on profile for the Kubernetes Cluster. A monitor_metrics block as defined below."
fn spec.forProvider.monitorMetrics.withAnnotationsAllowed
withAnnotationsAllowed(annotationsAllowed)
"Specifies a comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric."
fn spec.forProvider.monitorMetrics.withLabelsAllowed
withLabelsAllowed(labelsAllowed)
"Specifies a Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric."
obj spec.forProvider.networkProfile
"A network_profile block as defined below."
fn spec.forProvider.networkProfile.withDnsServiceIp
withDnsServiceIp(dnsServiceIp)
"IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withDockerBridgeCidr
withDockerBridgeCidr(dockerBridgeCidr)
"IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withEbpfDataPlane
withEbpfDataPlane(ebpfDataPlane)
"Specifies the eBPF data plane used for building the Kubernetes network. Possible value is cilium. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withIpVersions
withIpVersions(ipVersions)
"Specifies a list of IP versions the Kubernetes Cluster will use to assign IP addresses to its nodes and pods. Possible values are IPv4 and/or IPv6. IPv4 must always be specified. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withIpVersionsMixin
withIpVersionsMixin(ipVersions)
"Specifies a list of IP versions the Kubernetes Cluster will use to assign IP addresses to its nodes and pods. Possible values are IPv4 and/or IPv6. IPv4 must always be specified. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.networkProfile.withLoadBalancerProfile
withLoadBalancerProfile(loadBalancerProfile)
"A load_balancer_profile block as defined below. This can only be specified when load_balancer_sku is set to standard. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withLoadBalancerProfileMixin
withLoadBalancerProfileMixin(loadBalancerProfile)
"A load_balancer_profile block as defined below. This can only be specified when load_balancer_sku is set to standard. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.networkProfile.withLoadBalancerSku
withLoadBalancerSku(loadBalancerSku)
"Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are basic and standard. Defaults to standard. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withNatGatewayProfile
withNatGatewayProfile(natGatewayProfile)
"A nat_gateway_profile block as defined below."
fn spec.forProvider.networkProfile.withNatGatewayProfileMixin
withNatGatewayProfileMixin(natGatewayProfile)
"A nat_gateway_profile block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.networkProfile.withNetworkMode
withNetworkMode(networkMode)
"Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withNetworkPlugin
withNetworkPlugin(networkPlugin)
"Network plugin to use for networking. Currently supported values are azure, kubenet and none. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withNetworkPluginMode
withNetworkPluginMode(networkPluginMode)
"Specifies the network plugin mode used for building the Kubernetes network. Possible value is Overlay. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withNetworkPolicy
withNetworkPolicy(networkPolicy)
"Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withOutboundType
withOutboundType(outboundType)
"The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withPodCidr
withPodCidr(podCidr)
"The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withPodCidrs
withPodCidrs(podCidrs)
"A list of CIDRs to use for pod IP addresses. For single-stack networking a single IPv4 CIDR is expected. For dual-stack networking an IPv4 and IPv6 CIDR are expected. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withPodCidrsMixin
withPodCidrsMixin(podCidrs)
"A list of CIDRs to use for pod IP addresses. For single-stack networking a single IPv4 CIDR is expected. For dual-stack networking an IPv4 and IPv6 CIDR are expected. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
fn spec.forProvider.networkProfile.withServiceCidr
withServiceCidr(serviceCidr)
"The Network Range used by the Kubernetes service. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withServiceCidrs
withServiceCidrs(serviceCidrs)
"A list of CIDRs to use for Kubernetes services. For single-stack networking a single IPv4 CIDR is expected. For dual-stack networking an IPv4 and IPv6 CIDR are expected. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.withServiceCidrsMixin
withServiceCidrsMixin(serviceCidrs)
"A list of CIDRs to use for Kubernetes services. For single-stack networking a single IPv4 CIDR is expected. For dual-stack networking an IPv4 and IPv6 CIDR are expected. Changing this forces a new resource to be created."
Note: This function appends passed data to existing values
obj spec.forProvider.networkProfile.loadBalancerProfile
"A load_balancer_profile block as defined below. This can only be specified when load_balancer_sku is set to standard. Changing this forces a new resource to be created."
fn spec.forProvider.networkProfile.loadBalancerProfile.withIdleTimeoutInMinutes
withIdleTimeoutInMinutes(idleTimeoutInMinutes)
"Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4."
fn spec.forProvider.networkProfile.loadBalancerProfile.withManagedOutboundIpCount
withManagedOutboundIpCount(managedOutboundIpCount)
"Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive."
fn spec.forProvider.networkProfile.loadBalancerProfile.withManagedOutboundIpv6Count
withManagedOutboundIpv6Count(managedOutboundIpv6Count)
"The desired number of IPv6 outbound IPs created and managed by Azure for the cluster load balancer. Must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack."
fn spec.forProvider.networkProfile.loadBalancerProfile.withOutboundIpAddressIds
withOutboundIpAddressIds(outboundIpAddressIds)
"The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer."
fn spec.forProvider.networkProfile.loadBalancerProfile.withOutboundIpAddressIdsMixin
withOutboundIpAddressIdsMixin(outboundIpAddressIds)
"The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer."
Note: This function appends passed data to existing values
fn spec.forProvider.networkProfile.loadBalancerProfile.withOutboundIpPrefixIds
withOutboundIpPrefixIds(outboundIpPrefixIds)
"The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer."
fn spec.forProvider.networkProfile.loadBalancerProfile.withOutboundIpPrefixIdsMixin
withOutboundIpPrefixIdsMixin(outboundIpPrefixIds)
"The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer."
Note: This function appends passed data to existing values
fn spec.forProvider.networkProfile.loadBalancerProfile.withOutboundPortsAllocated
withOutboundPortsAllocated(outboundPortsAllocated)
"Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0."
obj spec.forProvider.networkProfile.natGatewayProfile
"A nat_gateway_profile block as defined below."
fn spec.forProvider.networkProfile.natGatewayProfile.withIdleTimeoutInMinutes
withIdleTimeoutInMinutes(idleTimeoutInMinutes)
"Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4."
fn spec.forProvider.networkProfile.natGatewayProfile.withManagedOutboundIpCount
withManagedOutboundIpCount(managedOutboundIpCount)
"Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive."
obj spec.forProvider.omsAgent
"An oms_agent block as defined below."
fn spec.forProvider.omsAgent.withLogAnalyticsWorkspaceId
withLogAnalyticsWorkspaceId(logAnalyticsWorkspaceId)
"The ID of the Log Analytics Workspace which the OMS Agent should send data to."
obj spec.forProvider.privateDnsZoneIdRef
"Reference to a PrivateDNSZone in network to populate privateDnsZoneId."
fn spec.forProvider.privateDnsZoneIdRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.privateDnsZoneIdRef.policy
"Policies for referencing."
fn spec.forProvider.privateDnsZoneIdRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.privateDnsZoneIdRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.privateDnsZoneIdSelector
"Selector for a PrivateDNSZone in network to populate privateDnsZoneId."
fn spec.forProvider.privateDnsZoneIdSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.privateDnsZoneIdSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.privateDnsZoneIdSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.privateDnsZoneIdSelector.policy
"Policies for selection."
fn spec.forProvider.privateDnsZoneIdSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.privateDnsZoneIdSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.resourceGroupNameRef
"Reference to a ResourceGroup in azure to populate resourceGroupName."
fn spec.forProvider.resourceGroupNameRef.withName
withName(name)
"Name of the referenced object."
obj spec.forProvider.resourceGroupNameRef.policy
"Policies for referencing."
fn spec.forProvider.resourceGroupNameRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.resourceGroupNameRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.resourceGroupNameSelector
"Selector for a ResourceGroup in azure to populate resourceGroupName."
fn spec.forProvider.resourceGroupNameSelector.withMatchControllerRef
withMatchControllerRef(matchControllerRef)
"MatchControllerRef ensures an object with the same controller reference as the selecting object is selected."
fn spec.forProvider.resourceGroupNameSelector.withMatchLabels
withMatchLabels(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
fn spec.forProvider.resourceGroupNameSelector.withMatchLabelsMixin
withMatchLabelsMixin(matchLabels)
"MatchLabels ensures an object with matching labels is selected."
Note: This function appends passed data to existing values
obj spec.forProvider.resourceGroupNameSelector.policy
"Policies for selection."
fn spec.forProvider.resourceGroupNameSelector.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.forProvider.resourceGroupNameSelector.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.forProvider.servicePrincipal
"A service_principal block as documented below. One of either identity or service_principal must be specified."
fn spec.forProvider.servicePrincipal.withClientId
withClientId(clientId)
"The Client ID for the Service Principal."
obj spec.forProvider.servicePrincipal.clientSecretSecretRef
"The Client Secret for the Service Principal."
fn spec.forProvider.servicePrincipal.clientSecretSecretRef.withKey
withKey(key)
"The key to select."
fn spec.forProvider.servicePrincipal.clientSecretSecretRef.withName
withName(name)
"Name of the secret."
fn spec.forProvider.servicePrincipal.clientSecretSecretRef.withNamespace
withNamespace(namespace)
"Namespace of the secret."
obj spec.forProvider.storageProfile
"A storage_profile block as defined below."
fn spec.forProvider.storageProfile.withBlobDriverEnabled
withBlobDriverEnabled(blobDriverEnabled)
"Is the Blob CSI driver enabled? Defaults to false."
fn spec.forProvider.storageProfile.withDiskDriverEnabled
withDiskDriverEnabled(diskDriverEnabled)
"Is the Disk CSI driver enabled? Defaults to true."
fn spec.forProvider.storageProfile.withDiskDriverVersion
withDiskDriverVersion(diskDriverVersion)
"Disk CSI Driver version to be used. Possible values are v1 and v2. Defaults to v1."
fn spec.forProvider.storageProfile.withFileDriverEnabled
withFileDriverEnabled(fileDriverEnabled)
"Is the File CSI driver enabled? Defaults to true."
fn spec.forProvider.storageProfile.withSnapshotControllerEnabled
withSnapshotControllerEnabled(snapshotControllerEnabled)
"Is the Snapshot Controller enabled? Defaults to true."
obj spec.forProvider.webAppRouting
"A web_app_routing block as defined below."
fn spec.forProvider.webAppRouting.withDnsZoneId
withDnsZoneId(dnsZoneId)
"Specifies the ID of the DNS Zone in which DNS entries are created for applications deployed to the cluster when Web App Routing is enabled. For Bring-Your-Own DNS zones this property should be set to an empty string \"\"."
obj spec.forProvider.windowsProfile
"A windows_profile block as defined below."
fn spec.forProvider.windowsProfile.withAdminUsername
withAdminUsername(adminUsername)
"The Admin Username for Windows VMs. Changing this forces a new resource to be created."
fn spec.forProvider.windowsProfile.withGmsa
withGmsa(gmsa)
"A gmsa block as defined below."
fn spec.forProvider.windowsProfile.withGmsaMixin
withGmsaMixin(gmsa)
"A gmsa block as defined below."
Note: This function appends passed data to existing values
fn spec.forProvider.windowsProfile.withLicense
withLicense(license)
"Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server."
obj spec.forProvider.windowsProfile.adminPasswordSecretRef
"The Admin Password for Windows VMs. Length must be between 14 and 123 characters."
fn spec.forProvider.windowsProfile.adminPasswordSecretRef.withKey
withKey(key)
"The key to select."
fn spec.forProvider.windowsProfile.adminPasswordSecretRef.withName
withName(name)
"Name of the secret."
fn spec.forProvider.windowsProfile.adminPasswordSecretRef.withNamespace
withNamespace(namespace)
"Namespace of the secret."
obj spec.forProvider.windowsProfile.gmsa
"A gmsa block as defined below."
fn spec.forProvider.windowsProfile.gmsa.withDnsServer
withDnsServer(dnsServer)
"Specifies the DNS server for Windows gMSA. Set this to an empty string if you have configured the DNS server in the VNet which was used to create the managed cluster."
fn spec.forProvider.windowsProfile.gmsa.withRootDomain
withRootDomain(rootDomain)
"Specifies the root domain name for Windows gMSA. Set this to an empty string if you have configured the DNS server in the VNet which was used to create the managed cluster."
obj spec.forProvider.workloadAutoscalerProfile
"A workload_autoscaler_profile block defined below."
fn spec.forProvider.workloadAutoscalerProfile.withKedaEnabled
withKedaEnabled(kedaEnabled)
"Specifies whether KEDA Autoscaler can be used for workloads."
obj spec.providerConfigRef
"ProviderConfigReference specifies how the provider that will be used to create, observe, update, and delete this managed resource should be configured."
fn spec.providerConfigRef.withName
withName(name)
"Name of the referenced object."
obj spec.providerConfigRef.policy
"Policies for referencing."
fn spec.providerConfigRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.providerConfigRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.providerRef
"ProviderReference specifies the provider that will be used to create, observe, update, and delete this managed resource. Deprecated: Please use ProviderConfigReference, i.e. providerConfigRef"
fn spec.providerRef.withName
withName(name)
"Name of the referenced object."
obj spec.providerRef.policy
"Policies for referencing."
fn spec.providerRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.providerRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.publishConnectionDetailsTo
"PublishConnectionDetailsTo specifies the connection secret config which contains a name, metadata and a reference to secret store config to which any connection details for this managed resource should be written. Connection details frequently include the endpoint, username, and password required to connect to the managed resource."
fn spec.publishConnectionDetailsTo.withName
withName(name)
"Name is the name of the connection secret."
obj spec.publishConnectionDetailsTo.configRef
"SecretStoreConfigRef specifies which secret store config should be used for this ConnectionSecret."
fn spec.publishConnectionDetailsTo.configRef.withName
withName(name)
"Name of the referenced object."
obj spec.publishConnectionDetailsTo.configRef.policy
"Policies for referencing."
fn spec.publishConnectionDetailsTo.configRef.policy.withResolution
withResolution(resolution)
"Resolution specifies whether resolution of this reference is required. The default is 'Required', which means the reconcile will fail if the reference cannot be resolved. 'Optional' means this reference will be a no-op if it cannot be resolved."
fn spec.publishConnectionDetailsTo.configRef.policy.withResolve
withResolve(resolve)
"Resolve specifies when this reference should be resolved. The default is 'IfNotPresent', which will attempt to resolve the reference only when the corresponding field is not present. Use 'Always' to resolve the reference on every reconcile."
obj spec.publishConnectionDetailsTo.metadata
"Metadata is the metadata for connection secret."
fn spec.publishConnectionDetailsTo.metadata.withAnnotations
withAnnotations(annotations)
"Annotations are the annotations to be added to connection secret. - For Kubernetes secrets, this will be used as \"metadata.annotations\". - It is up to Secret Store implementation for others store types."
fn spec.publishConnectionDetailsTo.metadata.withAnnotationsMixin
withAnnotationsMixin(annotations)
"Annotations are the annotations to be added to connection secret. - For Kubernetes secrets, this will be used as \"metadata.annotations\". - It is up to Secret Store implementation for others store types."
Note: This function appends passed data to existing values
fn spec.publishConnectionDetailsTo.metadata.withLabels
withLabels(labels)
"Labels are the labels/tags to be added to connection secret. - For Kubernetes secrets, this will be used as \"metadata.labels\". - It is up to Secret Store implementation for others store types."
fn spec.publishConnectionDetailsTo.metadata.withLabelsMixin
withLabelsMixin(labels)
"Labels are the labels/tags to be added to connection secret. - For Kubernetes secrets, this will be used as \"metadata.labels\". - It is up to Secret Store implementation for others store types."
Note: This function appends passed data to existing values
fn spec.publishConnectionDetailsTo.metadata.withType
withType(type)
"Type is the SecretType for the connection secret. - Only valid for Kubernetes Secret Stores."
obj spec.writeConnectionSecretToRef
"WriteConnectionSecretToReference specifies the namespace and name of a Secret to which any connection details for this managed resource should be written. Connection details frequently include the endpoint, username, and password required to connect to the managed resource. This field is planned to be replaced in a future release in favor of PublishConnectionDetailsTo. Currently, both could be set independently and connection details would be published to both without affecting each other."
fn spec.writeConnectionSecretToRef.withName
withName(name)
"Name of the secret."
fn spec.writeConnectionSecretToRef.withNamespace
withNamespace(namespace)
"Namespace of the secret."