我的书签
添加书签
移除书签kube-apiserver Encryption Configuration (v1)
EncryptionConfiguration
EncryptionConfiguration stores the complete configuration for encryption providers.
Appears in:
AESConfiguration contains the API configuration for an AES transformer.
| Field | Description |
|---|---|
keys [Required] | keys is a list of keys to be used for creating the AES transformer. Each key has to be 32 bytes long for AES-CBC and 16, 24 or 32 bytes for AES-GCM. |
Appears in:
IdentityConfiguration is an empty struct to allow identity transformer in provider configuration.
KMSConfiguration
Appears in:
KMSConfiguration contains the name, cache size and path to configuration file for a KMS based envelope transformer.
Key
Appears in:
Key contains name and secret of the provided key for a transformer.
| Field | Description |
|---|---|
[Required]string | name is the name of the key to be used while storing data to disk. |
secret [Required]string | secret is the actual key, encoded in base64. |
Appears in:
ResourceConfiguration
Appears in:
ResourceConfiguration stores per resource configuration.
| Field | Description |
|---|---|
resources [Required][]string | resources is a list of kubernetes resources which have to be encrypted. |
providers [Required][]ProviderConfiguration | providers is a list of transformers to be used for reading and writing the resources to disk. eg: aesgcm, aescbc, secretbox, identity. |
Appears in:
