AlwaysExecInteractiveMode declares that this exec plugin requires standard input in order to run, and therefore the exec plugin will only be run if standard input is available for user input.

AnnotationLoadBalancerSourceRangesKey is the key of the annotation on a service to set allowed ingress ranges on their LoadBalancers It should be a comma-separated list of CIDRs, e.g.

AnnotationTopologyAwareHints can be used to enable or disable Topology Aware Hints for a Service.

AppArmorBetaAllowedProfileAnnotationKey is the annotation key specifying the allowed AppArmor profiles.

AppArmorBetaContainerAnnotationKeyPrefix is the prefix to an annotation key specifying a container's apparmor profile.

AppArmorBetaDefaultProfileAnnotatoinKey is the annotation key specifying the default AppArmor profile.

AppArmorBetaProfileNamePrefix is the prefix for specifying profiles loaded on the node.

AppArmorBetaProfileNameUnconfined is the Unconfined AppArmor profile.

AppArmorBetaProfileRuntimeDefault is the profile specifying the runtime default.

used for PersistentVolumeClaims that are bound.

used for PersistentVolumeClaims that lost their underlying PersistentVolume.

used for PersistentVolumeClaims that are not yet bound.

ClusterIPNone - do not assign a cluster IP no proxying required and no environment variables should be created for pods.

These are the valid conditions for the component.

These are valid condition statuses.

These are valid condition statuses.

These are valid condition statuses.

ContainersReady indicates whether all containers in the pod are ready.

DefaultDaemonSetUniqueLabelKey is the default label key that is added to existing DaemonSet pods to distinguish between old and new DaemonSet pods during DaemonSet template updates.

DefaultDeploymentUniqueLabelKey is the default key of the selector that is added to existing ReplicaSets (and label key that is added to its pods) to prevent the existing ReplicaSets to select new pods (and old pods being select by new ReplicaSet).

The default value for enableServiceLinks attribute.

RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule corresponding to every RequiredDuringScheduling affinity rule.

DefaultProcMount uses the container runtime defaults for readonly and masked paths for /proc.

Default resource requests prefix.

DefaultSchedulerName defines the name of default scheduler.

DefaultTerminationGracePeriodSeconds indicates the default duration in seconds a pod needs to terminate gracefully.

Available means the deployment is available, ie.

Progressing means the deployment is progressing.

ReplicaFailure is added in a deployment when one of its pods fails to be created or deleted.

DeprecatedSeccompProfileDockerDefault represents the default seccomp profile used by docker.

DNSClusterFirst indicates that the pod should use cluster DNS first unless hostNetwork is true, if it is available, then fall back on the default (as determined by kubelet) DNS settings.

DNSClusterFirstWithHostNet indicates that the pod should use cluster DNS first, if it is available, then fall back on the default (as determined by kubelet) DNS settings.

DNSDefault indicates that the pod should use the default (as determined by kubelet) DNS settings.

DNSNone indicates that the pod should use empty DNS settings.

DoNotSchedule instructs the scheduler not to schedule the pod when constraints are not satisfied.

EndpointsLastChangeTriggerTime is the annotation key, set for endpoints objects, that represents the timestamp (stored as RFC 3339 date-time string, e.g.

EndpointsOverCapacity will be set on an Endpoints resource when it exceeds the maximum capacity of 1000 addresses.

Information only and will not cause any problems.

These events are to warn that something might go wrong.

Command to run for remote command execution.

Enable stderr for remote command execution.

Enable stdin for remote command execution.

Enable stdout for remote command execution.

Enable TTY for remote command execution.

Failed means to wait until a previously created Pod is fully terminated (has phase Failed or Succeeded) before creating a replacement Pod.

FSGroupChangeAlways indicates that volume's ownership and permissions should always be changed whenever volume is mounted inside a Pod.

FSGroupChangeOnRootMismatch indicates that volume's ownership and permissions will be changed only when permission and ownership of root directory does not match with expected permissions on the volume.

A block device must exist at the given path.

A character device must exist at the given path.

A directory must exist at the given path.

If nothing exists at the given path, an empty directory will be created there as needed with file mode 0755, having the same group and ownership with Kubelet.

A file must exist at the given path.

If nothing exists at the given path, an empty file will be created there as needed with file mode 0644, having the same group and ownership with Kubelet.

A UNIX socket must exist at the given path.

For backwards compatible, leave it empty if unset.

IfAvailableExecInteractiveMode declares that this exec plugin would like to use standard input if it is available, but can still operate if standard input is not available.

ImagePolicyFailedOpenKey is added to pods created by failing open when the image policy webhook backend fails.

IndexedCompletion is a Job completion mode.

IPFamilyPolicyPreferDualStack indicates that this service prefers dual-stack when the cluster is configured for dual-stack.

IPFamilyPolicyRequireDualStack indicates that this service requires dual-stack.

IPFamilyPolicySingleStack indicates that this service is required to have a single IPFamily.

IPv4Protocol indicates that this IP is IPv4 protocol.

IPv6Protocol indicates that this IP is IPv6 protocol.

JobComplete means the job has completed its execution.

JobFailed means the job has failed its execution.

FailureTarget means the job is about to fail its execution.

JobReasonBackOffLimitExceeded reason indicates that pods within a job have failed a number of times higher than backOffLimit times.

JobReasonCompletionsReached reason indicates a SuccessCriteriaMet condition is added due to a number of succeeded Job pods met completions.

JobReasponDeadlineExceeded means job duration is past ActiveDeadline.

JobReasonFailedIndexes means Job has failed indexes.

JobReasonMaxFailedIndexesExceeded indicates that an indexed of a job failed This const is used in beta-level feature: https://kep.k8s.io/3850.

JobReasonPodFailurePolicy reason indicates a job failure condition is added due to a failed pod matching a pod failure policy rule https://kep.k8s.io/3329.

JobReasonSuccessPolicy reason indicates a SuccessCriteriaMet condition is added due to a Job met successPolicy.

JobSuccessCriteriaMet means the Job has been succeeded.

JobSuspended means the job has been suspended.

LastAppliedConfigAnnotation is the annotation used to store the previous configuration of a resource for use in a three way diff by UpdateApplyAnnotation.

Limit that applies to all containers in a namespace.

Limit that applies to all persistent volume claims in a namespace.

Limit that applies to all pods in a namespace.

LoadBalancerPortsError represents the condition of the requested ports on the cloud load balancer instance.

MigratedPluginsAnnotationKey is the annotation key, set for CSINode objects, that is a comma-separated list of in-tree plugins that will be serviced by the CSI backend on the Node represented by CSINode.

MirrorAnnotationKey represents the annotation key set by kubelets when creating mirror pods.

MountPropagationBidirectional means that the volume in a container will receive new mounts from the host or other containers, and its own mounts will be propagated from the container to the host or other containers.

MountPropagationHostToContainer means that the volume in a container will receive new mounts from the host or other containers, but filesystems mounted inside the container won't be propagated to the host or other containers.

MountPropagationNone means that the volume in a container will not receive new mounts from the host or other containers, and filesystems mounted inside the container won't be propagated to the host or other containers.

NeverExecInteractiveMode declares that this exec plugin never needs to use standard input, and therefore the exec plugin will be run regardless of whether standard input is available for user input.

annotation key prefix used to identify non-convertible json paths.

NonIndexedCompletion is a Job completion mode.

ObjectTTLAnnotations represents a suggestion for kubelet for how long it can cache an object (e.g.

Replace the old daemons only when it's killed.

PersistentVolumeBlock means the volume will not be formatted with a filesystem and will remain a raw block device.

PersistentVolumeClaimFileSystemResizePending - controller resize is finished and a file system resize is pending on node.

PersistentVolumeClaimResizing - a user trigger resize of pvc has been started.

PersistentVolumeFilesystem means the volume will be or is formatted with a filesystem.

PersistentVolumeReclaimDelete means the volume will be deleted from Kubernetes on release from its claim.

PersistentVolumeReclaimRecycle means the volume will be recycled back into the pool of unbound persistent volumes on release from its claim.

PersistentVolumeReclaimRetain means the volume will be left in its current phase (Released) for manual reclamation by the administrator.

PodDeletionCost can be used to set to an int32 that represent the cost of deleting a pod compared to other pods belonging to the same ReplicaSet.

PodFailed means that all containers in the pod have terminated, and at least one container has terminated in a failure (exited with a non-zero exit code or was stopped by the system).

This is an action which might be taken on a pod failure - the pod failure is handled in the default way - the counter towards .backoffLimit, represented by the job's .status.failed field, is incremented.

This is an action which might be taken on a pod failure - mark the Job's index as failed to avoid restarts within this index.

This is an action which might be taken on a pod failure - mark the pod's job as Failed and terminate all running pods.

This is an action which might be taken on a pod failure - the counter towards .backoffLimit, represented by the job's .status.failed field, is not incremented and a replacement pod is created.

PodInitialized means that all init containers in the pod have started successfully.

PodPending means the pod has been accepted by the system, but one or more of the containers has not been started.

PodQOSBestEffort is the BestEffort qos class.

PodQOSBurstable is the Burstable qos class.

PodQOSGuaranteed is the Guaranteed qos class.

PodReady means the pod is able to service requests and should be added to the load balancing pools of all matching services.

PodReasonUnschedulable reason in PodScheduled PodCondition means that the scheduler can't schedule the pod right now, for example due to insufficient resources in the cluster.

PodRunning means the pod has been bound to a node and all of the containers have been started.

PodScheduled represents status of the scheduling process for this pod.

PodSucceeded means that all containers in the pod have voluntarily terminated with a container exit code of 0, and the system is not going to restart any of these containers.

PodUnknown means that for some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.

Name of header that specifies a request ID used to associate the error and data streams for a single forwarded connection.

Name of header that specifies the port being forwarded.

PreemptLowerPriority means that pod can preempt other pods with lower priority.

PreemptNever means that pod never preempts other pods with lower priority.

PreferAvoidPodsAnnotationKey represents the key of preferAvoidPods data (json serialized) in the Annotations of a Node.

ProtocolSCTP is the SCTP protocol.

ProtocolTCP is the TCP protocol.

ProtocolUDP is the UDP protocol.

PullAlways means that kubelet always attempts to pull the latest image.

PullIfNotPresent means that kubelet pulls if the image isn't present on disk.

PullNever means that kubelet never pulls an image, but only uses a local image.

can be mounted in read-only mode to many hosts.

can be mounted in read/write mode to many hosts.

can be mounted in read/write mode to exactly 1 host.

can be mounted in read/write mode to exactly 1 pod cannot be used in combination with other access modes.

Kill all existing pods before creating new ones.

ReplicationControllerReplicaFailure is added in a replication controller when one of its pods fails to be created due to insufficient quota, limit ranges, pod security policy, node selectors, etc.

Name prefix for storage resource limits.

ResourceConfigMaps, number.

CPU, in cores.

Default namespace prefix.

Local ephemeral storage, in bytes.

Name prefix for huge page resources (alpha).

CPU limit, in cores.

Local ephemeral storage limit, in bytes.

Memory limit, in bytes.

Memory, in bytes.

ResourcePersistentVolumeClaims, number.

Pods, number.

ResourceQuotas, number.

Match all pod objects that have best effort quality of service.

Match all pod objects that have cross-namespace pod (anti)affinity mentioned.

Match all pod objects that do not have best effort quality of service.

Match all pod objects where spec.activeDeadlineSeconds is nil.

Match all pod objects that have priority class mentioned.

Match all pod objects where spec.activeDeadlineSeconds >=0.

ReplicationControllers, number.

CPU request, in cores.

Local ephemeral storage request, in bytes.

HugePages request, in bytes.

Memory request, in bytes.

Storage request, in bytes.

ResourceSecrets, number.

Services, number.

ResourceServicesLoadBalancers, number.

ResourceServicesNodePorts, number.

Volume size, in bytes (e,g.

Replace the old daemons by new ones using rolling update i.e replace them on each node one after the other.

Replace the old ReplicaSets by new one using rolling update i.e gradually scale down the old ReplicaSets and scale up the new one.

ScheduleAnyway instructs the scheduler to schedule the pod even if constraints are not satisfied.

SeccompContainerAnnotationKeyPrefix represents the key of a seccomp profile applied to one container of a pod.

SeccompLocalhostProfileNamePrefix is the prefix for specifying profiles loaded from the node's disk.

SeccompPodAnnotationKey represents the key of a seccomp profile applied to all containers of a pod.

SeccompProfileNameUnconfined is the unconfined seccomp profile.

SeccompProfileRuntimeDefault represents the default seccomp profile used by container runtime.

SeccompProfileTypeLocalhost indicates a profile defined in a file on the node should be used.

SeccompProfileTypeRuntimeDefault represents the default container runtime seccomp profile.

SeccompProfileTypeUnconfined indicates no seccomp profile is applied (A.K.A.

ServiceAffinityClientIP is the Client IP based.

ServiceAffinityNone - no session affinity.

ServiceExternalTrafficPolicyTypeCluster specifies node-global (legacy) behavior.

ServiceExternalTrafficPolicyTypeLocal specifies node-local endpoints behavior.

ServiceInternalTrafficPolicyCluster routes traffic to all endpoints.

ServiceInternalTrafficPolicyLocal only routes to node-local endpoints, otherwise drops the traffic.

ServiceTypeClusterIP means a service will only be accessible inside the cluster, via the cluster IP.

ServiceTypeExternalName means a service consists of only a reference to an external name that kubedns or equivalent will return as a CNAME record, with no exposing or proxying of any pods involved.

ServiceTypeLoadBalancer means a service will be exposed via an external load balancer (if the cloud provider supports it), in addition to 'NodePort' type.

ServiceTypeNodePort means a service will be exposed on one port of every node, in addition to 'ClusterIP' type.

use whatever the default is for the node, assume anything we don't explicitly handle is this.

use hugepages.

prefix for full medium notation HugePages-<size>.

use memory (e.g.

Name of header that specifies stream type.

Value for streamType header for data stream.

Value for streamType header for error stream.

Value for streamType header for terminal resize stream.

Value for streamType header for stderr stream.

Value for streamType header for stdin stream.

Value for streamType header for stdout stream.

TaintsAnnotationKey represents the key of taints data (json serialized) in the Annotations of a Node.

TerminatingOrFailed means that we recreate pods when they are terminating (has a metadata.deletionTimestamp) or failed.

TerminationMessageFallbackToLogsOnError will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.

TerminationMessagePathDefault means the default path to capture the application termination message running in a container.

TerminationMessageReadFile is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.

TolerationsAnnotationKey represents the key of tolerations data (json serialized) in the Annotations of a Pod.

UnmaskedProcMount bypasses the default masking behavior of the container runtime and ensures the newly created /proc the container stays in tact with no modifications.

URISchemeHTTP means that the scheme used will be http://.

URISchemeHTTPS means that the scheme used will be https://.

used for PersistentVolumes that are not yet bound Available volumes are held by the binder and matched to PersistentVolumeClaims.

used for PersistentVolumes that are bound.

used for PersistentVolumes that failed to be correctly recycled or deleted after being released from a claim.

used for PersistentVolumes that are not available.

used for PersistentVolumes where the bound PersistentVolumeClaim was deleted released volumes must be recycled before becoming available again this phase is used by the persistent volume claim binder to signal to another process to reclaim the resource.

Affinity is a group of affinity scheduling rules.

AuthInfo contains information that describes identity information.

AuthProviderConfig holds the configuration for a specified auth provider.

Adds and removes POSIX capabilities from running containers.

ClientIPConfig represents the configurations of Client IP based session affinity.

Cluster contains information about how to communicate with a kubernetes cluster.

Information about the condition of a component.

ComponentStatus (and ComponentStatusList) holds the cluster validation info.

Status of all the conditions for the component as a list of ComponentStatus objects.

Config holds the information needed to build connect to remote kubernetes clusters as a given user.

ConfigMap holds configuration data for pods to consume.

ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.

Selects a key from a ConfigMap.

ConfigMapList is a resource containing a list of ConfigMap objects.

ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node.

Adapts a ConfigMap into a projected volume.

Adapts a ConfigMap into a volume.

A single application container that you want to run within a pod.

Describe a container image.

ContainerPort represents a network port in a single container.

ContainerState holds a possible state of container.

ContainerStateRunning is a running state of a container.

ContainerStateTerminated is a terminated state of a container.

ContainerStateWaiting is a waiting state of a container.

ContainerStatus contains details for the current status of this container.

Context is a tuple of references to a cluster (how do I communicate with a kubernetes cluster), a user (how do I identify myself), and a namespace (what subset of resources do I want to work with).

DaemonSet represents the configuration of a daemon set.

DaemonSetCondition describes the state of a DaemonSet at a certain point.

DaemonSetList is a collection of daemon sets.

DaemonSetSpec is the specification of a daemon set.

DaemonSetStatus represents the current status of a daemon set.

DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet.

Deployment enables declarative updates for Pods and ReplicaSets.

DeploymentCondition describes the state of a deployment at a certain point.

DeploymentList is a list of Deployments.

DeploymentSpec is the specification of the desired behavior of the Deployment.

DeploymentStatus is the most recently observed status of the Deployment.

DeploymentStrategy describes how to replace existing pods with new ones.

Represents downward API info for projecting into a projected volume.

DownwardAPIVolumeFile represents information to create the file containing the pod field.

DownwardAPIVolumeSource represents a volume containing downward API info.

Represents an empty directory for a pod.

EndpointAddress is a tuple that describes single IP address.

EndpointPort is a tuple that describes a single port.

Endpoints is a collection of endpoints that implement the actual service.

EndpointSubset is a group of addresses with a common set of ports.

EnvFromSource represents the source of a set of ConfigMaps.

EnvVar represents an environment variable present in a Container.

EnvVarSource represents a source for the value of an EnvVar.

An EphemeralContainer is a container that may be added temporarily to an existing pod for user-initiated activities such as debugging.

EphemeralContainerCommon is a copy of all fields in Container to be inlined in EphemeralContainer.

Event is a report of an event somewhere in the cluster.

EventList is a list of events.

EventSeries contain information on series of events, i.e.

EventSource contains information for an event.

ExecAction describes a "run in container" action.

ExecConfig specifies a command to provide client credentials.

ExecEnvVar is used for setting environment variables when executing an exec-based credential plugin.

Handler defines a specific action that should be taken TODO: pass structured data to these actions, and document that data here.

HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod's hosts file.

Represents a host path mapped into a pod.

HTTPGetAction describes an action based on HTTP Get requests.

HTTPHeader describes a custom header to be used in HTTP probes.

ImageVolumeSource represents a image volume resource.

Job represents the configuration of a single job.

JobCondition describes current state of a job.

JobList is a collection of jobs.

JobSpec describes how the job execution will look like.

JobStatus represents the current state of a Job.

JobTemplateSpec describes the data a Job should have when created from a template.

Maps a string key to a path within a volume.

Lifecycle describes actions that the management system should take in response to container lifecycle events.

LimitRange sets resource usage limits for each kind of resource in a Namespace.

LimitRangeItem defines a min/max usage limit for any resource that matches on kind.

LimitRangeList is a list of LimitRange items.

LimitRangeSpec defines a min/max usage limit for resources that match on kind.

LoadBalancerIngress represents the status of a load-balancer ingress point: traffic intended for the service should be sent to an ingress point.

LoadBalancerStatus represents the status of a load-balancer.

LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.

NamedAuthInfo relates nicknames to auth information.

NamedCluster relates nicknames to cluster information.

NamedContext relates nicknames to context information.

NamedExtension relates nicknames to extension information.

Node affinity is a group of node affinity scheduling rules.

NodeProxyOptions is the query options to a Node's proxy call.

NodeResources is an object for conveying resource information about a node.

A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.

A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.

A null or empty node selector term matches no objects.

ObjectFieldSelector selects an APIVersioned field of an object.

ObjectReference contains enough information to let you inspect or modify the referred object.

PersistentVolume (PV) is a storage resource provisioned by an administrator.

PersistentVolumeClaim is a user's request for and claim to a persistent volume.

PersistentVolumeClaimCondition contains details about state of pvc.

PersistentVolumeClaimList is a list of PersistentVolumeClaim items.

PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes.

PersistentVolumeClaimStatus is the current status of a persistent volume claim.

PersistentVolumeClaimTemplate is used to produce PersistentVolumeClaim objects as part of an EphemeralVolumeSource.

PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace.

PersistentVolumeList is a list of PersistentVolume items.

PersistentVolumeSource is similar to VolumeSource but meant for the administrator who creates PVs.

PersistentVolumeSpec is the specification of a persistent volume.

PersistentVolumeStatus is the current status of a persistent volume.

Pod is a collection of containers that can run on a host.

Pod affinity is a group of inter pod affinity scheduling rules.

Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key <topologyKey> matches that of any node on which a pod of the set of pods is running.

Pod anti affinity is a group of inter pod anti affinity scheduling rules.

PodAttachOptions is the query options to a Pod's remote attach call.

PodCondition contains details for the current condition of this pod.

PodDNSConfig defines the DNS parameters of a pod in addition to those generated from DNSPolicy.

PodDNSConfigOption defines DNS resolver options of a pod.

PodExecOptions is the query options to a Pod's remote exec call.

PodFailurePolicy describes how failed pods influence the backoffLimit.

PodFailurePolicyOnExitCodesRequirement describes the requirement for handling a failed pod based on its container exit codes.

PodFailurePolicyOnPodConditionsPattern describes a pattern for matching an actual pod condition type.

PodFailurePolicyRule describes how a pod failure is handled when the requirements are met.

IP address information for entries in the (plural) PodIPs field.

PodList is a list of Pods.

PodLogOptions is the query options for a Pod's logs REST call.

PodPortForwardOptions is the query options to a Pod's port forward call when using WebSockets.

PodProxyOptions is the query options to a Pod's proxy call.

PodReadinessGate contains the reference to a pod condition.

PodSecurityContext holds pod-level security attributes and common container settings.

PodSpec is a description of a pod.

PodStatus represents information about the status of a pod.

PodStatusResult is a wrapper for PodStatus returned by kubelet that can be encode/decoded.

PodTemplate describes a template for creating copies of a predefined pod.

PodTemplateList is a list of PodTemplates.

PodTemplateSpec describes the data a pod should have when created from a template.

An empty preferred scheduling term matches all objects with implicit weight 0 (i.e.

Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.

Represents a projected volume source.

ReplicationController represents the configuration of a replication controller.

ReplicationControllerCondition describes the state of a replication controller at a certain point.

ReplicationControllerList is a collection of replication controllers.

ReplicationControllerSpec is the specification of a replication controller.

ReplicationControllerStatus represents the current status of a replication controller.

ResourceFieldSelector represents container resources (cpu, memory) and their output format +structType=atomic.

ResourceQuota sets aggregate quota restrictions enforced per namespace.

ResourceQuotaList is a list of ResourceQuota items.

ResourceQuotaSpec defines the desired hard limits to enforce for Quota.

ResourceQuotaStatus defines the enforced hard limits and observed use.

ResourceRequirements describes the compute resource requirements.

Spec to control the desired behavior of daemon set rolling update.

Spec to control the desired behavior of rolling update.

A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.

A scope selector represents the AND of the selectors represented by the scoped-resource selector requirements.

SeccompProfile defines a pod/container's seccomp profile settings.

Secret holds secret data of a certain type.

SecretEnvSource selects a Secret to populate the environment variables with.

SecretKeySelector selects a key of a Secret.

SecretList is a list of Secret.

Adapts a secret into a projected volume.

SecretReference represents a Secret Reference.

Adapts a Secret into a volume.

SecurityContext holds security configuration that will be applied to a container.

SELinuxOptions are the labels to be applied to the container.

SerializedReference is a reference to serialized object.

Service is a named abstraction of software service (for example, mysql) consisting of local port (for example 3306) that the proxy listens on, and the selector that determines which pods will answer requests sent through the proxy.

ServiceAccount binds together: * a name, understood by users, and perhaps by peripheral systems, for an identity * a principal that can be authenticated and authorized * a set of secrets.

ServiceAccountList is a list of ServiceAccount objects.

ServiceAccountTokenProjection represents a projected service account token volume.

ServiceList holds a list of services.

ServicePort contains information on service's port.

ServiceProxyOptions is the query options to a Service's proxy call.

ServiceSpec describes the attributes that a user creates on a service.

ServiceStatus represents the current status of a service.

SessionAffinityConfig represents the configurations of session affinity.

SuccessPolicy describes when a Job can be declared as succeeded based on the success of some indexes.

SuccessPolicyRule describes rule for declaring a Job as succeeded.

Sysctl defines a kernel parameter to be set.

TCPSocketAction describes an action based on opening a socket.

A topology selector requirement is a selector that matches given label.

A topology selector term represents the result of label queries.

TopologySpreadConstraint specifies how to spread matching pods among the given topology.

TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.

UncountedTerminatedPods holds UIDs of Pods that have terminated but haven't been accounted in Job status counters.

Volume represents a named volume in a pod that may be accessed by any container in the pod.

volumeDevice describes a mapping of a raw block device within a container.

VolumeMount describes a mounting of a Volume within a container.

VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from.

Projection that may be projected along with other supported volume types.

Represents the source of a volume to mount.

The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s).

Capability represent POSIX capabilities type.

CompletionMode specifies how Pod completions of a Job are tracked.

Type and constants for component health validation.

+enum.

DNSPolicy defines how a pod's DNS will be configured.

ExecInteractiveMode is a string that describes an exec plugin's relationship with standard input.

IPFamily represents the IP Family (IPv4 or IPv6).

IPFamilyPolicyType represents the dual-stack-ness requested or required by a Service.

LimitType is a type of object that is limited.

MountPropagationMode describes mount propagation.

A node selector operator is the set of operators that can be used in a node selector requirement.

PersistentVolumeClaimConditionType is a valid value of PersistentVolumeClaimCondition.Type.

PersistentVolumeMode describes how a volume is intended to be consumed, either Block or Filesystem.

PersistentVolumeReclaimPolicy describes a policy for end-of-life maintenance of persistent volumes.

PodConditionType is a valid value for PodCondition.Type.

PodFailurePolicyAction specifies how a Pod failure is handled.

+enum.

PodFSGroupChangePolicy holds policies that will be used for applying fsGroup to a volume when volume is mounted.

PodPhase is a label for the condition of a pod at the current time.

PodQOSClass defines the supported qos classes of Pods.

PodReplacementPolicy specifies the policy for creating pod replacements.

PreemptionPolicy describes a policy for if/when to preempt a pod.

Protocol defines network protocols supported for things like container ports.

PullPolicy describes a policy for if/when to pull a container image.

ResourceList is a set of (resource name, quantity) pairs.

ResourceName is the name identifying various resources in a ResourceList.

A ResourceQuotaScope defines a filter that must match each object tracked by a quota.

RestartPolicy describes how the container should be restarted.

A scope selector operator is the set of operators that can be used in a scope selector requirement.

SeccompProfileType defines the supported seccomp profile types.

Session Affinity Type string.

Service External Traffic Policy Type string.

ServiceInternalTrafficPolicyType describes the type of traffic routing for internal traffic.

Service Type string describes ingress methods for a service.

StorageMedium defines ways that storage can be allocated to a volume.

TerminationMessagePolicy describes how termination messages are retrieved from a container.

URIScheme identifies the scheme used for connection to a host for Get actions.