BuildFWICredsContent generates the Fleet WI credentials content in a JSON string.

CreateOrUpdate creates or updates the given object in the Kubernetes cluster.

EnableAskpassSidecar indicates whether the gcenode-askpass-sidecar container is enabled.

GetSecretKeys returns the keys that are contained in the Secret.

ManagedByLabel is a uniform label that is applied to all resources which are managed by reconciler-manager.

ManagedObjectLabelMap returns the standard labels applied to objects related to a RootSync/RepoSync that are created by reconciler-manager.

NewCRDReconciler constructs a new CRDReconciler.

NewNoRetryError constructs a new NewNoRetryError.

NewObjectOperationError constructs a new ObjectOperationError.

NewObjectOperationErrorForList constructs a new ObjectOperationError for a list of objects with the same resource.

NewObjectOperationErrorForListWithNamespace constructs a new ObjectOperationError for a list of objects with the same resource and namespace.

NewObjectOperationErrorWithID constructs a new ObjectOperationError with a specific ID.

NewObjectOperationErrorWithKey constructs a new ObjectOperationError and overrides the Object's key with the specified ObjectKey.

NewObjectReconcileError constructs a new ObjectReconcileError.

NewObjectReconcileErrorWithID constructs a new ObjectReconcileError with the specified ID.

NewOtelReconciler returns a new OtelReconciler.

NewOtelSAReconciler returns a new OtelSAReconciler.

NewRepoSyncReconciler returns a new RepoSyncReconciler.

NewRootSyncReconciler returns a new RootSyncReconciler.

PollingPeriod parses the polling duration from the environment variable.

ReconcilerContainerLogLevelDefaults are the default log level to use for the reconciler deployment containers.

ReconcilerContainerResourceDefaults are the default resources to use for the reconciler deployment containers.

ReconcilerContainerResourceDefaultsForAutopilot are the default resources to use on GKE Autopilot clusters for the reconciler deployment.

ReconcilerResourceName returns resource name in the format <reconciler-name>-<resource-name>.

SkipForAuth returns true if the passed auth is either 'none' or 'gcenode', 'gcpserviceaccount', or 'k8sserviceaccount'.

CACertPath is the path where the certificate is mounted.

CACertSecretKey is the name of the key in the Secret's data map whose value holds the CA cert.

CACertVolume is the volume name of the CA certificate.

DefaultSyncBranch is the default git branch.

DefaultSyncDir is the default sync directory.

DefaultSyncRev is the default git revision.

DefaultSyncWaitSecs is the default wait seconds.

GCPSAAnnotationKey is used to annotate the following service accounts: 1) the RepoSync/RootSync controller SA when spec.git.auth: gcpserviceaccount is used with Workload Identity enabled on a GKE cluster.

GitCredentialVolume is the volume name of the git credentials.

GithubAppApplicationID is the app id used for GitHub App authentication.

GithubAppBaseURL is an optional parameter to override the GitHub api endpoint.

GithubAppClientID is the client id used for GitHub App authentication.

GithubAppInstallationID is the installation id used for GitHub App authentication.

GithubAppPrivateKey is the private key used for GitHub App authentication.

GitSecretConfigKeyCookieFile is the key at which the git cookiefile is stored.

GitSecretConfigKeySSH is the key at which an ssh cert is stored.

GitSecretConfigKeyToken is the key at which a token's value is stored.

GitSecretConfigKeyTokenUsername is the key at which a token's username is stored.

GitSecretGithubAppApplicationID is the key at which the githubapp app id is stored.

GitSecretGithubAppBaseURL is the key at which the optional githubapp base url is stored.

GitSecretGithubAppClientID is the key at which the githubapp client id is stored.

GitSecretGithubAppInstallationID is the key at which the githubapp installation id is stored.

GitSecretGithubAppPrivateKey is the key at which the githubapp private key is stored.

GitSSLCAInfo represents the environment variable key for SSL certificates.

GitSSLNoVerify represents the environment variable key for GIT_SSL_NO_VERIFY.

GitSyncDepth represents the environment variable key for setting the depth of the Git clone, truncating history to a specific number of commits.

GitSyncKnownHosts represents the environment variable key for GIT_KNOWN_HOSTS.

GitSyncRepo represents the environment variable key for specifying the Git repository to sync.

HelmCredentialVolume is the volume name of the git credentials.

HelmSecretKeyToken is the key at which a token's value is stored.

HelmSecretKeyUsername is the key at which a token's username is stored.

KnownHostsKey is the key for known_hosts information.

NamespaceReconcilerType defines the type for a namespace reconciler.

OperationCreate is the create operation.

OperationDelete is the delete operation.

OperationGet is the get operation.

OperationList is the list operation.

OperationPatch is the patch operation.

OperationUpdate is the update operation.

OperationWatch is the watch operation.

OtelSALoggerName defines the logger name for OtelSAReconciler.

ReconcilerTemplateConfigMapKey is the key used to specify the reconciler deployment template in the "reconciler-manager-cm" ConfigMap.

ReconcilerTemplateConfigMapName is the name of the ConfigMap used to specify the reconciler deployment template.

RepoSyncBaseClusterRoleName is the namespace reconciler permissions name.

RepoSyncBaseRoleBindingName is the name of the default RoleBinding created for RepoSync objects.

RootReconcilerType defines the type for a root reconciler.

RootSyncBaseClusterRoleBindingName is the name of the default ClusterRoleBinding created for RootSync objects.

RootSyncBaseClusterRoleName is the root reconciler base ClusterRole name.

RootSyncLegacyClusterRoleBindingName is the name of the legacy ClusterRoleBinding created for RootSync objects.

SyncDepthNoRev is the default git depth if syncing with default sync revision (`HEAD`).

SyncDepthRev is the default git depth if syncing with a specific sync revision (tag or hash).

CRDReconciler watches CRDs and calls handlers once they are established.

NoRetryError is an error that should not immediately trigger a reconcile retry.

ObjectOperationError is an error from the reconciler-manager regarding failure to perform an operation on a managed Kubernetes resource or resource object.

ObjectReconcileError is an error from the status of a managed resource object.

OtelReconciler reconciles OpenTelemetry ConfigMaps.

OtelSAReconciler reconciles the default service account under the config-management-monitoring namespace.

RepoSyncReconciler reconciles a RepoSync object.

RootSyncReconciler reconciles a RootSync object.

Controller implements Reconciler, but can also self-register with SetupWithManager.

CRDHandler is called by the CRDReconciler to handle establishment of a CRD.

Operation performed on a Kubernetes resource or object.

ReconcilerType defines the type of a reconciler.