AWSCredential

This section describes the AWSCredential custom resource (CR) used in Mirantis Container Cloud API. It contains all information necessary to connect to a provider back end.

For demonstration purposes, the Container Cloud AWSCredential custom resource (CR) can be split into the following sections:

metadata

The Container Cloud AWSCredential custom resource (CR) contains the following fields:

  • apiVersion

    kaas.mirantis.com/v1alpha1

  • kind

    Object type that is AWSCredential

The metadata object field of the AWSCredential resource contains the following fields:

  • name

    Name of the AWSCredential object

  • namespace

    Namespace in which the AWSCredential object has been created

  • labels
    • kaas.mirantis.com/regional-credential

      If true, indicates that AWSCredential is in use by the management or regional cluster

    • kaas.mirantis.com/region

      Region name

Configuration example:

apiVersion: kaas.mirantis.com/v1alpha1
kind: AWSCredential
metadata:
  name: demo
  namespace: test
  labels:
    kaas.mirantis.com/region: region-one
    kaas.mirantis.com/regional-credential: "true"

AWSCredential configuration

The spec object field of the AWSCredential resource contains the configuration for AWS authentication. It contains the following fields:

  • accessKeyID

    AWS access key ID

  • secretAccessKey

    Reference to the Secret object that contains the AWS secret access key:

    • key

      Key name in the secret

    • name

      Secret name

Configuration example:

...
spec:
  accessKeyID: AKIAJCWK5M2CXIWGRMUA
  secretAccessKey:
  secret:
    key: value
    name: cloud-config