Generated content

kubernetes · Jul 27, 2023 · 1e2ed88 · 1e2ed88
1 parent f301c27
commit 1e2ed88
Show file tree

Hide file tree

Showing 21 changed files with 314 additions and 438 deletions.
diff --git a/...-resources/self-subject-review-v1beta1.md → ...ation-resources/self-subject-review-v1.md b/...-resources/self-subject-review-v1beta1.md → ...ation-resources/self-subject-review-v1.md
@@ -1,11 +1,11 @@
 ---
 api_metadata:
-  apiVersion: "authentication.k8s.io/v1beta1"
-  import: "k8s.io/api/authentication/v1beta1"
+  apiVersion: "authentication.k8s.io/v1"
+  import: "k8s.io/api/authentication/v1"
   kind: "SelfSubjectReview"
 content_type: "api_reference"
 description: "SelfSubjectReview contains the user information that the kube-apiserver has about the user making this request."
-title: "SelfSubjectReview v1beta1"
+title: "SelfSubjectReview"
 weight: 6
 auto_generated: true
 ---
@@ -21,9 +21,9 @@ guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
 
-`apiVersion: authentication.k8s.io/v1beta1`
+`apiVersion: authentication.k8s.io/v1`
 
-`import "k8s.io/api/authentication/v1beta1"`
+`import "k8s.io/api/authentication/v1"`
 
 
 ## SelfSubjectReview {#SelfSubjectReview}
@@ -32,7 +32,7 @@ SelfSubjectReview contains the user information that the kube-apiserver has abou
 
 <hr>
 
-- **apiVersion**: authentication.k8s.io/v1beta1
+- **apiVersion**: authentication.k8s.io/v1
 
 
 - **kind**: SelfSubjectReview
@@ -42,7 +42,7 @@ SelfSubjectReview contains the user information that the kube-apiserver has abou
 
   Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
 
-- **status** (<a href="{{< ref "../authentication-resources/self-subject-review-v1beta1#SelfSubjectReviewStatus" >}}">SelfSubjectReviewStatus</a>)
+- **status** (<a href="{{< ref "../authentication-resources/self-subject-review-v1#SelfSubjectReviewStatus" >}}">SelfSubjectReviewStatus</a>)
 
   Status is filled in by the server with the user attributes.
 
@@ -98,12 +98,12 @@ SelfSubjectReviewStatus is filled by the kube-apiserver and sent back to a user.
 
 #### HTTP Request
 
-POST /apis/authentication.k8s.io/v1beta1/selfsubjectreviews
+POST /apis/authentication.k8s.io/v1/selfsubjectreviews
 
 #### Parameters
 
 
-- **body**: <a href="{{< ref "../authentication-resources/self-subject-review-v1beta1#SelfSubjectReview" >}}">SelfSubjectReview</a>, required
+- **body**: <a href="{{< ref "../authentication-resources/self-subject-review-v1#SelfSubjectReview" >}}">SelfSubjectReview</a>, required
 
 
 
@@ -132,11 +132,11 @@ POST /apis/authentication.k8s.io/v1beta1/selfsubjectreviews
 #### Response
 
 
-200 (<a href="{{< ref "../authentication-resources/self-subject-review-v1beta1#SelfSubjectReview" >}}">SelfSubjectReview</a>): OK
+200 (<a href="{{< ref "../authentication-resources/self-subject-review-v1#SelfSubjectReview" >}}">SelfSubjectReview</a>): OK
 
-201 (<a href="{{< ref "../authentication-resources/self-subject-review-v1beta1#SelfSubjectReview" >}}">SelfSubjectReview</a>): Created
+201 (<a href="{{< ref "../authentication-resources/self-subject-review-v1#SelfSubjectReview" >}}">SelfSubjectReview</a>): Created
 
-202 (<a href="{{< ref "../authentication-resources/self-subject-review-v1beta1#SelfSubjectReview" >}}">SelfSubjectReview</a>): Accepted
+202 (<a href="{{< ref "../authentication-resources/self-subject-review-v1#SelfSubjectReview" >}}">SelfSubjectReview</a>): Accepted
 
 401: Unauthorized
 
diff --git a/...ocs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md b/...ocs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md
@@ -6,7 +6,7 @@ api_metadata:
 content_type: "api_reference"
 description: "ClusterRoleBinding references a ClusterRole, but not contain it."
 title: "ClusterRoleBinding"
-weight: 7
+weight: 6
 auto_generated: true
 ---
 
@@ -44,7 +44,7 @@ ClusterRoleBinding references a ClusterRole, but not contain it.  It can referen
 
 - **roleRef** (RoleRef), required
 
-  RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.
+  RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error. This field is immutable.
 
   <a name="RoleRef"></a>
   *RoleRef contains information that points to the role being used*

diff --git a/...ent/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md b/...ent/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md
@@ -6,7 +6,7 @@ api_metadata:
 content_type: "api_reference"
 description: "ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding."
 title: "ClusterRole"
-weight: 6
+weight: 5
 auto_generated: true
 ---
 

diff --git a/...ent/en/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md b/...ent/en/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md
@@ -6,7 +6,7 @@ api_metadata:
 content_type: "api_reference"
 description: "RoleBinding references a role, but does not contain it."
 title: "RoleBinding"
-weight: 9
+weight: 8
 auto_generated: true
 ---
 
@@ -44,7 +44,7 @@ RoleBinding references a role, but does not contain it.  It can reference a Role
 
 - **roleRef** (RoleRef), required
 
-  RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.
+  RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error. This field is immutable.
 
   <a name="RoleRef"></a>
   *RoleRef contains information that points to the role being used*

diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/role-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/role-v1.md
@@ -6,7 +6,7 @@ api_metadata:
 content_type: "api_reference"
 description: "Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding."
 title: "Role"
-weight: 8
+weight: 7
 auto_generated: true
 ---
 

diff --git a/...eference/kubernetes-api/authorization-resources/self-subject-review-v1alpha1.md b/...eference/kubernetes-api/authorization-resources/self-subject-review-v1alpha1.md
diff --git a/...erence/kubernetes-api/cluster-resources/priority-level-configuration-v1beta3.md b/...erence/kubernetes-api/cluster-resources/priority-level-configuration-v1beta3.md
@@ -64,6 +64,27 @@ PriorityLevelConfigurationSpec specifies the configuration of a priority level.
 
   `type` indicates whether this priority level is subject to limitation on request execution.  A value of `"Exempt"` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `"Limited"` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server's limited capacity is made available exclusively to this priority level. Required.
 
+- **exempt** (ExemptPriorityLevelConfiguration)
+
+  `exempt` specifies how requests are handled for an exempt priority level. This field MUST be empty if `type` is `"Limited"`. This field MAY be non-empty if `type` is `"Exempt"`. If empty and `type` is `"Exempt"` then the default values for `ExemptPriorityLevelConfiguration` apply.
+
+  <a name="ExemptPriorityLevelConfiguration"></a>
+  *ExemptPriorityLevelConfiguration describes the configurable aspects of the handling of exempt requests. In the mandatory exempt configuration object the values in the fields here can be modified by authorized users, unlike the rest of the `spec`.*
+
+  - **exempt.lendablePercent** (int32)
+
+    `lendablePercent` prescribes the fraction of the level's NominalCL that can be borrowed by other priority levels.  This value of this field must be between 0 and 100, inclusive, and it defaults to 0. The number of seats that other levels can borrow from this level, known as this level's LendableConcurrencyLimit (LendableCL), is defined as follows.
+
+    LendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 )
+
+  - **exempt.nominalConcurrencyShares** (int32)
+
+    `nominalConcurrencyShares` (NCS) contributes to the computation of the NominalConcurrencyLimit (NominalCL) of this level. This is the number of execution seats nominally reserved for this priority level. This DOES NOT limit the dispatching from this priority level but affects the other priority levels through the borrowing mechanism. The server's concurrency limit (ServerCL) is divided among all the priority levels in proportion to their NCS values:
+
+    NominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[priority level k] NCS(k)
+
+    Bigger numbers mean a larger nominal concurrency limit, at the expense of every other priority level. This field has a default value of zero.
+
 - **limited** (LimitedPriorityLevelConfiguration)
 
   `limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `"Limited"`.
@@ -121,9 +142,9 @@ PriorityLevelConfigurationSpec specifies the configuration of a priority level.
 
     `nominalConcurrencyShares` (NCS) contributes to the computation of the NominalConcurrencyLimit (NominalCL) of this level. This is the number of execution seats available at this priority level. This is used both for requests dispatched from this priority level as well as requests dispatched from other priority levels borrowing seats from this level. The server's concurrency limit (ServerCL) is divided among the Limited priority levels in proportion to their NCS values:
 
-    NominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[limited priority level k] NCS(k)
+    NominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[priority level k] NCS(k)
 
-    Bigger numbers mean a larger nominal concurrency limit, at the expense of every other Limited priority level. This field has a default value of 30.
+    Bigger numbers mean a larger nominal concurrency limit, at the expense of every other priority level. This field has a default value of 30.
 
 
 

diff --git a/content/en/docs/reference/kubernetes-api/common-definitions/label-selector.md b/content/en/docs/reference/kubernetes-api/common-definitions/label-selector.md
@@ -39,8 +39,6 @@ A label selector is a label query over a set of resources. The result of matchLa
 
   - **matchExpressions.key** (string), required
 
-    *Patch strategy: merge on key `key`*
-
     key is the label key that the selector applies to.
 
   - **matchExpressions.operator** (string), required

diff --git a/...rence/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md b/...rence/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md
@@ -163,9 +163,52 @@ PersistentVolumeClaimStatus is the current status of a persistent volume claim.
 
   accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
 
+- **allocatedResourceStatuses** (map[string]string)
+
+  allocatedResourceStatuses stores status of resource being resized for the given PVC. Key names follow standard Kubernetes label syntax. Valid values are either:
+  	* Un-prefixed keys:
+  		- storage - the capacity of the volume.
+  	* Custom resources must use implementation-defined prefixed names such as "example.com/my-custom-resource"
+  Apart from above values - keys that are unprefixed or have kubernetes.io prefix are considered reserved and hence may not be used.
+
+  ClaimResourceStatus can be in any of following states:
+  	- ControllerResizeInProgress:
+  		State set when resize controller starts resizing the volume in control-plane.
+  	- ControllerResizeFailed:
+  		State set when resize has failed in resize controller with a terminal error.
+  	- NodeResizePending:
+  		State set when resize controller has finished resizing the volume but further resizing of
+  		volume is needed on the node.
+  	- NodeResizeInProgress:
+  		State set when kubelet starts resizing the volume.
+  	- NodeResizeFailed:
+  		State set when resizing has failed in kubelet with a terminal error. Transient errors don't set
+  		NodeResizeFailed.
+  For example: if expanding a PVC for more capacity - this field can be one of the following states:
+  	- pvc.status.allocatedResourceStatus['storage'] = "ControllerResizeInProgress"
+       - pvc.status.allocatedResourceStatus['storage'] = "ControllerResizeFailed"
+       - pvc.status.allocatedResourceStatus['storage'] = "NodeResizePending"
+       - pvc.status.allocatedResourceStatus['storage'] = "NodeResizeInProgress"
+       - pvc.status.allocatedResourceStatus['storage'] = "NodeResizeFailed"
+  When this field is not set, it means that no resize operation is in progress for the given PVC.
+
+  A controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus should ignore the update for the purpose it was designed. For example - a controller that only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid resources associated with PVC.
+
+  This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
+
 - **allocatedResources** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
 
-  allocatedResources is the storage resource within AllocatedResources tracks the capacity allocated to a PVC. It may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
+  allocatedResources tracks the resources allocated to a PVC including its capacity. Key names follow standard Kubernetes label syntax. Valid values are either:
+  	* Un-prefixed keys:
+  		- storage - the capacity of the volume.
+  	* Custom resources must use implementation-defined prefixed names such as "example.com/my-custom-resource"
+  Apart from above values - keys that are unprefixed or have kubernetes.io prefix are considered reserved and hence may not be used.
+
+  Capacity reported here may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity.
+
+  A controller that receives PVC update with previously unknown resourceName should ignore the update for the purpose it was designed. For example - a controller that only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid resources associated with PVC.
+
+  This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
 
 - **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
 
@@ -212,10 +255,6 @@ PersistentVolumeClaimStatus is the current status of a persistent volume claim.
 
   phase represents the current phase of PersistentVolumeClaim.
 
-- **resizeStatus** (string)
-
-  resizeStatus stores status of resize operation. ResizeStatus is not set by default but when expansion is complete resizeStatus is set to empty string by resize controller or kubelet. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
-
 
 
 

diff --git a/...s/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md b/...s/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md
@@ -852,6 +852,13 @@ PersistentVolumeStatus is the current status of a persistent volume.
 
 <hr>
 
+- **lastPhaseTransitionTime** (Time)
+
+  lastPhaseTransitionTime is the time the phase transitioned from one to another and automatically resets to current time everytime a volume phase transitions. This is an alpha field and requires enabling PersistentVolumeLastPhaseTransitionTime feature.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+
 - **message** (string)
 
   message is a human-readable message indicating details about why the volume is in this state.