Skip to main content

API

This document is a reference of the API types introduced by Kilo.

Note: this document is generated from code comments. When contributing a change to this document, please do so by changing the code comments.

Table of Contents

DNSOrIP

DNSOrIP represents either a DNS name or an IP address. When both are given, the IP address, as it is more specific, override the DNS name.

FieldDescriptionSchemeRequired
dnsDNS must be a valid RFC 1123 subdomain.stringfalse
ipIP must be a valid IP address.stringfalse

Back to TOC

Peer

Peer is a WireGuard peer that should have access to the VPN.

FieldDescriptionSchemeRequired
metadataStandard object’s metadata. More info: https://github.com/kubernetes/community/blob/master/contributors/devel/api-conventions.md#metadatametav1.ObjectMetafalse
specSpecification of the desired behavior of the Kilo Peer. More info: https://github.com/kubernetes/community/blob/master/contributors/devel/api-conventions.md#spec-and-statusPeerSpectrue

Back to TOC

PeerEndpoint

PeerEndpoint represents a WireGuard endpoint, which is an IP:port tuple.

FieldDescriptionSchemeRequired
dnsOrIPDNSOrIP is a DNS name or an IP address.DNSOrIPtrue
portPort must be a valid port number.uint32true

Back to TOC

PeerList

PeerList is a list of peers.

FieldDescriptionSchemeRequired
metadataStandard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kindsmetav1.ListMetafalse
itemsList of peers. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md[]Peertrue

Back to TOC

PeerSpec

PeerSpec is the description and configuration of a peer.

FieldDescriptionSchemeRequired
allowedIPsAllowedIPs is the list of IP addresses that are allowed for the given peer's tunnel.[]stringtrue
endpointEndpoint is the initial endpoint for connections to the peer.*PeerEndpointfalse
persistentKeepalivePersistentKeepalive is the interval in seconds of the emission of keepalive packets by the peer. This defaults to 0, which disables the feature.intfalse
presharedKeyPresharedKey is the optional symmetric encryption key for the peer.stringfalse
publicKeyPublicKey is the WireGuard public key for the peer.stringtrue

Back to TOC