From k8s.io.apimachinery.pkg.apis.meta.v1.ObjectMeta.

matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is “key”, the operator is “In”, and the values array contains only “value”. The requirements are ANDed. +optional

matchExpressions is a list of label selector requirements. The requirements are ANDed. +optional

Selects whether this component is installed.

Selects whether this component is installed.

Namespace for the component.

Hub for the component (overrides top level hub setting).

Tag for the component (overrides top level tag setting).

Kubernetes resource spec.

Selects whether this component is installed.

Namespace for the component.

Arbitrary install time configuration for the component.

Chart path for addon components.

Optional schema to validate spec against.

Kubernetes resource spec.

Selects whether this gateway is installed.

Namespace for the gateway.

Name for the gateway.

Labels for the gateway.

Hub for the component (overrides top level hub setting).

Tag for the component (overrides top level tag setting).

Kubernetes resource spec.

k8s affinity. https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity

Deployment environment variables. https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/

k8s HorizontalPodAutoscaler settings. https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/

k8s imagePullPolicy.

k8s nodeSelector. https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector

k8s PodDisruptionBudget settings. https://kubernetes.io/docs/concepts/workloads/pods/disruptions/#how-disruption-budgets-work

k8s pod annotations.

k8s priorityclassname. Default for all resources unless overridden. https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass

k8s readinessProbe settings. https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/ k8s.io.api.core.v1.Probe readiness_probe = 9;

k8s Deployment replicas setting.

k8s resources settings.

k8s Service settings.

k8s deployment strategy.

k8s toleration

k8s service annotations. https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/

Overlays for k8s resources in rendered manifests.

Resource API version.

Name of resource. Namespace is always the component namespace.

List of patches to apply to resource.

Path of the form a.[key1:value1].b.[:value2] Where [key1:value1] is a selector for a key-value pair to identify a list element and [:value] is a value selector to identify a list element in a leaf list. All path intermediate nodes must exist.

Value to add, delete or replace. For add, the path should be a new leaf. For delete, value should be unset. For replace, path should reference an existing node. All values are strings but are converted into appropriate type based on schema.

Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys. +optional

Operator represents a key’s relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category. +optional

Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string. +optional

Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. +optional

TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system. +optional

Path or name for the profile e.g. - minimal (looks in profiles dir for a file called minimal.yaml) - /tmp/istio/install/values/custom/custom-install.yaml (local file path) default profile is used if this field is unset.

Path for the install package. e.g. - /tmp/istio-installer/nightly (local file path)

Root for docker image paths e.g. docker.io/istio

Version tag for docker images e.g. 1.0.6

Namespace to install control plane resources into. If unset, Istio will be installed into the same namespace as the IstioOperator CR.

Identify the revision this installation is associated with. This option is currently experimental.

Config used by control plane components internally.

Kubernetes resource settings, enablement and component-specific settings that are not internal to the component.

Extra addon components which are not explicitly specified above.

Overrides for default values.yaml. This is a validated pass-through to Helm templates. See the Helm installation options for schema details: https://istio.io/docs/reference/config/installation-options/. Anything that is available in IstioOperatorSpec should be set above rather than using the passthrough. This includes Kubernetes resource settings for components in KubernetesResourcesSpec.

Unvalidated overrides for default values.yaml. Used for custom templates where new parameters are added.

Overall status of all components controlled by the operator. - If all components have status NONE, overall status is NONE. - If all components are HEALTHY, overall status is HEALTHY. - If one or more components are RECONCILING and others are HEALTHY, overall status is RECONCILING. - If one or more components are UPDATING and others are HEALTHY, overall status is UPDATING. - If components are a mix of RECONCILING, UPDATING and HEALTHY, overall status is UPDATING. - If any component is in ERROR state, overall status is ERROR.

Individual status of each component controlled by the operator. The map key is the name of the component.

Component is not present.

Component is being updated to a different version.

Controller has started but not yet completed reconciliation loop for the component.

Component is in an error state.