Skip to content

SFH App Version Definition🔗

Title: SFH App Version Definition
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ definitionVersion No string No - The version of this definition.
- semver No string No - INTERNAL PROPERTY. Do not use. The semantic version for this AppDefinition.
- name No string No - INTERNAL PROPERTY. Do not use. The name of the app
- appId No number No - INTERNAL PROPERTY. Do not use. The id of the app in the management platform
- changelog No string No - INTERNAL PROPERTY. Do not use. A changelog for this AppDefinition
- metrics No boolean No - If true, Prometheus will scrape the metrics from all container ports, that have the metricsPath property defined.
+ containers No array of object No - The list of containers, this app has.
- workloadAttestation No object No - -
- volumes No array of object No - -
- values No array of object No - Configuration values, that are later stored in the values.yaml of the helm chart. This can be used across the app definition. the value sponsorRef ia prefilled dynamically. Use this with the template syntax which is used in helm: e.g. in the environment '{{ .Values.sponsorRef | quote }}'
- development No object No - DO NOT USE THIS on the SFH Management Platform. Properties to use the appgenerator for intergation test environments.

1. Property SFH App Version Definition > definitionVersion🔗
Type string
Required Yes

Description: The version of this definition.

Example: 

"1.0.0"
Restrictions
Minimum ≥ 1
Maximum ≤ 1

2. Property SFH App Version Definition > semver🔗
Type string
Required No

Description: INTERNAL PROPERTY. Do not use. The semantic version for this AppDefinition.

Example: 

"1.0.0"
Restrictions
Min length 5
Max length 64
Must match regular expression ^(0\|[1-9]\d*).(0\|[1-9]\d*).(0\|[1-9]\d*)(?:-((?:0\|[1-9]\d*\|\d*[a-z-][0-9a-z-]*)(?:.(?:0\|[1-9]\d*\|\d*[a-z-][0-9a-z-]*))*))?(?:\+([0-9a-z-]+(?:.[0-9a-z-]+)*))?$ Test

3. Property SFH App Version Definition > name🔗
Type string
Required No

Description: INTERNAL PROPERTY. Do not use. The name of the app

Examples: 

"S"

"p"

"e"

"c"

"i"

"a"

"l"

"A"

"p"

"p"

4. Property SFH App Version Definition > appId🔗
Type number
Required No

Description: INTERNAL PROPERTY. Do not use. The id of the app in the management platform

Example: 

1

5. Property SFH App Version Definition > changelog🔗
Type string
Required No

Description: INTERNAL PROPERTY. Do not use. A changelog for this AppDefinition

6. Property SFH App Version Definition > metrics🔗
Type boolean
Required No

Description: If true, Prometheus will scrape the metrics from all container ports, that have the metricsPath property defined.

7. Property SFH App Version Definition > containers🔗
Type array of object
Required Yes

Description: The list of containers, this app has.

Array restrictions
Min items 1
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
containers items -

7.1. SFH App Version Definition > containers > containers items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ image No string No - The image name, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename. Can include a subpath (bitnami/nginx)
+ tag No string No - The image`s tag, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename:tag. Please use versions and not generic tags like latest - although this works too
+ name No string No In #/$defs/DNS_LABEL The name for this container. Must be unique in the app
+ resources No object No - The limits and requests for the container. For hints see https://home.robusta.dev/blog/kubernetes-memory-limit/ and https://home.robusta.dev/blog/stop-using-cpu-limits/
- ports No array of object No - -
- volumeMounts No array of object No - -
- environment No array of object No - Environment variables for the container. Values can be used here e.g. sponsorRef or sfhId
- args No array of string No - The arguments for the container execution. Values can be used here e.g. sponsorRef or sfhId
- command No array of string No - Changes the containers entrypoint / command
- mountWorkloadAttestationPath No boolean No - If true, and if workloadAttestation is active in the app`s global workloadAttestation setting, the
- livenessProbe No object No In #/$defs/probe A probe exactly the same, as in a Kubernetes PodSpec
- readinessProbe No object No Same as livenessProbe A probe exactly the same, as in a Kubernetes PodSpec
- startupProbe No object No Same as livenessProbe A probe exactly the same, as in a Kubernetes PodSpec

7.1.1. Property SFH App Version Definition > containers > containers items > image🔗
Type string
Required Yes

Description: The image name, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename. Can include a subpath (bitnami/nginx)

Example: 

"nginx"
Restrictions
Must match regular expression ^[a-zA-Z0-9]{1}[a-zA-Z0-9-_./]*[a-zA-Z0-9]{1}$ Test

7.1.2. Property SFH App Version Definition > containers > containers items > tag🔗
Type string
Required Yes

Description: The image`s tag, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename:tag. Please use versions and not generic tags like latest - although this works too

Example: 

"1.0.0"
Restrictions
Max length 128
Must match regular expression ^[a-zA-Z0-9]{1}[a-zA-Z0-9-_./]*[a-zA-Z0-9]{1}$ Test

7.1.3. Property SFH App Version Definition > containers > containers items > name🔗
Type string
Required Yes
Defined in #/$defs/DNS_LABEL

Description: The name for this container. Must be unique in the app

Restrictions
Max length 63
Must match regular expression ^[a-z0-9]+(-*[a-z0-9])*$ Test

7.1.4. Property SFH App Version Definition > containers > containers items > resources🔗
Type object
Required Yes
Additional properties [Any type: allowed]

Description: The limits and requests for the container. For hints see https://home.robusta.dev/blog/kubernetes-memory-limit/ and https://home.robusta.dev/blog/stop-using-cpu-limits/

Property Pattern Type Deprecated Definition Title/Description
+ requests No object No In #/$defs/resourceRequests -
+ limits No object No In #/$defs/resourceLimits -
7.1.4.1. Property SFH App Version Definition > containers > containers items > resources > requests🔗
Type object
Required Yes
Additional properties [Not allowed]
Defined in #/$defs/resourceRequests
Property Pattern Type Deprecated Definition Title/Description
+ memory No string No - Requested memory as string including its unit. May be equal to memory limit. https://home.robusta.dev/blog/kubernetes-memory-limit/
+ cpu No string No - Requested share of CPU time. The container can get more CPU time, but minimal this time slices requested here are guaranteed. https://home.robusta.dev/blog/stop-using-cpu-limits/
7.1.4.1.1. Property SFH App Version Definition > containers > containers items > resources > requests > memory🔗
Type string
Required Yes

Description: Requested memory as string including its unit. May be equal to memory limit. https://home.robusta.dev/blog/kubernetes-memory-limit/

Example: 

"128M, 1G"
Restrictions
Must match regular expression ^[0-9]+(E\|P\|T\|G\|M\|k\|Ei\|Pi\|Ti\|Gi\|Mi\|Ki)$ Test
7.1.4.1.2. Property SFH App Version Definition > containers > containers items > resources > requests > cpu🔗
Type string
Required Yes

Description: Requested share of CPU time. The container can get more CPU time, but minimal this time slices requested here are guaranteed. https://home.robusta.dev/blog/stop-using-cpu-limits/

Examples: 

"1000m"

"100m"
Restrictions
Must match regular expression ^([0-9].[0-9]+\|[0-9]+m)$ Test
7.1.4.2. Property SFH App Version Definition > containers > containers items > resources > limits🔗
Type object
Required Yes
Additional properties [Not allowed]
Defined in #/$defs/resourceLimits
Property Pattern Type Deprecated Definition Title/Description
+ memory No string No - Limited memory as string including its unit.May be equal to requested memory. https://home.robusta.dev/blog/kubernetes-memory-limit/
- cpu No string No - The max cpu time share your container can get. Can be left empty, if no reason for limiting exists. https://home.robusta.dev/blog/stop-using-cpu-limits/
7.1.4.2.1. Property SFH App Version Definition > containers > containers items > resources > limits > memory🔗
Type string
Required Yes

Description: Limited memory as string including its unit.May be equal to requested memory. https://home.robusta.dev/blog/kubernetes-memory-limit/

Example: 

"128M, 1G"
Restrictions
Must match regular expression ^[0-9]+(E\|P\|T\|G\|M\|k\|Ei\|Pi\|Ti\|Gi\|Mi\|Ki)$ Test
7.1.4.2.2. Property SFH App Version Definition > containers > containers items > resources > limits > cpu🔗
Type string
Required No

Description: The max cpu time share your container can get. Can be left empty, if no reason for limiting exists. https://home.robusta.dev/blog/stop-using-cpu-limits/

Examples: 

"1000m"

"100m"
Restrictions
Must match regular expression ^([0-9].[0-9]+\|[0-9]+m)$ Test

7.1.5. Property SFH App Version Definition > containers > containers items > ports🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
ports items -
7.1.5.1. SFH App Version Definition > containers > containers items > ports > ports items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ name No string No - The name of the port. Must be unique for the container.
- metricsPath No string No - The path, where to scrape metrics. Can be an empty string or a path starting with a '/'
+ containerPort No integer No - The port in the container
- hostPort No integer No - If set, the port is available globally at the SFHs network interface. Be sure, this app uses the host port exclusively
- service No object No - -
7.1.5.1.1. Property SFH App Version Definition > containers > containers items > ports > ports items > name🔗
Type string
Required Yes

Description: The name of the port. Must be unique for the container.

Examples: 

"api"

"http"
Restrictions
Must match regular expression [a-z0-9]([a-z0-9-]*[a-z0-9])* Test
7.1.5.1.2. Property SFH App Version Definition > containers > containers items > ports > ports items > metricsPath🔗
Type string
Required No

Description: The path, where to scrape metrics. Can be an empty string or a path starting with a '/'

Examples: 

"/metrics/path"

""
Restrictions
Must match regular expression (/([A-z0-9\-\%]+/)*[A-z0-9\-\%]+$)? Test
7.1.5.1.3. Property SFH App Version Definition > containers > containers items > ports > ports items > containerPort🔗
Type integer
Required Yes

Description: The port in the container

Example: 

80
Restrictions
Minimum ≥ 1
Maximum ≤ 49151
7.1.5.1.4. Property SFH App Version Definition > containers > containers items > ports > ports items > hostPort🔗
Type integer
Required No

Description: If set, the port is available globally at the SFHs network interface. Be sure, this app uses the host port exclusively

Example: 

8080
Restrictions
Minimum ≥ 1
Maximum ≤ 49151
7.1.5.1.5. Property SFH App Version Definition > containers > containers items > ports > ports items > service🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ app2appPort No integer No - If set, this port is available to other applications on the SFH. Must be unique for this app. App2App is mandatory for all functions in the service object
- reverseProxy No object No - -
7.1.5.1.5.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > app2appPort🔗
Type integer
Required Yes

Description: If set, this port is available to other applications on the SFH. Must be unique for this app. App2App is mandatory for all functions in the service object

Example: 

80
Restrictions
Minimum ≥ 1
Maximum ≤ 49151
7.1.5.1.5.2. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
- httpProxy No boolean No - If true, this port is available via HTTP on the SFH`s reverseProxy
- httpsProxy No boolean No - If true, this port is available via HTTPS on the SFH`s reverseProxy
- routerPath No string No - defines the path prefix, which routes to this port on the SFH`s reverseProxy. Is usable with the SFHs DNS name or IP Address
- subDomain No string No - defines the subdomain, which routes to this port on the SFH`s reverseProxy. Is usable exclusively with the SFHs DNS name
- stripPrefix No boolean No - If true, the routerPath will be stripped from requests by the reverse proxy
- authentication No object No - Configures the authentication methods of the reverse proxy
7.1.5.1.5.2.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > httpProxy🔗
Type boolean
Required No

Description: If true, this port is available via HTTP on the SFH`s reverseProxy

Examples: 

true

false
7.1.5.1.5.2.2. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > httpsProxy🔗
Type boolean
Required No

Description: If true, this port is available via HTTPS on the SFH`s reverseProxy

Examples: 

true

false
7.1.5.1.5.2.3. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > routerPath🔗
Type string
Required No

Description: defines the path prefix, which routes to this port on the SFH`s reverseProxy. Is usable with the SFHs DNS name or IP Address

Example: 

"punchpersistence"
Restrictions
Must match regular expression ^[a-zA-Z0-9][a-zA-Z0-9-_]*(/[a-zA-Z0-9-_]+)*$ Test
7.1.5.1.5.2.4. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > subDomain🔗
Type string
Required No

Description: defines the subdomain, which routes to this port on the SFH`s reverseProxy. Is usable exclusively with the SFHs DNS name

Example: 

"punchpersistence"
Restrictions
Must match regular expression ^[a-zA-Z0-9][a-zA-Z0-9-_]*(.[a-zA-Z0-9-_]+)*$ Test
7.1.5.1.5.2.5. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > stripPrefix🔗
Type boolean
Required No

Description: If true, the routerPath will be stripped from requests by the reverse proxy

Examples: 

true

false
7.1.5.1.5.2.6. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication🔗
Type object
Required No
Additional properties [Not allowed]

Description: Configures the authentication methods of the reverse proxy

Property Pattern Type Deprecated Definition Title/Description
- verifyClientCertificate No object No - Configures the client certificate based authentication method of the reverse proxy
7.1.5.1.5.2.6.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate🔗
Type object
Required No
Additional properties [Any type: allowed]

Description: Configures the client certificate based authentication method of the reverse proxy

Property Pattern Type Deprecated Definition Title/Description
+ caCertificates No string No - A string with the CA Certificates, the client certificates have to be signed with. Format: Take the CA certificates ("-----BEGIN CERTIFICATE-----..."), concat them, encode everything base64.
+ rejectInvalid No boolean No - A setting for the reverse proxy client authentication. If true, only requests from clients, which can present a valid client certificate signed by a CA mentioned in caCertificates, are passed. If false, every request is passed to the target and only the headers in the request (X-ssl-...) give a hint, if the client was authenticated.
7.1.5.1.5.2.6.1.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate > caCertificates🔗
Type string
Required Yes

Description: A string with the CA Certificates, the client certificates have to be signed with. Format: Take the CA certificates ("-----BEGIN CERTIFICATE-----..."), concat them, encode everything base64.

Example: 

"LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUV0RENDQXB3Q0NRQ0lG..."
Restrictions
Must match regular expression ^[A-Za-z0-9+/=]*$ Test
7.1.5.1.5.2.6.1.2. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate > rejectInvalid🔗
Type boolean
Required Yes

Description: A setting for the reverse proxy client authentication. If true, only requests from clients, which can present a valid client certificate signed by a CA mentioned in caCertificates, are passed. If false, every request is passed to the target and only the headers in the request (X-ssl-...) give a hint, if the client was authenticated.

7.1.6. Property SFH App Version Definition > containers > containers items > volumeMounts🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
volumeMounts items -
7.1.6.1. SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ mountPath No string No In #/$defs/unix_path -
+ name No string No Same as name The volume's name, as specified in the volumes section of the AppDefinition
- subPath No string No Same as mountPath An optional subPath in the volume, which should be mounted
7.1.6.1.1. Property SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > mountPath🔗
Type string
Required Yes
Defined in #/$defs/unix_path
Restrictions
Must match regular expression ^[0-9a-zA-Z]*([0-9a-zA-Z-_]*)*(/[0-9a-zA-Z]*([0-9a-zA-Z-_]*)*)*[0-9a-zA-Z]$ Test
7.1.6.1.2. Property SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > name🔗
Type string
Required Yes
Same definition as name

Description: The volume's name, as specified in the volumes section of the AppDefinition

7.1.6.1.3. Property SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > subPath🔗
Type string
Required No
Same definition as mountPath

Description: An optional subPath in the volume, which should be mounted

7.1.7. Property SFH App Version Definition > containers > containers items > environment🔗
Type array of object
Required No

Description: Environment variables for the container. Values can be used here e.g. sponsorRef or sfhId

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
environment items -
7.1.7.1. SFH App Version Definition > containers > containers items > environment > environment items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ name No string No - the environment variables name
+ value No string No - the environment variables value. For values use the helm syntax: {{ .Values.sponsorRef }}
7.1.7.1.1. Property SFH App Version Definition > containers > containers items > environment > environment items > name🔗
Type string
Required Yes

Description: the environment variables name

Example: 

"EQUI_NO"
Restrictions
Must match regular expression ^([a-zA-Z]\|_[a-zA-Z]){1}[a-zA-Z0-9_]* Test
7.1.7.1.2. Property SFH App Version Definition > containers > containers items > environment > environment items > value🔗
Type string
Required Yes

Description: the environment variables value. For values use the helm syntax: {{ .Values.sponsorRef }}

Example: 

"EQUI_NO"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

7.1.8. Property SFH App Version Definition > containers > containers items > args🔗
Type array of string
Required No

Description: The arguments for the container execution. Values can be used here e.g. sponsorRef or sfhId

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
args items the argument. For values use the helm syntax: {{ .Values.sponsorRef }}
7.1.8.1. SFH App Version Definition > containers > containers items > args > args items🔗
Type string
Required No

Description: the argument. For values use the helm syntax: {{ .Values.sponsorRef }}

Examples: 

"-c"

"while true; do curl -m 8 -sS localhost:3001; sleep 10;done"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

7.1.9. Property SFH App Version Definition > containers > containers items > command🔗
Type array of string
Required No

Description: Changes the containers entrypoint / command

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
command items -
7.1.9.1. SFH App Version Definition > containers > containers items > command > command items🔗
Type string
Required No

Example: 

"/bin/sh"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

7.1.10. Property SFH App Version Definition > containers > containers items > mountWorkloadAttestationPath🔗
Type boolean
Required No

Description: If true, and if workloadAttestation is active in the app`s global workloadAttestation setting, the

7.1.11. Property SFH App Version Definition > containers > containers items > livenessProbe🔗
Type combining
Required No
Additional properties [Not allowed]
Defined in #/$defs/probe

Description: A probe exactly the same, as in a Kubernetes PodSpec

Property Pattern Type Deprecated Definition Title/Description
- exec No object No - -
- failureThreshold No integer No - -
- httpGet No object No - -
- initialDelaySeconds No integer No - -
- periodSeconds No integer No - -
- successThreshold No integer No - -
- tcpSocket No object No - -
- timeoutSeconds No integer No - -
One of(Option)
item 0
item 1
item 2
7.1.11.1. Property SFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 0🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.1.1. The following properties are required🔗
  • exec
7.1.11.2. Property SFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 1🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.2.1. The following properties are required🔗
  • httpGet
7.1.11.3. Property SFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 2🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.3.1. The following properties are required🔗
  • tcpSocket
7.1.11.4. Property SFH App Version Definition > containers > containers items > livenessProbe > exec🔗
Type object
Required No
Additional properties [Any type: allowed]
Property Pattern Type Deprecated Definition Title/Description
- command No array of string No - -
- required No object No - -
7.1.11.4.1. Property SFH App Version Definition > containers > containers items > livenessProbe > exec > command🔗
Type array of string
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
command items -
7.1.11.4.1.1. SFH App Version Definition > containers > containers items > livenessProbe > exec > command > command items🔗
Type string
Required No
7.1.11.4.2. Property SFH App Version Definition > containers > containers items > livenessProbe > exec > required🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.5. Property SFH App Version Definition > containers > containers items > livenessProbe > failureThreshold🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.6. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet🔗
Type object
Required No
Additional properties [Any type: allowed]
Property Pattern Type Deprecated Definition Title/Description
- host No string No - -
- path No string No - -
- port No Combination No - -
- scheme No string No - -
- httpHeaders No array of object No - -
7.1.11.6.1. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > host🔗
Type string
Required No
7.1.11.6.2. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > path🔗
Type string
Required No
7.1.11.6.3. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > port🔗
Type combining
Required No
Additional properties [Any type: allowed]
One of(Option)
item 0
item 1
7.1.11.6.3.1. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > port > oneOf > item 0🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.6.3.2. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > port > oneOf > item 1🔗
Type string
Required No
7.1.11.6.4. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > scheme🔗
Type string
Required No
7.1.11.6.5. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
httpHeaders items -
7.1.11.6.5.1. SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items🔗
Type object
Required No
Additional properties [Any type: allowed]
Property Pattern Type Deprecated Definition Title/Description
- name No string No - -
- value No string No - -
7.1.11.6.5.1.1. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items > name🔗
Type string
Required No
7.1.11.6.5.1.2. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items > value🔗
Type string
Required No
7.1.11.7. Property SFH App Version Definition > containers > containers items > livenessProbe > initialDelaySeconds🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.8. Property SFH App Version Definition > containers > containers items > livenessProbe > periodSeconds🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.9. Property SFH App Version Definition > containers > containers items > livenessProbe > successThreshold🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.10. Property SFH App Version Definition > containers > containers items > livenessProbe > tcpSocket🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.11. Property SFH App Version Definition > containers > containers items > livenessProbe > timeoutSeconds🔗
Type integer
Required No
Restrictions
Minimum ≥ 1

7.1.12. Property SFH App Version Definition > containers > containers items > readinessProbe🔗
Type combining
Required No
Additional properties [Not allowed]
Same definition as livenessProbe

Description: A probe exactly the same, as in a Kubernetes PodSpec

7.1.13. Property SFH App Version Definition > containers > containers items > startupProbe🔗
Type combining
Required No
Additional properties [Not allowed]
Same definition as livenessProbe

Description: A probe exactly the same, as in a Kubernetes PodSpec

8. Property SFH App Version Definition > workloadAttestation🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ enabled No boolean No - Must be true, to use any SPIFFE related features in the app
- incomingProxies No array of object No - -
- outgoingProxies No array of object No - -

8.1. Property SFH App Version Definition > workloadAttestation > enabled🔗
Type boolean
Required Yes

Description: Must be true, to use any SPIFFE related features in the app

8.2. Property SFH App Version Definition > workloadAttestation > incomingProxies🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
incomingProxies items Creates a sidecar which terminates secure app-2-app communication

8.2.1. SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items🔗
Type object
Required No
Additional properties [Not allowed]

Description: Creates a sidecar which terminates secure app-2-app communication

Property Pattern Type Deprecated Definition Title/Description
+ sidecarPort No integer No - The port, the sidecar container listens to
+ sidecarApp2AppPort No integer No - The port, under which the sidecar is available for other apps
+ targetContainerPort No integer No - The port of the server in the app, the incoming Proxy should upstream to
- allowedAppIds No array of number No - If defined, restricts the usage of the proxied service to apps with the listed appIds
- tcp No boolean No - -
8.2.1.1. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > sidecarPort🔗
Type integer
Required Yes

Description: The port, the sidecar container listens to

8.2.1.2. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > sidecarApp2AppPort🔗
Type integer
Required Yes

Description: The port, under which the sidecar is available for other apps

8.2.1.3. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > targetContainerPort🔗
Type integer
Required Yes

Description: The port of the server in the app, the incoming Proxy should upstream to

8.2.1.4. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > allowedAppIds🔗
Type array of number
Required No

Description: If defined, restricts the usage of the proxied service to apps with the listed appIds

Array restrictions
Min items 1
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
allowedAppIds items -
8.2.1.4.1. SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > allowedAppIds > allowedAppIds items🔗
Type number
Required No
8.2.1.5. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > tcp🔗
Type boolean
Required No

8.3. Property SFH App Version Definition > workloadAttestation > outgoingProxies🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
outgoingProxies items Creates a sidecar which initiates/ proxies secure app-2-app communication

8.3.1. SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items🔗
Type object
Required No
Additional properties [Not allowed]

Description: Creates a sidecar which initiates/ proxies secure app-2-app communication

Property Pattern Type Deprecated Definition Title/Description
+ sidecarContainerPort No integer No - The port, the sidecar container listens to. The client in your application container addresses 127.0.0.1:SIDECARCONTAINERPORT
+ targetAddress No string No - The target address of the app, that offers app2pp communication via workloadAttestation proxy
+ targetPort No integer No - The target port of the app, that offers app2pp communication via workloadAttestation proxy
+ targetWorkloadId No string No - The workload id of the app, that offers app2pp communication via workloadAttestation proxy, is normally exactly the same as the targetAddress
- tcp No boolean No - Defaults to false. If true, not http is proxied, but raw tcp sockets are mTLS encapsulated
8.3.1.1. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > sidecarContainerPort🔗
Type integer
Required Yes

Description: The port, the sidecar container listens to. The client in your application container addresses 127.0.0.1:SIDECARCONTAINERPORT

8.3.1.2. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetAddress🔗
Type string
Required Yes

Description: The target address of the app, that offers app2pp communication via workloadAttestation proxy

Example: 

"inquisitive-gray-hyena-21"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

8.3.1.3. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetPort🔗
Type integer
Required Yes

Description: The target port of the app, that offers app2pp communication via workloadAttestation proxy

8.3.1.4. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetWorkloadId🔗
Type string
Required Yes

Description: The workload id of the app, that offers app2pp communication via workloadAttestation proxy, is normally exactly the same as the targetAddress

Restrictions
Must match regular expression ```^[^

"]*$``` Test |

8.3.1.5. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > tcp🔗
Type boolean
Required No

Description: Defaults to false. If true, not http is proxied, but raw tcp sockets are mTLS encapsulated

9. Property SFH App Version Definition > volumes🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
volumes items A volume, that can be used between the app's containers.

9.1. SFH App Version Definition > volumes > volumes items🔗
Type object
Required No
Additional properties [Not allowed]

Description: A volume, that can be used between the app`s containers.

Property Pattern Type Deprecated Definition Title/Description
+ name No string No Same as name The name of the volume, as it can be used in container`s volumeMounts
- capacity No string No - The maximal capacity of this volume
+ type No enum (of string) No - The volume type. Persistent for persistent storage. emptyDir for an oblivious storage, that can be used to share data between containers of the app, but that does not persist

9.1.1. Property SFH App Version Definition > volumes > volumes items > name🔗
Type string
Required Yes
Same definition as name

Description: The name of the volume, as it can be used in container`s volumeMounts

9.1.2. Property SFH App Version Definition > volumes > volumes items > capacity🔗
Type string
Required No

Description: The maximal capacity of this volume

Restrictions
Must match regular expression ^[0-9]+(E\|P\|T\|G\|M\|k\|Ei\|Pi\|Ti\|Gi\|Mi\|Ki)$ Test

9.1.3. Property SFH App Version Definition > volumes > volumes items > type🔗
Type enum (of string)
Required Yes

Description: The volume type. Persistent for persistent storage. emptyDir for an oblivious storage, that can be used to share data between containers of the app, but that does not persist

Must be one of: * "persistent" * "emptyDir"

10. Property SFH App Version Definition > values🔗
Type array of object
Required No

Description: Configuration values, that are later stored in the values.yaml of the helm chart. This can be used across the app definition. the value sponsorRef ia prefilled dynamically. Use this with the template syntax which is used in helm: e.g. in the environment '{{ .Values.sponsorRef | quote }}'

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
values items -

10.1. SFH App Version Definition > values > values items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ name No string No - -
+ value No string No - -

10.1.1. Property SFH App Version Definition > values > values items > name🔗
Type string
Required Yes
Restrictions
Must match regular expression ^[a-zA-Z]+[a-zA-Z0-9]*$ Test

10.1.2. Property SFH App Version Definition > values > values items > value🔗
Type string
Required Yes
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

11. Property SFH App Version Definition > development🔗
Type object
Required No
Additional properties [Not allowed]

Description: DO NOT USE THIS on the SFH Management Platform. Properties to use the appgenerator for intergation test environments.

Property Pattern Type Deprecated Definition Title/Description
- enabled No boolean No - -
- nodeSelectorDisabled No boolean No - -
- overrideVolumesInValues No boolean No - -

11.1. Property SFH App Version Definition > development > enabled🔗
Type boolean
Required No

11.2. Property SFH App Version Definition > development > nodeSelectorDisabled🔗
Type boolean
Required No

11.3. Property SFH App Version Definition > development > overrideVolumesInValues🔗
Type boolean
Required No

Generated using json-schema-for-humans on 2024-01-03 at 10:35:06 +0000

containers items > resources > requests > cpu](#containers_items_resources_requests_cpu) - [7.1.4.2. PropertySFH App Version Definition > containers > containers items > resources > limits](#containers_items_resources_limits) - [7.1.4.2.1. PropertySFH App Version Definition > containers > containers items > resources > limits > memory](#containers_items_resources_limits_memory) - [7.1.4.2.2. PropertySFH App Version Definition > containers > containers items > resources > limits > cpu](#containers_items_resources_limits_cpu) - [7.1.5. PropertySFH App Version Definition > containers > containers items > ports](#containers_items_ports) - [7.1.5.1. SFH App Version Definition > containers > containers items > ports > ports items](#autogenerated_heading_3) - [7.1.5.1.1. PropertySFH App Version Definition > containers > containers items > ports > ports items > name](#containers_items_ports_items_name) - [7.1.5.1.2. PropertySFH App Version Definition > containers > containers items > ports > ports items > containerPort](#containers_items_ports_items_containerPort) - [7.1.5.1.3. PropertySFH App Version Definition > containers > containers items > ports > ports items > hostPort](#containers_items_ports_items_hostPort) - [7.1.5.1.4. PropertySFH App Version Definition > containers > containers items > ports > ports items > service](#containers_items_ports_items_service) - [7.1.5.1.4.1. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > app2appPort](#containers_items_ports_items_service_app2appPort) - [7.1.5.1.4.2. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy](#containers_items_ports_items_service_reverseProxy) - [7.1.5.1.4.2.1. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > httpProxy](#containers_items_ports_items_service_reverseProxy_httpProxy) - [7.1.5.1.4.2.2. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > httpsProxy](#containers_items_ports_items_service_reverseProxy_httpsProxy) - [7.1.5.1.4.2.3. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > routerPath](#containers_items_ports_items_service_reverseProxy_routerPath) - [7.1.5.1.4.2.4. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > subDomain](#containers_items_ports_items_service_reverseProxy_subDomain) - [7.1.5.1.4.2.5. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > stripPrefix](#containers_items_ports_items_service_reverseProxy_stripPrefix) - [7.1.5.1.4.2.6. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication](#containers_items_ports_items_service_reverseProxy_authentication) - [7.1.5.1.4.2.6.1. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate](#containers_items_ports_items_service_reverseProxy_authentication_verifyClientCertificate) - [7.1.5.1.4.2.6.1.1. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate > caCertificates](#containers_items_ports_items_service_reverseProxy_authentication_verifyClientCertificate_caCertificates) - [7.1.5.1.4.2.6.1.2. PropertySFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate > rejectInvalid](#containers_items_ports_items_service_reverseProxy_authentication_verifyClientCertificate_rejectInvalid) - [7.1.6. PropertySFH App Version Definition > containers > containers items > volumeMounts](#containers_items_volumeMounts) - [7.1.6.1. SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items](#autogenerated_heading_4) - [7.1.6.1.1. PropertySFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > mountPath](#containers_items_volumeMounts_items_mountPath) - [7.1.6.1.2. PropertySFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > name](#containers_items_volumeMounts_items_name) - [7.1.6.1.3. PropertySFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > subPath](#containers_items_volumeMounts_items_subPath) - [7.1.7. PropertySFH App Version Definition > containers > containers items > environment](#containers_items_environment) - [7.1.7.1. SFH App Version Definition > containers > containers items > environment > environment items](#autogenerated_heading_5) - [7.1.7.1.1. PropertySFH App Version Definition > containers > containers items > environment > environment items > name](#containers_items_environment_items_name) - [7.1.7.1.2. PropertySFH App Version Definition > containers > containers items > environment > environment items > value](#containers_items_environment_items_value) - [7.1.8. PropertySFH App Version Definition > containers > containers items > args](#containers_items_args) - [7.1.8.1. SFH App Version Definition > containers > containers items > args > args items](#autogenerated_heading_6) - [7.1.9. PropertySFH App Version Definition > containers > containers items > command](#containers_items_command) - [7.1.9.1. SFH App Version Definition > containers > containers items > command > command items](#autogenerated_heading_7) - [7.1.10. PropertySFH App Version Definition > containers > containers items > mountWorkloadAttestationPath](#containers_items_mountWorkloadAttestationPath) - [7.1.11. PropertySFH App Version Definition > containers > containers items > livenessProbe](#containers_items_livenessProbe) - [7.1.11.1. PropertySFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 0](#containers_items_livenessProbe_oneOf_i0) - [7.1.11.1.1. The following properties are required](#autogenerated_heading_8) - [7.1.11.2. PropertySFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 1](#containers_items_livenessProbe_oneOf_i1) - [7.1.11.2.1. The following properties are required](#autogenerated_heading_9) - [7.1.11.3. PropertySFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 2](#containers_items_livenessProbe_oneOf_i2) - [7.1.11.3.1. The following properties are required](#autogenerated_heading_10) - [7.1.11.4. PropertySFH App Version Definition > containers > containers items > livenessProbe > exec](#containers_items_livenessProbe_exec) - [7.1.11.4.1. PropertySFH App Version Definition > containers > containers items > livenessProbe > exec > command](#containers_items_livenessProbe_exec_command) - [7.1.11.4.1.1. SFH App Version Definition > containers > containers items > livenessProbe > exec > command > command items](#autogenerated_heading_11) - [7.1.11.4.2. PropertySFH App Version Definition > containers > containers items > livenessProbe > exec > required](#containers_items_livenessProbe_exec_required) - [7.1.11.5. PropertySFH App Version Definition > containers > containers items > livenessProbe > failureThreshold](#containers_items_livenessProbe_failureThreshold) - [7.1.11.6. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet](#containers_items_livenessProbe_httpGet) - [7.1.11.6.1. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > host](#containers_items_livenessProbe_httpGet_host) - [7.1.11.6.2. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > path](#containers_items_livenessProbe_httpGet_path) - [7.1.11.6.3. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > port](#containers_items_livenessProbe_httpGet_port) - [7.1.11.6.3.1. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > port > oneOf > item 0](#containers_items_livenessProbe_httpGet_port_oneOf_i0) - [7.1.11.6.3.2. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > port > oneOf > item 1](#containers_items_livenessProbe_httpGet_port_oneOf_i1) - [7.1.11.6.4. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > scheme](#containers_items_livenessProbe_httpGet_scheme) - [7.1.11.6.5. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders](#containers_items_livenessProbe_httpGet_httpHeaders) - [7.1.11.6.5.1. SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items](#autogenerated_heading_12) - [7.1.11.6.5.1.1. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items > name](#containers_items_livenessProbe_httpGet_httpHeaders_items_name) - [7.1.11.6.5.1.2. PropertySFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items > value](#containers_items_livenessProbe_httpGet_httpHeaders_items_value) - [7.1.11.7. PropertySFH App Version Definition > containers > containers items > livenessProbe > initialDelaySeconds](#containers_items_livenessProbe_initialDelaySeconds) - [7.1.11.8. PropertySFH App Version Definition > containers > containers items > livenessProbe > periodSeconds](#containers_items_livenessProbe_periodSeconds) - [7.1.11.9. PropertySFH App Version Definition > containers > containers items > livenessProbe > successThreshold](#containers_items_livenessProbe_successThreshold) - [7.1.11.10. PropertySFH App Version Definition > containers > containers items > livenessProbe > tcpSocket](#containers_items_livenessProbe_tcpSocket) - [7.1.11.11. PropertySFH App Version Definition > containers > containers items > livenessProbe > timeoutSeconds](#containers_items_livenessProbe_timeoutSeconds) - [7.1.12. PropertySFH App Version Definition > containers > containers items > readinessProbe](#containers_items_readinessProbe) - [7.1.13. PropertySFH App Version Definition > containers > containers items > startupProbe](#containers_items_startupProbe) - [8. PropertySFH App Version Definition > workloadAttestation](#workloadAttestation) - [8.1. PropertySFH App Version Definition > workloadAttestation > enabled](#workloadAttestation_enabled) - [8.2. PropertySFH App Version Definition > workloadAttestation > incomingProxies](#workloadAttestation_incomingProxies) - [8.2.1. SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items](#autogenerated_heading_13) - [8.2.1.1. PropertySFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > sidecarPort](#workloadAttestation_incomingProxies_items_sidecarPort) - [8.2.1.2. PropertySFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > sidecarApp2AppPort](#workloadAttestation_incomingProxies_items_sidecarApp2AppPort) - [8.2.1.3. PropertySFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > targetContainerPort](#workloadAttestation_incomingProxies_items_targetContainerPort) - [8.2.1.4. PropertySFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > allowedAppIds](#workloadAttestation_incomingProxies_items_allowedAppIds) - [8.2.1.4.1. SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > allowedAppIds > allowedAppIds items](#autogenerated_heading_14) - [8.2.1.5. PropertySFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > tcp](#workloadAttestation_incomingProxies_items_tcp) - [8.3. PropertySFH App Version Definition > workloadAttestation > outgoingProxies](#workloadAttestation_outgoingProxies) - [8.3.1. SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items](#autogenerated_heading_15) - [8.3.1.1. PropertySFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > sidecarContainerPort](#workloadAttestation_outgoingProxies_items_sidecarContainerPort) - [8.3.1.2. PropertySFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetAddress](#workloadAttestation_outgoingProxies_items_targetAddress) - [8.3.1.3. PropertySFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetPort](#workloadAttestation_outgoingProxies_items_targetPort) - [8.3.1.4. PropertySFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetWorkloadId](#workloadAttestation_outgoingProxies_items_targetWorkloadId) - [8.3.1.5. PropertySFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > tcp](#workloadAttestation_outgoingProxies_items_tcp) - [9. PropertySFH App Version Definition > volumes](#volumes) - [9.1. SFH App Version Definition > volumes > volumes items](#autogenerated_heading_16) - [9.1.1. PropertySFH App Version Definition > volumes > volumes items > name](#volumes_items_name) - [9.1.2. PropertySFH App Version Definition > volumes > volumes items > capacity](#volumes_items_capacity) - [9.1.3. PropertySFH App Version Definition > volumes > volumes items > type](#volumes_items_type) - [10. PropertySFH App Version Definition > values](#values) - [10.1. SFH App Version Definition > values > values items](#autogenerated_heading_17) - [10.1.1. PropertySFH App Version Definition > values > values items > name](#values_items_name) - [10.1.2. PropertySFH App Version Definition > values > values items > value](#values_items_value) - [11. PropertySFH App Version Definition > development](#development) - [11.1. PropertySFH App Version Definition > development > enabled](#development_enabled) - [11.2. PropertySFH App Version Definition > development > nodeSelectorDisabled](#development_nodeSelectorDisabled) - [11.3. PropertySFH App Version Definition > development > overrideVolumesInValues`](#development_overrideVolumesInValues)

Title: SFH App Version Definition
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ definitionVersion No string No - The version of this definition.
- semver No string No - INTERNAL PROPERTY. Do not use. The semantic version for this AppDefinition.
- name No string No - INTERNAL PROPERTY. Do not use. The name of the app
- appId No number No - INTERNAL PROPERTY. Do not use. The id of the app in the management platform
- changelog No string No - INTERNAL PROPERTY. Do not use. A changelog for this AppDefinition
- metrics No boolean No - If true, Prometheus will scrape the metrics from all containers which expose a container Port with the name 'metrics'. This feature is not yet active
+ containers No array of object No - The list of containers, this app has.
- workloadAttestation No object No - -
- volumes No array of object No - -
- values No array of object No - Configuration values, that are later stored in the values.yaml of the helm chart. This can be used across the app definition. the values equiNo and nodeId are prefilled dynamically. Use this with the template syntax which is used in helm: e.g. in the environment '{{ .Values.nodeId | quote }}'
- development No object No - DO NOT USE THIS on the SFH Management Platform. Properties to use the appgenerator for intergation test environments.

1. Property SFH App Version Definition > definitionVersion🔗
Type string
Required Yes

Description: The version of this definition.

Example: 

"1.0.0"
Restrictions
Minimum ≥ 1
Maximum ≤ 1

2. Property SFH App Version Definition > semver🔗
Type string
Required No

Description: INTERNAL PROPERTY. Do not use. The semantic version for this AppDefinition.

Example: 

"1.0.0"
Restrictions
Min length 5
Max length 64
Must match regular expression ^(0\|[1-9]\d*).(0\|[1-9]\d*).(0\|[1-9]\d*)(?:-((?:0\|[1-9]\d*\|\d*[a-z-][0-9a-z-]*)(?:.(?:0\|[1-9]\d*\|\d*[a-z-][0-9a-z-]*))*))?(?:\+([0-9a-z-]+(?:.[0-9a-z-]+)*))?$ Test

3. Property SFH App Version Definition > name🔗
Type string
Required No

Description: INTERNAL PROPERTY. Do not use. The name of the app

Examples: 

"S"

"p"

"e"

"c"

"i"

"a"

"l"

"A"

"p"

"p"

4. Property SFH App Version Definition > appId🔗
Type number
Required No

Description: INTERNAL PROPERTY. Do not use. The id of the app in the management platform

Example: 

1

5. Property SFH App Version Definition > changelog🔗
Type string
Required No

Description: INTERNAL PROPERTY. Do not use. A changelog for this AppDefinition

6. Property SFH App Version Definition > metrics🔗
Type boolean
Required No

Description: If true, Prometheus will scrape the metrics from all containers which expose a container Port with the name 'metrics'. This feature is not yet active

7. Property SFH App Version Definition > containers🔗
Type array of object
Required Yes

Description: The list of containers, this app has.

Array restrictions
Min items 1
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
containers items -

7.1. SFH App Version Definition > containers > containers items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ image No string No - The image name, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename. Can include a subpath (bitnami/nginx)
+ tag No string No - The image`s tag, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename:tag. Please use versions and not generic tags like latest - although this works too
+ name No string No In #/$defs/DNS_LABEL The name for this container. Must be unique in the app
+ resources No object No - The limits and requests for the container. For hints see https://home.robusta.dev/blog/kubernetes-memory-limit/ and https://home.robusta.dev/blog/stop-using-cpu-limits/
- ports No array of object No - -
- volumeMounts No array of object No - -
- environment No array of object No - Environment variables for the container. Values can be used here e.g. equiNo or sfhId
- args No array of string No - The arguments for the container execution. Values can be used here e.g. equiNo or sfhId
- command No array of string No - Changes the containers entrypoint / command
- mountWorkloadAttestationPath No boolean No - If true, and if workloadAttestation is active in the app`s global workloadAttestation setting, the
- livenessProbe No object No In #/$defs/probe A probe exactly the same, as in a Kubernetes PodSpec
- readinessProbe No object No Same as livenessProbe A probe exactly the same, as in a Kubernetes PodSpec
- startupProbe No object No Same as livenessProbe A probe exactly the same, as in a Kubernetes PodSpec

7.1.1. Property SFH App Version Definition > containers > containers items > image🔗
Type string
Required Yes

Description: The image name, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename. Can include a subpath (bitnami/nginx)

Example: 

"nginx"
Restrictions
Must match regular expression ^[a-zA-Z0-9]{1}[a-zA-Z0-9-_./]*[a-zA-Z0-9]{1}$ Test

7.1.2. Property SFH App Version Definition > containers > containers items > tag🔗
Type string
Required Yes

Description: The image`s tag, how it was pushed to the SFH platforms harbor core.harbor.smartfactory.com/fancy-app-name-1/imagename:tag. Please use versions and not generic tags like latest - although this works too

Example: 

"1.0.0"
Restrictions
Max length 128
Must match regular expression ^[a-zA-Z0-9]{1}[a-zA-Z0-9-_./]*[a-zA-Z0-9]{1}$ Test

7.1.3. Property SFH App Version Definition > containers > containers items > name🔗
Type string
Required Yes
Defined in #/$defs/DNS_LABEL

Description: The name for this container. Must be unique in the app

Restrictions
Max length 63
Must match regular expression ^[a-z0-9]+(-*[a-z0-9])*$ Test

7.1.4. Property SFH App Version Definition > containers > containers items > resources🔗
Type object
Required Yes
Additional properties [Any type: allowed]

Description: The limits and requests for the container. For hints see https://home.robusta.dev/blog/kubernetes-memory-limit/ and https://home.robusta.dev/blog/stop-using-cpu-limits/

Property Pattern Type Deprecated Definition Title/Description
+ requests No object No In #/$defs/resourceRequests -
+ limits No object No In #/$defs/resourceLimits -
7.1.4.1. Property SFH App Version Definition > containers > containers items > resources > requests🔗
Type object
Required Yes
Additional properties [Not allowed]
Defined in #/$defs/resourceRequests
Property Pattern Type Deprecated Definition Title/Description
+ memory No string No - Requested memory as string including its unit. May be equal to memory limit. https://home.robusta.dev/blog/kubernetes-memory-limit/
+ cpu No string No - Requested share of CPU time. The container can get more CPU time, but minimal this time slices requested here are guaranteed. https://home.robusta.dev/blog/stop-using-cpu-limits/
7.1.4.1.1. Property SFH App Version Definition > containers > containers items > resources > requests > memory🔗
Type string
Required Yes

Description: Requested memory as string including its unit. May be equal to memory limit. https://home.robusta.dev/blog/kubernetes-memory-limit/

Example: 

"128M, 1G"
Restrictions
Must match regular expression ^[0-9]+(E\|P\|T\|G\|M\|k\|Ei\|Pi\|Ti\|Gi\|Mi\|Ki)$ Test
7.1.4.1.2. Property SFH App Version Definition > containers > containers items > resources > requests > cpu🔗
Type string
Required Yes

Description: Requested share of CPU time. The container can get more CPU time, but minimal this time slices requested here are guaranteed. https://home.robusta.dev/blog/stop-using-cpu-limits/

Examples: 

"1000m"

"100m"
Restrictions
Must match regular expression ^([0-9].[0-9]+\|[0-9]+m)$ Test
7.1.4.2. Property SFH App Version Definition > containers > containers items > resources > limits🔗
Type object
Required Yes
Additional properties [Not allowed]
Defined in #/$defs/resourceLimits
Property Pattern Type Deprecated Definition Title/Description
+ memory No string No - Limited memory as string including its unit.May be equal to requested memory. https://home.robusta.dev/blog/kubernetes-memory-limit/
+ cpu No string No - The max cpu time share your container can get. Can be left empty, if no reason for limiting exists. https://home.robusta.dev/blog/stop-using-cpu-limits/
7.1.4.2.1. Property SFH App Version Definition > containers > containers items > resources > limits > memory🔗
Type string
Required Yes

Description: Limited memory as string including its unit.May be equal to requested memory. https://home.robusta.dev/blog/kubernetes-memory-limit/

Example: 

"128M, 1G"
Restrictions
Must match regular expression ^[0-9]+(E\|P\|T\|G\|M\|k\|Ei\|Pi\|Ti\|Gi\|Mi\|Ki)$ Test
7.1.4.2.2. Property SFH App Version Definition > containers > containers items > resources > limits > cpu🔗
Type string
Required Yes

Description: The max cpu time share your container can get. Can be left empty, if no reason for limiting exists. https://home.robusta.dev/blog/stop-using-cpu-limits/

Examples: 

"1000m"

"100m"
Restrictions
Must match regular expression ^([0-9].[0-9]+\|[0-9]+m)$ Test

7.1.5. Property SFH App Version Definition > containers > containers items > ports🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
ports items -
7.1.5.1. SFH App Version Definition > containers > containers items > ports > ports items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ name No string No - The name of the port. Must be unique for the container.
+ containerPort No integer No - The port in the container
- hostPort No integer No - If set, the port is available globally at the SFHs network interface. Be sure, this app uses the host port exclusively
- service No object No - -
7.1.5.1.1. Property SFH App Version Definition > containers > containers items > ports > ports items > name🔗
Type string
Required Yes

Description: The name of the port. Must be unique for the container.

Examples: 

"api"

"http"
Restrictions
Must match regular expression [a-z0-9]([a-z0-9-]*[a-z0-9])* Test
7.1.5.1.2. Property SFH App Version Definition > containers > containers items > ports > ports items > containerPort🔗
Type integer
Required Yes

Description: The port in the container

Example: 

80
Restrictions
Minimum ≥ 1
Maximum ≤ 49151
7.1.5.1.3. Property SFH App Version Definition > containers > containers items > ports > ports items > hostPort🔗
Type integer
Required No

Description: If set, the port is available globally at the SFHs network interface. Be sure, this app uses the host port exclusively

Example: 

8080
Restrictions
Minimum ≥ 1
Maximum ≤ 49151
7.1.5.1.4. Property SFH App Version Definition > containers > containers items > ports > ports items > service🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ app2appPort No integer No - If set, this port is available to other applications on the SFH. Must be unique for this app. App2App is mandatory for all functions in the service object
- reverseProxy No object No - -
7.1.5.1.4.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > app2appPort🔗
Type integer
Required Yes

Description: If set, this port is available to other applications on the SFH. Must be unique for this app. App2App is mandatory for all functions in the service object

Example: 

80
Restrictions
Minimum ≥ 1
Maximum ≤ 49151
7.1.5.1.4.2. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
- httpProxy No boolean No - If true, this port is available via HTTP on the SFH`s reverseProxy
- httpsProxy No boolean No - If true, this port is available via HTTPS on the SFH`s reverseProxy
- routerPath No string No - defines the path prefix, which routes to this port on the SFH`s reverseProxy. Is usable with the SFHs DNS name or IP Address
- subDomain No string No - defines the subdomain, which routes to this port on the SFH`s reverseProxy. Is usable exclusively with the SFHs DNS name
- stripPrefix No boolean No - If true, the routerPath will be stripped from requests by the reverse proxy
- authentication No object No - Configures the authentication methods of the reverse proxy
7.1.5.1.4.2.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > httpProxy🔗
Type boolean
Required No

Description: If true, this port is available via HTTP on the SFH`s reverseProxy

Examples: 

true

false
7.1.5.1.4.2.2. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > httpsProxy🔗
Type boolean
Required No

Description: If true, this port is available via HTTPS on the SFH`s reverseProxy

Examples: 

true

false
7.1.5.1.4.2.3. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > routerPath🔗
Type string
Required No

Description: defines the path prefix, which routes to this port on the SFH`s reverseProxy. Is usable with the SFHs DNS name or IP Address

Example: 

"punchpersistence"
Restrictions
Must match regular expression ^[a-zA-Z0-9][a-zA-Z0-9-_]*(/[a-zA-Z0-9-_]+)*$ Test
7.1.5.1.4.2.4. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > subDomain🔗
Type string
Required No

Description: defines the subdomain, which routes to this port on the SFH`s reverseProxy. Is usable exclusively with the SFHs DNS name

Example: 

"punchpersistence"
Restrictions
Must match regular expression ^[a-zA-Z0-9][a-zA-Z0-9-_]*(.[a-zA-Z0-9-_]+)*$ Test
7.1.5.1.4.2.5. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > stripPrefix🔗
Type boolean
Required No

Description: If true, the routerPath will be stripped from requests by the reverse proxy

Examples: 

true

false
7.1.5.1.4.2.6. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication🔗
Type object
Required No
Additional properties [Not allowed]

Description: Configures the authentication methods of the reverse proxy

Property Pattern Type Deprecated Definition Title/Description
- verifyClientCertificate No object No - Configures the client certificate based authentication method of the reverse proxy
7.1.5.1.4.2.6.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate🔗
Type object
Required No
Additional properties [Any type: allowed]

Description: Configures the client certificate based authentication method of the reverse proxy

Property Pattern Type Deprecated Definition Title/Description
+ caCertificates No string No - A string with the CA Certificates, the client certificates have to be signed with. Format: Take the CA certificates ("-----BEGIN CERTIFICATE-----..."), concat them, encode everything base64.
+ rejectInvalid No boolean No - A setting for the reverse proxy client authentication. If true, only requests from clients, which can present a valid client certificate signed by a CA mentioned in caCertificates, are passed. If false, every request is passed to the target and only the headers in the request (X-ssl-...) give a hint, if the client was authenticated.
7.1.5.1.4.2.6.1.1. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate > caCertificates🔗
Type string
Required Yes

Description: A string with the CA Certificates, the client certificates have to be signed with. Format: Take the CA certificates ("-----BEGIN CERTIFICATE-----..."), concat them, encode everything base64.

Example: 

"LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUV0RENDQXB3Q0NRQ0lG..."
Restrictions
Must match regular expression ^[A-Za-z0-9+/=]*$ Test
7.1.5.1.4.2.6.1.2. Property SFH App Version Definition > containers > containers items > ports > ports items > service > reverseProxy > authentication > verifyClientCertificate > rejectInvalid🔗
Type boolean
Required Yes

Description: A setting for the reverse proxy client authentication. If true, only requests from clients, which can present a valid client certificate signed by a CA mentioned in caCertificates, are passed. If false, every request is passed to the target and only the headers in the request (X-ssl-...) give a hint, if the client was authenticated.

7.1.6. Property SFH App Version Definition > containers > containers items > volumeMounts🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
volumeMounts items -
7.1.6.1. SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ mountPath No string No In #/$defs/unix_path -
+ name No string No Same as name The volume's name, as specified in the volumes section of the AppDefinition
- subPath No string No Same as mountPath An optional subPath in the volume, which should be mounted
7.1.6.1.1. Property SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > mountPath🔗
Type string
Required Yes
Defined in #/$defs/unix_path
Restrictions
Must match regular expression ^[0-9a-zA-Z]*([0-9a-zA-Z-_]*)*(/[0-9a-zA-Z]*([0-9a-zA-Z-_]*)*)*[0-9a-zA-Z]$ Test
7.1.6.1.2. Property SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > name🔗
Type string
Required Yes
Same definition as name

Description: The volume's name, as specified in the volumes section of the AppDefinition

7.1.6.1.3. Property SFH App Version Definition > containers > containers items > volumeMounts > volumeMounts items > subPath🔗
Type string
Required No
Same definition as mountPath

Description: An optional subPath in the volume, which should be mounted

7.1.7. Property SFH App Version Definition > containers > containers items > environment🔗
Type array of object
Required No

Description: Environment variables for the container. Values can be used here e.g. equiNo or sfhId

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
environment items -
7.1.7.1. SFH App Version Definition > containers > containers items > environment > environment items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ name No string No - the environment variables name
+ value No string No - the environment variables value. For values use the helm syntax: {{ .Values.equiNo }}
7.1.7.1.1. Property SFH App Version Definition > containers > containers items > environment > environment items > name🔗
Type string
Required Yes

Description: the environment variables name

Example: 

"EQUI_NO"
Restrictions
Must match regular expression ^([a-zA-Z]\|_[a-zA-Z]){1}[a-zA-Z0-9_]* Test
7.1.7.1.2. Property SFH App Version Definition > containers > containers items > environment > environment items > value🔗
Type string
Required Yes

Description: the environment variables value. For values use the helm syntax: {{ .Values.equiNo }}

Example: 

"EQUI_NO"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

7.1.8. Property SFH App Version Definition > containers > containers items > args🔗
Type array of string
Required No

Description: The arguments for the container execution. Values can be used here e.g. equiNo or sfhId

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
args items the argument. For values use the helm syntax: {{ .Values.equiNo }}
7.1.8.1. SFH App Version Definition > containers > containers items > args > args items🔗
Type string
Required No

Description: the argument. For values use the helm syntax: {{ .Values.equiNo }}

Examples: 

"-c"

"while true; do curl -m 8 -sS localhost:3001; sleep 10;done"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

7.1.9. Property SFH App Version Definition > containers > containers items > command🔗
Type array of string
Required No

Description: Changes the containers entrypoint / command

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
command items -
7.1.9.1. SFH App Version Definition > containers > containers items > command > command items🔗
Type string
Required No

Example: 

"/bin/sh"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

7.1.10. Property SFH App Version Definition > containers > containers items > mountWorkloadAttestationPath🔗
Type boolean
Required No

Description: If true, and if workloadAttestation is active in the app`s global workloadAttestation setting, the

7.1.11. Property SFH App Version Definition > containers > containers items > livenessProbe🔗
Type combining
Required No
Additional properties [Not allowed]
Defined in #/$defs/probe

Description: A probe exactly the same, as in a Kubernetes PodSpec

Property Pattern Type Deprecated Definition Title/Description
- exec No object No - -
- failureThreshold No integer No - -
- httpGet No object No - -
- initialDelaySeconds No integer No - -
- periodSeconds No integer No - -
- successThreshold No integer No - -
- tcpSocket No object No - -
- timeoutSeconds No integer No - -
One of(Option)
item 0
item 1
item 2
7.1.11.1. Property SFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 0🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.1.1. The following properties are required🔗
  • exec
7.1.11.2. Property SFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 1🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.2.1. The following properties are required🔗
  • httpGet
7.1.11.3. Property SFH App Version Definition > containers > containers items > livenessProbe > oneOf > item 2🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.3.1. The following properties are required🔗
  • tcpSocket
7.1.11.4. Property SFH App Version Definition > containers > containers items > livenessProbe > exec🔗
Type object
Required No
Additional properties [Any type: allowed]
Property Pattern Type Deprecated Definition Title/Description
- command No array of string No - -
- required No object No - -
7.1.11.4.1. Property SFH App Version Definition > containers > containers items > livenessProbe > exec > command🔗
Type array of string
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
command items -
7.1.11.4.1.1. SFH App Version Definition > containers > containers items > livenessProbe > exec > command > command items🔗
Type string
Required No
7.1.11.4.2. Property SFH App Version Definition > containers > containers items > livenessProbe > exec > required🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.5. Property SFH App Version Definition > containers > containers items > livenessProbe > failureThreshold🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.6. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet🔗
Type object
Required No
Additional properties [Any type: allowed]
Property Pattern Type Deprecated Definition Title/Description
- host No string No - -
- path No string No - -
- port No Combination No - -
- scheme No string No - -
- httpHeaders No array of object No - -
7.1.11.6.1. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > host🔗
Type string
Required No
7.1.11.6.2. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > path🔗
Type string
Required No
7.1.11.6.3. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > port🔗
Type combining
Required No
Additional properties [Any type: allowed]
One of(Option)
item 0
item 1
7.1.11.6.3.1. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > port > oneOf > item 0🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.6.3.2. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > port > oneOf > item 1🔗
Type string
Required No
7.1.11.6.4. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > scheme🔗
Type string
Required No
7.1.11.6.5. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
httpHeaders items -
7.1.11.6.5.1. SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items🔗
Type object
Required No
Additional properties [Any type: allowed]
Property Pattern Type Deprecated Definition Title/Description
- name No string No - -
- value No string No - -
7.1.11.6.5.1.1. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items > name🔗
Type string
Required No
7.1.11.6.5.1.2. Property SFH App Version Definition > containers > containers items > livenessProbe > httpGet > httpHeaders > httpHeaders items > value🔗
Type string
Required No
7.1.11.7. Property SFH App Version Definition > containers > containers items > livenessProbe > initialDelaySeconds🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.8. Property SFH App Version Definition > containers > containers items > livenessProbe > periodSeconds🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.9. Property SFH App Version Definition > containers > containers items > livenessProbe > successThreshold🔗
Type integer
Required No
Restrictions
Minimum ≥ 1
7.1.11.10. Property SFH App Version Definition > containers > containers items > livenessProbe > tcpSocket🔗
Type object
Required No
Additional properties [Any type: allowed]
7.1.11.11. Property SFH App Version Definition > containers > containers items > livenessProbe > timeoutSeconds🔗
Type integer
Required No
Restrictions
Minimum ≥ 1

7.1.12. Property SFH App Version Definition > containers > containers items > readinessProbe🔗
Type combining
Required No
Additional properties [Not allowed]
Same definition as livenessProbe

Description: A probe exactly the same, as in a Kubernetes PodSpec

7.1.13. Property SFH App Version Definition > containers > containers items > startupProbe🔗
Type combining
Required No
Additional properties [Not allowed]
Same definition as livenessProbe

Description: A probe exactly the same, as in a Kubernetes PodSpec

8. Property SFH App Version Definition > workloadAttestation🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ enabled No boolean No - Must be true, to use any SPIFFE related features in the app
- incomingProxies No array of object No - -
- outgoingProxies No array of object No - -

8.1. Property SFH App Version Definition > workloadAttestation > enabled🔗
Type boolean
Required Yes

Description: Must be true, to use any SPIFFE related features in the app

8.2. Property SFH App Version Definition > workloadAttestation > incomingProxies🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
incomingProxies items Creates a sidecar which terminates secure app-2-app communication

8.2.1. SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items🔗
Type object
Required No
Additional properties [Not allowed]

Description: Creates a sidecar which terminates secure app-2-app communication

Property Pattern Type Deprecated Definition Title/Description
+ sidecarPort No integer No - The port, the sidecar container listens to
+ sidecarApp2AppPort No integer No - The port, under which the sidecar is available for other apps
+ targetContainerPort No integer No - The port of the server in the app, the incoming Proxy should upstream to
- allowedAppIds No array of number No - If defined, restricts the usage of the proxied service to apps with the listed appIds
- tcp No boolean No - -
8.2.1.1. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > sidecarPort🔗
Type integer
Required Yes

Description: The port, the sidecar container listens to

8.2.1.2. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > sidecarApp2AppPort🔗
Type integer
Required Yes

Description: The port, under which the sidecar is available for other apps

8.2.1.3. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > targetContainerPort🔗
Type integer
Required Yes

Description: The port of the server in the app, the incoming Proxy should upstream to

8.2.1.4. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > allowedAppIds🔗
Type array of number
Required No

Description: If defined, restricts the usage of the proxied service to apps with the listed appIds

Array restrictions
Min items 1
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
allowedAppIds items -
8.2.1.4.1. SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > allowedAppIds > allowedAppIds items🔗
Type number
Required No
8.2.1.5. Property SFH App Version Definition > workloadAttestation > incomingProxies > incomingProxies items > tcp🔗
Type boolean
Required No

8.3. Property SFH App Version Definition > workloadAttestation > outgoingProxies🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
outgoingProxies items Creates a sidecar which initiates/ proxies secure app-2-app communication

8.3.1. SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items🔗
Type object
Required No
Additional properties [Not allowed]

Description: Creates a sidecar which initiates/ proxies secure app-2-app communication

Property Pattern Type Deprecated Definition Title/Description
+ sidecarContainerPort No integer No - The port, the sidecar container listens to. The client in your application container addresses 127.0.0.1:SIDECARCONTAINERPORT
+ targetAddress No string No - The target address of the app, that offers app2pp communication via workloadAttestation proxy
+ targetPort No integer No - The target port of the app, that offers app2pp communication via workloadAttestation proxy
+ targetWorkloadId No string No - The workload id of the app, that offers app2pp communication via workloadAttestation proxy, is normally exactly the same as the targetAddress
- tcp No boolean No - Defaults to false. If true, not http is proxied, but raw tcp sockets are mTLS encapsulated
8.3.1.1. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > sidecarContainerPort🔗
Type integer
Required Yes

Description: The port, the sidecar container listens to. The client in your application container addresses 127.0.0.1:SIDECARCONTAINERPORT

8.3.1.2. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetAddress🔗
Type string
Required Yes

Description: The target address of the app, that offers app2pp communication via workloadAttestation proxy

Example: 

"inquisitive-gray-hyena-21"
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

8.3.1.3. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetPort🔗
Type integer
Required Yes

Description: The target port of the app, that offers app2pp communication via workloadAttestation proxy

8.3.1.4. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > targetWorkloadId🔗
Type string
Required Yes

Description: The workload id of the app, that offers app2pp communication via workloadAttestation proxy, is normally exactly the same as the targetAddress

Restrictions
Must match regular expression ```^[^

"]*$``` Test |

8.3.1.5. Property SFH App Version Definition > workloadAttestation > outgoingProxies > outgoingProxies items > tcp🔗
Type boolean
Required No

Description: Defaults to false. If true, not http is proxied, but raw tcp sockets are mTLS encapsulated

9. Property SFH App Version Definition > volumes🔗
Type array of object
Required No
Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
volumes items A volume, that can be used between the app's containers.

9.1. SFH App Version Definition > volumes > volumes items🔗
Type object
Required No
Additional properties [Not allowed]

Description: A volume, that can be used between the app`s containers.

Property Pattern Type Deprecated Definition Title/Description
+ name No string No Same as name The name of the volume, as it can be used in container`s volumeMounts
- capacity No string No - The maximal capacity of this volume
+ type No enum (of string) No - The volume type. Persistent for persistent storage. emptyDir for an oblivious storage, that can be used to share data between containers of the app, but that does not persist

9.1.1. Property SFH App Version Definition > volumes > volumes items > name🔗
Type string
Required Yes
Same definition as name

Description: The name of the volume, as it can be used in container`s volumeMounts

9.1.2. Property SFH App Version Definition > volumes > volumes items > capacity🔗
Type string
Required No

Description: The maximal capacity of this volume

Restrictions
Must match regular expression ^[0-9]+(E\|P\|T\|G\|M\|k\|Ei\|Pi\|Ti\|Gi\|Mi\|Ki)$ Test

9.1.3. Property SFH App Version Definition > volumes > volumes items > type🔗
Type enum (of string)
Required Yes

Description: The volume type. Persistent for persistent storage. emptyDir for an oblivious storage, that can be used to share data between containers of the app, but that does not persist

Must be one of: * "persistent" * "emptyDir"

10. Property SFH App Version Definition > values🔗
Type array of object
Required No

Description: Configuration values, that are later stored in the values.yaml of the helm chart. This can be used across the app definition. the values equiNo and nodeId are prefilled dynamically. Use this with the template syntax which is used in helm: e.g. in the environment '{{ .Values.nodeId | quote }}'

Array restrictions
Min items N/A
Max items N/A
Items unicity False
Additional items False
Tuple validation See below
Each item of this array must be Description
values items -

10.1. SFH App Version Definition > values > values items🔗
Type object
Required No
Additional properties [Not allowed]
Property Pattern Type Deprecated Definition Title/Description
+ name No string No - -
+ value No string No - -

10.1.1. Property SFH App Version Definition > values > values items > name🔗
Type string
Required Yes
Restrictions
Must match regular expression ^[a-zA-Z]+[a-zA-Z0-9]*$ Test

10.1.2. Property SFH App Version Definition > values > values items > value🔗
Type string
Required Yes
Restrictions
Must match regular expression ```^[^

"]*$``` Test |

11. Property SFH App Version Definition > development🔗
Type object
Required No
Additional properties [Not allowed]

Description: DO NOT USE THIS on the SFH Management Platform. Properties to use the appgenerator for intergation test environments.

Property Pattern Type Deprecated Definition Title/Description
- enabled No boolean No - -
- nodeSelectorDisabled No boolean No - -
- overrideVolumesInValues No boolean No - -

11.1. Property SFH App Version Definition > development > enabled🔗
Type boolean
Required No

11.2. Property SFH App Version Definition > development > nodeSelectorDisabled🔗
Type boolean
Required No

11.3. Property SFH App Version Definition > development > overrideVolumesInValues🔗
Type boolean
Required No

Generated using json-schema-for-humans on 2022-11-11 at 07:14:30 +0000