AtlasProject Custom Resource

string

Name is the name of the Project that is created in Atlas by the Operator if it doesn't exist yet. The name length must not exceed 64 characters. The name must contain only letters, numbers, spaces, dashes, and underscores. Validations:

• self == oldSelf: Name cannot be modified after project creation

true

boolean

AlertConfigurationSyncEnabled is a flag that enables/disables Alert Configurations sync for the current Project. If true - project alert configurations will be synced according to AlertConfigurations. If not - alert configurations will not be modified by the operator. They can be managed through the API, CLI, and UI.

false

[]object

AlertConfiguration is a list of Alert Configurations configured for the current Project. If you use this setting, you must also set spec.``alertConfigurationSyncEnabled`` to true for Atlas Kubernetes Operator to modify project alert configurations. If you omit or leave this setting empty, Atlas Kubernetes Operator doesn't alter the project's alert configurations. If creating a project, Atlas applies the default project alert configurations.

false

object

Auditing represents MongoDB Maintenance Windows.

false

object

BackupCompliancePolicyRef is a reference to the backup compliance custom resource.

false

[]object

CloudProviderAccessRoles is a list of Cloud Provider Access Roles configured for the current Project. Deprecated: This configuration was deprecated in favor of CloudProviderIntegrations

false

[]object

CloudProviderIntegrations is a list of Cloud Provider Integration configured for the current Project.

false

object

ConnectionSecret is the name of the Kubernetes Secret which contains the information about the way to connect to Atlas (organization ID, API keys). The default Operator connection configuration will be used if not provided.

false

[]object

CustomRoles lets you create and change custom roles in your cluster. Use custom roles to specify custom sets of actions that the Atlas built-in roles can't describe. Deprecated: Migrate to the AtlasCustomRoles custom resource in accordance with the migration guide at https://www.mongodb.com/docs/atlas/operator/current/migrate-parameter-to-resource/#std-label-ak8so-migrate-ptr

false

object

EncryptionAtRest allows to set encryption for AWS, Azure and GCP providers.

false

[]object

Integrations is a list of MongoDB Atlas integrations for the project. Deprecated: Migrate to the AtlasThirdPartyIntegration custom resource in accordance with the migration guide at https://www.mongodb.com/docs/atlas/operator/current/migrate-parameter-to-resource/#std-label-ak8so-migrate-ptr

false

object

MaintenanceWindow allows to specify a preferred time in the week to run maintenance operations. See more information at https://www.mongodb.com/docs/atlas/reference/api/maintenance-windows/

false

[]object

NetworkPeers is a list of Network Peers configured for the current Project. Deprecated: Migrate to the AtlasNetworkPeering and AtlasNetworkContainer custom resources in accordance with the migration guide at https://www.mongodb.com/docs/atlas/operator/current/migrate-parameter-to-resource/#std-label-ak8so-migrate-ptr

false

[]object

PrivateEndpoints is a list of Private Endpoints configured for the current Project. Deprecated: Migrate to the AtlasPrivateEndpoint Custom Resource in accordance with the migration guide at https://www.mongodb.com/docs/atlas/operator/current/migrate-parameter-to-resource/#std-label-ak8so-migrate-ptr

false

[]object

ProjectIPAccessList allows the use of the IP Access List for a Project. See more information at https://docs.atlas.mongodb.com/reference/api/ip-access-list/add-entries-to-access-list/ Deprecated: Migrate to the AtlasIPAccessList Custom Resource in accordance with the migration guide at https://www.mongodb.com/docs/atlas/operator/current/migrate-parameter-to-resource/#std-label-ak8so-migrate-ptr

false

enum

RegionUsageRestrictions designate the project's AWS region when using Atlas for Government. This parameter should not be used with commercial Atlas. In Atlas for Government, not setting this field (defaulting to NONE) means the project is restricted to COMMERCIAL_FEDRAMP_REGIONS_ONLY. Enum: NONE, GOV_REGIONS_ONLY, COMMERCIAL_FEDRAMP_REGIONS_ONLY Default: NONE

false

object

Settings allows the configuration of the Project Settings.

false

[]object

Teams enable you to grant project access roles to multiple users.

false

boolean

Flag that indicates whether Atlas Kubernetes Operator creates a project with the default alert configurations. If you use this setting, you must also set spec.``alertConfigurationSyncEnabled`` to true for Atlas Kubernetes Operator to modify project alert configurations. If you set this parameter to false when you create a project, Atlas doesn't add the default alert configurations to your project. This setting has no effect on existing projects. Default: true

false

object

X509CertRef is a reference to the Kubernetes Secret which contains PEM-encoded CA certificate. Atlas Kubernetes Operator watches secrets only with the label atlas.mongodb.com/type=credentials to avoid watching unnecessary secrets.

false

boolean

If omitted, the configuration is disabled.

false

string

The type of event that will trigger an alert.

false

[]object

You can filter using the matchers array only when the EventTypeName specifies an event for a host, replica set, or sharded cluster.

false

object

MetricThreshold causes an alert to be triggered.

false

[]object

Notifications are sending when an alert condition is detected.

false

enum

SeverityOverride optionally overrides the default severity level for an alert. Enum: INFO, WARNING, ERROR, CRITICAL

false

object

Threshold causes an alert to be triggered.

false

string

Threshold value outside which an alert will be triggered.

true

string

Name of the metric to check.

false

string

This must be set to AVERAGE. Atlas computes the current metric value as an average.

false

string

Operator to apply when checking the current metric value against the threshold value.

false

string

The units for the threshold value.

false

object

Secret containing a Slack API token or Bot token. Populated for the SLACK notifications type. If the token later becomes invalid, Atlas sends an email to the project owner and eventually removes the token.

false

string

Slack channel name. Populated for the SLACK notifications type.

false

object

Secret containing a Datadog API Key. Found in the Datadog dashboard. Populated for the DATADOG notifications type.

false

string

Region that indicates which API URL to use.

false

integer

Number of minutes to wait after an alert condition is detected before sending out the first notification.

false

string

Email address to which alert notifications are sent. Populated for the EMAIL notifications type.

false

boolean

Flag indicating if email notifications should be sent. Populated for ORG, GROUP, and USER notifications types.

false

string

Flowdock flow name in lower-case letters.

false

object

The Flowdock personal API token. Populated for the FLOWDOCK notifications type. If the token later becomes invalid, Atlas sends an email to the project owner and eventually removes the token.

false

integer

Number of minutes to wait between successive notifications for unacknowledged alerts that are not resolved.

false

string

Mobile number to which alert notifications are sent. Populated for the SMS notifications type.

false

object

OpsGenie API Key. Populated for the OPS_GENIE notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the token.

false

string

Region that indicates which API URL to use.

false

string

Flowdock organization name in lower-case letters. This is the name that appears after www.flowdock.com/app/ in the URL string. Populated for the FLOWDOCK notifications type.

false

[]string

The following roles grant privileges within a project.

false

object

PagerDuty service key. Populated for the PAGER_DUTY notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the key.

false

boolean

Flag indicating if text message notifications should be sent. Populated for ORG, GROUP, and USER notifications types.

false

string

Unique identifier of a team.

false

string

Label for the team that receives this notification.

false

string

Type of alert notification.

false

string

Name of the Atlas user to which to send notifications. Only a user in the project that owns the alert configuration is allowed here. Populated for the USER notifications type.

false

object

Secret containing a VictorOps API key and Routing key. Populated for the VICTOR_OPS notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the key.

false

string

The Azure environment where the Azure account credentials reside. Valid values are the following: AZURE, AZURE_CHINA, AZURE_GERMANY

false

string

The Client ID, also known as the application ID, for an Azure application associated with the Azure AD tenant.

false

boolean

Specifies whether Encryption at Rest is enabled for an Atlas project. To disable Encryption at Rest, pass only this parameter with a value of false. When you disable Encryption at Rest, Atlas also removes the configuration details.

false

string

The name of the Azure Resource group that contains an Azure Key Vault.

false

object

A reference to as Secret containing the SubscriptionID, KeyVaultName, KeyIdentifier, Secret fields

false

string

The unique identifier for an Azure AD tenant within an Azure subscription.

false

string

Unique 40-hexadecimal digit string that identifies your New Relic account.

false

object

Reference to a Kubernetes Secret containing your API Key for Datadog, OpsGenie or Victor Ops.

false

object

Reference to a Kubernetes Secret containing the Key that allows Atlas to access your Slack account.

false

string

Name of the Slack channel to which Atlas sends alert notifications.

false

boolean

Flag that indicates whether someone has activated the Prometheus integration.

false

string

DEPRECATED: Flowdock flow name. This field has been removed from Atlas, and has no effect.

false

object

Reference to a Kubernetes Secret containing your Unique 40-hexadecimal digit string that identifies your New Relic license.

false

string

Endpoint web address of the Microsoft Teams webhook to which Atlas sends notifications.

false

string

false

string

DEPRECATED: Flowdock organization name. This field has been removed from Atlas, and has no effect.

false

object

Reference to a Kubernetes Secret containing the password to allow Atlas to access your Prometheus account.

false

object

Reference to a Kubernetes Secret containing the query key associated with your New Relic account.

false

string

Region code indicating which regional API Atlas uses to access PagerDuty, Datadog, or OpsGenie.

false

object

Reference to a Kubernetes Secret containing the Routing key associated with your Splunk On-Call account. Used for Victor Ops.

false

string

false

object

Reference to a Kubernetes Secret containing the secret for your Webhook.

false

string

Desired method to discover the Prometheus service.

false

object

Reference to a Kubernetes Secret containing the service key associated with your PagerDuty account.

false

string

Human-readable label that identifies your Slack team.

false

enum

Third Party Integration type such as Slack, New Relic, etc. Each integration type requires a distinct set of configuration fields. For example, if you set type to DATADOG, you must configure only datadog subfields. Enum: PAGER_DUTY, SLACK, DATADOG, NEW_RELIC, OPS_GENIE, VICTOR_OPS, FLOWDOCK, WEBHOOK, MICROSOFT_TEAMS, PROMETHEUS

false

string

Endpoint web address to which Atlas sends notifications. Used for Webhooks.

false

string

Human-readable label that identifies your Prometheus incoming webhook.

false

object

Reference to a Kubernetes Secret containing the insert key associated with your New Relic account.

false

boolean

Flag indicating whether any scheduled project maintenance should be deferred automatically for one week.

false

integer

Day of the week when you would like the maintenance window to start as a 1-based integer. Sunday 1, Monday 2, Tuesday 3, Wednesday 4, Thursday 5, Friday 6, Saturday 7. Minimum: 1 Maximum: 7

false

boolean

Flag indicating whether the next scheduled project maintenance should be deferred for one week. Cannot be specified if startASAP is true

false

integer

Hour of the day when you would like the maintenance window to start. This parameter uses the 24-hour clock, where midnight is 0, noon is 12. Minimum: 0 Maximum: 23

false

boolean

Flag indicating whether project maintenance has been directed to start immediately. Cannot be specified if defer is true

false

string

AccepterRegionName is the provider region name of user's VPC.

false

string

Atlas CIDR. It needs to be set if ContainerID is not set.

false

string

AccountID of the user's VPC.

false

string

AzureDirectoryID is the unique identifier for an Azure AD directory.

false

string

AzureSubscriptionID is the unique identifier of the Azure subscription in which the VNet resides.

false

string

ID of the network peer container. If not set, operator will create a new container with ContainerRegion and AtlasCIDRBlock input.

false

string

ContainerRegion is the provider region name of Atlas network peer container. If not set, AccepterRegionName is used.

false

string

User GCP Project ID. Its applicable only for GCP.

false

string

GCP Network Peer Name. Its applicable only for GCP.

false

string

ProviderName is the name of the provider. If not set, it will be set to "AWS".

false

string

ResourceGroupName is the name of your Azure resource group.

false

string

User VPC CIDR.

false

string

VNetName is name of your Azure VNet. Its applicable only for Azure.

false

string

AWS VPC ID.

false

enum

Cloud provider for which you want to retrieve a private endpoint service. Atlas accepts AWS, GCP, or AZURE. Enum: AWS, GCP, AZURE, TENANT

true

string

Cloud provider region for which you want to create the private endpoint service.

true

string

Unique identifier of the endpoint group. The endpoint group encompasses all the endpoints that you created in Google Cloud.

false

[]object

Collection of individual private endpoints that comprise your endpoint group.

false

string

Unique identifier of the Google Cloud project in which you created your endpoints.

false

string

Unique identifier of the private endpoint you created in your AWS VPC or Azure VNet.

false

string

Private IP address of the private endpoint network interface you created in your Azure VNet.

false

string

Unique identifier of AWS security group in this access list entry.

false

string

Range of IP addresses in CIDR notation in this access list entry.

false

string

Comment associated with this access list entry.

false

string

Timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the temporary access list entry.

false

string

Entry using an IP address in this access list entry.

false

boolean

Flag that indicates whether to collect database-specific metrics for the specified project.

false

boolean

Flag that indicates whether to enable the Data Explorer for the specified project.

false

boolean

Flag that indicates whether to enable extended storage sizes for the specified project.

false

boolean

Flag that indicates whether to enable the Performance Advisor and Profiler for the specified project.

false

boolean

Flag that indicates whether to enable the Real Time Performance Panel for the specified project.

false

boolean

Flag that indicates whether to enable the Schema Advisor for the specified project.

false

[]object

Conditions is the list of statuses showing the current state of the Atlas Custom Resource

true

[]object

AlertConfigurations contains a list of alert configuration statuses

false

[]string

AuthModes contains a list of configured authentication modes "SCRAM" is default authentication method and requires a password for each user "X509" signifies that self-managed X.509 authentication is configured

false

[]object

CloudProviderIntegrations contains a list of configured cloud provider access roles. AWS support only

false

[]object

CustomRoles contains a list of custom roles statuses

false

[]object

The list of IP Access List entries that are expired due to 'deleteAfterDate' being less than the current date. Note, that this field is updated by the Atlas Operator only after specification changes

false

string

The ID of the Atlas Project

false

[]object

The list of network peers that are configured for current project

false

integer

ObservedGeneration indicates the generation of the resource specification of which the Atlas Operator is aware. The Atlas Operator updates this field to the value of 'metadata.generation' as soon as it starts reconciliation of the resource. Format: int64

false

[]object

The list of private endpoints configured for current project

false

object

Prometheus contains the status for Prometheus integration including the prometheusDiscoveryURL

false

[]object

Teams contains a list of teams assignment statuses

false

string

Status of the condition; one of True, False, Unknown.

true

string

Type of Atlas Custom Resource condition.

true

string

Last time the condition transitioned from one status to another. Represented in ISO 8601 format. Format: date-time

false

string

A message providing details about the transition.

false

string

The reason for the condition's last transition.

false

string

The date through which the alert has been acknowledged. Will not be present if the alert has never been acknowledged.

false

string

The comment left by the user who acknowledged the alert. Will not be present if the alert has never been acknowledged.

false

string

The username of the user who acknowledged the alert. Will not be present if the alert has never been acknowledged.

false

string

ID of the alert configuration that triggered this alert.

false

string

The ID of the cluster to which this alert applies. Only present for alerts of type BACKUP, REPLICA_SET, and CLUSTER.

false

string

The name the cluster to which this alert applies. Only present for alerts of type BACKUP, REPLICA_SET, and CLUSTER.

false

string

Timestamp in ISO 8601 date and time format in UTC when this alert configuration was created.

false

object

CurrentValue represents current value of the metric that triggered the alert. Only present for alerts of type HOST_METRIC.

false

boolean

If omitted, the configuration is disabled.

false

string

ErrorMessage is massage if the alert configuration is in an incorrect state.

false

string

The type of event that will trigger an alert.

false

string

Unique identifier of the project that owns this alert configuration.

false

string

ID of the host to which the metric pertains. Only present for alerts of type HOST, HOST_METRIC, and REPLICA_SET.

false

string

The hostname and port of each host to which the alert applies. Only present for alerts of type HOST, HOST_METRIC, and REPLICA_SET.

false

string

Unique identifier.

false

string

When the last notification was sent for this alert. Only present if notifications have been sent.

false

[]object

You can filter using the matchers array only when the EventTypeName specifies an event for a host, replica set, or sharded cluster.

false

string

The name of the measurement whose value went outside the threshold. Only present if eventTypeName is set to OUTSIDE_METRIC_THRESHOLD.

false

object

MetricThreshold causes an alert to be triggered.

false

[]object

Notifications are sending when an alert condition is detected.

false

string

Name of the replica set. Only present for alerts of type HOST, HOST_METRIC, BACKUP, and REPLICA_SET.

false

string

When the alert was closed. Only present if the status is CLOSED.

false

string

Severity of the alert.

false

string

For alerts of the type BACKUP, the type of server being backed up.

false

string

The current state of the alert. Possible values are: TRACKING, OPEN, CLOSED, CANCELED

false

object

Threshold causes an alert to be triggered.

false

string

Timestamp in ISO 8601 date and time format in UTC when this alert configuration was last updated.

false

string

Threshold value outside which an alert will be triggered.

true

string

Name of the metric to check.

false

string

This must be set to AVERAGE. Atlas computes the current metric value as an average.

false

string

Operator to apply when checking the current metric value against the threshold value.

false

string

The units for the threshold value.

false

string

Slack API token or Bot token. Populated for the SLACK notifications type. If the token later becomes invalid, Atlas sends an email to the project owner and eventually removes the token.

false

string

Slack channel name. Populated for the SLACK notifications type.

false

string

Datadog API Key. Found in the Datadog dashboard. Populated for the DATADOG notifications type.

false

string

Region that indicates which API URL to use

false

integer

Number of minutes to wait after an alert condition is detected before sending out the first notification.

false

string

Email address to which alert notifications are sent. Populated for the EMAIL notifications type.

false

boolean

Flag indicating if email notifications should be sent. Populated for ORG, GROUP, and USER notifications types.

false

string

Flowdock flow namse in lower-case letters.

false

string

The Flowdock personal API token. Populated for the FLOWDOCK notifications type. If the token later becomes invalid, Atlas sends an email to the project owner and eventually removes the token.

false

integer

Number of minutes to wait between successive notifications for unacknowledged alerts that are not resolved.

false

string

Mobile number to which alert notifications are sent. Populated for the SMS notifications type.

false

string

Opsgenie API Key. Populated for the OPS_GENIE notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the token.

false

string

Region that indicates which API URL to use.

false

string

Flowdock organization name in lower-case letters. This is the name that appears after www.flowdock.com/app/ in the URL string. Populated for the FLOWDOCK notifications type.

false

[]string

The following roles grant privileges within a project.

false

string

PagerDuty service key. Populated for the PAGER_DUTY notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the key.

false

boolean

Flag indicating if text message notifications should be sent. Populated for ORG, GROUP, and USER notifications types.

false

string

Unique identifier of a team.

false

string

Label for the team that receives this notification.

false

string

Type of alert notification.

false

string

Name of the Atlas user to which to send notifications. Only a user in the project that owns the alert configuration is allowed here. Populated for the USER notifications type.

false

string

VictorOps API key. Populated for the VICTOR_OPS notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the key.

false

string

VictorOps routing key. Populated for the VICTOR_OPS notifications type. If the key later becomes invalid, Atlas sends an email to the project owner and eventually removes the key.

false

string

Unique external ID that MongoDB Atlas uses when it assumes the IAM role in your Amazon Web Services account.