OAS Update

stackit-pipeline · stackit-pipeline · commit a0507fbc8a74 · 2026-02-20T15:31:39.000Z
diff --git a/services/alb/v2/alb.json b/services/alb/v2/alb.json
@@ -4,6 +4,13 @@
       "ActiveHealthCheck": {
         "description": "Set this to customize active health checks for targets in this pool.",
         "properties": {
+          "altPort": {
+            "description": "Overrides the default port used for health check probes.",
+            "example": 8090,
+            "format": "int32",
+            "title": "Health Check Port",
+            "type": "integer"
+          },
           "healthyThreshold": {
             "description": "Healthy threshold of the health checking",
             "format": "int32",
@@ -371,6 +378,9 @@
           "path": {
             "description": "Path to send the health check request to",
             "type": "string"
+          },
+          "tls": {
+            "$ref": "#/components/schemas/TlsConfig"
           }
         },
         "type": "object"
@@ -899,13 +909,13 @@
             "type": "array"
           },
           "tlsConfig": {
-            "$ref": "#/components/schemas/TargetPoolTlsConfig"
+            "$ref": "#/components/schemas/TlsConfig"
           }
         },
         "type": "object"
       },
-      "TargetPoolTlsConfig": {
-        "description": "TLSConfig used for the target pool.",
+      "TlsConfig": {
+        "description": "Set this to configure TLS settings.",
         "properties": {
           "customCa": {
             "description": "Specifies a custom Certificate Authority (CA). When provided, the target pool will trust certificates signed by this CA, in addition to any system-trusted CAs. This is useful for scenarios where the target pool needs to communicate with servers using self-signed or internally-issued certificates. Enabled needs to be set to true and skip validation to false for this option.",
@@ -1098,7 +1108,7 @@
             "type": "array"
           },
           "tlsConfig": {
-            "$ref": "#/components/schemas/TargetPoolTlsConfig"
+            "$ref": "#/components/schemas/TlsConfig"
           }
         },
         "type": "object"
diff --git a/services/load-balancer/v2/load-balancer.json b/services/load-balancer/v2/load-balancer.json
@@ -3,6 +3,13 @@
     "schemas": {
       "ActiveHealthCheck": {
         "properties": {
+          "altPort": {
+            "description": "Overrides the default port used for health check probes.",
+            "example": 8090,
+            "format": "int32",
+            "title": "Health Check Port",
+            "type": "integer"
+          },
           "healthyThreshold": {
             "description": "Healthy threshold of the health checking",
             "format": "int32",
@@ -11,6 +18,9 @@
             "title": "Healthy threshold",
             "type": "integer"
           },
+          "httpHealthChecks": {
+            "$ref": "#/components/schemas/HttpHealthChecks"
+          },
           "interval": {
             "description": "Interval duration of health checking in seconds",
             "example": "3s",
@@ -293,6 +303,29 @@
         },
         "type": "object"
       },
+      "HttpHealthChecks": {
+        "description": "Options for the HTTP health checking.",
+        "properties": {
+          "okStatuses": {
+            "description": "List of HTTP status codes that indicate a healthy response",
+            "items": {
+              "type": "string"
+            },
+            "maximum": 299,
+            "minimum": 200,
+            "title": "HTTP Health Checks' status code",
+            "type": "array"
+          },
+          "path": {
+            "description": "Path to send the health check request to",
+            "type": "string"
+          },
+          "tls": {
+            "$ref": "#/components/schemas/TlsConfig"
+          }
+        },
+        "type": "object"
+      },
       "ListCredentialsResponse": {
         "properties": {
           "credentials": {
@@ -789,6 +822,28 @@
         },
         "type": "object"
       },
+      "TlsConfig": {
+        "description": "Set this to configure TLS settings.",
+        "properties": {
+          "customCa": {
+            "description": "Specifies a custom Certificate Authority (CA). When provided, the target pool will trust certificates signed by this CA, in addition to any system-trusted CAs. This is useful for scenarios where the target pool needs to communicate with servers using self-signed or internally-issued certificates. Enabled needs to be set to true and skip validation to false for this option.",
+            "format": "bytes",
+            "title": "Custom Certificate Authority",
+            "type": "string"
+          },
+          "enabled": {
+            "description": "Enable TLS (Transport Layer Security) bridging for the connection between Application Load Balancer and targets in this pool. When enabled, public CAs are trusted. Can be used in tandem with the options either custom CA or skip validation or alone.",
+            "title": "Enabled",
+            "type": "boolean"
+          },
+          "skipCertificateValidation": {
+            "description": "Bypass certificate validation for TLS bridging in this target pool. This option is insecure and can only be used with public CAs by setting enabled true. Meant to be used for testing purposes only!",
+            "title": "Skip Certificate Validation",
+            "type": "boolean"
+          }
+        },
+        "type": "object"
+      },
       "UpdateCredentialsPayload": {
         "properties": {
           "displayName": {
