Documentation ¶
Overview ¶
Package v1 is a generated protocol buffer package.
It is generated from these files:
k8s.io/kubernetes/vendor/k8s.io/api/rbac/v1/generated.proto
It has these top-level messages:
AggregationRule ClusterRole ClusterRoleBinding ClusterRoleBindingList ClusterRoleList PolicyRule Role RoleBinding RoleBindingList RoleList RoleRef Subject
Index ¶
- Constants
- Variables
- func Resource(resource string) schema.GroupResource
- type AggregationRule
- func (in *AggregationRule) DeepCopy() *AggregationRule
- func (in *AggregationRule) DeepCopyInto(out *AggregationRule)
- func (*AggregationRule) Descriptor() ([]byte, []int)
- func (m *AggregationRule) Marshal() (dAtA []byte, err error)
- func (m *AggregationRule) MarshalTo(dAtA []byte) (int, error)
- func (*AggregationRule) ProtoMessage()
- func (m *AggregationRule) Reset()
- func (m *AggregationRule) Size() (n int)
- func (this *AggregationRule) String() string
- func (AggregationRule) SwaggerDoc() map[string]string
- func (m *AggregationRule) Unmarshal(dAtA []byte) error
- type ClusterRole
- func (in *ClusterRole) DeepCopy() *ClusterRole
- func (in *ClusterRole) DeepCopyInto(out *ClusterRole)
- func (in *ClusterRole) DeepCopyObject() runtime.Object
- func (*ClusterRole) Descriptor() ([]byte, []int)
- func (m *ClusterRole) Marshal() (dAtA []byte, err error)
- func (m *ClusterRole) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRole) ProtoMessage()
- func (m *ClusterRole) Reset()
- func (m *ClusterRole) Size() (n int)
- func (this *ClusterRole) String() string
- func (ClusterRole) SwaggerDoc() map[string]string
- func (m *ClusterRole) Unmarshal(dAtA []byte) error
- type ClusterRoleBinding
- func (in *ClusterRoleBinding) DeepCopy() *ClusterRoleBinding
- func (in *ClusterRoleBinding) DeepCopyInto(out *ClusterRoleBinding)
- func (in *ClusterRoleBinding) DeepCopyObject() runtime.Object
- func (*ClusterRoleBinding) Descriptor() ([]byte, []int)
- func (m *ClusterRoleBinding) Marshal() (dAtA []byte, err error)
- func (m *ClusterRoleBinding) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRoleBinding) ProtoMessage()
- func (m *ClusterRoleBinding) Reset()
- func (m *ClusterRoleBinding) Size() (n int)
- func (this *ClusterRoleBinding) String() string
- func (ClusterRoleBinding) SwaggerDoc() map[string]string
- func (m *ClusterRoleBinding) Unmarshal(dAtA []byte) error
- type ClusterRoleBindingList
- func (in *ClusterRoleBindingList) DeepCopy() *ClusterRoleBindingList
- func (in *ClusterRoleBindingList) DeepCopyInto(out *ClusterRoleBindingList)
- func (in *ClusterRoleBindingList) DeepCopyObject() runtime.Object
- func (*ClusterRoleBindingList) Descriptor() ([]byte, []int)
- func (m *ClusterRoleBindingList) Marshal() (dAtA []byte, err error)
- func (m *ClusterRoleBindingList) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRoleBindingList) ProtoMessage()
- func (m *ClusterRoleBindingList) Reset()
- func (m *ClusterRoleBindingList) Size() (n int)
- func (this *ClusterRoleBindingList) String() string
- func (ClusterRoleBindingList) SwaggerDoc() map[string]string
- func (m *ClusterRoleBindingList) Unmarshal(dAtA []byte) error
- type ClusterRoleList
- func (in *ClusterRoleList) DeepCopy() *ClusterRoleList
- func (in *ClusterRoleList) DeepCopyInto(out *ClusterRoleList)
- func (in *ClusterRoleList) DeepCopyObject() runtime.Object
- func (*ClusterRoleList) Descriptor() ([]byte, []int)
- func (m *ClusterRoleList) Marshal() (dAtA []byte, err error)
- func (m *ClusterRoleList) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRoleList) ProtoMessage()
- func (m *ClusterRoleList) Reset()
- func (m *ClusterRoleList) Size() (n int)
- func (this *ClusterRoleList) String() string
- func (ClusterRoleList) SwaggerDoc() map[string]string
- func (m *ClusterRoleList) Unmarshal(dAtA []byte) error
- type PolicyRule
- func (in *PolicyRule) DeepCopy() *PolicyRule
- func (in *PolicyRule) DeepCopyInto(out *PolicyRule)
- func (*PolicyRule) Descriptor() ([]byte, []int)
- func (m *PolicyRule) Marshal() (dAtA []byte, err error)
- func (m *PolicyRule) MarshalTo(dAtA []byte) (int, error)
- func (*PolicyRule) ProtoMessage()
- func (m *PolicyRule) Reset()
- func (m *PolicyRule) Size() (n int)
- func (this *PolicyRule) String() string
- func (PolicyRule) SwaggerDoc() map[string]string
- func (m *PolicyRule) Unmarshal(dAtA []byte) error
- type Role
- func (in *Role) DeepCopy() *Role
- func (in *Role) DeepCopyInto(out *Role)
- func (in *Role) DeepCopyObject() runtime.Object
- func (*Role) Descriptor() ([]byte, []int)
- func (m *Role) Marshal() (dAtA []byte, err error)
- func (m *Role) MarshalTo(dAtA []byte) (int, error)
- func (*Role) ProtoMessage()
- func (m *Role) Reset()
- func (m *Role) Size() (n int)
- func (this *Role) String() string
- func (Role) SwaggerDoc() map[string]string
- func (m *Role) Unmarshal(dAtA []byte) error
- type RoleBinding
- func (in *RoleBinding) DeepCopy() *RoleBinding
- func (in *RoleBinding) DeepCopyInto(out *RoleBinding)
- func (in *RoleBinding) DeepCopyObject() runtime.Object
- func (*RoleBinding) Descriptor() ([]byte, []int)
- func (m *RoleBinding) Marshal() (dAtA []byte, err error)
- func (m *RoleBinding) MarshalTo(dAtA []byte) (int, error)
- func (*RoleBinding) ProtoMessage()
- func (m *RoleBinding) Reset()
- func (m *RoleBinding) Size() (n int)
- func (this *RoleBinding) String() string
- func (RoleBinding) SwaggerDoc() map[string]string
- func (m *RoleBinding) Unmarshal(dAtA []byte) error
- type RoleBindingList
- func (in *RoleBindingList) DeepCopy() *RoleBindingList
- func (in *RoleBindingList) DeepCopyInto(out *RoleBindingList)
- func (in *RoleBindingList) DeepCopyObject() runtime.Object
- func (*RoleBindingList) Descriptor() ([]byte, []int)
- func (m *RoleBindingList) Marshal() (dAtA []byte, err error)
- func (m *RoleBindingList) MarshalTo(dAtA []byte) (int, error)
- func (*RoleBindingList) ProtoMessage()
- func (m *RoleBindingList) Reset()
- func (m *RoleBindingList) Size() (n int)
- func (this *RoleBindingList) String() string
- func (RoleBindingList) SwaggerDoc() map[string]string
- func (m *RoleBindingList) Unmarshal(dAtA []byte) error
- type RoleList
- func (in *RoleList) DeepCopy() *RoleList
- func (in *RoleList) DeepCopyInto(out *RoleList)
- func (in *RoleList) DeepCopyObject() runtime.Object
- func (*RoleList) Descriptor() ([]byte, []int)
- func (m *RoleList) Marshal() (dAtA []byte, err error)
- func (m *RoleList) MarshalTo(dAtA []byte) (int, error)
- func (*RoleList) ProtoMessage()
- func (m *RoleList) Reset()
- func (m *RoleList) Size() (n int)
- func (this *RoleList) String() string
- func (RoleList) SwaggerDoc() map[string]string
- func (m *RoleList) Unmarshal(dAtA []byte) error
- type RoleRef
- func (in *RoleRef) DeepCopy() *RoleRef
- func (in *RoleRef) DeepCopyInto(out *RoleRef)
- func (*RoleRef) Descriptor() ([]byte, []int)
- func (m *RoleRef) Marshal() (dAtA []byte, err error)
- func (m *RoleRef) MarshalTo(dAtA []byte) (int, error)
- func (*RoleRef) ProtoMessage()
- func (m *RoleRef) Reset()
- func (m *RoleRef) Size() (n int)
- func (this *RoleRef) String() string
- func (RoleRef) SwaggerDoc() map[string]string
- func (m *RoleRef) Unmarshal(dAtA []byte) error
- type Subject
- func (in *Subject) DeepCopy() *Subject
- func (in *Subject) DeepCopyInto(out *Subject)
- func (*Subject) Descriptor() ([]byte, []int)
- func (m *Subject) Marshal() (dAtA []byte, err error)
- func (m *Subject) MarshalTo(dAtA []byte) (int, error)
- func (*Subject) ProtoMessage()
- func (m *Subject) Reset()
- func (m *Subject) Size() (n int)
- func (this *Subject) String() string
- func (Subject) SwaggerDoc() map[string]string
- func (m *Subject) Unmarshal(dAtA []byte) error
Constants ¶
const ( APIGroupAll = "*" ResourceAll = "*" VerbAll = "*" NonResourceAll = "*" GroupKind = "Group" ServiceAccountKind = "ServiceAccount" UserKind = "User" // AutoUpdateAnnotationKey is the name of an annotation which prevents reconciliation if set to "false" AutoUpdateAnnotationKey = "rbac.authorization.kubernetes.io/autoupdate" )
const GroupName = "rbac.authorization.k8s.io"
Variables ¶
var ( ErrInvalidLengthGenerated = fmt.Errorf("proto: negative length found during unmarshaling") ErrIntOverflowGenerated = fmt.Errorf("proto: integer overflow") )
var ( // TODO: move SchemeBuilder with zz_generated.deepcopy.go to k8s.io/api. // localSchemeBuilder and AddToScheme will stay in k8s.io/kubernetes. SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes) AddToScheme = localSchemeBuilder.AddToScheme )
var SchemeGroupVersion = schema.GroupVersion{Group: GroupName, Version: "v1"}
SchemeGroupVersion is group version used to register these objects
Functions ¶
func Resource ¶
func Resource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns a Group qualified GroupResource
Types ¶
type AggregationRule ¶
type AggregationRule struct { // ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. // If any of the selectors match, then the ClusterRole's permissions will be added // +optional ClusterRoleSelectors []metav1.LabelSelector `json:"clusterRoleSelectors,omitempty" protobuf:"bytes,1,rep,name=clusterRoleSelectors"` }
AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole
func (*AggregationRule) DeepCopy ¶
func (in *AggregationRule) DeepCopy() *AggregationRule
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AggregationRule.
func (*AggregationRule) DeepCopyInto ¶
func (in *AggregationRule) DeepCopyInto(out *AggregationRule)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AggregationRule) Descriptor ¶
func (*AggregationRule) Descriptor() ([]byte, []int)
func (*AggregationRule) Marshal ¶
func (m *AggregationRule) Marshal() (dAtA []byte, err error)
func (*AggregationRule) MarshalTo ¶
func (m *AggregationRule) MarshalTo(dAtA []byte) (int, error)
func (*AggregationRule) ProtoMessage ¶
func (*AggregationRule) ProtoMessage()
func (*AggregationRule) Reset ¶
func (m *AggregationRule) Reset()
func (*AggregationRule) Size ¶
func (m *AggregationRule) Size() (n int)
func (*AggregationRule) String ¶
func (this *AggregationRule) String() string
func (AggregationRule) SwaggerDoc ¶
func (AggregationRule) SwaggerDoc() map[string]string
func (*AggregationRule) Unmarshal ¶
func (m *AggregationRule) Unmarshal(dAtA []byte) error
type ClusterRole ¶
type ClusterRole struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Rules holds all the PolicyRules for this ClusterRole Rules []PolicyRule `json:"rules" protobuf:"bytes,2,rep,name=rules"` // AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. // If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be // stomped by the controller. // +optional AggregationRule *AggregationRule `json:"aggregationRule,omitempty" protobuf:"bytes,3,opt,name=aggregationRule"` }
ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding.
func (*ClusterRole) DeepCopy ¶
func (in *ClusterRole) DeepCopy() *ClusterRole
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterRole.
func (*ClusterRole) DeepCopyInto ¶
func (in *ClusterRole) DeepCopyInto(out *ClusterRole)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterRole) DeepCopyObject ¶
func (in *ClusterRole) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*ClusterRole) Descriptor ¶
func (*ClusterRole) Descriptor() ([]byte, []int)
func (*ClusterRole) Marshal ¶
func (m *ClusterRole) Marshal() (dAtA []byte, err error)
func (*ClusterRole) MarshalTo ¶
func (m *ClusterRole) MarshalTo(dAtA []byte) (int, error)
func (*ClusterRole) ProtoMessage ¶
func (*ClusterRole) ProtoMessage()
func (*ClusterRole) Reset ¶
func (m *ClusterRole) Reset()
func (*ClusterRole) Size ¶
func (m *ClusterRole) Size() (n int)
func (*ClusterRole) String ¶
func (this *ClusterRole) String() string
func (ClusterRole) SwaggerDoc ¶
func (ClusterRole) SwaggerDoc() map[string]string
func (*ClusterRole) Unmarshal ¶
func (m *ClusterRole) Unmarshal(dAtA []byte) error
type ClusterRoleBinding ¶
type ClusterRoleBinding struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Subjects holds references to the objects the role applies to. // +optional Subjects []Subject `json:"subjects,omitempty" protobuf:"bytes,2,rep,name=subjects"` // RoleRef can only reference a ClusterRole in the global namespace. // If the RoleRef cannot be resolved, the Authorizer must return an error. RoleRef RoleRef `json:"roleRef" protobuf:"bytes,3,opt,name=roleRef"` }
ClusterRoleBinding references a ClusterRole, but not contain it. It can reference a ClusterRole in the global namespace, and adds who information via Subject.
func (*ClusterRoleBinding) DeepCopy ¶
func (in *ClusterRoleBinding) DeepCopy() *ClusterRoleBinding
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterRoleBinding.
func (*ClusterRoleBinding) DeepCopyInto ¶
func (in *ClusterRoleBinding) DeepCopyInto(out *ClusterRoleBinding)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterRoleBinding) DeepCopyObject ¶
func (in *ClusterRoleBinding) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*ClusterRoleBinding) Descriptor ¶
func (*ClusterRoleBinding) Descriptor() ([]byte, []int)
func (*ClusterRoleBinding) Marshal ¶
func (m *ClusterRoleBinding) Marshal() (dAtA []byte, err error)
func (*ClusterRoleBinding) MarshalTo ¶
func (m *ClusterRoleBinding) MarshalTo(dAtA []byte) (int, error)
func (*ClusterRoleBinding) ProtoMessage ¶
func (*ClusterRoleBinding) ProtoMessage()
func (*ClusterRoleBinding) Reset ¶
func (m *ClusterRoleBinding) Reset()
func (*ClusterRoleBinding) Size ¶
func (m *ClusterRoleBinding) Size() (n int)
func (*ClusterRoleBinding) String ¶
func (this *ClusterRoleBinding) String() string
func (ClusterRoleBinding) SwaggerDoc ¶
func (ClusterRoleBinding) SwaggerDoc() map[string]string
func (*ClusterRoleBinding) Unmarshal ¶
func (m *ClusterRoleBinding) Unmarshal(dAtA []byte) error
type ClusterRoleBindingList ¶
type ClusterRoleBindingList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of ClusterRoleBindings Items []ClusterRoleBinding `json:"items" protobuf:"bytes,2,rep,name=items"` }
ClusterRoleBindingList is a collection of ClusterRoleBindings
func (*ClusterRoleBindingList) DeepCopy ¶
func (in *ClusterRoleBindingList) DeepCopy() *ClusterRoleBindingList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterRoleBindingList.
func (*ClusterRoleBindingList) DeepCopyInto ¶
func (in *ClusterRoleBindingList) DeepCopyInto(out *ClusterRoleBindingList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterRoleBindingList) DeepCopyObject ¶
func (in *ClusterRoleBindingList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*ClusterRoleBindingList) Descriptor ¶
func (*ClusterRoleBindingList) Descriptor() ([]byte, []int)
func (*ClusterRoleBindingList) Marshal ¶
func (m *ClusterRoleBindingList) Marshal() (dAtA []byte, err error)
func (*ClusterRoleBindingList) MarshalTo ¶
func (m *ClusterRoleBindingList) MarshalTo(dAtA []byte) (int, error)
func (*ClusterRoleBindingList) ProtoMessage ¶
func (*ClusterRoleBindingList) ProtoMessage()
func (*ClusterRoleBindingList) Reset ¶
func (m *ClusterRoleBindingList) Reset()
func (*ClusterRoleBindingList) Size ¶
func (m *ClusterRoleBindingList) Size() (n int)
func (*ClusterRoleBindingList) String ¶
func (this *ClusterRoleBindingList) String() string
func (ClusterRoleBindingList) SwaggerDoc ¶
func (ClusterRoleBindingList) SwaggerDoc() map[string]string
func (*ClusterRoleBindingList) Unmarshal ¶
func (m *ClusterRoleBindingList) Unmarshal(dAtA []byte) error
type ClusterRoleList ¶
type ClusterRoleList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of ClusterRoles Items []ClusterRole `json:"items" protobuf:"bytes,2,rep,name=items"` }
ClusterRoleList is a collection of ClusterRoles
func (*ClusterRoleList) DeepCopy ¶
func (in *ClusterRoleList) DeepCopy() *ClusterRoleList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterRoleList.
func (*ClusterRoleList) DeepCopyInto ¶
func (in *ClusterRoleList) DeepCopyInto(out *ClusterRoleList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterRoleList) DeepCopyObject ¶
func (in *ClusterRoleList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*ClusterRoleList) Descriptor ¶
func (*ClusterRoleList) Descriptor() ([]byte, []int)
func (*ClusterRoleList) Marshal ¶
func (m *ClusterRoleList) Marshal() (dAtA []byte, err error)
func (*ClusterRoleList) MarshalTo ¶
func (m *ClusterRoleList) MarshalTo(dAtA []byte) (int, error)
func (*ClusterRoleList) ProtoMessage ¶
func (*ClusterRoleList) ProtoMessage()
func (*ClusterRoleList) Reset ¶
func (m *ClusterRoleList) Reset()
func (*ClusterRoleList) Size ¶
func (m *ClusterRoleList) Size() (n int)
func (*ClusterRoleList) String ¶
func (this *ClusterRoleList) String() string
func (ClusterRoleList) SwaggerDoc ¶
func (ClusterRoleList) SwaggerDoc() map[string]string
func (*ClusterRoleList) Unmarshal ¶
func (m *ClusterRoleList) Unmarshal(dAtA []byte) error
type PolicyRule ¶
type PolicyRule struct { // Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule. VerbAll represents all kinds. Verbs []string `json:"verbs" protobuf:"bytes,1,rep,name=verbs"` // APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of // the enumerated resources in any API group will be allowed. // +optional APIGroups []string `json:"apiGroups,omitempty" protobuf:"bytes,2,rep,name=apiGroups"` // Resources is a list of resources this rule applies to. ResourceAll represents all resources. // +optional Resources []string `json:"resources,omitempty" protobuf:"bytes,3,rep,name=resources"` // ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. // +optional ResourceNames []string `json:"resourceNames,omitempty" protobuf:"bytes,4,rep,name=resourceNames"` // NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, final step in the path // Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. // Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"), but not both. // +optional NonResourceURLs []string `json:"nonResourceURLs,omitempty" protobuf:"bytes,5,rep,name=nonResourceURLs"` }
PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.
func (*PolicyRule) DeepCopy ¶
func (in *PolicyRule) DeepCopy() *PolicyRule
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyRule.
func (*PolicyRule) DeepCopyInto ¶
func (in *PolicyRule) DeepCopyInto(out *PolicyRule)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*PolicyRule) Descriptor ¶
func (*PolicyRule) Descriptor() ([]byte, []int)
func (*PolicyRule) Marshal ¶
func (m *PolicyRule) Marshal() (dAtA []byte, err error)
func (*PolicyRule) MarshalTo ¶
func (m *PolicyRule) MarshalTo(dAtA []byte) (int, error)
func (*PolicyRule) ProtoMessage ¶
func (*PolicyRule) ProtoMessage()
func (*PolicyRule) Reset ¶
func (m *PolicyRule) Reset()
func (*PolicyRule) Size ¶
func (m *PolicyRule) Size() (n int)
func (*PolicyRule) String ¶
func (this *PolicyRule) String() string
func (PolicyRule) SwaggerDoc ¶
func (PolicyRule) SwaggerDoc() map[string]string
func (*PolicyRule) Unmarshal ¶
func (m *PolicyRule) Unmarshal(dAtA []byte) error
type Role ¶
type Role struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Rules holds all the PolicyRules for this Role Rules []PolicyRule `json:"rules" protobuf:"bytes,2,rep,name=rules"` }
Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding.
func (*Role) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Role.
func (*Role) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Role) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type RoleBinding ¶
type RoleBinding struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Subjects holds references to the objects the role applies to. // +optional Subjects []Subject `json:"subjects,omitempty" protobuf:"bytes,2,rep,name=subjects"` // RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. // If the RoleRef cannot be resolved, the Authorizer must return an error. RoleRef RoleRef `json:"roleRef" protobuf:"bytes,3,opt,name=roleRef"` }
RoleBinding references a role, but does not contain it. It can reference a Role in the same namespace or a ClusterRole in the global namespace. It adds who information via Subjects and namespace information by which namespace it exists in. RoleBindings in a given namespace only have effect in that namespace.
func (*RoleBinding) DeepCopy ¶
func (in *RoleBinding) DeepCopy() *RoleBinding
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RoleBinding.
func (*RoleBinding) DeepCopyInto ¶
func (in *RoleBinding) DeepCopyInto(out *RoleBinding)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*RoleBinding) DeepCopyObject ¶
func (in *RoleBinding) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*RoleBinding) Descriptor ¶
func (*RoleBinding) Descriptor() ([]byte, []int)
func (*RoleBinding) Marshal ¶
func (m *RoleBinding) Marshal() (dAtA []byte, err error)
func (*RoleBinding) MarshalTo ¶
func (m *RoleBinding) MarshalTo(dAtA []byte) (int, error)
func (*RoleBinding) ProtoMessage ¶
func (*RoleBinding) ProtoMessage()
func (*RoleBinding) Reset ¶
func (m *RoleBinding) Reset()
func (*RoleBinding) Size ¶
func (m *RoleBinding) Size() (n int)
func (*RoleBinding) String ¶
func (this *RoleBinding) String() string
func (RoleBinding) SwaggerDoc ¶
func (RoleBinding) SwaggerDoc() map[string]string
func (*RoleBinding) Unmarshal ¶
func (m *RoleBinding) Unmarshal(dAtA []byte) error
type RoleBindingList ¶
type RoleBindingList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of RoleBindings Items []RoleBinding `json:"items" protobuf:"bytes,2,rep,name=items"` }
RoleBindingList is a collection of RoleBindings
func (*RoleBindingList) DeepCopy ¶
func (in *RoleBindingList) DeepCopy() *RoleBindingList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RoleBindingList.
func (*RoleBindingList) DeepCopyInto ¶
func (in *RoleBindingList) DeepCopyInto(out *RoleBindingList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*RoleBindingList) DeepCopyObject ¶
func (in *RoleBindingList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*RoleBindingList) Descriptor ¶
func (*RoleBindingList) Descriptor() ([]byte, []int)
func (*RoleBindingList) Marshal ¶
func (m *RoleBindingList) Marshal() (dAtA []byte, err error)
func (*RoleBindingList) MarshalTo ¶
func (m *RoleBindingList) MarshalTo(dAtA []byte) (int, error)
func (*RoleBindingList) ProtoMessage ¶
func (*RoleBindingList) ProtoMessage()
func (*RoleBindingList) Reset ¶
func (m *RoleBindingList) Reset()
func (*RoleBindingList) Size ¶
func (m *RoleBindingList) Size() (n int)
func (*RoleBindingList) String ¶
func (this *RoleBindingList) String() string
func (RoleBindingList) SwaggerDoc ¶
func (RoleBindingList) SwaggerDoc() map[string]string
func (*RoleBindingList) Unmarshal ¶
func (m *RoleBindingList) Unmarshal(dAtA []byte) error
type RoleList ¶
type RoleList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of Roles Items []Role `json:"items" protobuf:"bytes,2,rep,name=items"` }
RoleList is a collection of Roles
func (*RoleList) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RoleList.
func (*RoleList) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*RoleList) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type RoleRef ¶
type RoleRef struct { // APIGroup is the group for the resource being referenced APIGroup string `json:"apiGroup" protobuf:"bytes,1,opt,name=apiGroup"` // Kind is the type of resource being referenced Kind string `json:"kind" protobuf:"bytes,2,opt,name=kind"` // Name is the name of resource being referenced Name string `json:"name" protobuf:"bytes,3,opt,name=name"` }
RoleRef contains information that points to the role being used
func (*RoleRef) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RoleRef.
func (*RoleRef) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Subject ¶
type Subject struct { // Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". // If the Authorizer does not recognized the kind value, the Authorizer should report an error. Kind string `json:"kind" protobuf:"bytes,1,opt,name=kind"` // APIGroup holds the API group of the referenced subject. // Defaults to "" for ServiceAccount subjects. // Defaults to "rbac.authorization.k8s.io" for User and Group subjects. // +optional APIGroup string `json:"apiGroup,omitempty" protobuf:"bytes,2,opt.name=apiGroup"` // Name of the object being referenced. Name string `json:"name" protobuf:"bytes,3,opt,name=name"` // Namespace of the referenced object. If the object kind is non-namespace, such as "User" or "Group", and this value is not empty // the Authorizer should report an error. // +optional Namespace string `json:"namespace,omitempty" protobuf:"bytes,4,opt,name=namespace"` }
Subject contains a reference to the object or user identities a role binding applies to. This can either hold a direct API object reference, or a value for non-objects such as user and group names.
func (*Subject) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Subject.
func (*Subject) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.