v1alpha1

package

v0.6.0 Latest Latest Go to latest Published: May 7, 2024 License: Apache-2.0 Imports: 12 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/akuity/kargo

Links

Open Source Insights

Documentation ¶

Overview ¶

Package v1alpha1 contains API Schema definitions for the kargo rbac v1alpha1 API group +kubebuilder:object:generate=true +groupName=rbac.kargo.akuity.io

Constants ¶

View Source

const (
	// AnnotationKeyManaged is an annotation key that can be set on a
	// ServiceAccount, Role, or RoleBinding to indicate that it is managed by
	// Kargo.
	AnnotationKeyManaged = "rbac.kargo.akuity.io/managed"

	// AnnotationKeyOIDCEmails is an annotation key that can be set on a
	// ServiceAccount to associate it with a list of email addresses. The
	// annotation is used to grant permissions to the ServiceAccount based on
	// the email claim from a user who authenticates using OIDC.
	// The value of the annotation should be a comma-separated list.
	AnnotationKeyOIDCEmails = "rbac.kargo.akuity.io/email"

	// AnnotationKeyOIDCGroups is an annotation key that can be set on a
	// ServiceAccount to associate it with a list of groups from an OIDC
	// provider. The annotation is used to grant permissions to the
	// ServiceAccount based on the groups claim from a user who authenticates
	// using OIDC.
	// The value of the annotation should be a comma-separated list.
	AnnotationKeyOIDCGroups = "rbac.kargo.akuity.io/groups"

	// AnnotationKeyOIDCSubjects is an annotation key that can be set on a
	// ServiceAccount to associate it with a list of subjects from an OIDC
	// provider. The annotation is used to grant permissions to the
	// ServiceAccount based on the subject claim from a user who authenticates
	// using OIDC.
	// The value of the annotation should be a comma-separated list.
	AnnotationKeyOIDCSubjects = "rbac.kargo.akuity.io/sub"

	AnnotationValueTrue = "true"
)

Variables ¶

View Source

var (
	ErrInvalidLengthGenerated        = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflowGenerated          = fmt.Errorf("proto: integer overflow")
	ErrUnexpectedEndOfGroupGenerated = fmt.Errorf("proto: unexpected end of group")
)

View Source

var (
	// GroupVersion is group version used to register these objects
	GroupVersion = schema.GroupVersion{
		Group:   "rbac.kargo.akuity.io",
		Version: "v1alpha1",
	}

	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
	SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes)

	// AddToScheme adds the types in this group-version to the given scheme.
	AddToScheme = SchemeBuilder.AddToScheme
)

Functions ¶

This section is empty.

Types ¶

type ResourceDetails ¶

type ResourceDetails struct {
	ResourceType string   `json:"resourceType,omitempty"`
	ResourceName string   `json:"resourceName,omitempty"`
	Verbs        []string `json:"verbs,omitempty"`
}

func (*ResourceDetails) DeepCopy ¶

func (in *ResourceDetails) DeepCopy() *ResourceDetails

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ResourceDetails.

func (*ResourceDetails) DeepCopyInto ¶

func (in *ResourceDetails) DeepCopyInto(out *ResourceDetails)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*ResourceDetails) Descriptor ¶

func (*ResourceDetails) Descriptor() ([]byte, []int)

func (*ResourceDetails) Marshal ¶

func (m *ResourceDetails) Marshal() (dAtA []byte, err error)

func (*ResourceDetails) MarshalTo ¶

func (m *ResourceDetails) MarshalTo(dAtA []byte) (int, error)

func (*ResourceDetails) MarshalToSizedBuffer ¶

func (m *ResourceDetails) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*ResourceDetails) ProtoMessage ¶

func (*ResourceDetails) ProtoMessage()

func (*ResourceDetails) Reset ¶

func (m *ResourceDetails) Reset()

func (*ResourceDetails) Size ¶

func (m *ResourceDetails) Size() (n int)

func (*ResourceDetails) String ¶

func (this *ResourceDetails) String() string

func (*ResourceDetails) Unmarshal ¶

func (m *ResourceDetails) Unmarshal(dAtA []byte) error

func (*ResourceDetails) XXX_DiscardUnknown ¶

func (m *ResourceDetails) XXX_DiscardUnknown()

func (*ResourceDetails) XXX_Marshal ¶

func (m *ResourceDetails) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*ResourceDetails) XXX_Merge ¶

func (m *ResourceDetails) XXX_Merge(src proto.Message)

func (*ResourceDetails) XXX_Size ¶

func (m *ResourceDetails) XXX_Size() int

func (*ResourceDetails) XXX_Unmarshal ¶

func (m *ResourceDetails) XXX_Unmarshal(b []byte) error

type Role ¶

type Role struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"`
	KargoManaged      bool                `json:"kargoManaged,omitempty" protobuf:"varint,2,opt,name=kargoManaged"`
	Subs              []string            `json:"subs,omitempty" protobuf:"bytes,3,rep,name=subs"`
	Emails            []string            `json:"emails,omitempty" protobuf:"bytes,4,rep,name=emails"`
	Groups            []string            `json:"groups,omitempty" protobuf:"bytes,5,rep,name=groups"`
	Rules             []rbacv1.PolicyRule `json:"rules,omitempty" protobuf:"bytes,6,rep,name=rules"`
}

+kubebuilder:object:root=true

func (*Role) DeepCopy ¶

func (in *Role) DeepCopy() *Role

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Role.

func (*Role) DeepCopyInto ¶

func (in *Role) DeepCopyInto(out *Role)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*Role) DeepCopyObject ¶

func (in *Role) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*Role) Descriptor ¶

func (*Role) Descriptor() ([]byte, []int)

func (*Role) Marshal ¶

func (m *Role) Marshal() (dAtA []byte, err error)

func (*Role) MarshalTo ¶

func (m *Role) MarshalTo(dAtA []byte) (int, error)

func (*Role) MarshalToSizedBuffer ¶

func (m *Role) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*Role) ProtoMessage ¶

func (*Role) ProtoMessage()

func (*Role) Reset ¶

func (m *Role) Reset()

func (*Role) Size ¶

func (m *Role) Size() (n int)

func (*Role) String ¶

func (this *Role) String() string

func (*Role) Unmarshal ¶

func (m *Role) Unmarshal(dAtA []byte) error

func (*Role) XXX_DiscardUnknown ¶

func (m *Role) XXX_DiscardUnknown()

func (*Role) XXX_Marshal ¶

func (m *Role) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*Role) XXX_Merge ¶

func (m *Role) XXX_Merge(src proto.Message)

func (*Role) XXX_Size ¶

func (m *Role) XXX_Size() int

func (*Role) XXX_Unmarshal ¶

func (m *Role) XXX_Unmarshal(b []byte) error

type RoleResources ¶

type RoleResources struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"`
	ServiceAccount    corev1.ServiceAccount `json:"serviceAccount,omitempty" protobuf:"bytes,2,opt,name=serviceAccount"`
	Roles             []rbacv1.Role         `json:"roles,omitempty" protobuf:"bytes,3,rep,name=roles"`
	RoleBindings      []rbacv1.RoleBinding  `json:"roleBindings,omitempty" protobuf:"bytes,4,rep,name=roleBindings"`
}

+kubebuilder:object:root=true

func (*RoleResources) DeepCopy ¶

func (in *RoleResources) DeepCopy() *RoleResources

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RoleResources.

func (*RoleResources) DeepCopyInto ¶

func (in *RoleResources) DeepCopyInto(out *RoleResources)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*RoleResources) DeepCopyObject ¶

func (in *RoleResources) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*RoleResources) Descriptor ¶

func (*RoleResources) Descriptor() ([]byte, []int)

func (*RoleResources) Marshal ¶

func (m *RoleResources) Marshal() (dAtA []byte, err error)

func (*RoleResources) MarshalTo ¶

func (m *RoleResources) MarshalTo(dAtA []byte) (int, error)

func (*RoleResources) MarshalToSizedBuffer ¶

func (m *RoleResources) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*RoleResources) ProtoMessage ¶

func (*RoleResources) ProtoMessage()

func (*RoleResources) Reset ¶

func (m *RoleResources) Reset()

func (*RoleResources) Size ¶

func (m *RoleResources) Size() (n int)

func (*RoleResources) String ¶

func (this *RoleResources) String() string

func (*RoleResources) Unmarshal ¶

func (m *RoleResources) Unmarshal(dAtA []byte) error

func (*RoleResources) XXX_DiscardUnknown ¶

func (m *RoleResources) XXX_DiscardUnknown()

func (*RoleResources) XXX_Marshal ¶

func (m *RoleResources) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*RoleResources) XXX_Merge ¶

func (m *RoleResources) XXX_Merge(src proto.Message)

func (*RoleResources) XXX_Size ¶

func (m *RoleResources) XXX_Size() int

func (*RoleResources) XXX_Unmarshal ¶

func (m *RoleResources) XXX_Unmarshal(b []byte) error

type UserClaims ¶

type UserClaims struct {
	Subs   []string `json:"subs,omitempty"`
	Emails []string `json:"emails,omitempty"`
	Groups []string `json:"groups,omitempty"`
}

func (*UserClaims) DeepCopy ¶

func (in *UserClaims) DeepCopy() *UserClaims

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserClaims.

func (*UserClaims) DeepCopyInto ¶

func (in *UserClaims) DeepCopyInto(out *UserClaims)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*UserClaims) Descriptor ¶

func (*UserClaims) Descriptor() ([]byte, []int)

func (*UserClaims) Marshal ¶

func (m *UserClaims) Marshal() (dAtA []byte, err error)

func (*UserClaims) MarshalTo ¶

func (m *UserClaims) MarshalTo(dAtA []byte) (int, error)

func (*UserClaims) MarshalToSizedBuffer ¶

func (m *UserClaims) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*UserClaims) ProtoMessage ¶

func (*UserClaims) ProtoMessage()

func (*UserClaims) Reset ¶

func (m *UserClaims) Reset()

func (*UserClaims) Size ¶

func (m *UserClaims) Size() (n int)

func (*UserClaims) String ¶

func (this *UserClaims) String() string

func (*UserClaims) Unmarshal ¶

func (m *UserClaims) Unmarshal(dAtA []byte) error

func (*UserClaims) XXX_DiscardUnknown ¶

func (m *UserClaims) XXX_DiscardUnknown()

func (*UserClaims) XXX_Marshal ¶

func (m *UserClaims) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*UserClaims) XXX_Merge ¶

func (m *UserClaims) XXX_Merge(src proto.Message)

func (*UserClaims) XXX_Size ¶

func (m *UserClaims) XXX_Size() int

func (*UserClaims) XXX_Unmarshal ¶

func (m *UserClaims) XXX_Unmarshal(b []byte) error

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL