skipper

package
v0.19.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 9, 2024 License: BSD-3-Clause Imports: 5 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type PrivilegedUserSkipper 

type PrivilegedUserSkipper struct {
	Client client.Reader

	PrivilegedGroups []string
	PrivilegedUsers  []string
	// PrivilegedClusterRoles is a list cluster roles allowed to bypass restrictions.
	// Wildcards are supported (e.g. "system:serviceaccount:default:*" or "cluster-*-operator").
	// ClusterRoles are only ever matched if they are bound through a ClusterRoleBinding,
	// this is different from the behavior of Kyverno.
	// This is done to prevent a user from wrongly configuring a low-privileged ClusterRole which users
	// can then bind to themselves to bypass the restrictions.
	PrivilegedClusterRoles []string
}

PrivilegedUserSkipper skips request validations for privileged users.

func (*PrivilegedUserSkipper) Skip 

func (s *PrivilegedUserSkipper) Skip(ctx context.Context, req admission.Request) (bool, error)

type Skipper 

type Skipper interface {
	Skip(context.Context, admission.Request) (bool, error)
}

func NewMultiSkipper added in v0.10.0 

func NewMultiSkipper(skipper ...Skipper) Skipper

NewMultiSkipper returns a Skipper that skips if any of the given Skipper skip.

type StaticSkipper 

type StaticSkipper struct {
	ShouldSkip bool
}

StaticSkipper is a Skipper that never/always skips.

func (StaticSkipper) Skip 

func (s StaticSkipper) Skip(_ context.Context, _ admission.Request) (bool, error)

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.