skipper

package
v0.12.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Mar 12, 2024 License: BSD-3-Clause Imports: 5 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type PrivilegedUserSkipper

type PrivilegedUserSkipper struct {
	Client client.Reader

	PrivilegedGroups []string
	PrivilegedUsers  []string
	// PrivilegedClusterRoles is a list cluster roles allowed to bypass restrictions.
	// Wildcards are supported (e.g. "system:serviceaccount:default:*" or "cluster-*-operator").
	// ClusterRoles are only ever matched if they are bound through a ClusterRoleBinding,
	// this is different from the behavior of Kyverno.
	// This is done to prevent a user from wrongly configuring a low-privileged ClusterRole which users
	// can then bind to themselves to bypass the restrictions.
	PrivilegedClusterRoles []string
}

PrivilegedUserSkipper skips request validations for privileged users.

func (*PrivilegedUserSkipper) Skip

type Skipper

type Skipper interface {
	Skip(context.Context, admission.Request) (bool, error)
}

func NewMultiSkipper added in v0.10.0

func NewMultiSkipper(skipper ...Skipper) Skipper

NewMultiSkipper returns a Skipper that skips if any of the given Skipper skip.

type StaticSkipper

type StaticSkipper struct {
	ShouldSkip bool
}

StaticSkipper is a Skipper that never/always skips.

func (StaticSkipper) Skip

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL