Documentation
¶
Index ¶
- Constants
- func IsPersonalAccessReviewFromSAR(sar *authorizationapi.SubjectAccessReview) bool
- func NewAuthorizer(delegate authorizer.Authorizer, forbiddenMessageMaker ForbiddenMessageMaker) authorizer.Authorizer
- func NewPersonalSARRequestInfoResolver(infoFactory apirequest.RequestInfoResolver) apirequest.RequestInfoResolver
- func NewProjectRequestInfoResolver(infoFactory apirequest.RequestInfoResolver) apirequest.RequestInfoResolver
- type ForbiddenMessageMaker
- type ForbiddenMessageResolver
- type SubjectLocator
Constants ¶
View Source
const DefaultProjectRequestForbidden = "You may not request a new project via this API."
Variables ¶
This section is empty.
Functions ¶
func IsPersonalAccessReviewFromSAR ¶
func IsPersonalAccessReviewFromSAR(sar *authorizationapi.SubjectAccessReview) bool
IsPersonalAccessReviewFromSAR this variant handles the case where we have an SAR
func NewAuthorizer ¶
func NewAuthorizer(delegate authorizer.Authorizer, forbiddenMessageMaker ForbiddenMessageMaker) authorizer.Authorizer
func NewPersonalSARRequestInfoResolver ¶
func NewPersonalSARRequestInfoResolver(infoFactory apirequest.RequestInfoResolver) apirequest.RequestInfoResolver
func NewProjectRequestInfoResolver ¶
func NewProjectRequestInfoResolver(infoFactory apirequest.RequestInfoResolver) apirequest.RequestInfoResolver
Types ¶
type ForbiddenMessageMaker ¶ added in v0.5.3
type ForbiddenMessageMaker interface {
MakeMessage(attrs authorizer.Attributes) (string, error)
}
ForbiddenMessageMaker creates a forbidden message from Attributes
type ForbiddenMessageResolver ¶ added in v0.5.3
type ForbiddenMessageResolver struct {
// contains filtered or unexported fields
}
func NewForbiddenMessageResolver ¶ added in v0.5.3
func NewForbiddenMessageResolver(projectRequestForbiddenTemplate string) *ForbiddenMessageResolver
func (*ForbiddenMessageResolver) MakeMessage ¶ added in v0.5.3
func (m *ForbiddenMessageResolver) MakeMessage(attrs authorizer.Attributes) (string, error)
type SubjectLocator ¶
type SubjectLocator interface {
GetAllowedSubjects(attributes authorizer.Attributes) (sets.String, sets.String, error)
}
func NewSubjectLocator ¶
func NewSubjectLocator(delegate authorizerrbac.SubjectLocator) SubjectLocator
Source Files
¶
Directories
Click to show internal directories.
Click to hide internal directories.