admission

package
v3.7.57-1+incompatible Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jul 9, 2018 License: Apache-2.0 Imports: 11 Imported by: 0

Documentation

Index

Constants

View Source
const ExternalIPPluginName = "ExternalIPRanger"
View Source
const RestrictedEndpointsPluginName = "openshift.io/RestrictedEndpointsAdmission"

Variables

This section is empty.

Functions

func NewExternalIPRanger

func NewExternalIPRanger(reject, admit []*net.IPNet, allowIngressIP bool) *externalIPRanger

NewConstraint creates a new SCC constraint admission plugin.

func NewRestrictedEndpointsAdmission added in v1.3.0

func NewRestrictedEndpointsAdmission(restrictedNetworks []*net.IPNet) *restrictedEndpointsAdmission

NewRestrictedEndpointsAdmission creates a new endpoints admission plugin.

func ParseRejectAdmitCIDRRules added in v1.3.0

func ParseRejectAdmitCIDRRules(rules []string) (reject, admit []*net.IPNet, err error)

ParseRejectAdmitCIDRRules calculates a blacklist and whitelist from a list of string CIDR rules (treating a leading ! as a negation). Returns an error if any rule is invalid.

func ParseSimpleCIDRRules added in v1.3.0

func ParseSimpleCIDRRules(rules []string) (networks []*net.IPNet, err error)

ParseSimpleCIDRRules parses a list of CIDR strings

func RegisterExternalIP

func RegisterExternalIP(plugins *admission.Plugins)

func RegisterRestrictedEndpoints

func RegisterRestrictedEndpoints(plugins *admission.Plugins)

Types

type NetworkSlice added in v1.3.0

type NetworkSlice []*net.IPNet

NetworkSlice is a helper for checking whether an IP is contained in a range of networks.

func (NetworkSlice) Contains added in v1.3.0

func (s NetworkSlice) Contains(ip net.IP) bool

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL