Documentation ¶
Index ¶
- func HasNamedOwner(refs []metav1.OwnerReference, kind, name string) bool
- type Reconciler
- func (r *Reconciler) BuildAllClusterRoleBindings(cr *v1beta1.RbacDefinition) []rbacv1.ClusterRoleBinding
- func (r *Reconciler) BuildAllRoleBindings(cr *v1beta1.RbacDefinition) []rbacv1.RoleBinding
- func (r *Reconciler) BuildAllSecrets(cr *v1beta1.SyncSecretDefinition) []corev1.Secret
- func (r *Reconciler) CreateOrRecreateClusterRoleBinding(crb rbacv1.ClusterRoleBinding) (*rbacv1.ClusterRoleBinding, error)
- func (r *Reconciler) CreateOrRecreateRoleBinding(rb rbacv1.RoleBinding) (*rbacv1.RoleBinding, error)
- func (r *Reconciler) CreateSecret(s corev1.Secret) (*corev1.Secret, error)
- func (r *Reconciler) DeleteOwnedRoleBindings(namespace string, def v1beta1.RbacDefinition) error
- func (r *Reconciler) GetOwnedSecrets(defName string) ([]corev1.Secret, error)
- func (r *Reconciler) GetRelevantNamespaces(selector metav1.LabelSelector, nameSpec v1beta1.NamespaceSpec) []corev1.Namespace
- func (r *Reconciler) IsServiceAccountRelevant(spec v1beta1.RbacDefinition, ns string) bool
- func (r *Reconciler) ReconcileNamespace(instance *corev1.Namespace) (reconcile.Result, error)
- func (r *Reconciler) ReconcileRbacDefinition(instance *v1beta1.RbacDefinition) (reconcile.Result, error)
- func (r *Reconciler) ReconcileSecret(instance *corev1.Secret) (reconcile.Result, error)
- func (r *Reconciler) ReconcileServiceAccount(instance *corev1.ServiceAccount) (reconcile.Result, error)
- func (r *Reconciler) ReconcileSyncSecretDefinition(instance *v1beta1.SyncSecretDefinition) (reconcile.Result, error)
- func (r *Reconciler) RemoveAllDeletableClusterRoleBindings(defName string, clusterRoleBindingsToCreate []rbacv1.ClusterRoleBinding)
- func (r *Reconciler) RemoveAllDeletableRoleBindings(defName string, roleBindingsToCreate []rbacv1.RoleBinding)
- func (r *Reconciler) RemoveOwnedSecretsNotInList(ownedSecrets []corev1.Secret, secrets []corev1.Secret)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func HasNamedOwner ¶
func HasNamedOwner(refs []metav1.OwnerReference, kind, name string) bool
HasNamedOwner returns true if the owner array includes a object of the givien kind and name
Types ¶
type Reconciler ¶
type Reconciler struct { Client kubernetes.Clientset ControllerClient client.Client Scheme *runtime.Scheme Logger logr.Logger }
Reconciler runtime-object
func (*Reconciler) BuildAllClusterRoleBindings ¶
func (r *Reconciler) BuildAllClusterRoleBindings(cr *v1beta1.RbacDefinition) []rbacv1.ClusterRoleBinding
BuildAllClusterRoleBindings returns an array of ClusterRoleBindings for the given RbacDefinition
func (*Reconciler) BuildAllRoleBindings ¶
func (r *Reconciler) BuildAllRoleBindings(cr *v1beta1.RbacDefinition) []rbacv1.RoleBinding
BuildAllRoleBindings returns an array of RoleBindings for the given RbacDefinition
func (*Reconciler) BuildAllSecrets ¶
func (r *Reconciler) BuildAllSecrets(cr *v1beta1.SyncSecretDefinition) []corev1.Secret
BuildAllSecrets returns an array of Secrets for the given SyncSecretDefinition
func (*Reconciler) CreateOrRecreateClusterRoleBinding ¶
func (r *Reconciler) CreateOrRecreateClusterRoleBinding(crb rbacv1.ClusterRoleBinding) (*rbacv1.ClusterRoleBinding, error)
CreateOrRecreateClusterRoleBinding creates a new or recreates a existing ClusterRoleBinding
func (*Reconciler) CreateOrRecreateRoleBinding ¶
func (r *Reconciler) CreateOrRecreateRoleBinding(rb rbacv1.RoleBinding) (*rbacv1.RoleBinding, error)
CreateOrRecreateRoleBinding creates a new or recreates a existing RoleBinding
func (*Reconciler) CreateSecret ¶
CreateSecret creates a new Secret
func (*Reconciler) DeleteOwnedRoleBindings ¶
func (r *Reconciler) DeleteOwnedRoleBindings(namespace string, def v1beta1.RbacDefinition) error
DeleteOwnedRoleBindings deletes all RoleBindings in namespace owned by the RbacDefinition
func (*Reconciler) GetOwnedSecrets ¶
func (r *Reconciler) GetOwnedSecrets(defName string) ([]corev1.Secret, error)
GetOwnedSecrets returns a slice of all secrets which are owned by the given definition name.
func (*Reconciler) GetRelevantNamespaces ¶
func (r *Reconciler) GetRelevantNamespaces(selector metav1.LabelSelector, nameSpec v1beta1.NamespaceSpec) []corev1.Namespace
GetRelevantNamespaces returns a filtered list of namespaces matching the NamespacedSpec
func (*Reconciler) IsServiceAccountRelevant ¶
func (r *Reconciler) IsServiceAccountRelevant(spec v1beta1.RbacDefinition, ns string) bool
IsServiceAccountRelevant checks if the given definition includes all serviceaccounts
func (*Reconciler) ReconcileNamespace ¶
ReconcileNamespace applies all desired changes of the Namespace
func (*Reconciler) ReconcileRbacDefinition ¶
func (r *Reconciler) ReconcileRbacDefinition(instance *v1beta1.RbacDefinition) (reconcile.Result, error)
ReconcileRbacDefinition applies all desired changes of the RbacDefinition
func (*Reconciler) ReconcileSecret ¶
ReconcileSecret applies all desired changes of the Secret
func (*Reconciler) ReconcileServiceAccount ¶
func (r *Reconciler) ReconcileServiceAccount(instance *corev1.ServiceAccount) (reconcile.Result, error)
ReconcileServiceAccount applies all desired changes of the ServiceAccount
func (*Reconciler) ReconcileSyncSecretDefinition ¶
func (r *Reconciler) ReconcileSyncSecretDefinition(instance *v1beta1.SyncSecretDefinition) (reconcile.Result, error)
ReconcileSyncSecretDefinition applies all desired changes of the SyncSecretDefinition
func (*Reconciler) RemoveAllDeletableClusterRoleBindings ¶
func (r *Reconciler) RemoveAllDeletableClusterRoleBindings(defName string, clusterRoleBindingsToCreate []rbacv1.ClusterRoleBinding)
RemoveAllDeletableClusterRoleBindings deletes all ClusterRoleBindings which wouldn't be created again.
func (*Reconciler) RemoveAllDeletableRoleBindings ¶
func (r *Reconciler) RemoveAllDeletableRoleBindings(defName string, roleBindingsToCreate []rbacv1.RoleBinding)
RemoveAllDeletableRoleBindings deletes all RoleBindings which wouldn't be created again.
func (*Reconciler) RemoveOwnedSecretsNotInList ¶
func (r *Reconciler) RemoveOwnedSecretsNotInList(ownedSecrets []corev1.Secret, secrets []corev1.Secret)
RemoveOwnedSecretsNotInList deletes all secrets which are owned from the given object name and not in the slice.