authz

package
v0.2.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: May 15, 2024 License: Apache-2.0 Imports: 27 Imported by: 0

Documentation

Index

Constants

View Source
const (
	ServiceNameLabel      = "clusterlink/metadata.serviceName"
	ServiceNamespaceLabel = "clusterlink/metadata.serviceNamespace"
	GatewayNameLabel      = "clusterlink/metadata.gatewayName"
)

Variables

This section is empty.

Functions

func CreateControllers

func CreateControllers(mgr *Manager, controllerManager ctrl.Manager, crdMode bool) error

CreateControllers creates the various k8s controllers used to update the xDS manager.

func RegisterHandlers

func RegisterHandlers(manager *Manager, srv *utilhttp.Server)

RegisterHandlers registers the HTTP handlers for dataplane authz requests.

Types

type LoadBalancer added in v0.2.1

type LoadBalancer struct {
	// contains filtered or unexported fields
}

func NewLoadBalancer added in v0.2.1

func NewLoadBalancer() *LoadBalancer

NewLoadBalancer returns a new instance of a LoadBalancer object.

func (*LoadBalancer) Select added in v0.2.1

func (lb *LoadBalancer) Select(result *LoadBalancingResult) error

Select one of the import sources, based on the set load balancing scheme.

type LoadBalancingResult added in v0.2.1

type LoadBalancingResult struct {
	// contains filtered or unexported fields
}

func NewLoadBalancingResult added in v0.2.1

func NewLoadBalancingResult(imp *crds.Import) *LoadBalancingResult

func (*LoadBalancingResult) Delay added in v0.2.1

func (r *LoadBalancingResult) Delay()

func (*LoadBalancingResult) Get added in v0.2.1

func (*LoadBalancingResult) IsDelayed added in v0.2.1

func (r *LoadBalancingResult) IsDelayed() bool

type Manager

type Manager struct {
	// contains filtered or unexported fields
}

Manager manages the authorization dataplane connections.

func NewManager

func NewManager(peerTLS *tls.ParsedCertData, cl client.Client, namespace string) (*Manager, error)

NewManager returns a new authorization manager.

func (*Manager) AddAccessPolicy

func (m *Manager) AddAccessPolicy(policy *connectivitypdp.AccessPolicy) error

AddAccessPolicy adds an access policy to allow/deny specific connections.

func (*Manager) AddPeer

func (m *Manager) AddPeer(pr *v1alpha1.Peer)

AddPeer defines a new route target for egress dataplane connections.

func (*Manager) DeleteAccessPolicy

func (m *Manager) DeleteAccessPolicy(name types.NamespacedName, privileged bool) error

DeleteAccessPolicy removes an access policy to allow/deny specific connections.

func (*Manager) DeletePeer

func (m *Manager) DeletePeer(name string)

DeletePeer removes the possibility for egress dataplane connections to be routed to a given peer.

func (*Manager) SetGetExportCallback added in v0.2.1

func (m *Manager) SetGetExportCallback(callback func(name string, imp *v1alpha1.Export) error)

func (*Manager) SetGetImportCallback added in v0.2.1

func (m *Manager) SetGetImportCallback(callback func(name string, imp *v1alpha1.Import) error)

func (*Manager) SetGetPeerCallback added in v0.2.1

func (m *Manager) SetGetPeerCallback(callback func(name string, pr *v1alpha1.Peer) error)

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL