Documentation
¶
Index ¶
Constants ¶
View Source
const ( AwsAccessKeyName = "aws_access_key_id" AwsSecretAccessKeyName = "aws_secret_access_key" )
Variables ¶
This section is empty.
Functions ¶
func NewReconciler ¶
func NewReconciler(mgr manager.Manager) reconcile.Reconciler
Types ¶
type ReconcileCloudCredSecret ¶
type ReconcileCloudCredSecret struct {
client.Client
Logger log.FieldLogger
AWSClientBuilder func(accessKeyID, secretAccessKey []byte, c client.Client) (ccaws.Client, error)
}
func (*ReconcileCloudCredSecret) Reconcile ¶
func (r *ReconcileCloudCredSecret) Reconcile(ctx context.Context, request reconcile.Request) (returnResult reconcile.Result, returnErr error)
Reconcile will typically annotate the cloud cred secret to indicate the capabilities of the cred's capabilities: 1) 'mint' for indicating that the creds can be used to create new sub-creds 2) 'passthrough' for indicating that the creds are capable enough for other components to reuse the creds as-is 3) 'insufficient' for indicating that the creds are not usable for the cluster In the event that the operator config resource has specified a mode to operate under (mint/passthrough) then skip trying to determine the capabilities, and just annotate the secret. +kubebuilder:rbac:groups=core,resources=secrets,verbs=get;list;watch;update
Source Files
Click to show internal directories.
Click to hide internal directories.