Documentation ¶
Overview ¶
Package v1alpha1 contains API Schema definitions for the workloads v1alpha1 API group +kubebuilder:object:generate=true +groupName=workloads.crd.gocardless.com
Index ¶
- Constants
- Variables
- func NewPriorityInjector(c client.Client, logger logr.Logger) *priorityInjector
- type Console
- func (c *Console) Creating() bool
- func (in *Console) DeepCopy() *Console
- func (in *Console) DeepCopyInto(out *Console)
- func (in *Console) DeepCopyObject() runtime.Object
- func (c *Console) Destroyed() bool
- func (c *Console) EligibleForGC() bool
- func (c *Console) GetGCTime() *time.Time
- func (c *Console) Pending() bool
- func (c *Console) PendingAuthorisation() bool
- func (c *Console) PendingJob() bool
- func (c *Console) PostRunning() bool
- func (c *Console) PreRunning() bool
- func (c *Console) Running() bool
- func (c *Console) Stopped() bool
- func (c *Console) TTLSecondsAfterFinished() time.Duration
- func (c *Console) TTLSecondsBeforeRunning() time.Duration
- type ConsoleAttachObserverWebhook
- type ConsoleAuthenticatorWebhook
- type ConsoleAuthorisation
- type ConsoleAuthorisationList
- type ConsoleAuthorisationRule
- type ConsoleAuthorisationSpec
- type ConsoleAuthorisationStatus
- type ConsoleAuthorisationUpdate
- type ConsoleAuthorisationWebhook
- type ConsoleAuthorisers
- type ConsoleIdBuilder
- type ConsoleList
- type ConsolePhase
- type ConsoleSpec
- type ConsoleStatus
- type ConsoleTemplate
- func (in *ConsoleTemplate) DeepCopy() *ConsoleTemplate
- func (in *ConsoleTemplate) DeepCopyInto(out *ConsoleTemplate)
- func (in *ConsoleTemplate) DeepCopyObject() runtime.Object
- func (ct *ConsoleTemplate) GetAuthorisationRuleForCommand(command []string) (ConsoleAuthorisationRule, error)
- func (ct *ConsoleTemplate) GetDefaultCommandWithArgs() ([]string, error)
- func (ct *ConsoleTemplate) HasAuthorisationRules() bool
- func (ct *ConsoleTemplate) Validate() error
- type ConsoleTemplateList
- type ConsoleTemplateSpec
- type ConsoleTemplateStatus
- type ConsoleTemplateValidationWebhook
- type LifecycleEventRecorder
- type PodTemplatePreserveMetadataSpec
Constants ¶
const ( PriorityInjectorFQDN = "priority-injector.workloads.crd.gocardless.com" NamespaceLabel = "theatre-priority-injector" )
Variables ¶
var ( // GroupVersion is group version used to register these objects GroupVersion = schema.GroupVersion{Group: "workloads.crd.gocardless.com", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
Types ¶
type Console ¶
type Console struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec ConsoleSpec `json:"spec,omitempty"` Status ConsoleStatus `json:"status,omitempty"` }
Console declares an instance of a console environment to be created by a specific user +kubebuilder:printcolumn:name="User",type="string",JSONPath=".spec.user" +kubebuilder:printcolumn:name="Phase",type="string",JSONPath=".status.phase" +kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:printcolumn:name="Expiry",type="string",JSONPath=".status.expiryTime"
func (*Console) Creating ¶
Creating returns true if the console has no status (the console has just been created)
func (*Console) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Console.
func (*Console) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Console) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*Console) EligibleForGC ¶
EligibleForGC returns whether a console can be garbage collected
func (*Console) GetGCTime ¶
GetGCTime returns time time at which a console can be garbage collected, or nil if it cannot be.
This will be the case if: - TTLSecondsBeforeRunning has elapsed and the console hasn't progressed to running - TTLSecondsAfterFinished has elapsed and the console is stopped or destroyed
func (*Console) PendingAuthorisation ¶
PendingAuthorisation returns true if the is Pending Authorisation
func (*Console) PendingJob ¶
PendingJob returns true if the console is in a phase that occurs before job creation
func (*Console) PostRunning ¶
PostRunning returns true if the console is in a phase after Running
func (*Console) PreRunning ¶
PreRunning returns true if the console is in a phase before Running
func (*Console) TTLSecondsAfterFinished ¶
TTLSecondsAfterFinished returns the console's after finished TTL as a time.Duration
func (*Console) TTLSecondsBeforeRunning ¶
TTLSecondsBeforeRunning returns the console's before running TTL as a time.Duration
type ConsoleAttachObserverWebhook ¶ added in v3.2.1
type ConsoleAttachObserverWebhook struct {
// contains filtered or unexported fields
}
+kubebuilder:object:generate=false
func NewConsoleAttachObserverWebhook ¶ added in v3.2.1
func NewConsoleAttachObserverWebhook(c client.Client, recorder record.EventRecorder, lifecycleRecorder LifecycleEventRecorder, logger logr.Logger, requestTimeout time.Duration) *ConsoleAttachObserverWebhook
func (*ConsoleAttachObserverWebhook) InjectDecoder ¶ added in v3.2.1
func (c *ConsoleAttachObserverWebhook) InjectDecoder(d *admission.Decoder) error
type ConsoleAuthenticatorWebhook ¶
type ConsoleAuthenticatorWebhook struct {
// contains filtered or unexported fields
}
+kubebuilder:object:generate=false
func NewConsoleAuthenticatorWebhook ¶
func NewConsoleAuthenticatorWebhook(lifecycleRecorder LifecycleEventRecorder, logger logr.Logger) *ConsoleAuthenticatorWebhook
func (*ConsoleAuthenticatorWebhook) InjectDecoder ¶
func (c *ConsoleAuthenticatorWebhook) InjectDecoder(d *admission.Decoder) error
type ConsoleAuthorisation ¶
type ConsoleAuthorisation struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec ConsoleAuthorisationSpec `json:"spec,omitempty"` Status ConsoleAuthorisationStatus `json:"status,omitempty"` }
ConsoleAuthorisation is the Schema for the consoleauthorisations API
func (*ConsoleAuthorisation) DeepCopy ¶
func (in *ConsoleAuthorisation) DeepCopy() *ConsoleAuthorisation
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisation.
func (*ConsoleAuthorisation) DeepCopyInto ¶
func (in *ConsoleAuthorisation) DeepCopyInto(out *ConsoleAuthorisation)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ConsoleAuthorisation) DeepCopyObject ¶
func (in *ConsoleAuthorisation) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ConsoleAuthorisationList ¶
type ConsoleAuthorisationList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []ConsoleAuthorisation `json:"items"` }
ConsoleAuthorisationList contains a list of ConsoleAuthorisation
func (*ConsoleAuthorisationList) DeepCopy ¶
func (in *ConsoleAuthorisationList) DeepCopy() *ConsoleAuthorisationList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisationList.
func (*ConsoleAuthorisationList) DeepCopyInto ¶
func (in *ConsoleAuthorisationList) DeepCopyInto(out *ConsoleAuthorisationList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ConsoleAuthorisationList) DeepCopyObject ¶
func (in *ConsoleAuthorisationList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ConsoleAuthorisationRule ¶
type ConsoleAuthorisationRule struct { // Human readable name of authorisation rule added to logs for auditing. Name string `json:"name"` // The matching rule to compare to the command and arguments of the console. // // This uses basic wildcard matching: Each element of the array is evaluated // against the corresponding element of the console's `spec.command` field. // An element consisting of a single `*` character will assert on the // presence of an element, but will allow any contents. // An element consisting of `**`, at the end of the match array, will match 0 // or more additional elements in the command, but can only be used at the // end of the rule. // // Pattern matching _within_ elements is deliberately not supported, as this // makes it much harder to construct rules which are secure and do not allow chaining of additional commands (e.g. in a shell context). // // +kubebuilder:validation:MinItems=1 MatchCommandElements []string `json:"matchCommandElements"` ConsoleAuthorisers `json:",inline"` }
ConsoleAuthorisationRule declares rules specifying what commands need to be authorised and by whom.
func (*ConsoleAuthorisationRule) DeepCopy ¶
func (in *ConsoleAuthorisationRule) DeepCopy() *ConsoleAuthorisationRule
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisationRule.
func (*ConsoleAuthorisationRule) DeepCopyInto ¶
func (in *ConsoleAuthorisationRule) DeepCopyInto(out *ConsoleAuthorisationRule)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleAuthorisationSpec ¶
type ConsoleAuthorisationSpec struct { // The reference to the console by name that this console authorisation belongs to. ConsoleRef corev1.LocalObjectReference `json:"consoleRef"` // List of authorisations that have been given to the referenced console. Authorisations []rbacv1.Subject `json:"authorisations"` }
ConsoleAuthorisationSpec defines the desired state of ConsoleAuthorisation
func (*ConsoleAuthorisationSpec) DeepCopy ¶
func (in *ConsoleAuthorisationSpec) DeepCopy() *ConsoleAuthorisationSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisationSpec.
func (*ConsoleAuthorisationSpec) DeepCopyInto ¶
func (in *ConsoleAuthorisationSpec) DeepCopyInto(out *ConsoleAuthorisationSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleAuthorisationStatus ¶
type ConsoleAuthorisationStatus struct{}
ConsoleAuthorisationStatus defines the observed state of ConsoleAuthorisation
func (*ConsoleAuthorisationStatus) DeepCopy ¶
func (in *ConsoleAuthorisationStatus) DeepCopy() *ConsoleAuthorisationStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisationStatus.
func (*ConsoleAuthorisationStatus) DeepCopyInto ¶
func (in *ConsoleAuthorisationStatus) DeepCopyInto(out *ConsoleAuthorisationStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleAuthorisationUpdate ¶
type ConsoleAuthorisationUpdate struct {
// contains filtered or unexported fields
}
func (*ConsoleAuthorisationUpdate) DeepCopy ¶
func (in *ConsoleAuthorisationUpdate) DeepCopy() *ConsoleAuthorisationUpdate
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisationUpdate.
func (*ConsoleAuthorisationUpdate) DeepCopyInto ¶
func (in *ConsoleAuthorisationUpdate) DeepCopyInto(out *ConsoleAuthorisationUpdate)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ConsoleAuthorisationUpdate) Validate ¶
func (u *ConsoleAuthorisationUpdate) Validate() error
type ConsoleAuthorisationWebhook ¶
type ConsoleAuthorisationWebhook struct {
// contains filtered or unexported fields
}
+kubebuilder:object:generate=false
func NewConsoleAuthorisationWebhook ¶
func NewConsoleAuthorisationWebhook(c client.Client, lifecycleRecorder LifecycleEventRecorder, logger logr.Logger) *ConsoleAuthorisationWebhook
func (*ConsoleAuthorisationWebhook) InjectDecoder ¶
func (c *ConsoleAuthorisationWebhook) InjectDecoder(d *admission.Decoder) error
type ConsoleAuthorisers ¶
type ConsoleAuthorisers struct { // The number of authorisations required from members of the subjects before the console can run. AuthorisationsRequired int `json:"authorisationsRequired"` // List of subjects that can provide authorisation for the console command to run. Subjects []rbacv1.Subject `json:"subjects"` }
ConsoleAuthorisers declares the subjects required to perform authorisations.
func (*ConsoleAuthorisers) DeepCopy ¶
func (in *ConsoleAuthorisers) DeepCopy() *ConsoleAuthorisers
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleAuthorisers.
func (*ConsoleAuthorisers) DeepCopyInto ¶
func (in *ConsoleAuthorisers) DeepCopyInto(out *ConsoleAuthorisers)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleIdBuilder ¶ added in v3.7.0
+kubebuilder:object:generate=false
func NewConsoleIdBuilder ¶ added in v3.7.0
func NewConsoleIdBuilder(contextName string) ConsoleIdBuilder
type ConsoleList ¶
type ConsoleList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []Console `json:"items"` }
ConsoleList contains a list of Console
func (*ConsoleList) DeepCopy ¶
func (in *ConsoleList) DeepCopy() *ConsoleList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleList.
func (*ConsoleList) DeepCopyInto ¶
func (in *ConsoleList) DeepCopyInto(out *ConsoleList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ConsoleList) DeepCopyObject ¶
func (in *ConsoleList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ConsolePhase ¶
type ConsolePhase string
const ( // ConsolePendingAuthorisation means the console been created but it is not yet authorised to run ConsolePendingAuthorisation ConsolePhase = "Pending Authorisation" // ConsolePending means the console has been created but its pod is not yet ready ConsolePending ConsolePhase = "Pending" // ConsoleRunning means the pod has started and is running ConsoleRunning ConsolePhase = "Running" // ConsoleStopped means the console has completed or timed out ConsoleStopped ConsolePhase = "Stopped" // ConsoleDestroyed means the consoles job has been deleted ConsoleDestroyed ConsolePhase = "Destroyed" )
These are valid phases for a console
type ConsoleSpec ¶
type ConsoleSpec struct { User string `json:"user"` Reason string `json:"reason"` // Number of seconds that the console should run for. // If the process running within the console has not exited before this // timeout is reached, then the console will be terminated. // If this value exceeds the Maximum Timeout Seconds specified in the // ConsoleTemplate that this console refers to, then this timeout will be // clamped to that value. // Maximum value of 1 week (as per ConsoleTemplate.Spec.MaxTimeoutSeconds). // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=604800 TimeoutSeconds int `json:"timeoutSeconds,omitempty"` ConsoleTemplateRef corev1.LocalObjectReference `json:"consoleTemplateRef"` // Specifies the TTL before running for this Console. The Console will be // eligible for garbage collection TTLSecondsBeforeRunning seconds if it has // not progressed to the Running phase. This field is modeled on the TTL // mechanism in Kubernetes 1.12. // +optional // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=86400 TTLSecondsBeforeRunning *int32 `json:"ttlSecondsBeforeRunning,omitempty"` // Specifies the TTL for this Console. The Console will be eligible for // garbage collection TTLSecondsAfterFinished seconds after it enters the // Stopped or Destroyed phase. This field is modeled on the TTL mechanism in // Kubernetes 1.12. // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=604800 // +optional TTLSecondsAfterFinished *int32 `json:"ttlSecondsAfterFinished,omitempty"` // The command and arguments to execute. If not specified the command from // the template specification will be used. Command []string `json:"command,omitempty"` // Disable TTY and STDIN on the underlying container. This should usually // be set to false so clients can attach interactively; however, in certain // situations, enabling the TTY on a container in the console causes // breakage - in Tekton steps, for example. Noninteractive bool `json:"noninteractive,omitempty"` }
ConsoleSpec defines the desired state of Console
func (*ConsoleSpec) DeepCopy ¶
func (in *ConsoleSpec) DeepCopy() *ConsoleSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleSpec.
func (*ConsoleSpec) DeepCopyInto ¶
func (in *ConsoleSpec) DeepCopyInto(out *ConsoleSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleStatus ¶
type ConsoleStatus struct { PodName string `json:"podName"` ExpiryTime *metav1.Time `json:"expiryTime,omitempty"` // Time at which the job completed successfully CompletionTime *metav1.Time `json:"completionTime,omitempty"` Phase ConsolePhase `json:"phase"` }
ConsoleStatus defines the observed state of Console
func (*ConsoleStatus) DeepCopy ¶
func (in *ConsoleStatus) DeepCopy() *ConsoleStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleStatus.
func (*ConsoleStatus) DeepCopyInto ¶
func (in *ConsoleStatus) DeepCopyInto(out *ConsoleStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleTemplate ¶
type ConsoleTemplate struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec ConsoleTemplateSpec `json:"spec,omitempty"` Status ConsoleTemplateStatus `json:"status,omitempty"` }
ConsoleTemplate is the Schema for the consoletemplates API
func (*ConsoleTemplate) DeepCopy ¶
func (in *ConsoleTemplate) DeepCopy() *ConsoleTemplate
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleTemplate.
func (*ConsoleTemplate) DeepCopyInto ¶
func (in *ConsoleTemplate) DeepCopyInto(out *ConsoleTemplate)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ConsoleTemplate) DeepCopyObject ¶
func (in *ConsoleTemplate) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*ConsoleTemplate) GetAuthorisationRuleForCommand ¶
func (ct *ConsoleTemplate) GetAuthorisationRuleForCommand(command []string) (ConsoleAuthorisationRule, error)
GetAuthorisationRuleForCommand returns an authorisation rule that matches the command that a console is being started with, or an error if one does not exist.
It does this by iterating through the console template's authorisation rules list until it finds a match, and then falls back to the default authorisation rule if one is defined.
The `matchCommandElements` field, within an AuthorisationRule, is an array of matchers, of which there are 3 supported types:
- `*` - a wildcard that matches the presence of an element.
- `**` - a wildcard that matches any number (including 0) of elements. This can only be used at the end of the array.
- Any other string of characters, this is used to perform an exact string match against the current element.
The elements of the command array are evaluated in order; any failure to match will result in falling back to the next rule.
Examples:
| Matcher | Command | Matches? | | --------------------- | -------------------------------- | -------- | | ["bash"] | ["bash"] | Yes | | ["ls", "*"] | ["ls"] | No | | ["ls", "*"] | ["ls", "file"] | Yes | | ["ls", "*", "file2"] | ["ls", "file", "file3", "file2"] | No | | ["ls", "*", "file2"] | ["ls", "file", "file2"] | Yes | | ["echo", "**"] | ["echo"] | Yes | | ["echo", "**"] | ["echo", "hello"] | Yes | | ["echo", "**"] | ["echo", "hi", "bye" ] | Yes | | ["echo", "**", "bye"] | ["echo", "hi", "bye" ] | Error |
func (*ConsoleTemplate) GetDefaultCommandWithArgs ¶
func (ct *ConsoleTemplate) GetDefaultCommandWithArgs() ([]string, error)
GetDefaultCommandWithArgs returns a concatenated list of command and arguments, if defined on the template
func (*ConsoleTemplate) HasAuthorisationRules ¶
func (ct *ConsoleTemplate) HasAuthorisationRules() bool
HasAuthorisationRules defines whether a console template has authorisation rules defined on it.
func (*ConsoleTemplate) Validate ¶
func (ct *ConsoleTemplate) Validate() error
Validate checks the console template object for correctness and returns a list of errors.
type ConsoleTemplateList ¶
type ConsoleTemplateList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []ConsoleTemplate `json:"items"` }
ConsoleTemplateList contains a list of ConsoleTemplate
func (*ConsoleTemplateList) DeepCopy ¶
func (in *ConsoleTemplateList) DeepCopy() *ConsoleTemplateList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleTemplateList.
func (*ConsoleTemplateList) DeepCopyInto ¶
func (in *ConsoleTemplateList) DeepCopyInto(out *ConsoleTemplateList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ConsoleTemplateList) DeepCopyObject ¶
func (in *ConsoleTemplateList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ConsoleTemplateSpec ¶
type ConsoleTemplateSpec struct { Template PodTemplatePreserveMetadataSpec `json:"template"` // Default time, in seconds, that a Console will be created for. // Maximum value of 1 week (as per MaxTimeoutSeconds). // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=604800 DefaultTimeoutSeconds int `json:"defaultTimeoutSeconds"` // Maximum time, in seconds, that a Console can be created for. // Maximum value of 1 week. // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=604800 MaxTimeoutSeconds int `json:"maxTimeoutSeconds"` AdditionalAttachSubjects []rbacv1.Subject `json:"additionalAttachSubjects,omitempty"` // Specifies the TTL before running for any Console created with this // template. If set, the Console will be eligible for garbage collection // TTLSecondsBeforeRunning seconds if it has not progressed to the Running // phase. If not set, this value defaults to 60 minutes. This field is // modeled on the TTL mechanism in Kubernetes 1.12. // +optional // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=86400 DefaultTTLSecondsBeforeRunning *int32 `json:"defaultTtlSecondsBeforeRunning,omitempty"` // Specifies the TTL for any Console created with this template. If set, the // Console will be eligible for garbage collection // DefaultTTLSecondsAfterFinished seconds after it enters the Stopped or // Destroyed phase. If not set, this value defaults to 24 hours. This field // is modeled closely on the TTL mechanism in Kubernetes 1.12. // +optional // +kubebuilder:validation:Minimum=0 // +kubebuilder:validation:Maximum=604800 DefaultTTLSecondsAfterFinished *int32 `json:"defaultTtlSecondsAfterFinished,omitempty"` // List of authorisation rules to match against in order from top to bottom. // +optional AuthorisationRules []ConsoleAuthorisationRule `json:"authorisationRules,omitempty"` // Default authorisation rule to use if no authorisation rules are defined or no authorisation rules match. // +optional DefaultAuthorisationRule *ConsoleAuthorisers `json:"defaultAuthorisationRule,omitempty"` }
ConsoleTemplateSpec defines the desired state of ConsoleTemplate
func (*ConsoleTemplateSpec) DeepCopy ¶
func (in *ConsoleTemplateSpec) DeepCopy() *ConsoleTemplateSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleTemplateSpec.
func (*ConsoleTemplateSpec) DeepCopyInto ¶
func (in *ConsoleTemplateSpec) DeepCopyInto(out *ConsoleTemplateSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleTemplateStatus ¶
type ConsoleTemplateStatus struct{}
ConsoleTemplateStatus defines the observed state of ConsoleTemplate
func (*ConsoleTemplateStatus) DeepCopy ¶
func (in *ConsoleTemplateStatus) DeepCopy() *ConsoleTemplateStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsoleTemplateStatus.
func (*ConsoleTemplateStatus) DeepCopyInto ¶
func (in *ConsoleTemplateStatus) DeepCopyInto(out *ConsoleTemplateStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ConsoleTemplateValidationWebhook ¶
type ConsoleTemplateValidationWebhook struct {
// contains filtered or unexported fields
}
+kubebuilder:object:generate=false
func NewConsoleTemplateValidationWebhook ¶
func NewConsoleTemplateValidationWebhook(logger logr.Logger) *ConsoleTemplateValidationWebhook
func (*ConsoleTemplateValidationWebhook) InjectDecoder ¶
func (c *ConsoleTemplateValidationWebhook) InjectDecoder(d *admission.Decoder) error
type LifecycleEventRecorder ¶ added in v3.4.0
type LifecycleEventRecorder interface { ConsoleRequest(context.Context, *Console, *ConsoleAuthorisationRule) error ConsoleAuthorise(context.Context, *Console, string) error ConsoleStart(context.Context, *Console, string) error ConsoleAttach(context.Context, *Console, string, string) error ConsoleTerminate(context.Context, *Console, bool) error }
+kubebuilder:object:generate=false
func NewLifecycleEventRecorder ¶ added in v3.4.0
func NewLifecycleEventRecorder(contextName string, logger logr.Logger, publisher events.Publisher, idBuilder ConsoleIdBuilder) LifecycleEventRecorder
type PodTemplatePreserveMetadataSpec ¶
type PodTemplatePreserveMetadataSpec struct { // +kubebuilder:pruning:PreserveUnknownFields // Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata metav1.ObjectMeta `json:"metadata,omitempty"` // Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status Spec corev1.PodSpec `json:"spec,omitempty"` }
PodTemplatePreserveMetadataSpec describes the data a pod should have when created from a template
func (*PodTemplatePreserveMetadataSpec) DeepCopy ¶
func (in *PodTemplatePreserveMetadataSpec) DeepCopy() *PodTemplatePreserveMetadataSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PodTemplatePreserveMetadataSpec.
func (*PodTemplatePreserveMetadataSpec) DeepCopyInto ¶
func (in *PodTemplatePreserveMetadataSpec) DeepCopyInto(out *PodTemplatePreserveMetadataSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files ¶
- console_attach_webhook.go
- console_authenticator_webhook.go
- console_authorisation_types.go
- console_authorisation_webhook.go
- console_phases.go
- console_template_types.go
- console_template_validation_webhook.go
- console_types.go
- groupversion_info.go
- helpers.go
- lifecycle_recorder.go
- priority_webhook.go
- zz_generated.deepcopy.go