registry

package

v0.3.0-alpha.0 Latest Latest Go to latest Published: Mar 28, 2022 License: Apache-2.0 Imports: 42 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kcp-dev/kcp

Documentation ¶

Index ¶

Constants
Variables
func AddNameIndexers(crbInformer rbacinformers.ClusterRoleBindingInformer) error
func InternalListOptionsToSelectors(options *metainternal.ListOptions) (labels.Selector, fields.Selector)
func NewREST(rootTenancyClient tenancyclient.TenancyV1alpha1Interface, ...) (*REST, *KubeconfigSubresourceREST)
type FilteredClusterWorkspaces
type KubeConfig
type KubeconfigSubresourceREST
type REST
type RoleType
type WorkspacesScopeKeyType

Constants ¶

View Source

const (
	OrganizationScope string = "all"
	PersonalScope     string = "personal"
	PrettyNameLabel   string = "workspaces.kcp.dev/pretty-name"
	InternalNameLabel string = "workspaces.kcp.dev/internal-name"
	PrettyNameIndex   string = "workspace-pretty-name"
	InternalNameIndex string = "workspace-internal-name"
)

Variables ¶

View Source

var ScopeSet sets.String = sets.NewString(PersonalScope, OrganizationScope)

View Source

var Strategy = workspaceStrategy{typerSchema, names.SimpleNameGenerator}

Strategy is the default logic that applies when creating and updating Project objects via the REST API.

Functions ¶

func AddNameIndexers ¶

func AddNameIndexers(crbInformer rbacinformers.ClusterRoleBindingInformer) error

func InternalListOptionsToSelectors ¶

func InternalListOptionsToSelectors(options *metainternal.ListOptions) (labels.Selector, fields.Selector)

func NewREST ¶

func NewREST(
	rootTenancyClient tenancyclient.TenancyV1alpha1Interface,
	kubeClusterClient kubernetes.ClusterInterface,
	kcpClusterClient kcpclientset.ClusterInterface,
	clusterWorkspaceCache *workspacecache.ClusterWorkspaceCache,
	wilcardsCRBInformer rbacinformers.ClusterRoleBindingInformer,
	getFilteredClusterWorkspaces func(orgClusterName logicalcluster.LogicalCluster) FilteredClusterWorkspaces,
) (*REST, *KubeconfigSubresourceREST)

NewREST returns a RESTStorage object that will work against ClusterWorkspace resources in org workspaces, projecting them to the Workspace type.

Types ¶

type FilteredClusterWorkspaces ¶ added in v0.6.0

type FilteredClusterWorkspaces interface {
	workspaceauth.Lister
	workspaceauth.WatchableCache
	AddWatcher(watcher workspaceauth.CacheWatcher)
	Stop()
}

FilteredClusterWorkspaces allows to list and watch ClusterWorkspaces filtered by authorizaation, i.e. a user only sees those object he has access to.

type KubeConfig ¶

type KubeConfig string

func (KubeConfig) DeepCopyObject ¶

func (obj KubeConfig) DeepCopyObject() runtime.Object

func (KubeConfig) GetObjectKind ¶

func (obj KubeConfig) GetObjectKind() schema.ObjectKind

func (KubeConfig) InputStream ¶

func (s KubeConfig) InputStream(ctx context.Context, apiVersion, acceptHeader string) (stream io.ReadCloser, flush bool, contentType string, err error)

InputStream returns a stream with the contents of the URL location. If no location is provided, a null stream is returned.

type KubeconfigSubresourceREST ¶

type KubeconfigSubresourceREST struct {
	// contains filtered or unexported fields
}

func (*KubeconfigSubresourceREST) Get ¶

func (s *KubeconfigSubresourceREST) Get(ctx context.Context, name string, options *metav1.GetOptions) (runtime.Object, error)

Get retrieves a ClusterWorkspace KubeConfig by workspace name

func (*KubeconfigSubresourceREST) NamespaceScoped ¶

func (s *KubeconfigSubresourceREST) NamespaceScoped() bool

func (*KubeconfigSubresourceREST) New ¶

func (r *KubeconfigSubresourceREST) New() runtime.Object

New creates a new ClusterWorkspace log options object

func (*KubeconfigSubresourceREST) ProducesMIMETypes ¶

func (r *KubeconfigSubresourceREST) ProducesMIMETypes(verb string) []string

ProducesMIMETypes returns a list of the MIME types the specified HTTP verb (GET, POST, DELETE, PATCH) can respond with.

func (*KubeconfigSubresourceREST) ProducesObject ¶

func (r *KubeconfigSubresourceREST) ProducesObject(verb string) interface{}

ProducesObject returns an object the specified HTTP verb respond with. It will overwrite storage object if it is not nil. Only the type of the return object matters, the value will be ignored.

type REST ¶

type REST struct {
	rest.TableConvertor
	// contains filtered or unexported fields
}

func (*REST) Create ¶

func (s *REST) Create(ctx context.Context, obj runtime.Object, createValidation rest.ValidateObjectFunc, options *metav1.CreateOptions) (runtime.Object, error)

Create creates a new workspace The workspace is created in the underlying KCP server, with an internal name since the name ( == pretty name ) requested by the user might already exist at the organization level. Internal names would be <pretty name>--<suffix>.

However, when the user manages his workspaces through the personal scope, the pretty names will always be used.

Personal pretty names and the related internal names are stored on the ClusterRoleBinding that links the ClusterWorkspace-related ClusterRole with the user Subject.

Typical actions done against the underlying KCP instance when

kubectl create workspace my-app

is issued by User-A against the virtual workspace at the personal scope:

create ClusterRoleBinding owner-workspace-my-app-user-A

If this fails, then my-app already exists for the user A => conflict error.

create ClusterRoleBinding owner-workspace-my-app-user-A create ClusterRole owner-workspace-my-app-user-A
create ClusterWorkspace my-app

If this conflicts, create my-app--1, then my-app--2, …

update RoleBinding user-A-my-app to point to my-app-2 instead of my-app.
update ClusterRole owner-workspace-my-app-user-A to point to the internal workspace name update the internalName and pretty annotation on cluster roles and cluster role bindings.

func (*REST) Delete ¶

func (s *REST) Delete(ctx context.Context, name string, deleteValidation rest.ValidateObjectFunc, options *metav1.DeleteOptions) (runtime.Object, bool, error)

func (*REST) Get ¶

func (s *REST) Get(ctx context.Context, name string, options *metav1.GetOptions) (runtime.Object, error)

Get retrieves a Workspace by name

func (*REST) List ¶

func (s *REST) List(ctx context.Context, options *metainternal.ListOptions) (runtime.Object, error)

List retrieves a list of Workspaces that match label.

func (*REST) NamespaceScoped ¶

func (s *REST) NamespaceScoped() bool

func (*REST) New ¶

func (s *REST) New() runtime.Object

New returns a new ClusterWorkspace

func (*REST) NewList ¶

func (*REST) NewList() runtime.Object

NewList returns a new ClusterWorkspaceList

func (*REST) Watch ¶ added in v0.6.0

func (s *REST) Watch(ctx context.Context, options *metainternal.ListOptions) (watch.Interface, error)

type RoleType ¶

type RoleType string

const (
	OwnerRoleType RoleType = "owner"
)

type WorkspacesScopeKeyType ¶

type WorkspacesScopeKeyType string

const (
	WorkspacesScopeKey WorkspacesScopeKeyType = "VirtualWorkspaceWorkspacesScope"
	WorkspacesOrgKey   WorkspacesScopeKeyType = "VirtualWorkspaceWorkspacesOrg"
)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL