Documentation
¶
Index ¶
- type GcpService
- func (s *GcpService) CheckServiceAccountExists(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (bool, error)
- func (s *GcpService) CheckServiceAccountKeyExists(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (bool, error)
- func (s *GcpService) CreateServiceAccountKey(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (*iam.ServiceAccountKey, error)
- func (s *GcpService) DeleteServiceAccount(account *gcpv1beta1.GcpServiceAccount) error
- func (s *GcpService) HandleAimRoles(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) error
- func (s *GcpService) NewServiceAccount(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (*iam.ServiceAccount, error)
- type GcpServiceAccountReconciler
- type RestrictionResolveService
- type RestrictionResolveServiceImpl
- type RestrictionService
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type GcpService ¶
type GcpService struct {
// contains filtered or unexported fields
}
func NewGcpService ¶
func NewGcpService() *GcpService
func (*GcpService) CheckServiceAccountExists ¶
func (s *GcpService) CheckServiceAccountExists(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (bool, error)
func (*GcpService) CheckServiceAccountKeyExists ¶
func (s *GcpService) CheckServiceAccountKeyExists(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (bool, error)
func (*GcpService) CreateServiceAccountKey ¶
func (s *GcpService) CreateServiceAccountKey(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (*iam.ServiceAccountKey, error)
func (*GcpService) DeleteServiceAccount ¶
func (s *GcpService) DeleteServiceAccount(account *gcpv1beta1.GcpServiceAccount) error
func (*GcpService) HandleAimRoles ¶
func (s *GcpService) HandleAimRoles(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) error
func (*GcpService) NewServiceAccount ¶
func (s *GcpService) NewServiceAccount(gcpServiceAccount *gcpv1beta1.GcpServiceAccount, project string) (*iam.ServiceAccount, error)
type GcpServiceAccountReconciler ¶
type GcpServiceAccountReconciler struct {
client.Client
Log logr.Logger
Scheme *runtime.Scheme
*GcpService
RestrictionService RestrictionService
DisableRestrictions bool
}
GcpServiceAccountReconciler reconciles a GcpServiceAccount object
func (*GcpServiceAccountReconciler) SetupWithManager ¶
func (r *GcpServiceAccountReconciler) SetupWithManager(mgr ctrl.Manager) error
type RestrictionResolveService ¶
type RestrictionResolveService interface {
CheckNamespaceHasRights(namespace string) (*v1beta1.GcpNamespaceRestriction, error)
}
type RestrictionResolveServiceImpl ¶
type RestrictionResolveServiceImpl struct {
client.Client
// contains filtered or unexported fields
}
func NewRestrictionResolveService ¶
func NewRestrictionResolveService(kubernetesClient client.Client) *RestrictionResolveServiceImpl
func (*RestrictionResolveServiceImpl) CheckNamespaceHasRights ¶
func (r *RestrictionResolveServiceImpl) CheckNamespaceHasRights(namespace string) (*v1beta1.GcpNamespaceRestriction, error)
type RestrictionService ¶
type RestrictionService struct {
// contains filtered or unexported fields
}
func NewRestrictionService ¶
func NewRestrictionService(restrictionResolveService RestrictionResolveService) *RestrictionService
func (*RestrictionService) CheckNamespaceHasRights ¶
func (r *RestrictionService) CheckNamespaceHasRights(namespace string, resources []v1beta1.GcpRoleBindings) (bool, error)
Source Files
Click to show internal directories.
Click to hide internal directories.