config

package

v0.2.60 Latest Latest Go to latest Published: Dec 25, 2024 License: Apache-2.0 Imports: 13 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/kubescape/operator

Documentation ¶

Index ¶

func GetServiceURLs(filePath string) (schema.IBackendServices, error)
func LoadClusterConfig() (utilsmetadata.ClusterConfig, error)
func ValidateConfig(config IConfig) error
type Capabilities
type CapabilitiesConfig
- func LoadCapabilitiesConfig(path string) (CapabilitiesConfig, error)
type Component
type Components
type Config
- func LoadConfig(path string) (Config, error)
type Configurations
type IConfig
type OperatorConfig
- func NewOperatorConfig(components CapabilitiesConfig, clusterConfig utilsmetadata.ClusterConfig, ...) *OperatorConfig
type Server
type ServiceScanConfig

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GetServiceURLs ¶

func GetServiceURLs(filePath string) (schema.IBackendServices, error)

func LoadClusterConfig ¶

func LoadClusterConfig() (utilsmetadata.ClusterConfig, error)

func ValidateConfig ¶

func ValidateConfig(config IConfig) error

Types ¶

type Capabilities ¶

type Capabilities struct {
	ConfigurationScan    string `json:"configurationScan"`
	ContinuousScan       string `json:"continuousScan"`
	NetworkGenerator     string `json:"networkGenerator"`
	NodeScan             string `json:"nodeScan"`
	Otel                 string `json:"otel"`
	Relevancy            string `json:"relevancy"`
	RuntimeObservability string `json:"runtimeObservability"`
	NodeSbomGeneration   string `json:"nodeSbomGeneration"`
	Seccomp              string `json:"seccomp"`
	VulnerabilityScan    string `json:"vulnerabilityScan"`
	AdmissionController  string `json:"admissionController"`
}

type CapabilitiesConfig ¶

type CapabilitiesConfig struct {
	Capabilities      Capabilities      `mapstructure:"capabilities"`
	Components        Components        `mapstructure:"components"`
	Configurations    Configurations    `mapstructure:"configurations"`
	ServiceScanConfig ServiceScanConfig `mapstructure:"serviceScanConfig"`
}

func LoadCapabilitiesConfig ¶

func LoadCapabilitiesConfig(path string) (CapabilitiesConfig, error)

type Component ¶

type Component struct {
	Enabled bool `json:"enabled"`
}

type Components ¶

type Components struct {
	Gateway            Component `mapstructure:"gateway"`
	HostScanner        Component `mapstructure:"hostScanner"`
	Kollector          Component `mapstructure:"kollector"`
	Kubescape          Component `mapstructure:"kubescape"`
	KubescapeScheduler Component `mapstructure:"kubescapeScheduler"`
	Kubevuln           Component `mapstructure:"kubevuln"`
	KubevulnScheduler  Component `mapstructure:"kubevulnScheduler"`
	NodeAgent          Component `mapstructure:"nodeAgent"`
	Operator           Component `mapstructure:"operator"`
	OtelCollector      Component `mapstructure:"otelCollector"`
	Persistence        Component `mapstructure:"persistence"`
	ServiceDiscovery   Component `mapstructure:"serviceDiscovery"`
	Storage            Component `mapstructure:"storage"`
}

type Config ¶

type Config struct {
	Namespace                string        `mapstructure:"namespace"`
	RestAPIPort              string        `mapstructure:"port"`
	CleanUpRoutineInterval   time.Duration `mapstructure:"cleanupDelay"`
	ConcurrencyWorkers       int           `mapstructure:"workerConcurrency"`
	TriggerSecurityFramework bool          `mapstructure:"triggerSecurityFramework"`
	MatchingRulesFilename    string        `mapstructure:"matchingRulesFilename"`
	// EventDeduplicationInterval is the interval during which duplicate events will be silently dropped from processing via continuous scanning
	EventDeduplicationInterval time.Duration                 `mapstructure:"eventDeduplicationInterval"`
	HTTPExporterConfig         *exporters.HTTPExporterConfig `mapstructure:"httpExporterConfig"`
	ExcludeNamespaces          []string                      `mapstructure:"excludeNamespaces"`
	IncludeNamespaces          []string                      `mapstructure:"includeNamespaces"`
	// PodScanGuardTime specifies the minimum age a pod without a parent must have before it is scanned
	PodScanGuardTime time.Duration `mapstructure:"podScanGuardTime"`
}

func LoadConfig ¶

func LoadConfig(path string) (Config, error)

type Configurations ¶

type Configurations struct {
	Persistence string `json:"persistence"`
	Server      Server `json:"server"`
}

type IConfig ¶

type IConfig interface {
	Namespace() string
	AccountID() string
	AccessKey() string
	ClusterName() string
	EventReceiverURL() string
	GatewayWebsocketURL() string
	ConcurrencyWorkers() int
	Components() Components
	AdmissionControllerEnabled() bool
	ContinuousScanEnabled() bool
	NodeSbomGenerationEnabled() bool
	CleanUpRoutineInterval() time.Duration
	MatchingRulesFilename() string
	TriggerSecurityFramework() bool
	KubescapeURL() string
	KubevulnURL() string
	SkipNamespace(ns string) bool
	GuardTime() time.Duration
}

IConfig is an interface for all config types used in the operator

type OperatorConfig ¶

type OperatorConfig struct {
	// contains filtered or unexported fields
}

OperatorConfig implements IConfig

func NewOperatorConfig ¶

func NewOperatorConfig(components CapabilitiesConfig, clusterConfig utilsmetadata.ClusterConfig, creds *utils.Credentials, eventReceiverRestURL string, serviceConfig Config) *OperatorConfig

func (*OperatorConfig) AccessKey ¶

func (c *OperatorConfig) AccessKey() string

func (*OperatorConfig) AccountID ¶

func (c *OperatorConfig) AccountID() string

func (*OperatorConfig) AdmissionControllerEnabled ¶ added in v0.2.31

func (c *OperatorConfig) AdmissionControllerEnabled() bool

func (*OperatorConfig) CleanUpRoutineInterval ¶

func (c *OperatorConfig) CleanUpRoutineInterval() time.Duration

func (*OperatorConfig) ClusterName ¶

func (c *OperatorConfig) ClusterName() string

func (*OperatorConfig) Components ¶

func (c *OperatorConfig) Components() Components

func (*OperatorConfig) ConcurrencyWorkers ¶

func (c *OperatorConfig) ConcurrencyWorkers() int

func (*OperatorConfig) ContinuousScanEnabled ¶

func (c *OperatorConfig) ContinuousScanEnabled() bool

func (*OperatorConfig) EventReceiverURL ¶

func (c *OperatorConfig) EventReceiverURL() string

func (*OperatorConfig) GatewayWebsocketURL ¶

func (c *OperatorConfig) GatewayWebsocketURL() string

func (*OperatorConfig) GuardTime ¶ added in v0.2.31

func (c *OperatorConfig) GuardTime() time.Duration

func (*OperatorConfig) HttpExporterConfig ¶ added in v0.2.31

func (c *OperatorConfig) HttpExporterConfig() *exporters.HTTPExporterConfig

func (*OperatorConfig) KubescapeURL ¶

func (c *OperatorConfig) KubescapeURL() string

func (*OperatorConfig) KubevulnURL ¶

func (c *OperatorConfig) KubevulnURL() string

func (*OperatorConfig) MatchingRulesFilename ¶

func (c *OperatorConfig) MatchingRulesFilename() string

func (*OperatorConfig) Namespace ¶

func (c *OperatorConfig) Namespace() string

func (*OperatorConfig) NodeSbomGenerationEnabled ¶ added in v0.2.50

func (c *OperatorConfig) NodeSbomGenerationEnabled() bool

func (*OperatorConfig) SkipNamespace ¶ added in v0.2.31

func (c *OperatorConfig) SkipNamespace(ns string) bool

func (*OperatorConfig) TriggerSecurityFramework ¶

func (c *OperatorConfig) TriggerSecurityFramework() bool

type Server ¶

type Server struct {
	Account      string `json:"account"`
	DiscoveryURL string `json:"discoveryUrl"`
	OtelURL      string `json:"otelUrl"`
}

type ServiceScanConfig ¶ added in v0.2.31

type ServiceScanConfig struct {
	Enabled  bool          `json:"enabled"`
	Interval time.Duration `json:"interval"`
}

Source Files ¶

View all Source files

config.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL