Affected by 
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AuditHandler ¶ added in v1.2.0
type AuditHandler interface {
Add(request *admissionv1.AdmissionRequest)
Run(workers int, stopCh <-chan struct{})
}
AuditHandler applies validate audit policies to the admission request the handler adds the request to the work queue and returns immediately the request is processed in background, with the exact same logic when process the admission request in the webhook
func NewValidateAuditHandler ¶ added in v1.2.0
func NewValidateAuditHandler(pCache policycache.Interface, eventGen event.Interface, prGenerator policyreport.GeneratorInterface, rbInformer rbacinformer.RoleBindingInformer, crbInformer rbacinformer.ClusterRoleBindingInformer, namespaces informers.NamespaceInformer, log logr.Logger, dynamicConfig config.Configuration, client client.Interface, promConfig *metrics.PromConfig) AuditHandler
NewValidateAuditHandler returns a new instance of audit policy handler
type WebhookServer ¶
type WebhookServer struct {
// contains filtered or unexported fields
}
WebhookServer contains configured TLS server with MutationWebhook.
func NewWebhookServer ¶
func NewWebhookServer( kyvernoClient kyvernoclient.Interface, client client.Interface, tlsPair *tlsutils.PemPair, urInformer urinformer.UpdateRequestInformer, pInformer kyvernoinformer.ClusterPolicyInformer, rbInformer rbacinformer.RoleBindingInformer, crbInformer rbacinformer.ClusterRoleBindingInformer, rInformer rbacinformer.RoleInformer, crInformer rbacinformer.ClusterRoleInformer, namespace informers.NamespaceInformer, eventGen event.Interface, pCache policycache.Interface, webhookRegistrationClient *webhookconfig.Register, webhookMonitor *webhookconfig.Monitor, configHandler config.Configuration, prGenerator policyreport.GeneratorInterface, urGenerator webhookgenerate.Generator, auditHandler AuditHandler, cleanUp chan<- struct{}, log logr.Logger, openAPIController *openapi.Controller, urc *background.Controller, promConfig *metrics.PromConfig, ) (*WebhookServer, error)
NewWebhookServer creates new instance of WebhookServer accordingly to given configuration Policy Controller and Kubernetes Client should be initialized in configuration
func (*WebhookServer) RunAsync ¶
func (ws *WebhookServer) RunAsync(stopCh <-chan struct{})
RunAsync TLS server in separate thread and returns control immediately
func (*WebhookServer) Stop ¶
func (ws *WebhookServer) Stop(ctx context.Context)
Stop TLS server and returns control after the server is shut down
Source Files
Directories