Documentation
¶
Index ¶
- Variables
- func NewRegistryOpenShiftClient() (*osclient.Client, error)
- func NewUserOpenShiftClient(bearerToken string) (*osclient.Client, error)
- func UserClientFrom(ctx context.Context) (*client.Client, bool)
- func VerifyOpenShiftAccess(namespace, imageRepo, verb string, client *client.Client) error
- func VerifyOpenShiftUser(user string, client *client.Client) error
- func WithUserClient(parent context.Context, userClient *client.Client) context.Context
- type AccessController
Constants ¶
This section is empty.
Variables ¶
View Source
var ( ErrTokenRequired = errors.New("authorization header with basic token required") ErrTokenInvalid = errors.New("failed to decode basic token") ErrOpenShiftTokenRequired = errors.New("expected openshift bearer token as password for basic token to registry") ErrNamespaceRequired = errors.New("repository namespace required") ErrOpenShiftAccessDenied = errors.New("openshift access denied") )
Errors used and exported by this package.
Functions ¶
func NewUserOpenShiftClient ¶
func VerifyOpenShiftAccess ¶
Types ¶
type AccessController ¶
type AccessController struct {
// contains filtered or unexported fields
}
func (*AccessController) Authorized ¶
func (ac *AccessController) Authorized(ctx context.Context, accessRecords ...registryauth.Access) (context.Context, error)
Authorized handles checking whether the given request is authorized for actions on resources allowed by openshift.
Source Files
Click to show internal directories.
Click to hide internal directories.