Documentation
¶
Overview ¶
Package v1alpha1 contains API Schema definitions for the policies v1alpha1 API group +k8s:deepcopy-gen=package,register +groupName=policies.ibm.com
Package v1alpha1 contains API Schema definitions for the policies v1alpha1 API group +k8s:deepcopy-gen=package,register +groupName=policies.ibm.com
Index ¶
- Variables
- func GetOpenAPIDefinitions(ref common.ReferenceCallback) map[string]common.OpenAPIDefinition
- type ComplianceState
- type Policy
- type PolicyList
- type RemediationAction
- type Severity
- type Target
- type TrustedNodePolicy
- type TrustedNodePolicyList
- type TrustedNodePolicySpec
- type TrustedNodePolicyStatus
Constants ¶
This section is empty.
Variables ¶
var ( // SchemeGroupVersion is group version used to register these objects SchemeGroupVersion = schema.GroupVersion{Group: "policies.ibm.com", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: SchemeGroupVersion} )
Functions ¶
func GetOpenAPIDefinitions ¶
func GetOpenAPIDefinitions(ref common.ReferenceCallback) map[string]common.OpenAPIDefinition
Types ¶
type ComplianceState ¶
type ComplianceState string
ComplianceState shows the state of enforcement
const ( // Compliant is an ComplianceState Compliant ComplianceState = "Compliant" // NonCompliant is an ComplianceState NonCompliant ComplianceState = "NonCompliant" // UnknownCompliancy is an ComplianceState UnknownCompliancy ComplianceState = "UnknownCompliancy" )
type Policy ¶
type Policy struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata"`
}
Policy is a specification for a Policy resource +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object +genclient
func (*Policy) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Policy.
func (*Policy) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Policy) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type PolicyList ¶
type PolicyList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata"`
Items []Policy `json:"items"`
}
PolicyList is a list of Policy resources +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object +k8s:lister-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
func (*PolicyList) DeepCopy ¶
func (in *PolicyList) DeepCopy() *PolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyList.
func (*PolicyList) DeepCopyInto ¶
func (in *PolicyList) DeepCopyInto(out *PolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*PolicyList) DeepCopyObject ¶
func (in *PolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type RemediationAction ¶
type RemediationAction string
RemediationAction : enforce or inform
const ( // Enforce is an remediationAction to make changes Enforce RemediationAction = "Enforce" // Inform is an remediationAction to only inform Inform RemediationAction = "Inform" )
type Target ¶
type Target struct {
Include []string `json:"include,omitempty"`
Exclude []string `json:"exclude,omitempty"`
}
Target defines the list of namespaces to include/exclude
func (*Target) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Target.
func (*Target) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrustedNodePolicy ¶
type TrustedNodePolicy struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec TrustedNodePolicySpec `json:"spec,omitempty"`
Status TrustedNodePolicyStatus `json:"status,omitempty"`
}
TrustedNodePolicy is the Schema for the samplepolicies API +k8s:openapi-gen=true +kubebuilder:subresource:status +kubebuilder:resource:path=samplepolicies,scope=Namespaced
func (*TrustedNodePolicy) DeepCopy ¶
func (in *TrustedNodePolicy) DeepCopy() *TrustedNodePolicy
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustedNodePolicy.
func (*TrustedNodePolicy) DeepCopyInto ¶
func (in *TrustedNodePolicy) DeepCopyInto(out *TrustedNodePolicy)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrustedNodePolicy) DeepCopyObject ¶
func (in *TrustedNodePolicy) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrustedNodePolicyList ¶
type TrustedNodePolicyList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []TrustedNodePolicy `json:"items"`
}
TrustedNodePolicyList contains a list of TrustedNodePolicy
func (*TrustedNodePolicyList) DeepCopy ¶
func (in *TrustedNodePolicyList) DeepCopy() *TrustedNodePolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustedNodePolicyList.
func (*TrustedNodePolicyList) DeepCopyInto ¶
func (in *TrustedNodePolicyList) DeepCopyInto(out *TrustedNodePolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrustedNodePolicyList) DeepCopyObject ¶
func (in *TrustedNodePolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrustedNodePolicySpec ¶
type TrustedNodePolicySpec struct {
Severity Severity `json:"severity,omitempty"` //low, medium, high
RemediationAction RemediationAction `json:"remediationAction,omitempty"` //enforce, inform
NamespaceSelector Target `json:"namespaceSelector,omitempty"` // selecting a list of namespaces where the policy applies
LabelSelector map[string]string `json:"labelSelector,omitempty"`
MaxRoleBindingUsersPerNamespace int `json:"maxRoleBindingUsersPerNamespace,omitempty"`
MaxRoleBindingGroupsPerNamespace int `json:"maxRoleBindingGroupsPerNamespace,omitempty"`
MaxClusterRoleBindingUsers int `json:"maxClusterRoleBindingUsers,omitempty"`
MaxClusterRoleBindingGroups int `json:"maxClusterRoleBindingGroups,omitempty"`
}
TrustedNodePolicySpec defines the desired state of TrustedNodePolicy +k8s:openapi-gen=true
func (*TrustedNodePolicySpec) DeepCopy ¶
func (in *TrustedNodePolicySpec) DeepCopy() *TrustedNodePolicySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustedNodePolicySpec.
func (*TrustedNodePolicySpec) DeepCopyInto ¶
func (in *TrustedNodePolicySpec) DeepCopyInto(out *TrustedNodePolicySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrustedNodePolicyStatus ¶
type TrustedNodePolicyStatus struct {
ComplianceState ComplianceState `json:"compliant,omitempty"` // Compliant, NonCompliant, UnkownCompliancy
CompliancyDetails map[string]map[string][]string `json:"compliancyDetails,omitempty"` // reason for non-compliancy
}
TrustedNodePolicyStatus defines the observed state of TrustedNodePolicy +k8s:openapi-gen=true
func (*TrustedNodePolicyStatus) DeepCopy ¶
func (in *TrustedNodePolicyStatus) DeepCopy() *TrustedNodePolicyStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustedNodePolicyStatus.
func (*TrustedNodePolicyStatus) DeepCopyInto ¶
func (in *TrustedNodePolicyStatus) DeepCopyInto(out *TrustedNodePolicyStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files