audit

package
v0.1.10 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 25, 2024 License: MIT Imports: 4 Imported by: 0

Documentation

Index

Constants

View Source 
const GroupName = "audit.metal.extensions.gardener.cloud"

GroupName is the group name use in this package

Variables

View Source 
var (
	// SchemeBuilder used to register the Shoot resource.
	SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes)
	// AddToScheme is a pointer to SchemeBuilder.AddToScheme.
	AddToScheme = SchemeBuilder.AddToScheme
)
View Source 
var SchemeGroupVersion = schema.GroupVersion{Group: GroupName, Version: runtime.APIVersionInternal}

SchemeGroupVersion is group version used to register these objects

Functions

func Kind 

func Kind(kind string) schema.GroupKind

Kind takes an unqualified kind and returns a Group qualified GroupKind

func Resource 

func Resource(resource string) schema.GroupResource

Resource takes an unqualified resource and returns a Group qualified GroupResource

Types

type AuditBackendClusterForwarding 

type AuditBackendClusterForwarding struct {
	// Enabled allows to turn this backend on.
	Enabled bool

	// FilesystemBufferSize is the maximum disk space for the fluent-bit file sytem buffer.
	FilesystemBufferSize *string
}

func (*AuditBackendClusterForwarding) DeepCopy 

func (in *AuditBackendClusterForwarding) DeepCopy() *AuditBackendClusterForwarding

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditBackendClusterForwarding.

func (*AuditBackendClusterForwarding) DeepCopyInto 

func (in *AuditBackendClusterForwarding) DeepCopyInto(out *AuditBackendClusterForwarding)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuditBackendLog 

type AuditBackendLog struct {
	// Enabled allows to turn this backend on.
	Enabled bool
}

func (*AuditBackendLog) DeepCopy 

func (in *AuditBackendLog) DeepCopy() *AuditBackendLog

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditBackendLog.

func (*AuditBackendLog) DeepCopyInto 

func (in *AuditBackendLog) DeepCopyInto(out *AuditBackendLog)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuditBackendSplunk 

type AuditBackendSplunk struct {
	// Enabled allows to turn this backend on.
	Enabled bool

	// FilesystemBufferSize is the maximum disk space for the fluent-bit file sytem buffer.
	FilesystemBufferSize *string

	// Index is the splunk index that should be used.
	Index string

	// Host is the hostname or IP of the splunk HEC endpoint.
	Host string

	// Port ist the port on which the HEC endpoint is listening.
	Port string

	// SecretResourceName is a reference under Shoot.spec.resources to the secret used to authenticate against the splunk backend.
	//
	// The referenced secret may contain the following keys:
	//
	// - token: Required, hec token to authenticate against this host/index
	// - ca: Optional, the CA (bundle) that signed the HEC endpoint's server certificate as an unencoded string.
	SecretResourceName string

	// TlsEnabled determines whether TLS should be used to communicate to the HEC endpoint.
	TlsEnabled bool

	// TlsHost is the hostname that fluent-bit should request through SNI when connecting to a site that serves different hostnames under one IP.
	TlsHost string

	// CustomData contains a map of custom key value pairs. The custom data is added to each audit log entry using fluentbit's modify filter.
	CustomData map[string]string
}

func (*AuditBackendSplunk) DeepCopy 

func (in *AuditBackendSplunk) DeepCopy() *AuditBackendSplunk

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditBackendSplunk.

func (*AuditBackendSplunk) DeepCopyInto 

func (in *AuditBackendSplunk) DeepCopyInto(out *AuditBackendSplunk)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuditBackends 

type AuditBackends struct {
	// Log outputs the log data on stdout of the webhook pod. It is mainly intended for debugging / testing purposes.
	Log *AuditBackendLog

	// ClusterForwarding will forward the audit data to a pod in the shoot where they are printed to stdout and can be
	// picked up by the log collecting solution of the cluster operator's choice.
	ClusterForwarding *AuditBackendClusterForwarding

	// Splunk will forward the audit data to a splunk HEC endpoint.
	Splunk *AuditBackendSplunk
}

func (*AuditBackends) DeepCopy 

func (in *AuditBackends) DeepCopy() *AuditBackends

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditBackends.

func (*AuditBackends) DeepCopyInto 

func (in *AuditBackends) DeepCopyInto(out *AuditBackends)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuditConfig 

type AuditConfig struct {
	metav1.TypeMeta

	// Persistence contains options about the persistent volume used for buffering the audit data
	// on the filesystem.
	Persistence AuditPersistence

	// Replicas are the amount of replicas used for the buffering audit pods.
	Replicas *int32

	// WebhookMode allows to select which auditing mode - batching or blocking - should be used.
	WebhookMode AuditWebhookMode

	// Backends contains the settings for the various backends.
	Backends *AuditBackends
}

AuditConfig configuration resource

func (*AuditConfig) DeepCopy 

func (in *AuditConfig) DeepCopy() *AuditConfig

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditConfig.

func (*AuditConfig) DeepCopyInto 

func (in *AuditConfig) DeepCopyInto(out *AuditConfig)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AuditConfig) DeepCopyObject 

func (in *AuditConfig) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type AuditPersistence 

type AuditPersistence struct {
	// Size is the size of the PVC to be used for each replica of the statefulset.
	Size *resource.Quantity

	// StorageClassName is the name of the storage class to be used for the PVC. If empty, the default
	// storage class is used.
	StorageClassName *string
}

func (*AuditPersistence) DeepCopy 

func (in *AuditPersistence) DeepCopy() *AuditPersistence

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditPersistence.

func (*AuditPersistence) DeepCopyInto 

func (in *AuditPersistence) DeepCopyInto(out *AuditPersistence)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuditWebhookMode 

type AuditWebhookMode string
const (
	AuditWebhookModeBatch          AuditWebhookMode = "batch"
	AuditWebhookModeBlocking       AuditWebhookMode = "blocking"
	AuditWebhookModeBlockingStrict AuditWebhookMode = "blocking-strict"
)

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.