podsecuritypolicy

package
v1.10.0-beta.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Feb 21, 2018 License: Apache-2.0 Imports: 21 Imported by: 0

Documentation

Index

Constants

View Source
const (
	PluginName = "PodSecurityPolicy"
)

Variables

This section is empty.

Functions

func Register added in v1.7.0

func Register(plugins *admission.Plugins)

Register registers a plugin

Types

type PodSecurityPolicyPlugin added in v1.9.0

type PodSecurityPolicyPlugin struct {
	*admission.Handler
	// contains filtered or unexported fields
}

PodSecurityPolicyPlugin holds state for and implements the admission plugin.

func (*PodSecurityPolicyPlugin) Admit added in v1.9.0

Admit determines if the pod should be admitted based on the requested security context and the available PSPs.

  1. Find available PSPs.
  2. Create the providers, includes setting pre-allocated values if necessary.
  3. Try to generate and validate a PSP with providers. If we find one then admit the pod with the validated PSP. If we don't find any reject the pod and give all errors from the failed attempts.

func (*PodSecurityPolicyPlugin) SetAuthorizer added in v1.9.0

func (plugin *PodSecurityPolicyPlugin) SetAuthorizer(authz authorizer.Authorizer)

SetAuthorizer sets the authorizer.

func (*PodSecurityPolicyPlugin) SetInternalKubeInformerFactory added in v1.9.0

func (a *PodSecurityPolicyPlugin) SetInternalKubeInformerFactory(f informers.SharedInformerFactory)

func (*PodSecurityPolicyPlugin) Validate added in v1.9.0

func (*PodSecurityPolicyPlugin) ValidateInitialization added in v1.9.0

func (plugin *PodSecurityPolicyPlugin) ValidateInitialization() error

ValidateInitialization ensures an authorizer is set.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL