Documentation
¶
Overview ¶
Package v1alpha1 contains API Schema definitions for the notation v1alpha1 API group +kubebuilder:object:generate=true +groupName=notation.nirmata.io
Index ¶
Constants ¶
This section is empty.
Variables ¶
var ( // GroupVersion is group version used to register these objects GroupVersion = schema.GroupVersion{Group: "notation.nirmata.io", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
This section is empty.
Types ¶
type SignatureVerification ¶
type SignatureVerification struct {
// VerificationLevel specifies the desired signature verification level
VerificationLevel VerificationLevel `json:"level"`
// Override is an optional map of verification overrides
// +kubebuilder:validation:Optional
Override map[ValidationType]ValidationAction `json:"override,omitempty"`
}
SignatureVerification represents verification configuration in a trust policy
func (*SignatureVerification) DeepCopy ¶
func (in *SignatureVerification) DeepCopy() *SignatureVerification
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SignatureVerification.
func (*SignatureVerification) DeepCopyInto ¶
func (in *SignatureVerification) DeepCopyInto(out *SignatureVerification)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrustDocument ¶
type TrustDocument struct {
// Version of the policy document
// +kubebuilder:default := "1.0"
// +kubebuilder:validation:Enum="1.0"
Version string `json:"version"`
// Name is the name for the trust store file
TrustPolicyName string `json:"trustPolicyName"`
// TrustPolicies include each policy statement
TrustPolicies []TrustPolicyStatement `json:"trustPolicies"`
}
func (*TrustDocument) DeepCopy ¶
func (in *TrustDocument) DeepCopy() *TrustDocument
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustDocument.
func (*TrustDocument) DeepCopyInto ¶
func (in *TrustDocument) DeepCopyInto(out *TrustDocument)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrustPolicy ¶
type TrustPolicy struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
// Spec contains the desired trust policy
Spec TrustDocument `json:"spec"`
}
TrustPolicy defines a Notary trust policy document as specified here: https://notaryproject.dev/docs/concepts/trust-store-trust-policy-specification/#trust-policy
func (*TrustPolicy) DeepCopy ¶
func (in *TrustPolicy) DeepCopy() *TrustPolicy
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustPolicy.
func (*TrustPolicy) DeepCopyInto ¶
func (in *TrustPolicy) DeepCopyInto(out *TrustPolicy)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrustPolicy) DeepCopyObject ¶
func (in *TrustPolicy) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrustPolicyList ¶
type TrustPolicyList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []TrustPolicy `json:"items"`
}
TrustPolicyList contains a list of TrustPolicy
func (*TrustPolicyList) DeepCopy ¶
func (in *TrustPolicyList) DeepCopy() *TrustPolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustPolicyList.
func (*TrustPolicyList) DeepCopyInto ¶
func (in *TrustPolicyList) DeepCopyInto(out *TrustPolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrustPolicyList) DeepCopyObject ¶
func (in *TrustPolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrustPolicyStatement ¶
type TrustPolicyStatement struct {
// Name of the policy statement
Name string `json:"name"`
// RegistryScopes that this policy statement affects
RegistryScopes []string `json:"registryScopes"`
// SignatureVerification setting for this policy statement
SignatureVerification SignatureVerification `json:"signatureVerification"`
// TrustStores this policy statement uses
TrustStores []string `json:"trustStores,omitempty"`
// TrustedIdentities this policy statement pins
TrustedIdentities []string `json:"trustedIdentities,omitempty"`
}
TrustPolicyStatement represents a policy statement in the policy document
func (*TrustPolicyStatement) DeepCopy ¶
func (in *TrustPolicyStatement) DeepCopy() *TrustPolicyStatement
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustPolicyStatement.
func (*TrustPolicyStatement) DeepCopyInto ¶
func (in *TrustPolicyStatement) DeepCopyInto(out *TrustPolicyStatement)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrustStore ¶
type TrustStore struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec TrustStoreSpec `json:"spec,omitempty"`
}
TrustStore is the Schema for the truststores API
func (*TrustStore) DeepCopy ¶
func (in *TrustStore) DeepCopy() *TrustStore
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustStore.
func (*TrustStore) DeepCopyInto ¶
func (in *TrustStore) DeepCopyInto(out *TrustStore)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrustStore) DeepCopyObject ¶
func (in *TrustStore) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrustStoreList ¶
type TrustStoreList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []TrustStore `json:"items"`
}
TrustStoreList contains a list of TrustStore
func (*TrustStoreList) DeepCopy ¶
func (in *TrustStoreList) DeepCopy() *TrustStoreList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustStoreList.
func (*TrustStoreList) DeepCopyInto ¶
func (in *TrustStoreList) DeepCopyInto(out *TrustStoreList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrustStoreList) DeepCopyObject ¶
func (in *TrustStoreList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrustStoreSpec ¶
type TrustStoreSpec struct {
// Name is the name for the trust store file
TrustStoreName string `json:"trustStoreName"`
// Type is the type of trust store. The allowed types are `ca` and `signingAuthority`.
// +kubebuilder:validation:Enum="ca";"signingAuthority"
Type string `json:"type"`
// CA Bundle is the PEM encoded certificate chain used to verify the signed data.
CABundle string `json:"caBundle"`
}
TrustStoreSpec defines the desired state of TrustStore
func (*TrustStoreSpec) DeepCopy ¶
func (in *TrustStoreSpec) DeepCopy() *TrustStoreSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrustStoreSpec.
func (*TrustStoreSpec) DeepCopyInto ¶
func (in *TrustStoreSpec) DeepCopyInto(out *TrustStoreSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ValidationType ¶
type ValidationType string
+kubebuilder:validation:Enum=integrity;authenticity;authenticTimestamp;expiry;revocation
type VerificationLevel ¶
type VerificationLevel string
+kubebuilder:validation:Enum=strict;permissive;audit;skip
Source Files