Documentation
¶
Index ¶
- func GetAuthenticatedPrincipal(principalName string) *xds_rbac.Principal
- func GetDestinationPortPermission(port uint32) *xds_rbac.Permission
- type PolicyBuilder
- func (p *PolicyBuilder) AddAllowedDestinationPort(port uint16)
- func (p *PolicyBuilder) AddIdentity(svcIdentity identity.ServiceIdentity)
- func (p *PolicyBuilder) AllowAnyIdentity()
- func (p *PolicyBuilder) Build() *xds_rbac.Policy
- func (p *PolicyBuilder) SetTrustDomain(td string)
- func (p *PolicyBuilder) UseANDForPermissions(val bool)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func GetAuthenticatedPrincipal ¶ added in v0.7.0
GetAuthenticatedPrincipal returns an authenticated RBAC principal object for the given principal
func GetDestinationPortPermission ¶ added in v0.7.0
func GetDestinationPortPermission(port uint32) *xds_rbac.Permission
GetDestinationPortPermission returns an RBAC permission for the given destination port
Types ¶
type PolicyBuilder ¶ added in v1.2.0
type PolicyBuilder struct {
// contains filtered or unexported fields
}
PolicyBuilder is a utility for constructing *xds_rbac.Policy's
func (*PolicyBuilder) AddAllowedDestinationPort ¶ added in v1.2.0
func (p *PolicyBuilder) AddAllowedDestinationPort(port uint16)
AddAllowedDestinationPort adds the allowed destination port to the list of allowed ports.
func (*PolicyBuilder) AddIdentity ¶ added in v1.2.0
func (p *PolicyBuilder) AddIdentity(svcIdentity identity.ServiceIdentity)
AddIdentity adds an identity, later to be converted to a principal, to the list of allowed identities.
func (*PolicyBuilder) AllowAnyIdentity ¶ added in v1.2.0
func (p *PolicyBuilder) AllowAnyIdentity()
AllowAnyIdentity allows any principal to access the permissions.
func (*PolicyBuilder) Build ¶ added in v1.2.0
func (p *PolicyBuilder) Build() *xds_rbac.Policy
Build constructs an RBAC policy for the policy object on which this method is called
func (*PolicyBuilder) SetTrustDomain ¶ added in v1.2.0
func (p *PolicyBuilder) SetTrustDomain(td string)
SetTrustDomain sets the trust domain for the policy, which is used when converting a ServiceIdentity to a Principal.
func (*PolicyBuilder) UseANDForPermissions ¶ added in v1.2.0
func (p *PolicyBuilder) UseANDForPermissions(val bool)
UseANDForPermissions will apply all permissions with AND semantics.