Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AuthorizationConfig ¶
type AuthorizationConfig struct { AuthorizationModes []string // Path to an ABAC policy file. PolicyFile string // Kubeconfig file for Webhook authorization plugin. WebhookConfigFile string // API version of subject access reviews to send to the webhook (e.g. "v1", "v1beta1") WebhookVersion string // TTL for caching of authorized responses from the webhook server. WebhookCacheAuthorizedTTL time.Duration WebhookCacheUnauthorizedTTL time.Duration // WebhookRetryBackoff specifies the backoff parameters for the authorization webhook retry logic. // This allows us to configure the sleep time at each iteration and the maximum number of retries allowed // before we fail the webhook call in order to limit the fan out that ensues when the system is degraded. WebhookRetryBackoff *wait.Backoff // Optional field, custom dial function used to connect to webhook CustomDial utilnet.DialFunc }
func (AuthorizationConfig) New ¶
func (config AuthorizationConfig) New() (authorizer.Authorizer, authorizer.RuleResolver, error)
New returns the right sort of union of multiple authorizer.Authorizer objects based on the authorizationMode or an error.
Click to show internal directories.
Click to hide internal directories.