Affected by 
The highest tagged major version is
Documentation
¶
Overview ¶
+k8s:deepcopy-gen=package +groupName=cosigned.sigstore.dev
Index ¶
- Variables
- func Kind(kind string) schema.GroupKind
- func Resource(resource string) schema.GroupResource
- func ValidateGlob(glob string) *apis.FieldError
- func ValidateRegex(regex string) *apis.FieldError
- type Authority
- type ClusterImagePolicy
- func (in *ClusterImagePolicy) DeepCopy() *ClusterImagePolicy
- func (in *ClusterImagePolicy) DeepCopyInto(out *ClusterImagePolicy)
- func (in *ClusterImagePolicy) DeepCopyObject() runtime.Object
- func (*ClusterImagePolicy) GetGroupVersionKind() schema.GroupVersionKind
- func (*ClusterImagePolicy) SetDefaults(ctx context.Context)
- func (policy *ClusterImagePolicy) Validate(ctx context.Context) *apis.FieldError
- type ClusterImagePolicyList
- type ClusterImagePolicySpec
- type Identity
- type ImagePattern
- type KeyRef
- type KeylessRef
- type Source
- type TLog
Constants ¶
This section is empty.
Variables ¶
var ( // SchemeBuilder builds a scheme with the types known to the package. SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes) // AddToScheme adds the types known to this package to an existing schema. AddToScheme = SchemeBuilder.AddToScheme )
var SchemeGroupVersion = schema.GroupVersion{Group: cosigned.GroupName, Version: "v1alpha1"}
SchemeGroupVersion is group version used to register these objects
Functions ¶
func Resource ¶
func Resource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns a Group qualified GroupResource
func ValidateGlob ¶ added in v1.7.0
func ValidateGlob(glob string) *apis.FieldError
ValidateGlob makes sure that if there's "*" specified it's the trailing character.
func ValidateRegex ¶ added in v1.7.0
func ValidateRegex(regex string) *apis.FieldError
Types ¶
type Authority ¶ added in v1.7.0
type Authority struct {
// +optional
Key *KeyRef `json:"key,omitempty"`
// +optional
Keyless *KeylessRef `json:"keyless,omitempty"`
// +optional
Sources []Source `json:"source,omitempty"`
// +optional
CTLog *TLog `json:"ctlog,omitempty"`
}
func (*Authority) DeepCopy ¶ added in v1.7.0
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Authority.
func (*Authority) DeepCopyInto ¶ added in v1.7.0
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ClusterImagePolicy ¶
type ClusterImagePolicy struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata"`
// Spec holds the desired state of the ClusterImagePolicy (from the client).
Spec ClusterImagePolicySpec `json:"spec"`
}
+k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
func (*ClusterImagePolicy) DeepCopy ¶
func (in *ClusterImagePolicy) DeepCopy() *ClusterImagePolicy
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterImagePolicy.
func (*ClusterImagePolicy) DeepCopyInto ¶
func (in *ClusterImagePolicy) DeepCopyInto(out *ClusterImagePolicy)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterImagePolicy) DeepCopyObject ¶
func (in *ClusterImagePolicy) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*ClusterImagePolicy) GetGroupVersionKind ¶
func (*ClusterImagePolicy) GetGroupVersionKind() schema.GroupVersionKind
GetGroupVersionKind implements kmeta.OwnerRefable
func (*ClusterImagePolicy) SetDefaults ¶
func (*ClusterImagePolicy) SetDefaults(ctx context.Context)
SetDefaults implements apis.Defaultable
func (*ClusterImagePolicy) Validate ¶
func (policy *ClusterImagePolicy) Validate(ctx context.Context) *apis.FieldError
Validate implements apis.Validatable
type ClusterImagePolicyList ¶
type ClusterImagePolicyList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata"`
Items []ClusterImagePolicy `json:"items"`
}
ClusterImagePolicyList is a list of ClusterImagePolicy resources
+k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
func (*ClusterImagePolicyList) DeepCopy ¶
func (in *ClusterImagePolicyList) DeepCopy() *ClusterImagePolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterImagePolicyList.
func (*ClusterImagePolicyList) DeepCopyInto ¶
func (in *ClusterImagePolicyList) DeepCopyInto(out *ClusterImagePolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterImagePolicyList) DeepCopyObject ¶
func (in *ClusterImagePolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ClusterImagePolicySpec ¶
type ClusterImagePolicySpec struct {
Images []ImagePattern `json:"images"`
Authorities []Authority `json:"authorities"`
}
ClusterImagePolicySpec defines a list of images that should be verified
func (*ClusterImagePolicySpec) DeepCopy ¶
func (in *ClusterImagePolicySpec) DeepCopy() *ClusterImagePolicySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterImagePolicySpec.
func (*ClusterImagePolicySpec) DeepCopyInto ¶
func (in *ClusterImagePolicySpec) DeepCopyInto(out *ClusterImagePolicySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterImagePolicySpec) Validate ¶ added in v1.7.0
func (spec *ClusterImagePolicySpec) Validate(ctx context.Context) (errors *apis.FieldError)
type Identity ¶ added in v1.7.0
type Identity struct {
// +optional
Issuer string `json:"issuer,omitempty"`
// +optional
Subject string `json:"subject,omitempty"`
}
Identity may contain the issuer and/or the subject found in the transparency log. Either field supports a pattern glob.
func (*Identity) DeepCopy ¶ added in v1.7.0
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Identity.
func (*Identity) DeepCopyInto ¶ added in v1.7.0
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ImagePattern ¶ added in v1.7.0
type ImagePattern struct {
// +optional
Glob string `json:"glob,omitempty"`
// +optional
Regex string `json:"regex,omitempty"`
}
ImagePattern defines a pattern and its associated authorties If multiple patterns match a particular image, then ALL of those authorities must be satisfied for the image to be admitted.
func (*ImagePattern) DeepCopy ¶ added in v1.7.0
func (in *ImagePattern) DeepCopy() *ImagePattern
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImagePattern.
func (*ImagePattern) DeepCopyInto ¶ added in v1.7.0
func (in *ImagePattern) DeepCopyInto(out *ImagePattern)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ImagePattern) Validate ¶ added in v1.7.0
func (image *ImagePattern) Validate(ctx context.Context) *apis.FieldError
type KeyRef ¶ added in v1.7.0
type KeyRef struct {
// +optional
SecretRef *v1.SecretReference `json:"secretRef,omitempty"`
// Data contains the inline public key
// +optional
Data string `json:"data,omitempty"`
// KMS contains the KMS url of the public key
// +optional
KMS string `json:"kms,omitempty"`
}
This references a public verification key stored in a secret in the cosign-system namespace. A KeyRef must specify only one of SecretRef, Data or KMS
func (*KeyRef) DeepCopy ¶ added in v1.7.0
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KeyRef.
func (*KeyRef) DeepCopyInto ¶ added in v1.7.0
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type KeylessRef ¶ added in v1.7.0
type KeylessRef struct {
// +optional
URL *apis.URL `json:"url,omitempty"`
// +optional
Identities []Identity `json:"identities,omitempty"`
// +optional
CACert *KeyRef `json:"ca-cert,omitempty"`
}
KeylessRef contains location of the validating certificate and the identities against which to verify. KeylessRef will contain either the URL to the verifying certificate, or it will contain the certificate data inline or in a secret.
func (*KeylessRef) DeepCopy ¶ added in v1.7.0
func (in *KeylessRef) DeepCopy() *KeylessRef
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KeylessRef.
func (*KeylessRef) DeepCopyInto ¶ added in v1.7.0
func (in *KeylessRef) DeepCopyInto(out *KeylessRef)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*KeylessRef) Validate ¶ added in v1.7.0
func (keyless *KeylessRef) Validate(ctx context.Context) *apis.FieldError
type Source ¶ added in v1.7.0
type Source struct {
// +optional
OCI string `json:"oci,omitempty"`
}
Source specifies the location of the signature
func (*Source) DeepCopy ¶ added in v1.7.0
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Source.
func (*Source) DeepCopyInto ¶ added in v1.7.0
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TLog ¶ added in v1.7.0
TLog specifies the URL to a transparency log that holds the signature and public key information
func (*TLog) DeepCopy ¶ added in v1.7.0
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TLog.
func (*TLog) DeepCopyInto ¶ added in v1.7.0
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files