Documentation
¶
Index ¶
- Constants
- Variables
- func AddToScheme(scheme *runtime.Scheme)
- type ClusterRoleScopeRestriction
- type OAuthAccessToken
- type OAuthAccessTokenList
- type OAuthAuthorizeToken
- type OAuthAuthorizeTokenList
- type OAuthClient
- type OAuthClientAuthorization
- type OAuthClientAuthorizationList
- type OAuthClientList
- type ScopeRestriction
Constants ¶
View Source
const GroupName = ""
Variables ¶
View Source
var SchemeGroupVersion = unversioned.GroupVersion{Group: GroupName, Version: "v1beta3"}
SchemeGroupVersion is group version used to register these objects
Functions ¶
func AddToScheme ¶ added in v1.1.3
Types ¶
type ClusterRoleScopeRestriction ¶
type ClusterRoleScopeRestriction struct {
// RoleNames is the list of cluster roles that can referenced. * means anything
RoleNames []string `json:"roleNames"`
// Namespaces is the list of namespaces that can be referenced. * means any of them (including *)
Namespaces []string `json:"namespaces"`
// AllowEscalation indicates whether you can request roles and their escalating resources
AllowEscalation bool `json:"allowEscalation"`
}
ClusterRoleScopeRestriction describes restrictions on cluster role scopes
type OAuthAccessToken ¶
type OAuthAccessToken struct {
unversioned.TypeMeta `json:",inline"`
kapi.ObjectMeta `json:"metadata,omitempty"`
// ClientName references the client that created this token.
ClientName string `json:"clientName,omitempty"`
// ExpiresIn is the seconds from CreationTime before this token expires.
ExpiresIn int64 `json:"expiresIn,omitempty"`
// Scopes is an array of the requested scopes.
Scopes []string `json:"scopes,omitempty"`
// RedirectURI is the redirection associated with the token.
RedirectURI string `json:"redirectURI,omitempty"`
// UserName is the user name associated with this token
UserName string `json:"userName,omitempty"`
// UserUID is the unique UID associated with this token
UserUID string `json:"userUID,omitempty"`
// AuthorizeToken contains the token that authorized this token
AuthorizeToken string `json:"authorizeToken,omitempty"`
// RefreshToken is the value by which this token can be renewed. Can be blank.
RefreshToken string `json:"refreshToken,omitempty"`
}
func (*OAuthAccessToken) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthAccessToken) GetObjectKind() unversioned.ObjectKind
type OAuthAccessTokenList ¶
type OAuthAccessTokenList struct {
unversioned.TypeMeta `json:",inline"`
unversioned.ListMeta `json:"metadata,omitempty"`
Items []OAuthAccessToken `json:"items"`
}
func (*OAuthAccessTokenList) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthAccessTokenList) GetObjectKind() unversioned.ObjectKind
type OAuthAuthorizeToken ¶
type OAuthAuthorizeToken struct {
unversioned.TypeMeta `json:",inline"`
kapi.ObjectMeta `json:"metadata,omitempty"`
// ClientName references the client that created this token.
ClientName string `json:"clientName,omitempty"`
// ExpiresIn is the seconds from CreationTime before this token expires.
ExpiresIn int64 `json:"expiresIn,omitempty"`
// Scopes is an array of the requested scopes.
Scopes []string `json:"scopes,omitempty"`
// RedirectURI is the redirection associated with the token.
RedirectURI string `json:"redirectURI,omitempty"`
// State data from request
State string `json:"state,omitempty"`
// UserName is the user name associated with this token
UserName string `json:"userName,omitempty"`
// UserUID is the unique UID associated with this token. UserUID and UserName must both match
// for this token to be valid.
UserUID string `json:"userUID,omitempty"`
}
func (*OAuthAuthorizeToken) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthAuthorizeToken) GetObjectKind() unversioned.ObjectKind
type OAuthAuthorizeTokenList ¶
type OAuthAuthorizeTokenList struct {
unversioned.TypeMeta `json:",inline"`
unversioned.ListMeta `json:"metadata,omitempty"`
Items []OAuthAuthorizeToken `json:"items"`
}
func (*OAuthAuthorizeTokenList) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthAuthorizeTokenList) GetObjectKind() unversioned.ObjectKind
type OAuthClient ¶
type OAuthClient struct {
unversioned.TypeMeta `json:",inline"`
kapi.ObjectMeta `json:"metadata,omitempty"`
// Secret is the unique secret associated with a client
Secret string `json:"secret,omitempty"`
// AdditionalSecrets holds other secrets that may be used to identify the client. This is useful for rotation
// and for service account token validation
AdditionalSecrets []string `json:"additionalSecrets,omitempty"`
// RespondWithChallenges indicates whether the client wants authentication needed responses made in the form of challenges instead of redirects
RespondWithChallenges bool `json:"respondWithChallenges,omitempty"`
// RedirectURIs is the valid redirection URIs associated with a client
RedirectURIs []string `json:"redirectURIs,omitempty"`
// ScopeRestrictions describes which scopes this client can request. Each requested scope
// is checked against each restriction. If any restriction matches, then the scope is allowed.
// If no restriction matches, then the scope is denied.
ScopeRestrictions []ScopeRestriction `json:"scopeRestrictions,omitempty"`
}
func (*OAuthClient) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthClient) GetObjectKind() unversioned.ObjectKind
type OAuthClientAuthorization ¶
type OAuthClientAuthorization struct {
unversioned.TypeMeta `json:",inline"`
kapi.ObjectMeta `json:"metadata,omitempty"`
// ClientName references the client that created this authorization
ClientName string `json:"clientName,omitempty"`
// UserName is the user name that authorized this client
UserName string `json:"userName,omitempty"`
// UserUID is the unique UID associated with this authorization. UserUID and UserName
// must both match for this authorization to be valid.
UserUID string `json:"userUID,omitempty"`
// Scopes is an array of the granted scopes.
Scopes []string `json:"scopes,omitempty"`
}
func (*OAuthClientAuthorization) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthClientAuthorization) GetObjectKind() unversioned.ObjectKind
type OAuthClientAuthorizationList ¶
type OAuthClientAuthorizationList struct {
unversioned.TypeMeta `json:",inline"`
unversioned.ListMeta `json:"metadata,omitempty"`
Items []OAuthClientAuthorization `json:"items"`
}
func (*OAuthClientAuthorizationList) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthClientAuthorizationList) GetObjectKind() unversioned.ObjectKind
type OAuthClientList ¶
type OAuthClientList struct {
unversioned.TypeMeta `json:",inline"`
unversioned.ListMeta `json:"metadata,omitempty"`
Items []OAuthClient `json:"items"`
}
func (*OAuthClientList) GetObjectKind ¶ added in v1.1.3
func (obj *OAuthClientList) GetObjectKind() unversioned.ObjectKind
type ScopeRestriction ¶
type ScopeRestriction struct {
// ExactValues means the scope has to match a particular set of strings exactly
ExactValues []string `json:"literals,omitempty"`
// ClusterRole describes a set of restrictions for cluster role scoping.
ClusterRole *ClusterRoleScopeRestriction `json:"clusterRole,omitempty"`
}
ScopeRestriction describe one restriction on scopes. Exactly one option must be non-nil.
Source Files
Click to show internal directories.
Click to hide internal directories.