Documentation
¶
Overview ¶
+groupName=oauth.openshift.io Package api is the internal version of the API.
Index ¶
- Constants
- Variables
- func DeepCopy_oauth_ClusterRoleScopeRestriction(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthAccessToken(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthAccessTokenList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthAuthorizeToken(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthAuthorizeTokenList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthClient(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthClientAuthorization(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthClientAuthorizationList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthClientList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_OAuthRedirectReference(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_RedirectReference(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_oauth_ScopeRestriction(in interface{}, out interface{}, c *conversion.Cloner) error
- func IsKindOrLegacy(kind string, gk schema.GroupKind) bool
- func IsResourceOrLegacy(resource string, gr schema.GroupResource) bool
- func Kind(kind string) schema.GroupKind
- func LegacyKind(kind string) schema.GroupKind
- func LegacyResource(resource string) schema.GroupResource
- func OAuthAccessTokenToSelectableFields(obj *OAuthAccessToken) fields.Set
- func OAuthAuthorizeTokenToSelectableFields(obj *OAuthAuthorizeToken) fields.Set
- func OAuthClientAuthorizationToSelectableFields(obj *OAuthClientAuthorization) fields.Set
- func OAuthClientToSelectableFields(obj *OAuthClient) fields.Set
- func RegisterDeepCopies(scheme *runtime.Scheme) error
- func Resource(resource string) schema.GroupResource
- type ClusterRoleScopeRestriction
- type GrantHandlerType
- type OAuthAccessToken
- type OAuthAccessTokenList
- type OAuthAuthorizeToken
- type OAuthAuthorizeTokenList
- type OAuthClient
- type OAuthClientAuthorization
- type OAuthClientAuthorizationList
- type OAuthClientList
- type OAuthRedirectReference
- type RedirectReference
- type ScopeRestriction
Constants ¶
View Source
const ( GroupName = "oauth.openshift.io" LegacyGroupName = "" )
Variables ¶
View Source
var ( SchemeGroupVersion = schema.GroupVersion{Group: GroupName, Version: runtime.APIVersionInternal} LegacySchemeGroupVersion = schema.GroupVersion{Group: LegacyGroupName, Version: runtime.APIVersionInternal} LegacySchemeBuilder = runtime.NewSchemeBuilder(addLegacyKnownTypes) AddToSchemeInCoreGroup = LegacySchemeBuilder.AddToScheme SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes) AddToScheme = SchemeBuilder.AddToScheme )
SchemeGroupVersion is group version used to register these objects
Functions ¶
func DeepCopy_oauth_ClusterRoleScopeRestriction ¶
func DeepCopy_oauth_ClusterRoleScopeRestriction(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthAccessToken ¶
func DeepCopy_oauth_OAuthAccessToken(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthAccessTokenList ¶
func DeepCopy_oauth_OAuthAccessTokenList(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthAuthorizeToken ¶
func DeepCopy_oauth_OAuthAuthorizeToken(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthAuthorizeTokenList ¶
func DeepCopy_oauth_OAuthAuthorizeTokenList(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthClient ¶
func DeepCopy_oauth_OAuthClient(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthClientAuthorization ¶
func DeepCopy_oauth_OAuthClientAuthorization(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthClientAuthorizationList ¶
func DeepCopy_oauth_OAuthClientAuthorizationList(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthClientList ¶
func DeepCopy_oauth_OAuthClientList(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_OAuthRedirectReference ¶
func DeepCopy_oauth_OAuthRedirectReference(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_RedirectReference ¶
func DeepCopy_oauth_RedirectReference(in interface{}, out interface{}, c *conversion.Cloner) error
func DeepCopy_oauth_ScopeRestriction ¶
func DeepCopy_oauth_ScopeRestriction(in interface{}, out interface{}, c *conversion.Cloner) error
func IsKindOrLegacy ¶
IsKindOrLegacy checks if the provided GroupKind matches with the given kind by looking up the API group and also the legacy API.
func IsResourceOrLegacy ¶
func IsResourceOrLegacy(resource string, gr schema.GroupResource) bool
IsResourceOrLegacy checks if the provided GroupResources matches with the given resource by looking up the API group and also the legacy API.
func LegacyKind ¶
LegacyKind takes an unqualified kind and returns back a Group qualified GroupKind
func LegacyResource ¶
func LegacyResource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns back a Group qualified GroupResource
func OAuthAccessTokenToSelectableFields ¶
func OAuthAccessTokenToSelectableFields(obj *OAuthAccessToken) fields.Set
OAuthAccessTokenToSelectableFields returns a label set that represents the object
func OAuthAuthorizeTokenToSelectableFields ¶
func OAuthAuthorizeTokenToSelectableFields(obj *OAuthAuthorizeToken) fields.Set
OAuthAuthorizeTokenToSelectableFields returns a label set that represents the object
func OAuthClientAuthorizationToSelectableFields ¶
func OAuthClientAuthorizationToSelectableFields(obj *OAuthClientAuthorization) fields.Set
OAuthClientAuthorizationToSelectableFields returns a label set that represents the object
func OAuthClientToSelectableFields ¶
func OAuthClientToSelectableFields(obj *OAuthClient) fields.Set
OAuthClientToSelectableFields returns a label set that represents the object
func RegisterDeepCopies ¶
RegisterDeepCopies adds deep-copy functions to the given scheme. Public to allow building arbitrary schemes.
func Resource ¶
func Resource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns back a Group qualified GroupResource
Types ¶
type ClusterRoleScopeRestriction ¶
type ClusterRoleScopeRestriction struct {
// RoleNames is the list of cluster roles that can referenced. * means anything
RoleNames []string
// Namespaces is the list of namespaces that can be referenced. * means any of them (including *)
Namespaces []string
// AllowEscalation indicates whether you can request roles and their escalating resources
AllowEscalation bool
}
ClusterRoleScopeRestriction describes restrictions on cluster role scopes
type GrantHandlerType ¶
type GrantHandlerType string
const ( // GrantHandlerAuto auto-approves client authorization grant requests GrantHandlerAuto GrantHandlerType = "auto" // GrantHandlerPrompt prompts the user to approve new client authorization grant requests GrantHandlerPrompt GrantHandlerType = "prompt" // GrantHandlerDeny auto-denies client authorization grant requests GrantHandlerDeny GrantHandlerType = "deny" )
type OAuthAccessToken ¶
type OAuthAccessToken struct {
metav1.TypeMeta
metav1.ObjectMeta
// ClientName references the client that created this token.
ClientName string
// ExpiresIn is the seconds from CreationTime before this token expires.
ExpiresIn int64
// Scopes is an array of the requested scopes.
Scopes []string
// RedirectURI is the redirection associated with the token.
RedirectURI string
// UserName is the user name associated with this token
UserName string
// UserUID is the unique UID associated with this token
UserUID string
// AuthorizeToken contains the token that authorized this token
AuthorizeToken string
// RefreshToken is the value by which this token can be renewed. Can be blank.
RefreshToken string
}
type OAuthAccessTokenList ¶
type OAuthAccessTokenList struct {
metav1.TypeMeta
metav1.ListMeta
Items []OAuthAccessToken
}
type OAuthAuthorizeToken ¶
type OAuthAuthorizeToken struct {
metav1.TypeMeta
metav1.ObjectMeta
// ClientName references the client that created this token.
ClientName string
// ExpiresIn is the seconds from CreationTime before this token expires.
ExpiresIn int64
// Scopes is an array of the requested scopes.
Scopes []string
// RedirectURI is the redirection associated with the token.
RedirectURI string
// State data from request
State string
// UserName is the user name associated with this token
UserName string
// UserUID is the unique UID associated with this token. UserUID and UserName must both match
// for this token to be valid.
UserUID string
// CodeChallenge is the optional code_challenge associated with this authorization code, as described in rfc7636
CodeChallenge string
// CodeChallengeMethod is the optional code_challenge_method associated with this authorization code, as described in rfc7636
CodeChallengeMethod string
}
type OAuthAuthorizeTokenList ¶
type OAuthAuthorizeTokenList struct {
metav1.TypeMeta
metav1.ListMeta
Items []OAuthAuthorizeToken
}
type OAuthClient ¶
type OAuthClient struct {
metav1.TypeMeta
metav1.ObjectMeta
// Secret is the unique secret associated with a client
Secret string
// AdditionalSecrets holds other secrets that may be used to identify the client. This is useful for rotation
// and for service account token validation
AdditionalSecrets []string
// RespondWithChallenges indicates whether the client wants authentication needed responses made in the form of challenges instead of redirects
RespondWithChallenges bool
// RedirectURIs is the valid redirection URIs associated with a client
RedirectURIs []string
// GrantMethod determines how to handle grants for this client. If no method is provided, the
// cluster default grant handling method will be used
GrantMethod GrantHandlerType
// ScopeRestrictions describes which scopes this client can request. Each requested scope
// is checked against each restriction. If any restriction matches, then the scope is allowed.
// If no restriction matches, then the scope is denied.
ScopeRestrictions []ScopeRestriction
}
type OAuthClientAuthorization ¶
type OAuthClientAuthorization struct {
metav1.TypeMeta
metav1.ObjectMeta
// ClientName references the client that created this authorization
ClientName string
// UserName is the user name that authorized this client
UserName string
// UserUID is the unique UID associated with this authorization. UserUID and UserName
// must both match for this authorization to be valid.
UserUID string
// Scopes is an array of the granted scopes.
Scopes []string
}
type OAuthClientAuthorizationList ¶
type OAuthClientAuthorizationList struct {
metav1.TypeMeta
metav1.ListMeta
Items []OAuthClientAuthorization
}
type OAuthClientList ¶
type OAuthClientList struct {
metav1.TypeMeta
metav1.ListMeta
Items []OAuthClient
}
type OAuthRedirectReference ¶
type OAuthRedirectReference struct {
metav1.TypeMeta
metav1.ObjectMeta
Reference RedirectReference
}
type RedirectReference ¶
type ScopeRestriction ¶
type ScopeRestriction struct {
// ExactValues means the scope has to match a particular set of strings exactly
ExactValues []string
// ClusterRole describes a set of restrictions for cluster role scoping.
ClusterRole *ClusterRoleScopeRestriction
}
ScopeRestriction describe one restriction on scopes. Exactly one option must be non-nil.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
+groupName=oauth.openshift.io Package v1 is the v1 version of the API.
|
+groupName=oauth.openshift.io Package v1 is the v1 version of the API. |
|
Package validation has functions for validating the correctness of api objects and explaining what is wrong with them when they aren't valid.
|
Package validation has functions for validating the correctness of api objects and explaining what is wrong with them when they aren't valid. |
Click to show internal directories.
Click to hide internal directories.