Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type SecurityContextConstraintsProvider ¶
type SecurityContextConstraintsProvider interface { // Create a PodSecurityContext based on the given constraints. CreatePodSecurityContext(pod *api.Pod) (*api.PodSecurityContext, map[string]string, error) // Create a container SecurityContext based on the given constraints CreateContainerSecurityContext(pod *api.Pod, container *api.Container) (*api.SecurityContext, error) // Ensure a pod's SecurityContext is in compliance with the given constraints. ValidatePodSecurityContext(pod *api.Pod, fldPath *field.Path) field.ErrorList // Ensure a container's SecurityContext is in compliance with the given constraints ValidateContainerSecurityContext(pod *api.Pod, container *api.Container, fldPath *field.Path) field.ErrorList // Get the name of the SCC that this provider was initialized with. GetSCCName() string }
SecurityContextConstraintsProvider provides the implementation to generate a new security context based on constraints or validate an existing security context against constraints.
func NewSimpleProvider ¶
func NewSimpleProvider(scc *securityapi.SecurityContextConstraints) (SecurityContextConstraintsProvider, error)
NewSimpleProvider creates a new SecurityContextConstraintsProvider instance.
Directories ¶
Path | Synopsis |
---|---|
Package selinux contains security context constraints SELinux strategy implementations.
|
Package selinux contains security context constraints SELinux strategy implementations. |
Package user contains security context constraints user strategy implementations.
|
Package user contains security context constraints user strategy implementations. |
Click to show internal directories.
Click to hide internal directories.