rbacusercluster

package
v2.19.13 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Dec 9, 2022 License: Apache-2.0 Imports: 29 Imported by: 0

Documentation

Index

Constants

View Source
const (
	ResourceOwnerName  = "system:kubermatic:owners"
	ResourceEditorName = "system:kubermatic:editors"
	ResourceViewerName = "system:kubermatic:viewers"
)

Variables

This section is empty.

Functions

func Add

func Add(mgr manager.Manager, registerReconciledCheck func(name string, check healthz.Checker) error, clusterIsPaused userclustercontrollermanager.IsPausedChecker) error

Add creates a new RBAC generator controller that is responsible for creating Cluster Roles and Cluster Role Bindings for groups: `owners`, `editors` and `viewers“

func ClusterRoleBindingMatches

func ClusterRoleBindingMatches(existingClusterRoleBinding, requestedClusterRoleBinding *rbacv1.ClusterRoleBinding) bool

ClusterRoleBindingMatches checks if cluster role bindings have the same Subjects and RoleRefs

func ClusterRoleMatches

func ClusterRoleMatches(existingRole, requestedRole *rbacv1.ClusterRole) bool

ClusterRoleMatches compares cluster role Rules

func GenerateRBACClusterRole

func GenerateRBACClusterRole(resourceName string) (*rbacv1.ClusterRole, error)

GenerateRBACClusterRole creates role for specific group

func GenerateRBACClusterRoleBinding

func GenerateRBACClusterRoleBinding(resourceName string) (*rbacv1.ClusterRoleBinding, error)

GenerateRBACClusterRoleBinding creates role binding for specific group

Types

This section is empty.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL