Documentation ¶
Index ¶
- Constants
- Variables
- func AWSArnAssumeRolePolicy(identityID string) *iamv1.PolicyDocument
- func AWSServiceAssumeRolePolicy(identityID string) *iamv1.PolicyDocument
- func AssumeRolePolicy(identityType iamv1.PrincipalType, principalIDs []string) *iamv1.PolicyDocument
- type PolicyName
- type Template
- func (t Template) ControllersPolicy() *iamv1.PolicyDocument
- func (t Template) GenerateManagedIAMPolicyDocuments(policyDocDir string) error
- func (t Template) GetPolicyDocFromPolicyName(policyName PolicyName) *iamv1.PolicyDocument
- func (t Template) NewManagedName(name string) string
- func (t Template) RenderCloudFormation() *cloudformation.Template
Constants ¶
View Source
const ( AWSIAMGroupBootstrapper = "AWSIAMGroupBootstrapper" AWSIAMInstanceProfileControllers = "AWSIAMInstanceProfileControllers" AWSIAMInstanceProfileControlPlane = "AWSIAMInstanceProfileControlPlane" AWSIAMInstanceProfileNodes = "AWSIAMInstanceProfileNodes" AWSIAMRoleControllers = "AWSIAMRoleControllers" AWSIAMRoleControlPlane = "AWSIAMRoleControlPlane" AWSIAMRoleNodes = "AWSIAMRoleNodes" AWSIAMRoleEKSControlPlane = "AWSIAMRoleEKSControlPlane" AWSIAMRoleEKSNodegroup = "AWSIAMRoleEKSNodegroup" AWSIAMRoleEKSFargate = "AWSIAMRoleEKSFargate" AWSIAMUserBootstrapper = "AWSIAMUserBootstrapper" ControllersPolicy PolicyName = "AWSIAMManagedPolicyControllers" ControlPlanePolicy PolicyName = "AWSIAMManagedPolicyCloudProviderControlPlane" NodePolicy PolicyName = "AWSIAMManagedPolicyCloudProviderNodes" CSIPolicy PolicyName = "AWSEBSCSIPolicyController" )
Variables ¶
View Source
var ManagedIAMPolicyNames = [4]PolicyName{ControllersPolicy, ControlPlanePolicy, NodePolicy, CSIPolicy}
ManagedIAMPolicyNames slice of managed IAM policies
Functions ¶
func AWSArnAssumeRolePolicy ¶ added in v0.6.5
func AWSArnAssumeRolePolicy(identityID string) *iamv1.PolicyDocument
func AWSServiceAssumeRolePolicy ¶ added in v0.6.5
func AWSServiceAssumeRolePolicy(identityID string) *iamv1.PolicyDocument
func AssumeRolePolicy ¶ added in v0.6.5
func AssumeRolePolicy(identityType iamv1.PrincipalType, principalIDs []string) *iamv1.PolicyDocument
Types ¶
type PolicyName ¶
type PolicyName string
func (PolicyName) IsValid ¶
func (p PolicyName) IsValid() bool
type Template ¶
type Template struct {
Spec *bootstrapv1.AWSIAMConfigurationSpec
}
func NewTemplate ¶
func NewTemplate() Template
func (Template) ControllersPolicy ¶ added in v0.6.5
func (t Template) ControllersPolicy() *iamv1.PolicyDocument
func (Template) GenerateManagedIAMPolicyDocuments ¶
GenerateManagedIAMPolicyDocuments generates JSON representation of policy documents for all ManagedIAMPolicy
func (Template) GetPolicyDocFromPolicyName ¶
func (t Template) GetPolicyDocFromPolicyName(policyName PolicyName) *iamv1.PolicyDocument
func (Template) NewManagedName ¶
NewManagedName creates an IAM acceptable name prefixed with this Cluster API implementation's prefix.
func (Template) RenderCloudFormation ¶
func (t Template) RenderCloudFormation() *cloudformation.Template
Template is an AWS CloudFormation template to bootstrap IAM policies, users and roles for use by Cluster API Provider AWS
Click to show internal directories.
Click to hide internal directories.