imagepolicy

package
v0.0.0-...-d88c8b5 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 9, 2021 License: Apache-2.0 Imports: 3 Imported by: 0

Documentation

Index

Constants

View Source 
const GroupName = "imagepolicy.k8s.io"

GroupName is the group name use in this package

Variables

View Source 
var (
	// SchemeBuilder points to a list of functions added to Scheme.
	SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes)
	// AddToScheme applies all the stored functions to the scheme.
	AddToScheme = SchemeBuilder.AddToScheme
)
View Source 
var SchemeGroupVersion = schema.GroupVersion{Group: GroupName, Version: runtime.APIVersionInternal}

SchemeGroupVersion is group version used to register these objects

Functions

func Kind 

func Kind(kind string) schema.GroupKind

Kind takes an unqualified kind and returns a Group qualified GroupKind

func Resource 

func Resource(resource string) schema.GroupResource

Resource takes an unqualified resource and returns a Group qualified GroupResource

Types

type ImageReview 

type ImageReview struct {
	metav1.TypeMeta
	metav1.ObjectMeta

	// Spec holds information about the pod being evaluated
	Spec ImageReviewSpec

	// Status is filled in by the backend and indicates whether the pod should be allowed.
	Status ImageReviewStatus
}

ImageReview checks if the set of images in a pod are allowed.

func (*ImageReview) DeepCopy 

func (in *ImageReview) DeepCopy() *ImageReview

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImageReview.

func (*ImageReview) DeepCopyInto 

func (in *ImageReview) DeepCopyInto(out *ImageReview)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*ImageReview) DeepCopyObject 

func (in *ImageReview) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type ImageReviewContainerSpec 

type ImageReviewContainerSpec struct {
	// This can be in the form image:tag or image@SHA:012345679abcdef.
	Image string
}

ImageReviewContainerSpec is a description of a container within the pod creation request.

func (*ImageReviewContainerSpec) DeepCopy 

func (in *ImageReviewContainerSpec) DeepCopy() *ImageReviewContainerSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImageReviewContainerSpec.

func (*ImageReviewContainerSpec) DeepCopyInto 

func (in *ImageReviewContainerSpec) DeepCopyInto(out *ImageReviewContainerSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type ImageReviewSpec 

type ImageReviewSpec struct {
	// Containers is a list of a subset of the information in each container of the Pod being created.
	Containers []ImageReviewContainerSpec
	// Annotations is a list of key-value pairs extracted from the Pod's annotations.
	// It only includes keys which match the pattern `*.image-policy.k8s.io/*`.
	// It is up to each webhook backend to determine how to interpret these annotations, if at all.
	Annotations map[string]string
	// Namespace is the namespace the pod is being created in.
	Namespace string
}

ImageReviewSpec is a description of the pod creation request.

func (*ImageReviewSpec) DeepCopy 

func (in *ImageReviewSpec) DeepCopy() *ImageReviewSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImageReviewSpec.

func (*ImageReviewSpec) DeepCopyInto 

func (in *ImageReviewSpec) DeepCopyInto(out *ImageReviewSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type ImageReviewStatus 

type ImageReviewStatus struct {
	// Allowed indicates that all images were allowed to be run.
	Allowed bool
	// Reason should be empty unless Allowed is false in which case it
	// may contain a short description of what is wrong.  Kubernetes
	// may truncate excessively long errors when displaying to the user.
	Reason string
	// AuditAnnotations will be added to the attributes object of the
	// admission controller request using 'AddAnnotation'.  The keys should
	// be prefix-less (i.e., the admission controller will add an
	// appropriate prefix).
	AuditAnnotations map[string]string
}

ImageReviewStatus is the result of the review for the pod creation request.

func (*ImageReviewStatus) DeepCopy 

func (in *ImageReviewStatus) DeepCopy() *ImageReviewStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImageReviewStatus.

func (*ImageReviewStatus) DeepCopyInto 

func (in *ImageReviewStatus) DeepCopyInto(out *ImageReviewStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

Source Files

View all Source files

Directories

Path Synopsis
Package install installs the experimental API group, making it available as an option to all of the API encoding/decoding machinery.
 Package install installs the experimental API group, making it available as an option to all of the API encoding/decoding machinery.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.