Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type EnforcerConfig

type EnforcerConfig struct {
	Patch *PatchConfig        `json:"patch,omitempty"`
	Log   *LoggingScopeConfig `json:"log,omitempty"`

	// Policy  *policy.IntegrityEnforcerPolicy `json:"policy,omitempty"`
	Allow      []protect.RequestPattern `json:"allow,omitempty"`
	Ignore     []protect.RequestPattern `json:"ignore,omitempty"`
	SignPolicy *policy.SignPolicy       `json:"signPolicy,omitempty"`
	Mode       IntegrityEnforcerMode    `json:"mode,omitempty"`
	Plugin     []PluginConfig           `json:"plugin,omitempty"`

	Namespace          string `json:"namespace,omitempty"`
	SignatureNamespace string `json:"signatureNamespace,omitempty"`
	VerifyType         string `json:"verifyType"`
	CertPoolPath       string `json:"certPoolPath,omitempty"`
	KeyringPath        string `json:"keyringPath,omitempty"`
	ChartDir           string `json:"chartPath,omitempty"`
	ChartRepo          string `json:"chartRepo,omitempty"`

	IEResource       string `json:"ieResource,omitempty"`
	IEAdminUserGroup string `json:"ieAdminUserGroup,omitempty"`
	IEServerUserName string `json:"ieServerUserName,omitempty"`
}

func (*EnforcerConfig) ContextLoggerConfig

func (ec *EnforcerConfig) ContextLoggerConfig() logger.ContextLoggerConfig

func (*EnforcerConfig) DeepCopy

func (ec *EnforcerConfig) DeepCopy() *EnforcerConfig

func (*EnforcerConfig) DeepCopyInto

func (ec *EnforcerConfig) DeepCopyInto(ec2 *EnforcerConfig)

func (*EnforcerConfig) GetEnabledPlugins

func (ec *EnforcerConfig) GetEnabledPlugins() map[string]bool

func (*EnforcerConfig) LogConfig

func (ec *EnforcerConfig) LogConfig() *LoggingScopeConfig

func (*EnforcerConfig) LoggerConfig

func (ec *EnforcerConfig) LoggerConfig() logger.LoggerConfig

func (*EnforcerConfig) PatchEnabled

func (ec *EnforcerConfig) PatchEnabled() bool

type IntegrityEnforcerMode

type IntegrityEnforcerMode string
const (
	UnknownMode IntegrityEnforcerMode = ""
	EnforceMode IntegrityEnforcerMode = "enforce"
	DetectMode  IntegrityEnforcerMode = "detect"
)

type LogScopeConfig

type LogScopeConfig struct {
	Enabled bool                     `json:"enabled,omitempty"`
	InScope []protect.RequestPattern `json:"inScope,omitempty"`
	Ignore  []protect.RequestPattern `json:"ignore,omitempty"`
}

func (*LogScopeConfig) IsInScope

func (sc *LogScopeConfig) IsInScope(reqc *common.ReqContext) bool

type LoggingScopeConfig

type LoggingScopeConfig struct {
	LogLevel             string          `json:"logLevel,omitempty"`
	IncludeRequest       bool            `json:"includeRequest,omitempty"`
	IncludeRelease       bool            `json:"includeRelease,omitempty"`
	ConsoleLog           *LogScopeConfig `json:"consoleLog,omitempty"`
	ContextLog           *LogScopeConfig `json:"contextLog,omitempty"`
	ConsoleLogFormat     string          `json:"consoleLogFormat,omitempty"`
	ConsoleLogFile       string          `json:"consoleLogFile,omitempty"`
	ContextLogFile       string          `json:"contextLogFile,omitempty"`
	ContextLogRotateSize int64           `json:"contextLogRotateSize,omitempty"`
}

type PatchConfig

type PatchConfig struct {
	Enabled bool `json:"enabled,omitempty"`
}

type PluginConfig

type PluginConfig struct {
	Name    string `json:"name,omitempty"`
	Enabled bool   `json:"enabled,omitempty"`
}