verifier

package

v0.0.0-...-9b5a78d Latest Latest Go to latest Published: Dec 10, 2020 License: Apache-2.0 Imports: 24 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/IBM/integrity-enforcer

Links

Open Source Insights

Documentation ¶

Index ¶

type CheckContext
- func InitCheckContext(config *config.VerifierConfig) *CheckContext
type DecisionResult
type Handler
- func NewHandler(config *config.VerifierConfig) *Handler
type RunData

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type CheckContext ¶

type CheckContext struct {
	DetectOnlyModeEnabled bool   `json:"detectOnly"`
	BreakGlassModeEnabled bool   `json:"breakGlass"`
	IgnoredSA             bool   `json:"ignoredSA"`
	Protected             bool   `json:"protected"`
	IVResource            bool   `json:"ivresource"`
	Allow                 bool   `json:"allow"`
	Verified              bool   `json:"verified"`
	Aborted               bool   `json:"aborted"`
	AbortReason           string `json:"abortReason"`
	Error                 error  `json:"error"`
	Message               string `json:"msg"`

	SignatureEvalResult *common.SignatureEvalResult `json:"signature"`
	MutationEvalResult  *common.MutationEvalResult  `json:"mutation"`

	ReasonCode int `json:"reasonCode"`
}

func InitCheckContext ¶

func InitCheckContext(config *config.VerifierConfig) *CheckContext

type DecisionResult ¶

type DecisionResult struct {
	Type       common.DecisionType `json:"type,omitempty"`
	Verified   bool                `json:"verified,omitempty"`
	ReasonCode int                 `json:"reasonCode,omitempty"`
	Message    string              `json:"message,omitempty"`
	// contains filtered or unexported fields
}

type Handler ¶

type Handler struct {
	// contains filtered or unexported fields
}

func NewHandler ¶

func NewHandler(config *config.VerifierConfig) *Handler

func (*Handler) Check ¶

func (self *Handler) Check() *DecisionResult

func (*Handler) Report ¶

func (self *Handler) Report(denyRSP *rspapi.ResourceSigningProfile) error

func (*Handler) Run ¶

func (self *Handler) Run(req *v1beta1.AdmissionRequest) *v1beta1.AdmissionResponse

type RunData ¶

type RunData struct {
	RSPList []rspapi.ResourceSigningProfile `json:"rspList,omitempty"`
	NSList  []v1.Namespace                  `json:"nsList,omitempty"`

	// for test
	SignPolicy *spolapi.SignPolicy            `json:"signPolicy,omitempty"`
	ResSigList *rsigapi.ResourceSignatureList `json:"resSigList,omitempty"`
	// contains filtered or unexported fields
}

func (*RunData) GetNSList ¶

func (self *RunData) GetNSList() []v1.Namespace

func (*RunData) GetRSPList ¶

func (self *RunData) GetRSPList() []rspapi.ResourceSigningProfile

func (*RunData) GetResSigList ¶

func (self *RunData) GetResSigList(reqc *common.ReqContext) *rsigapi.ResourceSignatureList

func (*RunData) GetRuleTable ¶

func (self *RunData) GetRuleTable(verifierNamespace string) *loader.RuleTable

func (*RunData) GetSignPolicy ¶

func (self *RunData) GetSignPolicy() *spolapi.SignPolicy

func (*RunData) Init ¶

func (self *RunData) Init(reqc *common.ReqContext, verifierNamespace string)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL