verifier

package

v0.0.0-...-9b5a78d Latest Latest Go to latest Published: Dec 10, 2020 License: Apache-2.0 Imports: 24 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/IBM/integrity-enforcer

Documentation ¶

Index ¶

type CheckContext
- func InitCheckContext(config *config.VerifierConfig) *CheckContext
type DecisionResult
type Handler
- func NewHandler(config *config.VerifierConfig) *Handler
type RunData

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type CheckContext ¶

type CheckContext struct {
	DetectOnlyModeEnabled bool   `json:"detectOnly"`
	BreakGlassModeEnabled bool   `json:"breakGlass"`
	IgnoredSA             bool   `json:"ignoredSA"`
	Protected             bool   `json:"protected"`
	IVResource            bool   `json:"ivresource"`
	Allow                 bool   `json:"allow"`
	Verified              bool   `json:"verified"`
	Aborted               bool   `json:"aborted"`
	AbortReason           string `json:"abortReason"`
	Error                 error  `json:"error"`
	Message               string `json:"msg"`

	SignatureEvalResult *common.SignatureEvalResult `json:"signature"`
	MutationEvalResult  *common.MutationEvalResult  `json:"mutation"`

	ReasonCode int `json:"reasonCode"`
}

func InitCheckContext ¶

func InitCheckContext(config *config.VerifierConfig) *CheckContext

type DecisionResult ¶

type DecisionResult struct {
	Type       common.DecisionType `json:"type,omitempty"`
	Verified   bool                `json:"verified,omitempty"`
	ReasonCode int                 `json:"reasonCode,omitempty"`
	Message    string              `json:"message,omitempty"`
	// contains filtered or unexported fields
}

type Handler ¶

type Handler struct {
	// contains filtered or unexported fields
}

func NewHandler ¶

func NewHandler(config *config.VerifierConfig) *Handler

func (*Handler) Check ¶

func (self *Handler) Check() *DecisionResult

func (*Handler) Report ¶

func (self *Handler) Report(denyRSP *rspapi.ResourceSigningProfile) error

func (*Handler) Run ¶

func (self *Handler) Run(req *v1beta1.AdmissionRequest) *v1beta1.AdmissionResponse

type RunData ¶

type RunData struct {
	RSPList []rspapi.ResourceSigningProfile `json:"rspList,omitempty"`
	NSList  []v1.Namespace                  `json:"nsList,omitempty"`

	// for test
	SignPolicy *spolapi.SignPolicy            `json:"signPolicy,omitempty"`
	ResSigList *rsigapi.ResourceSignatureList `json:"resSigList,omitempty"`
	// contains filtered or unexported fields
}

func (*RunData) GetNSList ¶

func (self *RunData) GetNSList() []v1.Namespace

func (*RunData) GetRSPList ¶

func (self *RunData) GetRSPList() []rspapi.ResourceSigningProfile

func (*RunData) GetResSigList ¶

func (self *RunData) GetResSigList(reqc *common.ReqContext) *rsigapi.ResourceSignatureList

func (*RunData) GetRuleTable ¶

func (self *RunData) GetRuleTable(verifierNamespace string) *loader.RuleTable

func (*RunData) GetSignPolicy ¶

func (self *RunData) GetSignPolicy() *spolapi.SignPolicy

func (*RunData) Init ¶

func (self *RunData) Init(reqc *common.ReqContext, verifierNamespace string)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL