Documentation
¶
Index ¶
- func ExecuteTemplate(tmpl string, data map[string]map[string]string) (bytes.Buffer, error)
- func ExecuteTemplateString(tmpl string, data map[string]map[string]string) (string, error)
- type CAProvider
- type CAProviderType
- type Result
- type Secret
- type SecretKeySelector
- type Spec
- type Webhook
- func (w *Webhook) GetCACertPool(provider *Spec) (*x509.CertPool, error)
- func (w *Webhook) GetCertFromConfigMap(provider *Spec) ([]byte, error)
- func (w *Webhook) GetCertFromSecret(provider *Spec) ([]byte, error)
- func (w *Webhook) GetHTTPClient(provider *Spec) (*http.Client, error)
- func (w *Webhook) GetSecretMap(ctx context.Context, provider *Spec, ...) (map[string][]byte, error)
- func (w *Webhook) GetTemplateData(ctx context.Context, ref *esv1beta1.ExternalSecretDataRemoteRef, ...) (map[string]map[string]string, error)
- func (w *Webhook) GetWebhookData(ctx context.Context, provider *Spec, ...) ([]byte, error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ExecuteTemplate ¶
Types ¶
type CAProvider ¶
type CAProvider struct {
// The type of provider to use such as "Secret", or "ConfigMap".
// +kubebuilder:validation:Enum="Secret";"ConfigMap"
Type CAProviderType `json:"type"`
// The name of the object located at the provider type.
Name string `json:"name"`
// The key the value inside of the provider type to use, only used with "Secret" type
// +kubebuilder:validation:Optional
Key string `json:"key,omitempty"`
// The namespace the Provider type is in.
// +optional
Namespace *string `json:"namespace,omitempty"`
}
Defines a location to fetch the cert for the webhook provider from.
type CAProviderType ¶
type CAProviderType string
const ( CAProviderTypeSecret CAProviderType = "Secret" CAProviderTypeConfigMap CAProviderType = "ConfigMap" )
type Result ¶
type Result struct {
// Json path of return value
// +optional
JSONPath string `json:"jsonPath,omitempty"`
}
type Secret ¶
type Secret struct {
// Name of this secret in templates
Name string `json:"name"`
// Secret ref to fill in credentials
SecretRef SecretKeySelector `json:"secretRef"`
}
type SecretKeySelector ¶
type Spec ¶
type Spec struct {
// Webhook Method
// +optional, default GET
Method string `json:"method,omitempty"`
// Webhook url to call
URL string `json:"url"`
// Headers
// +optional
Headers map[string]string `json:"headers,omitempty"`
// Body
// +optional
Body string `json:"body,omitempty"`
// Timeout
// +optional
Timeout *metav1.Duration `json:"timeout,omitempty"`
// Result formatting
Result Result `json:"result"`
// Secrets to fill in templates
// These secrets will be passed to the templating function as key value pairs under the given name
// +optional
Secrets []Secret `json:"secrets,omitempty"`
// PEM encoded CA bundle used to validate webhook server certificate. Only used
// if the Server URL is using HTTPS protocol. This parameter is ignored for
// plain HTTP protocol connection. If not set the system root certificates
// are used to validate the TLS connection.
// +optional
CABundle []byte `json:"caBundle,omitempty"`
// The provider for the CA bundle to use to validate webhook server certificate.
// +optional
CAProvider *CAProvider `json:"caProvider,omitempty"`
}
type Webhook ¶
type Webhook struct {
Kube client.Client
Namespace string
StoreKind string
HTTP *http.Client
EnforceLabels bool
ClusterScoped bool
}
func (*Webhook) GetCACertPool ¶
func (*Webhook) GetCertFromConfigMap ¶
func (*Webhook) GetCertFromSecret ¶
func (*Webhook) GetHTTPClient ¶
func (*Webhook) GetSecretMap ¶
func (*Webhook) GetTemplateData ¶
func (*Webhook) GetWebhookData ¶
Source Files
Click to show internal directories.
Click to hide internal directories.