This project contains a Kubernetes controller and Custom Resource Definition for managing Ladon policies.
This repository is a fork of
https://github.com/kubernetes/sample-controller, and a lot of code was borrowed from that project.
Edit the file located at
and edit the
POSTGRES_URL to point to your postgres server.
Once you're done, run:
kubectl apply -f k8s/crd.yaml -f k8s/deployment.yaml
This will run the migrations for the Ladon database. If you do not have tables built for ladon, this applicaiton will do it as soon as it starts.
Policy resource is provided at
Policy resources will create
Policy entries in your
kubectl apply -f k8s/examples/policy.yaml
apiVersion: ladoncontroller.k8s.io/v1alpha1 kind: Policy metadata: name: consent-policy-users spec: description: "Allow Consent app to read user information." subjects: - "services:consent" - "groups:app-internal" actions: - "read" resources: - "users:<.*>" effect: "allow"
There is no documentation for this package.
Package v1alpha1 is the v1alpha1 version of the API.
|Package v1alpha1 is the v1alpha1 version of the API.|
This package has the automatically generated clientset.
|This package has the automatically generated clientset.|
This package has the automatically generated fake clientset.
|This package has the automatically generated fake clientset.|
This package contains the scheme of the automatically generated clientset.
|This package contains the scheme of the automatically generated clientset.|
This package has the automatically generated typed clients.
|This package has the automatically generated typed clients.|
Package fake has the automatically generated clients.
|Package fake has the automatically generated clients.|