v1

package

v0.0.0-...-b4df050 Latest Latest Go to latest Published: Oct 11, 2022 License: Apache-2.0 Imports: 4 Imported by: 2

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubearmor/koach

Links

Open Source Insights

Documentation ¶

Overview ¶

Package v1 contains API Schema definitions for the security v1 API group +kubebuilder:object:generate=true +groupName=security.kubearmor.com

Index ¶

Variables
type ConditionType
type FileConditionType
type KubeArmorAlertRule
type KubeArmorAlertRuleList
type KubeArmorAlertRuleSpec
- func (in *KubeArmorAlertRuleSpec) DeepCopy() *KubeArmorAlertRuleSpec
- func (in *KubeArmorAlertRuleSpec) DeepCopyInto(out *KubeArmorAlertRuleSpec)
type KubeArmorAlertRuleStatus
- func (in *KubeArmorAlertRuleStatus) DeepCopy() *KubeArmorAlertRuleStatus
- func (in *KubeArmorAlertRuleStatus) DeepCopyInto(out *KubeArmorAlertRuleStatus)
type NetworkAddressType
type NetworkConditionType
type OccurenceType
type SelectorType

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	// GroupVersion is group version used to register these objects
	GroupVersion = schema.GroupVersion{Group: "security.kubearmor.com", Version: "v1"}

	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
	SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion}

	// AddToScheme adds the types in this group-version to the given scheme.
	AddToScheme = SchemeBuilder.AddToScheme
)

Functions ¶

This section is empty.

Types ¶

type ConditionType ¶

type ConditionType struct {
	// +kubebuilder:validation:optional
	IsSamePID bool `json:"isSamePID,omitempty"`

	// +kubebuilder:validation:optional
	Occurrence OccurenceType `json:"occurrence,omitempty"`

	// +kubebuilder:validation:optional
	File FileConditionType `json:"file,omitempty"`

	// +kubebuilder:validation:optional
	Network NetworkConditionType `json:"network,omitempty"`
}

type FileConditionType ¶

type FileConditionType struct {
	// +kubebuilder:validation:optional
	Path string `json:"path,omitempty"`

	// +kubebuilder:validation:Enum=delete
	Action string `json:"action,omitempty"`
}

type KubeArmorAlertRule ¶

type KubeArmorAlertRule struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`

	Spec   KubeArmorAlertRuleSpec   `json:"spec,omitempty"`
	Status KubeArmorAlertRuleStatus `json:"status,omitempty"`
}

KubeArmorAlertRule is the Schema for the kubearmoralertrules API +kubebuilder:resource:scope=Cluster,shortName=ar +genclient

func (*KubeArmorAlertRule) DeepCopy ¶

func (in *KubeArmorAlertRule) DeepCopy() *KubeArmorAlertRule

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KubeArmorAlertRule.

func (*KubeArmorAlertRule) DeepCopyInto ¶

func (in *KubeArmorAlertRule) DeepCopyInto(out *KubeArmorAlertRule)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KubeArmorAlertRule) DeepCopyObject ¶

func (in *KubeArmorAlertRule) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KubeArmorAlertRuleList ¶

type KubeArmorAlertRuleList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []KubeArmorAlertRule `json:"items"`
}

KubeArmorAlertRuleList contains a list of KubeArmorAlertRule

func (*KubeArmorAlertRuleList) DeepCopy ¶

func (in *KubeArmorAlertRuleList) DeepCopy() *KubeArmorAlertRuleList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KubeArmorAlertRuleList.

func (*KubeArmorAlertRuleList) DeepCopyInto ¶

func (in *KubeArmorAlertRuleList) DeepCopyInto(out *KubeArmorAlertRuleList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KubeArmorAlertRuleList) DeepCopyObject ¶

func (in *KubeArmorAlertRuleList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KubeArmorAlertRuleSpec ¶

type KubeArmorAlertRuleSpec struct {
	// +kubebuilder:validation:optional
	Selector SelectorType `json:"selector,omitempty"`

	// +kubebuilder:validation:Enum=File;Network
	Operation string `json:"operation"`

	// +kubebuilder:validation:Minimum:=1
	// +kubebuilder:validation:Maximum:=10
	Severity int `json:"severity"`

	Message string `json:"message"`

	// +kubebuilder:validation:optional
	Condition ConditionType `json:"condition,omitempty"`
}

KubeArmorAlertRuleSpec defines the desired state of KubeArmorAlertRule

func (*KubeArmorAlertRuleSpec) DeepCopy ¶

func (in *KubeArmorAlertRuleSpec) DeepCopy() *KubeArmorAlertRuleSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KubeArmorAlertRuleSpec.

func (*KubeArmorAlertRuleSpec) DeepCopyInto ¶

func (in *KubeArmorAlertRuleSpec) DeepCopyInto(out *KubeArmorAlertRuleSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KubeArmorAlertRuleStatus ¶

type KubeArmorAlertRuleStatus struct {
}

KubeArmorAlertRuleStatus defines the observed state of KubeArmorAlertRule

func (*KubeArmorAlertRuleStatus) DeepCopy ¶

func (in *KubeArmorAlertRuleStatus) DeepCopy() *KubeArmorAlertRuleStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KubeArmorAlertRuleStatus.

func (*KubeArmorAlertRuleStatus) DeepCopyInto ¶

func (in *KubeArmorAlertRuleStatus) DeepCopyInto(out *KubeArmorAlertRuleStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type NetworkAddressType ¶

type NetworkAddressType struct {
	// +kubebuilder:validation:optional
	IP string `json:"ip,omitempty"`

	// +kubebuilder:validation:optional
	IsSuspicious bool `json:"isSuspicious,omitempty"`
}

type NetworkConditionType ¶

type NetworkConditionType struct {
	// +kubebuilder:validation:optional
	// +kubebuilder:validation:Pattern=(icmp|ICMP|tcp|TCP|udp|UDP|raw|RAW)$
	Protocol string `json:"protocol,omitempty"`

	// +kubebuilder:validation:optional
	SourceAddress NetworkAddressType `json:"sourceAddress,omitempty"`

	// +kubebuilder:validation:optional
	DestinationAddress NetworkAddressType `json:"destinationAddress,omitempty"`
}

type OccurenceType ¶

type OccurenceType struct {
	// +kubebuilder:validation:Minimum:=1
	Count int `json:"count"`

	// +kubebuilder:validation:optional
	// +kubebuilder:validation:Pattern=([0-9]+(s|m|h|d|M|y))+
	Timeframe string `json:"timeframe,omitempty"`
}

type SelectorType ¶

type SelectorType struct {
	// +kubebuilder:validation:optional
	MatchLabels map[string]string `json:"matchLabels,omitempty"`
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL