Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func InstanceAdmissionWebhook

func InstanceAdmissionWebhook(ns string) admissionv1beta1.MutatingWebhookConfiguration

InstanceAdmissionWebhook returns a MutatingWebhookConfiguration for the instance admission controller.

Types

type CertPair

type CertPair struct {
	Key  crypto.Signer
	Cert *x509.Certificate
}

CertPair is a private key and certificate for use for client auth, as a CA, or serving.

func (CertPair) AsBytes

func (k CertPair) AsBytes() (cert []byte, key []byte, err error)

AsBytes encodes key-pair in the appropriate formats for on-disk storage (PEM and PKCS8, respectively).

func (CertPair) CertBytes

func (k CertPair) CertBytes() []byte

CertBytes returns the PEM-encoded version of the certificate for this pair.

type KudoNamespace

type KudoNamespace struct {
	// contains filtered or unexported fields
}

func NewNamespaceInitializer

func NewNamespaceInitializer(options kudoinit.Options) KudoNamespace

func (KudoNamespace) Install

func (o KudoNamespace) Install(client *kube.Client) error

func (KudoNamespace) PreInstallVerify

func (o KudoNamespace) PreInstallVerify(client *kube.Client, result *verifier.Result) error

func (KudoNamespace) PreUpgradeVerify

func (o KudoNamespace) PreUpgradeVerify(client *kube.Client, result *verifier.Result) error

func (KudoNamespace) Resources

func (o KudoNamespace) Resources() []runtime.Object

func (KudoNamespace) String

func (o KudoNamespace) String() string

func (KudoNamespace) VerifyInstallation

func (o KudoNamespace) VerifyInstallation(client *kube.Client, result *verifier.Result) error

type KudoServiceAccount

type KudoServiceAccount struct {
	// contains filtered or unexported fields
}

func NewServiceAccountInitializer

func NewServiceAccountInitializer(options kudoinit.Options) KudoServiceAccount

func (KudoServiceAccount) Install

func (o KudoServiceAccount) Install(client *kube.Client) error

func (KudoServiceAccount) PreInstallVerify

func (o KudoServiceAccount) PreInstallVerify(client *kube.Client, result *verifier.Result) error

func (KudoServiceAccount) PreUpgradeVerify

func (o KudoServiceAccount) PreUpgradeVerify(client *kube.Client, result *verifier.Result) error

func (KudoServiceAccount) Resources

func (o KudoServiceAccount) Resources() []runtime.Object

func (KudoServiceAccount) String

func (o KudoServiceAccount) String() string

func (KudoServiceAccount) VerifyInstallation

func (o KudoServiceAccount) VerifyInstallation(client *kube.Client, result *verifier.Result) error

type KudoWebHook

type KudoWebHook struct {
	// contains filtered or unexported fields
}

func NewWebHookInitializer

func NewWebHookInitializer(options kudoinit.Options) *KudoWebHook

func (*KudoWebHook) Install

func (k *KudoWebHook) Install(client *kube.Client) error

func (*KudoWebHook) PreInstallVerify

func (k *KudoWebHook) PreInstallVerify(client *kube.Client, result *verifier.Result) error

func (*KudoWebHook) PreUpgradeVerify

func (k *KudoWebHook) PreUpgradeVerify(client *kube.Client, result *verifier.Result) error

func (*KudoWebHook) Resources

func (k *KudoWebHook) Resources() []runtime.Object

func (*KudoWebHook) String

func (k *KudoWebHook) String() string

func (*KudoWebHook) UninstallWebHook

func (k *KudoWebHook) UninstallWebHook(client *kube.Client) error

func (*KudoWebHook) VerifyInstallation

func (k *KudoWebHook) VerifyInstallation(client *kube.Client, result *verifier.Result) error

type TinyCA

type TinyCA struct {
	CA        CertPair
	CN        string
	Service   string
	Namespace string
	// contains filtered or unexported fields
}

TinyCA supports signing serving certs and client-certs for services and can be used as an auth mechanism with tests.

func NewTinyCA

func NewTinyCA(svc, ns string) (*TinyCA, error)

func (*TinyCA) NewServingCert

func (ca *TinyCA) NewServingCert() (CertPair, error)

NewServingCert returns a new CertPair for a serving HTTPS for a service. DNSNames are generated from the passed service and namespace