auth

package

v1.1.12 Latest Latest Go to latest Published: Sep 18, 2020 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/nirmata/kyverno

Links

Open Source Insights

Documentation ¶

Index ¶

type CanIOptions
- func NewCanI(client *client.Client, kind, namespace, verb string, log logr.Logger) *CanIOptions
- func (o *CanIOptions) RunAccessCheck() (bool, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type CanIOptions ¶

type CanIOptions struct {
	// contains filtered or unexported fields
}

CanIOptions provides utility to check if user has authorization for the given operation

func NewCanI ¶

func NewCanI(client *client.Client, kind, namespace, verb string, log logr.Logger) *CanIOptions

NewCanI returns a new instance of operation access controller evaluator

func (*CanIOptions) RunAccessCheck ¶

func (o *CanIOptions) RunAccessCheck() (bool, error)

RunAccessCheck checks if the caller can perform the operation - operation is a combination of namespace, kind, verb - can only evaluate a single verb - group version resource is determined from the kind using the discovery client REST mapper - If disallowed, the reason and evaluationError is available in the logs - each can generates a SelfSubjectAccessReview resource and response is evaluated for permissions

Source Files ¶

View all Source files

auth.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL