Documentation
¶
Index ¶
- Constants
- func GetProfileName(pod *v1.Pod, containerName string) string
- func GetProfileNameFromPodAnnotations(annotations map[string]string, containerName string) string
- func SetProfileName(pod *v1.Pod, containerName, profileName string) error
- func SetProfileNameFromPodAnnotations(annotations map[string]string, containerName, profileName string) error
Constants ¶
View Source
const ( // The prefix to an annotation key specifying a container profile. ContainerAnnotationKeyPrefix = "container.apparmor.security.beta.kubernetes.io/" // The annotation key specifying the default AppArmor profile. DefaultProfileAnnotationKey = "apparmor.security.beta.kubernetes.io/defaultProfileName" // The annotation key specifying the allowed AppArmor profiles. AllowedProfilesAnnotationKey = "apparmor.security.beta.kubernetes.io/allowedProfileNames" // The profile specifying the runtime default. ProfileRuntimeDefault = "runtime/default" // The prefix for specifying profiles loaded on the node. ProfileNamePrefix = "localhost/" // Unconfined profile ProfileNameUnconfined = "unconfined" )
TODO: Move these values into the API package.
Variables ¶
This section is empty.
Functions ¶
func GetProfileName ¶
Returns the name of the profile to use with the container.
func GetProfileNameFromPodAnnotations ¶
GetProfileNameFromPodAnnotations gets the name of the profile to use with container from pod annotations
func SetProfileName ¶
Sets the name of the profile to use with the container.
Types ¶
This section is empty.
Source Files
Click to show internal directories.
Click to hide internal directories.