Documentation ¶
Overview ¶
+groupName=rbac.authorization.k8s.io
Package v1alpha1 is a generated protocol buffer package. It is generated from these files: k8s.io/kubernetes/vendor/k8s.io/api/rbac/v1alpha1/generated.proto It has these top-level messages: ClusterRole ClusterRoleBinding ClusterRoleBindingList ClusterRoleList PolicyRule Role RoleBinding RoleBindingList RoleList RoleRef Subject
Index ¶
- Constants
- Variables
- func DeepCopy_v1alpha1_ClusterRole(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_ClusterRoleBinding(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_ClusterRoleBindingList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_ClusterRoleList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_PolicyRule(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_Role(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_RoleBinding(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_RoleBindingList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_RoleList(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_RoleRef(in interface{}, out interface{}, c *conversion.Cloner) error
- func DeepCopy_v1alpha1_Subject(in interface{}, out interface{}, c *conversion.Cloner) error
- func RegisterDeepCopies(scheme *runtime.Scheme) error
- func Resource(resource string) schema.GroupResource
- type ClusterRole
- func (x *ClusterRole) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *ClusterRole) CodecEncodeSelf(e *codec1978.Encoder)
- func (*ClusterRole) Descriptor() ([]byte, []int)
- func (m *ClusterRole) Marshal() (dAtA []byte, err error)
- func (m *ClusterRole) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRole) ProtoMessage()
- func (m *ClusterRole) Reset()
- func (m *ClusterRole) Size() (n int)
- func (this *ClusterRole) String() string
- func (ClusterRole) SwaggerDoc() map[string]string
- func (m *ClusterRole) Unmarshal(dAtA []byte) error
- type ClusterRoleBinding
- func (x *ClusterRoleBinding) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *ClusterRoleBinding) CodecEncodeSelf(e *codec1978.Encoder)
- func (*ClusterRoleBinding) Descriptor() ([]byte, []int)
- func (m *ClusterRoleBinding) Marshal() (dAtA []byte, err error)
- func (m *ClusterRoleBinding) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRoleBinding) ProtoMessage()
- func (m *ClusterRoleBinding) Reset()
- func (m *ClusterRoleBinding) Size() (n int)
- func (this *ClusterRoleBinding) String() string
- func (ClusterRoleBinding) SwaggerDoc() map[string]string
- func (m *ClusterRoleBinding) Unmarshal(dAtA []byte) error
- type ClusterRoleBindingList
- func (x *ClusterRoleBindingList) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *ClusterRoleBindingList) CodecEncodeSelf(e *codec1978.Encoder)
- func (*ClusterRoleBindingList) Descriptor() ([]byte, []int)
- func (m *ClusterRoleBindingList) Marshal() (dAtA []byte, err error)
- func (m *ClusterRoleBindingList) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRoleBindingList) ProtoMessage()
- func (m *ClusterRoleBindingList) Reset()
- func (m *ClusterRoleBindingList) Size() (n int)
- func (this *ClusterRoleBindingList) String() string
- func (ClusterRoleBindingList) SwaggerDoc() map[string]string
- func (m *ClusterRoleBindingList) Unmarshal(dAtA []byte) error
- type ClusterRoleList
- func (x *ClusterRoleList) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *ClusterRoleList) CodecEncodeSelf(e *codec1978.Encoder)
- func (*ClusterRoleList) Descriptor() ([]byte, []int)
- func (m *ClusterRoleList) Marshal() (dAtA []byte, err error)
- func (m *ClusterRoleList) MarshalTo(dAtA []byte) (int, error)
- func (*ClusterRoleList) ProtoMessage()
- func (m *ClusterRoleList) Reset()
- func (m *ClusterRoleList) Size() (n int)
- func (this *ClusterRoleList) String() string
- func (ClusterRoleList) SwaggerDoc() map[string]string
- func (m *ClusterRoleList) Unmarshal(dAtA []byte) error
- type PolicyRule
- func (x *PolicyRule) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *PolicyRule) CodecEncodeSelf(e *codec1978.Encoder)
- func (*PolicyRule) Descriptor() ([]byte, []int)
- func (m *PolicyRule) Marshal() (dAtA []byte, err error)
- func (m *PolicyRule) MarshalTo(dAtA []byte) (int, error)
- func (*PolicyRule) ProtoMessage()
- func (m *PolicyRule) Reset()
- func (m *PolicyRule) Size() (n int)
- func (this *PolicyRule) String() string
- func (PolicyRule) SwaggerDoc() map[string]string
- func (m *PolicyRule) Unmarshal(dAtA []byte) error
- type Role
- func (x *Role) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *Role) CodecEncodeSelf(e *codec1978.Encoder)
- func (*Role) Descriptor() ([]byte, []int)
- func (m *Role) Marshal() (dAtA []byte, err error)
- func (m *Role) MarshalTo(dAtA []byte) (int, error)
- func (*Role) ProtoMessage()
- func (m *Role) Reset()
- func (m *Role) Size() (n int)
- func (this *Role) String() string
- func (Role) SwaggerDoc() map[string]string
- func (m *Role) Unmarshal(dAtA []byte) error
- type RoleBinding
- func (x *RoleBinding) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *RoleBinding) CodecEncodeSelf(e *codec1978.Encoder)
- func (*RoleBinding) Descriptor() ([]byte, []int)
- func (m *RoleBinding) Marshal() (dAtA []byte, err error)
- func (m *RoleBinding) MarshalTo(dAtA []byte) (int, error)
- func (*RoleBinding) ProtoMessage()
- func (m *RoleBinding) Reset()
- func (m *RoleBinding) Size() (n int)
- func (this *RoleBinding) String() string
- func (RoleBinding) SwaggerDoc() map[string]string
- func (m *RoleBinding) Unmarshal(dAtA []byte) error
- type RoleBindingList
- func (x *RoleBindingList) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *RoleBindingList) CodecEncodeSelf(e *codec1978.Encoder)
- func (*RoleBindingList) Descriptor() ([]byte, []int)
- func (m *RoleBindingList) Marshal() (dAtA []byte, err error)
- func (m *RoleBindingList) MarshalTo(dAtA []byte) (int, error)
- func (*RoleBindingList) ProtoMessage()
- func (m *RoleBindingList) Reset()
- func (m *RoleBindingList) Size() (n int)
- func (this *RoleBindingList) String() string
- func (RoleBindingList) SwaggerDoc() map[string]string
- func (m *RoleBindingList) Unmarshal(dAtA []byte) error
- type RoleList
- func (x *RoleList) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *RoleList) CodecEncodeSelf(e *codec1978.Encoder)
- func (*RoleList) Descriptor() ([]byte, []int)
- func (m *RoleList) Marshal() (dAtA []byte, err error)
- func (m *RoleList) MarshalTo(dAtA []byte) (int, error)
- func (*RoleList) ProtoMessage()
- func (m *RoleList) Reset()
- func (m *RoleList) Size() (n int)
- func (this *RoleList) String() string
- func (RoleList) SwaggerDoc() map[string]string
- func (m *RoleList) Unmarshal(dAtA []byte) error
- type RoleRef
- func (x *RoleRef) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *RoleRef) CodecEncodeSelf(e *codec1978.Encoder)
- func (*RoleRef) Descriptor() ([]byte, []int)
- func (m *RoleRef) Marshal() (dAtA []byte, err error)
- func (m *RoleRef) MarshalTo(dAtA []byte) (int, error)
- func (*RoleRef) ProtoMessage()
- func (m *RoleRef) Reset()
- func (m *RoleRef) Size() (n int)
- func (this *RoleRef) String() string
- func (RoleRef) SwaggerDoc() map[string]string
- func (m *RoleRef) Unmarshal(dAtA []byte) error
- type Subject
- func (x *Subject) CodecDecodeSelf(d *codec1978.Decoder)
- func (x *Subject) CodecEncodeSelf(e *codec1978.Encoder)
- func (*Subject) Descriptor() ([]byte, []int)
- func (m *Subject) Marshal() (dAtA []byte, err error)
- func (m *Subject) MarshalTo(dAtA []byte) (int, error)
- func (*Subject) ProtoMessage()
- func (m *Subject) Reset()
- func (m *Subject) Size() (n int)
- func (this *Subject) String() string
- func (Subject) SwaggerDoc() map[string]string
- func (m *Subject) Unmarshal(dAtA []byte) error
Constants ¶
const ( APIGroupAll = "*" ResourceAll = "*" VerbAll = "*" NonResourceAll = "*" GroupKind = "Group" ServiceAccountKind = "ServiceAccount" UserKind = "User" // AutoUpdateAnnotationKey is the name of an annotation which prevents reconciliation if set to "false" AutoUpdateAnnotationKey = "rbac.authorization.kubernetes.io/autoupdate" )
const GroupName = "rbac.authorization.k8s.io"
Variables ¶
var ( ErrInvalidLengthGenerated = fmt.Errorf("proto: negative length found during unmarshaling") ErrIntOverflowGenerated = fmt.Errorf("proto: integer overflow") )
var ( // TODO: move SchemeBuilder with zz_generated.deepcopy.go to k8s.io/api. // localSchemeBuilder and AddToScheme will stay in k8s.io/kubernetes. SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes) AddToScheme = localSchemeBuilder.AddToScheme )
var SchemeGroupVersion = schema.GroupVersion{Group: GroupName, Version: "v1alpha1"}
SchemeGroupVersion is group version used to register these objects
Functions ¶
func DeepCopy_v1alpha1_ClusterRole ¶
func DeepCopy_v1alpha1_ClusterRole(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_ClusterRole is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_ClusterRoleBinding ¶
func DeepCopy_v1alpha1_ClusterRoleBinding(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_ClusterRoleBinding is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_ClusterRoleBindingList ¶
func DeepCopy_v1alpha1_ClusterRoleBindingList(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_ClusterRoleBindingList is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_ClusterRoleList ¶
func DeepCopy_v1alpha1_ClusterRoleList(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_ClusterRoleList is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_PolicyRule ¶
func DeepCopy_v1alpha1_PolicyRule(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_PolicyRule is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_Role ¶
func DeepCopy_v1alpha1_Role(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_Role is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_RoleBinding ¶
func DeepCopy_v1alpha1_RoleBinding(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_RoleBinding is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_RoleBindingList ¶
func DeepCopy_v1alpha1_RoleBindingList(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_RoleBindingList is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_RoleList ¶
func DeepCopy_v1alpha1_RoleList(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_RoleList is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_RoleRef ¶
func DeepCopy_v1alpha1_RoleRef(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_RoleRef is an autogenerated deepcopy function.
func DeepCopy_v1alpha1_Subject ¶
func DeepCopy_v1alpha1_Subject(in interface{}, out interface{}, c *conversion.Cloner) error
DeepCopy_v1alpha1_Subject is an autogenerated deepcopy function.
func RegisterDeepCopies ¶
RegisterDeepCopies adds deep-copy functions to the given scheme. Public to allow building arbitrary schemes.
func Resource ¶
func Resource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns a Group qualified GroupResource
Types ¶
type ClusterRole ¶
type ClusterRole struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Rules holds all the PolicyRules for this ClusterRole Rules []PolicyRule `json:"rules" protobuf:"bytes,2,rep,name=rules"` }
ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding.
func (*ClusterRole) CodecDecodeSelf ¶
func (x *ClusterRole) CodecDecodeSelf(d *codec1978.Decoder)
func (*ClusterRole) CodecEncodeSelf ¶
func (x *ClusterRole) CodecEncodeSelf(e *codec1978.Encoder)
func (*ClusterRole) Descriptor ¶
func (*ClusterRole) Descriptor() ([]byte, []int)
func (*ClusterRole) Marshal ¶
func (m *ClusterRole) Marshal() (dAtA []byte, err error)
func (*ClusterRole) ProtoMessage ¶
func (*ClusterRole) ProtoMessage()
func (*ClusterRole) Reset ¶
func (m *ClusterRole) Reset()
func (*ClusterRole) Size ¶
func (m *ClusterRole) Size() (n int)
func (*ClusterRole) String ¶
func (this *ClusterRole) String() string
func (ClusterRole) SwaggerDoc ¶
func (ClusterRole) SwaggerDoc() map[string]string
func (*ClusterRole) Unmarshal ¶
func (m *ClusterRole) Unmarshal(dAtA []byte) error
type ClusterRoleBinding ¶
type ClusterRoleBinding struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Subjects holds references to the objects the role applies to. Subjects []Subject `json:"subjects" protobuf:"bytes,2,rep,name=subjects"` // RoleRef can only reference a ClusterRole in the global namespace. // If the RoleRef cannot be resolved, the Authorizer must return an error. RoleRef RoleRef `json:"roleRef" protobuf:"bytes,3,opt,name=roleRef"` }
ClusterRoleBinding references a ClusterRole, but not contain it. It can reference a ClusterRole in the global namespace, and adds who information via Subject.
func (*ClusterRoleBinding) CodecDecodeSelf ¶
func (x *ClusterRoleBinding) CodecDecodeSelf(d *codec1978.Decoder)
func (*ClusterRoleBinding) CodecEncodeSelf ¶
func (x *ClusterRoleBinding) CodecEncodeSelf(e *codec1978.Encoder)
func (*ClusterRoleBinding) Descriptor ¶
func (*ClusterRoleBinding) Descriptor() ([]byte, []int)
func (*ClusterRoleBinding) Marshal ¶
func (m *ClusterRoleBinding) Marshal() (dAtA []byte, err error)
func (*ClusterRoleBinding) MarshalTo ¶
func (m *ClusterRoleBinding) MarshalTo(dAtA []byte) (int, error)
func (*ClusterRoleBinding) ProtoMessage ¶
func (*ClusterRoleBinding) ProtoMessage()
func (*ClusterRoleBinding) Reset ¶
func (m *ClusterRoleBinding) Reset()
func (*ClusterRoleBinding) Size ¶
func (m *ClusterRoleBinding) Size() (n int)
func (*ClusterRoleBinding) String ¶
func (this *ClusterRoleBinding) String() string
func (ClusterRoleBinding) SwaggerDoc ¶
func (ClusterRoleBinding) SwaggerDoc() map[string]string
func (*ClusterRoleBinding) Unmarshal ¶
func (m *ClusterRoleBinding) Unmarshal(dAtA []byte) error
type ClusterRoleBindingList ¶
type ClusterRoleBindingList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of ClusterRoleBindings Items []ClusterRoleBinding `json:"items" protobuf:"bytes,2,rep,name=items"` }
ClusterRoleBindingList is a collection of ClusterRoleBindings
func (*ClusterRoleBindingList) CodecDecodeSelf ¶
func (x *ClusterRoleBindingList) CodecDecodeSelf(d *codec1978.Decoder)
func (*ClusterRoleBindingList) CodecEncodeSelf ¶
func (x *ClusterRoleBindingList) CodecEncodeSelf(e *codec1978.Encoder)
func (*ClusterRoleBindingList) Descriptor ¶
func (*ClusterRoleBindingList) Descriptor() ([]byte, []int)
func (*ClusterRoleBindingList) Marshal ¶
func (m *ClusterRoleBindingList) Marshal() (dAtA []byte, err error)
func (*ClusterRoleBindingList) MarshalTo ¶
func (m *ClusterRoleBindingList) MarshalTo(dAtA []byte) (int, error)
func (*ClusterRoleBindingList) ProtoMessage ¶
func (*ClusterRoleBindingList) ProtoMessage()
func (*ClusterRoleBindingList) Reset ¶
func (m *ClusterRoleBindingList) Reset()
func (*ClusterRoleBindingList) Size ¶
func (m *ClusterRoleBindingList) Size() (n int)
func (*ClusterRoleBindingList) String ¶
func (this *ClusterRoleBindingList) String() string
func (ClusterRoleBindingList) SwaggerDoc ¶
func (ClusterRoleBindingList) SwaggerDoc() map[string]string
func (*ClusterRoleBindingList) Unmarshal ¶
func (m *ClusterRoleBindingList) Unmarshal(dAtA []byte) error
type ClusterRoleList ¶
type ClusterRoleList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of ClusterRoles Items []ClusterRole `json:"items" protobuf:"bytes,2,rep,name=items"` }
ClusterRoleList is a collection of ClusterRoles
func (*ClusterRoleList) CodecDecodeSelf ¶
func (x *ClusterRoleList) CodecDecodeSelf(d *codec1978.Decoder)
func (*ClusterRoleList) CodecEncodeSelf ¶
func (x *ClusterRoleList) CodecEncodeSelf(e *codec1978.Encoder)
func (*ClusterRoleList) Descriptor ¶
func (*ClusterRoleList) Descriptor() ([]byte, []int)
func (*ClusterRoleList) Marshal ¶
func (m *ClusterRoleList) Marshal() (dAtA []byte, err error)
func (*ClusterRoleList) ProtoMessage ¶
func (*ClusterRoleList) ProtoMessage()
func (*ClusterRoleList) Reset ¶
func (m *ClusterRoleList) Reset()
func (*ClusterRoleList) Size ¶
func (m *ClusterRoleList) Size() (n int)
func (*ClusterRoleList) String ¶
func (this *ClusterRoleList) String() string
func (ClusterRoleList) SwaggerDoc ¶
func (ClusterRoleList) SwaggerDoc() map[string]string
func (*ClusterRoleList) Unmarshal ¶
func (m *ClusterRoleList) Unmarshal(dAtA []byte) error
type PolicyRule ¶
type PolicyRule struct { // Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule. VerbAll represents all kinds. Verbs []string `json:"verbs" protobuf:"bytes,1,rep,name=verbs"` // APIGroups is the name of the APIGroup that contains the resources. If multiple API groups are specified, any action requested against one of // the enumerated resources in any API group will be allowed. // +optional APIGroups []string `json:"apiGroups,omitempty" protobuf:"bytes,3,rep,name=apiGroups"` // Resources is a list of resources this rule applies to. ResourceAll represents all resources. // +optional Resources []string `json:"resources,omitempty" protobuf:"bytes,4,rep,name=resources"` // ResourceNames is an optional white list of names that the rule applies to. An empty set means that everything is allowed. // +optional ResourceNames []string `json:"resourceNames,omitempty" protobuf:"bytes,5,rep,name=resourceNames"` // NonResourceURLs is a set of partial urls that a user should have access to. *s are allowed, but only as the full, final step in the path // This name is intentionally different than the internal type so that the DefaultConvert works nicely and because the ordering may be different. // Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. // Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"), but not both. // +optional NonResourceURLs []string `json:"nonResourceURLs,omitempty" protobuf:"bytes,6,rep,name=nonResourceURLs"` }
PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.
func (*PolicyRule) CodecDecodeSelf ¶
func (x *PolicyRule) CodecDecodeSelf(d *codec1978.Decoder)
func (*PolicyRule) CodecEncodeSelf ¶
func (x *PolicyRule) CodecEncodeSelf(e *codec1978.Encoder)
func (*PolicyRule) Descriptor ¶
func (*PolicyRule) Descriptor() ([]byte, []int)
func (*PolicyRule) Marshal ¶
func (m *PolicyRule) Marshal() (dAtA []byte, err error)
func (*PolicyRule) ProtoMessage ¶
func (*PolicyRule) ProtoMessage()
func (*PolicyRule) Reset ¶
func (m *PolicyRule) Reset()
func (*PolicyRule) Size ¶
func (m *PolicyRule) Size() (n int)
func (*PolicyRule) String ¶
func (this *PolicyRule) String() string
func (PolicyRule) SwaggerDoc ¶
func (PolicyRule) SwaggerDoc() map[string]string
func (*PolicyRule) Unmarshal ¶
func (m *PolicyRule) Unmarshal(dAtA []byte) error
type Role ¶
type Role struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Rules holds all the PolicyRules for this Role Rules []PolicyRule `json:"rules" protobuf:"bytes,2,rep,name=rules"` }
Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding.
func (*Role) CodecDecodeSelf ¶
func (*Role) CodecEncodeSelf ¶
func (*Role) Descriptor ¶
func (*Role) ProtoMessage ¶
func (*Role) ProtoMessage()
func (Role) SwaggerDoc ¶
type RoleBinding ¶
type RoleBinding struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Subjects holds references to the objects the role applies to. Subjects []Subject `json:"subjects" protobuf:"bytes,2,rep,name=subjects"` // RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. // If the RoleRef cannot be resolved, the Authorizer must return an error. RoleRef RoleRef `json:"roleRef" protobuf:"bytes,3,opt,name=roleRef"` }
RoleBinding references a role, but does not contain it. It can reference a Role in the same namespace or a ClusterRole in the global namespace. It adds who information via Subjects and namespace information by which namespace it exists in. RoleBindings in a given namespace only have effect in that namespace.
func (*RoleBinding) CodecDecodeSelf ¶
func (x *RoleBinding) CodecDecodeSelf(d *codec1978.Decoder)
func (*RoleBinding) CodecEncodeSelf ¶
func (x *RoleBinding) CodecEncodeSelf(e *codec1978.Encoder)
func (*RoleBinding) Descriptor ¶
func (*RoleBinding) Descriptor() ([]byte, []int)
func (*RoleBinding) Marshal ¶
func (m *RoleBinding) Marshal() (dAtA []byte, err error)
func (*RoleBinding) ProtoMessage ¶
func (*RoleBinding) ProtoMessage()
func (*RoleBinding) Reset ¶
func (m *RoleBinding) Reset()
func (*RoleBinding) Size ¶
func (m *RoleBinding) Size() (n int)
func (*RoleBinding) String ¶
func (this *RoleBinding) String() string
func (RoleBinding) SwaggerDoc ¶
func (RoleBinding) SwaggerDoc() map[string]string
func (*RoleBinding) Unmarshal ¶
func (m *RoleBinding) Unmarshal(dAtA []byte) error
type RoleBindingList ¶
type RoleBindingList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of RoleBindings Items []RoleBinding `json:"items" protobuf:"bytes,2,rep,name=items"` }
RoleBindingList is a collection of RoleBindings
func (*RoleBindingList) CodecDecodeSelf ¶
func (x *RoleBindingList) CodecDecodeSelf(d *codec1978.Decoder)
func (*RoleBindingList) CodecEncodeSelf ¶
func (x *RoleBindingList) CodecEncodeSelf(e *codec1978.Encoder)
func (*RoleBindingList) Descriptor ¶
func (*RoleBindingList) Descriptor() ([]byte, []int)
func (*RoleBindingList) Marshal ¶
func (m *RoleBindingList) Marshal() (dAtA []byte, err error)
func (*RoleBindingList) ProtoMessage ¶
func (*RoleBindingList) ProtoMessage()
func (*RoleBindingList) Reset ¶
func (m *RoleBindingList) Reset()
func (*RoleBindingList) Size ¶
func (m *RoleBindingList) Size() (n int)
func (*RoleBindingList) String ¶
func (this *RoleBindingList) String() string
func (RoleBindingList) SwaggerDoc ¶
func (RoleBindingList) SwaggerDoc() map[string]string
func (*RoleBindingList) Unmarshal ¶
func (m *RoleBindingList) Unmarshal(dAtA []byte) error
type RoleList ¶
type RoleList struct { metav1.TypeMeta `json:",inline"` // Standard object's metadata. // +optional metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"` // Items is a list of Roles Items []Role `json:"items" protobuf:"bytes,2,rep,name=items"` }
RoleList is a collection of Roles
func (*RoleList) CodecDecodeSelf ¶
func (*RoleList) CodecEncodeSelf ¶
func (*RoleList) Descriptor ¶
func (*RoleList) ProtoMessage ¶
func (*RoleList) ProtoMessage()
func (RoleList) SwaggerDoc ¶
type RoleRef ¶
type RoleRef struct { // APIGroup is the group for the resource being referenced APIGroup string `json:"apiGroup" protobuf:"bytes,1,opt,name=apiGroup"` // Kind is the type of resource being referenced Kind string `json:"kind" protobuf:"bytes,2,opt,name=kind"` // Name is the name of resource being referenced Name string `json:"name" protobuf:"bytes,3,opt,name=name"` }
RoleRef contains information that points to the role being used
func (*RoleRef) CodecDecodeSelf ¶
func (*RoleRef) CodecEncodeSelf ¶
func (*RoleRef) Descriptor ¶
func (*RoleRef) ProtoMessage ¶
func (*RoleRef) ProtoMessage()
func (RoleRef) SwaggerDoc ¶
type Subject ¶
type Subject struct { // Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". // If the Authorizer does not recognized the kind value, the Authorizer should report an error. Kind string `json:"kind" protobuf:"bytes,1,opt,name=kind"` // APIVersion holds the API group and version of the referenced subject. // Defaults to "v1" for ServiceAccount subjects. // Defaults to "rbac.authorization.k8s.io/v1alpha1" for User and Group subjects. // +k8s:conversion-gen=false // +optional APIVersion string `json:"apiVersion,omitempty" protobuf:"bytes,2,opt.name=apiVersion"` // Name of the object being referenced. Name string `json:"name" protobuf:"bytes,3,opt,name=name"` // Namespace of the referenced object. If the object kind is non-namespace, such as "User" or "Group", and this value is not empty // the Authorizer should report an error. // +optional Namespace string `json:"namespace,omitempty" protobuf:"bytes,4,opt,name=namespace"` }
Subject contains a reference to the object or user identities a role binding applies to. This can either hold a direct API object reference, or a value for non-objects such as user and group names.
func (*Subject) CodecDecodeSelf ¶
func (*Subject) CodecEncodeSelf ¶
func (*Subject) Descriptor ¶
func (*Subject) ProtoMessage ¶
func (*Subject) ProtoMessage()