Documentation

Index

Constants

View Source
const GroupName = "client.authentication.k8s.io"

    GroupName is the group name use in this package

    Variables

    View Source
    var (
    	SchemeBuilder runtime.SchemeBuilder
    
    	AddToScheme = localSchemeBuilder.AddToScheme
    )
    View Source
    var SchemeGroupVersion = schema.GroupVersion{Group: GroupName, Version: "v1beta1"}

      SchemeGroupVersion is group version used to register these objects

      Functions

      func Convert_clientauthentication_Cluster_To_v1beta1_Cluster

      func Convert_clientauthentication_Cluster_To_v1beta1_Cluster(in *clientauthentication.Cluster, out *Cluster, s conversion.Scope) error

        Convert_clientauthentication_Cluster_To_v1beta1_Cluster is an autogenerated conversion function.

        func Convert_clientauthentication_ExecCredentialSpec_To_v1beta1_ExecCredentialSpec

        func Convert_clientauthentication_ExecCredentialSpec_To_v1beta1_ExecCredentialSpec(in *clientauthentication.ExecCredentialSpec, out *ExecCredentialSpec, s conversion.Scope) error

        func Convert_clientauthentication_ExecCredentialStatus_To_v1beta1_ExecCredentialStatus

        func Convert_clientauthentication_ExecCredentialStatus_To_v1beta1_ExecCredentialStatus(in *clientauthentication.ExecCredentialStatus, out *ExecCredentialStatus, s conversion.Scope) error

          Convert_clientauthentication_ExecCredentialStatus_To_v1beta1_ExecCredentialStatus is an autogenerated conversion function.

          func Convert_clientauthentication_ExecCredential_To_v1beta1_ExecCredential

          func Convert_clientauthentication_ExecCredential_To_v1beta1_ExecCredential(in *clientauthentication.ExecCredential, out *ExecCredential, s conversion.Scope) error

            Convert_clientauthentication_ExecCredential_To_v1beta1_ExecCredential is an autogenerated conversion function.

            func Convert_v1beta1_Cluster_To_clientauthentication_Cluster

            func Convert_v1beta1_Cluster_To_clientauthentication_Cluster(in *Cluster, out *clientauthentication.Cluster, s conversion.Scope) error

              Convert_v1beta1_Cluster_To_clientauthentication_Cluster is an autogenerated conversion function.

              func Convert_v1beta1_ExecCredentialSpec_To_clientauthentication_ExecCredentialSpec

              func Convert_v1beta1_ExecCredentialSpec_To_clientauthentication_ExecCredentialSpec(in *ExecCredentialSpec, out *clientauthentication.ExecCredentialSpec, s conversion.Scope) error

                Convert_v1beta1_ExecCredentialSpec_To_clientauthentication_ExecCredentialSpec is an autogenerated conversion function.

                func Convert_v1beta1_ExecCredentialStatus_To_clientauthentication_ExecCredentialStatus

                func Convert_v1beta1_ExecCredentialStatus_To_clientauthentication_ExecCredentialStatus(in *ExecCredentialStatus, out *clientauthentication.ExecCredentialStatus, s conversion.Scope) error

                  Convert_v1beta1_ExecCredentialStatus_To_clientauthentication_ExecCredentialStatus is an autogenerated conversion function.

                  func Convert_v1beta1_ExecCredential_To_clientauthentication_ExecCredential

                  func Convert_v1beta1_ExecCredential_To_clientauthentication_ExecCredential(in *ExecCredential, out *clientauthentication.ExecCredential, s conversion.Scope) error

                    Convert_v1beta1_ExecCredential_To_clientauthentication_ExecCredential is an autogenerated conversion function.

                    func RegisterConversions

                    func RegisterConversions(s *runtime.Scheme) error

                      RegisterConversions adds conversion functions to the given scheme. Public to allow building arbitrary schemes.

                      func RegisterDefaults

                      func RegisterDefaults(scheme *runtime.Scheme) error

                        RegisterDefaults adds defaulters functions to the given scheme. Public to allow building arbitrary schemes. All generated defaulters are covering - they call all nested defaulters.

                        func Resource

                        func Resource(resource string) schema.GroupResource

                          Resource takes an unqualified resource and returns a Group qualified GroupResource

                          Types

                          type Cluster

                          type Cluster struct {
                          	// Server is the address of the kubernetes cluster (https://hostname:port).
                          	Server string `json:"server"`
                          	// TLSServerName is passed to the server for SNI and is used in the client to
                          	// check server certificates against. If ServerName is empty, the hostname
                          	// used to contact the server is used.
                          	// +optional
                          	TLSServerName string `json:"tls-server-name,omitempty"`
                          	// InsecureSkipTLSVerify skips the validity check for the server's certificate.
                          	// This will make your HTTPS connections insecure.
                          	// +optional
                          	InsecureSkipTLSVerify bool `json:"insecure-skip-tls-verify,omitempty"`
                          	// CAData contains PEM-encoded certificate authority certificates.
                          	// If empty, system roots should be used.
                          	// +listType=atomic
                          	// +optional
                          	CertificateAuthorityData []byte `json:"certificate-authority-data,omitempty"`
                          	// ProxyURL is the URL to the proxy to be used for all requests to this
                          	// cluster.
                          	// +optional
                          	ProxyURL string `json:"proxy-url,omitempty"`
                          	// Config holds additional config data that is specific to the exec
                          	// plugin with regards to the cluster being authenticated to.
                          	//
                          	// This data is sourced from the clientcmd Cluster object's
                          	// extensions[client.authentication.k8s.io/exec] field:
                          	//
                          	// clusters:
                          	// - name: my-cluster
                          	//   cluster:
                          	//     ...
                          	//     extensions:
                          	//     - name: client.authentication.k8s.io/exec  # reserved extension name for per cluster exec config
                          	//       extension:
                          	//         audience: 06e3fbd18de8  # arbitrary config
                          	//
                          	// In some environments, the user config may be exactly the same across many clusters
                          	// (i.e. call this exec plugin) minus some details that are specific to each cluster
                          	// such as the audience.  This field allows the per cluster config to be directly
                          	// specified with the cluster info.  Using this field to store secret data is not
                          	// recommended as one of the prime benefits of exec plugins is that no secrets need
                          	// to be stored directly in the kubeconfig.
                          	// +optional
                          	Config runtime.RawExtension `json:"config,omitempty"`
                          }

                            Cluster contains information to allow an exec plugin to communicate with the kubernetes cluster being authenticated to.

                            To ensure that this struct contains everything someone would need to communicate with a kubernetes cluster (just like they would via a kubeconfig), the fields should shadow "k8s.io/client-go/tools/clientcmd/api/v1".Cluster, with the exception of CertificateAuthority, since CA data will always be passed to the plugin as bytes.

                            func (*Cluster) DeepCopy

                            func (in *Cluster) DeepCopy() *Cluster

                              DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Cluster.

                              func (*Cluster) DeepCopyInto

                              func (in *Cluster) DeepCopyInto(out *Cluster)

                                DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

                                type ExecCredential

                                type ExecCredential struct {
                                	metav1.TypeMeta `json:",inline"`
                                
                                	// Spec holds information passed to the plugin by the transport.
                                	Spec ExecCredentialSpec `json:"spec,omitempty"`
                                
                                	// Status is filled in by the plugin and holds the credentials that the transport
                                	// should use to contact the API.
                                	// +optional
                                	Status *ExecCredentialStatus `json:"status,omitempty"`
                                }

                                  ExecCredential is used by exec-based plugins to communicate credentials to HTTP transports.

                                  func (*ExecCredential) DeepCopy

                                  func (in *ExecCredential) DeepCopy() *ExecCredential

                                    DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ExecCredential.

                                    func (*ExecCredential) DeepCopyInto

                                    func (in *ExecCredential) DeepCopyInto(out *ExecCredential)

                                      DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

                                      func (*ExecCredential) DeepCopyObject

                                      func (in *ExecCredential) DeepCopyObject() runtime.Object

                                        DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

                                        type ExecCredentialSpec

                                        type ExecCredentialSpec struct {
                                        	// Cluster contains information to allow an exec plugin to communicate with the
                                        	// kubernetes cluster being authenticated to. Note that Cluster is non-nil only
                                        	// when provideClusterInfo is set to true in the exec provider config (i.e.,
                                        	// ExecConfig.ProvideClusterInfo).
                                        	// +optional
                                        	Cluster *Cluster `json:"cluster,omitempty"`
                                        }

                                          ExecCredentialSpec holds request and runtime specific information provided by the transport.

                                          func (*ExecCredentialSpec) DeepCopy

                                          func (in *ExecCredentialSpec) DeepCopy() *ExecCredentialSpec

                                            DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ExecCredentialSpec.

                                            func (*ExecCredentialSpec) DeepCopyInto

                                            func (in *ExecCredentialSpec) DeepCopyInto(out *ExecCredentialSpec)

                                              DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

                                              type ExecCredentialStatus

                                              type ExecCredentialStatus struct {
                                              	// ExpirationTimestamp indicates a time when the provided credentials expire.
                                              	// +optional
                                              	ExpirationTimestamp *metav1.Time `json:"expirationTimestamp,omitempty"`
                                              	// Token is a bearer token used by the client for request authentication.
                                              	Token string `json:"token,omitempty" datapolicy:"token"`
                                              	// PEM-encoded client TLS certificates (including intermediates, if any).
                                              	ClientCertificateData string `json:"clientCertificateData,omitempty"`
                                              	// PEM-encoded private key for the above certificate.
                                              	ClientKeyData string `json:"clientKeyData,omitempty" datapolicy:"security-key"`
                                              }

                                                ExecCredentialStatus holds credentials for the transport to use.

                                                Token and ClientKeyData are sensitive fields. This data should only be transmitted in-memory between client and exec plugin process. Exec plugin itself should at least be protected via file permissions.

                                                func (*ExecCredentialStatus) DeepCopy

                                                  DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ExecCredentialStatus.

                                                  func (*ExecCredentialStatus) DeepCopyInto

                                                  func (in *ExecCredentialStatus) DeepCopyInto(out *ExecCredentialStatus)

                                                    DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.