test

package

v0.30.1 Latest Latest Go to latest Published: May 15, 2024 License: Apache-2.0 Imports: 17 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubernetes/pod-security-admission

Links

Open Source Insights

Documentation ¶

Overview ¶

Package test contains tests for PodSecurity admission

Index ¶

func DefaultCreateNamespace(client kubernetes.Interface, name string, labels map[string]string) (*corev1.Namespace, error)
func GetMinimalValidLinuxPod(level api.Level, version api.Version) (*corev1.Pod, error)
func GetMinimalValidPod(level api.Level, version api.Version) (*corev1.Pod, error)
func GetMinimalValidWindowsPod(level api.Level, version api.Version) (*corev1.Pod, error)
func Run(t *testing.T, opts Options)
type Options

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func DefaultCreateNamespace ¶

func DefaultCreateNamespace(client kubernetes.Interface, name string, labels map[string]string) (*corev1.Namespace, error)

func GetMinimalValidLinuxPod ¶ added in v0.25.0

func GetMinimalValidLinuxPod(level api.Level, version api.Version) (*corev1.Pod, error)

GetMinimalValidLinuxPod returns a minimal valid linux pod for the specified level and version.

func GetMinimalValidPod ¶ added in v0.23.0

func GetMinimalValidPod(level api.Level, version api.Version) (*corev1.Pod, error)

GetMinimalValidPod returns a minimal valid OS neutral pod for the specified level and version.

func GetMinimalValidWindowsPod ¶ added in v0.25.0

func GetMinimalValidWindowsPod(level api.Level, version api.Version) (*corev1.Pod, error)

GetMinimalValidWindowsPod returns a minimal valid windows pod for the specified level and version.

func Run ¶

func Run(t *testing.T, opts Options)

and ensures pod fixtures expected to pass and fail against that level/version work as expected.

Types ¶

type Options ¶

type Options struct {
	// ClientConfig is a client configuration with sufficient permission to create, update, and delete
	// namespaces, pods, and pod-template-containing objects.
	// Required.
	ClientConfig *rest.Config

	// Features optionally provides information about which feature gates are enabled.
	// This is used to skip failure cases for negative tests of data in alpha/beta fields.
	// If unset, all testcases are run.
	Features featuregate.FeatureGate

	// CreateNamespace is an optional stub for creating a namespace with the given name and labels.
	// Returning an error fails the test.
	// If nil, DefaultCreateNamespace is used.
	CreateNamespace func(client kubernetes.Interface, name string, labels map[string]string) (*corev1.Namespace, error)

	// These are the check ids/starting versions to exercise.
	// If unset, policy.DefaultChecks() are used.
	Checks []policy.Check

	// ExemptClient is an optional client interface to exercise behavior of an exempt client.
	ExemptClient kubernetes.Interface
	// ExemptNamespaces are optional namespaces not expected to have PodSecurity controls enforced.
	ExemptNamespaces []string
	// ExemptRuntimeClasses are optional runtimeclasses not expected to have PodSecurity controls enforced.
	ExemptRuntimeClasses []string
}

Options hold configuration for running integration tests against an existing server.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL