Documentation
¶
Overview ¶
Package common holds code that isn't tied to a particular CRD version or type.
Index ¶
- Constants
- func ConsulResourceDefaultingPatches(resource ConsulResource, tenancy ConsulTenancyConfig) ([]jsonpatch.Operation, error)
- func DefaultingPatches(cfgEntry ConfigEntryResource, consulMeta ConsulMeta) ([]jsonpatch.Operation, error)
- func ValidateConfigEntry(ctx context.Context, req admission.Request, logger logr.Logger, ...) admission.Response
- func ValidateConsulResource(ctx context.Context, req admission.Request, logger logr.Logger, ...) admission.Response
- type ConfigEntryLister
- type ConfigEntryResource
- type ConsulConfig
- type ConsulMeta
- type ConsulResource
- type ConsulResourceLister
- type ConsulTenancyConfig
- type K8sNamespaceConfig
Constants ¶
View Source
const ( // V1 config entries. ServiceDefaults string = "servicedefaults" ProxyDefaults string = "proxydefaults" ServiceResolver string = "serviceresolver" ServiceRouter string = "servicerouter" ServiceSplitter string = "servicesplitter" ServiceIntentions string = "serviceintentions" ExportedServices string = "exportedservices" IngressGateway string = "ingressgateway" TerminatingGateway string = "terminatinggateway" SamenessGroup string = "samenessgroup" JWTProvider string = "jwtprovider" ControlPlaneRequestLimit string = "controlplanerequestlimit" RouteAuthFilter string = "routeauthfilter" GatewayPolicy string = "gatewaypolicy" // V2 resources. TrafficPermissions string = "trafficpermissions" GRPCRoute string = "grpcroute" HTTPRoute string = "httproute" TCPRoute string = "tcproute" ProxyConfiguration string = "proxyconfiguration" MeshGateway string = "meshgateway" APIGateway string = "apigateway" GatewayClass string = "gatewayclass" GatewayClassConfig string = "gatewayclassconfig" MeshConfiguration string = "meshconfiguration" Global string = "global" Mesh string = "mesh" DefaultConsulNamespace string = "default" DefaultConsulPartition string = "default" WildcardNamespace string = "*" SourceKey string = "external-source" DatacenterKey string = "consul.hashicorp.com/source-datacenter" MigrateEntryKey string = "consul.hashicorp.com/migrate-entry" MigrateEntryTrue string = "true" SourceValue string = "kubernetes" DefaultPartitionName = "default" DefaultNamespaceName = "default" DefaultPeerName = "local" )
Variables ¶
This section is empty.
Functions ¶
func ConsulResourceDefaultingPatches ¶
func ConsulResourceDefaultingPatches(resource ConsulResource, tenancy ConsulTenancyConfig) ([]jsonpatch.Operation, error)
ConsulResourceDefaultingPatches returns the patches needed to set fields to their defaults.
func DefaultingPatches ¶
func DefaultingPatches(cfgEntry ConfigEntryResource, consulMeta ConsulMeta) ([]jsonpatch.Operation, error)
DefaultingPatches returns the patches needed to set fields to their defaults.
func ValidateConfigEntry ¶
func ValidateConfigEntry( ctx context.Context, req admission.Request, logger logr.Logger, configEntryLister ConfigEntryLister, cfgEntry ConfigEntryResource, consulMeta ConsulMeta) admission.Response
ValidateConfigEntry validates cfgEntry. It is a generic method that can be used by all CRD-specific validators. Callers should pass themselves as validator and kind should be the custom resource name, e.g. "ServiceDefaults".
func ValidateConsulResource ¶
func ValidateConsulResource( ctx context.Context, req admission.Request, logger logr.Logger, resourceLister ConsulResourceLister, resource ConsulResource, tenancy ConsulTenancyConfig) admission.Response
ValidateConsulResource validates a Consul Resource. It is a generic method that can be used by all CRD-specific validators. Callers should pass themselves as validator and kind should be the custom resource name, e.g. "TrafficPermissions".
Types ¶
type ConfigEntryLister ¶
type ConfigEntryLister interface {
// List returns all resources of this type across all namespaces in a
// Kubernetes cluster.
List(ctx context.Context) ([]ConfigEntryResource, error)
}
ConfigEntryLister is implemented by CRD-specific webhooks.
type ConfigEntryResource ¶
type ConfigEntryResource interface {
// GetObjectMeta returns object meta.
GetObjectMeta() metav1.ObjectMeta
// AddFinalizer adds a finalizer to the list of finalizers.
AddFinalizer(name string)
// RemoveFinalizer removes this finalizer from the list.
RemoveFinalizer(name string)
// Finalizers returns the list of finalizers for this object.
Finalizers() []string
// ConsulKind returns the Consul config entry kind, i.e. service-defaults, not
// servicedefaults.
ConsulKind() string
// ConsulGlobalResource returns if the resource exists in the default
// Consul namespace only.
ConsulGlobalResource() bool
// ConsulMirroringNS returns the Consul namespace that the config entry should
// be created in if namespaces and mirroring are enabled.
ConsulMirroringNS() string
// KubeKind returns the Kube config entry kind, i.e. servicedefaults, not
// service-defaults.
KubeKind() string
// ConsulName returns the name of the config entry as saved in Consul.
// This may be different than KubernetesName() in the case of a ServiceIntentions
// config entry.
ConsulName() string
// KubernetesName returns the name of the Kubernetes resource.
KubernetesName() string
// SetSyncedCondition updates the synced condition.
SetSyncedCondition(status corev1.ConditionStatus, reason, message string)
// SetLastSyncedTime updates the last synced time.
SetLastSyncedTime(time *metav1.Time)
// SyncedCondition gets the synced condition.
SyncedCondition() (status corev1.ConditionStatus, reason, message string)
// SyncedConditionStatus returns the status of the synced condition.
SyncedConditionStatus() corev1.ConditionStatus
// ToConsul converts the resource to the corresponding Consul API definition.
// Its return type is the generic ConfigEntry but a specific config entry
// type should be constructed e.g. ServiceConfigEntry.
ToConsul(datacenter string) api.ConfigEntry
// MatchesConsul returns true if the resource has the same fields as the Consul
// config entry.
MatchesConsul(candidate api.ConfigEntry) bool
// GetObjectKind should be implemented by the generated code.
GetObjectKind() schema.ObjectKind
// DeepCopyObject should be implemented by the generated code.
DeepCopyObject() runtime.Object
// Validate returns an error if the resource is invalid.
Validate(consulMeta ConsulMeta) error
// DefaultNamespaceFields sets Consul namespace fields on the config entry
// spec to their default values if namespaces are enabled.
DefaultNamespaceFields(consulMeta ConsulMeta)
// ConfigEntryResource has to implement metav1.Object so that structs
// that implement it effectively implement client.Object which is
// the interface supported by controller-runtime reconcile-able resources.
metav1.Object
}
ConfigEntryResource is a generic config entry custom resource. It is implemented by each config entry type so that they can be acted upon generically. It is not tied to a specific CRD version.
type ConsulConfig ¶
ConsulConfig manages config to tell a pod where consul is located.
type ConsulMeta ¶
type ConsulMeta struct {
// PartitionsEnabled indicates that a user is running Consul Enterprise
// with version 1.11+ which supports Admin Partitions.
PartitionsEnabled bool
// Partition is the name of the Admin Partition in Consul that the config
// entry will be created in.
Partition string
// NamespacesEnabled indicates that a user is running Consul Enterprise
// with version 1.7+ which supports namespaces.
NamespacesEnabled bool
// DestinationNamespace is the namespace in Consul that the config entry created
// in k8s will get mapped into. If the Consul namespace does not already exist, it will
// be created.
DestinationNamespace string
// Mirroring causes Consul namespaces to be created to match the
// k8s namespace of any config entry custom resource. Config entries will
// be created in the matching Consul namespace.
Mirroring bool
// Prefix works in conjunction with Mirroring.
// It is the prefix added to the Consul namespace to map to a specific.
// k8s namespace. For example, if `mirroringK8SPrefix` is set to "k8s-", a
// service in the k8s `staging` namespace will be registered into the
// `k8s-staging` Consul namespace.
Prefix string
}
ConsulMeta contains metadata which represents installation specific information about Consul.
type ConsulResource ¶
type ConsulResource interface {
ResourceID(namespace, partition string) *pbresource.ID
Resource(namespace, partition string) *pbresource.Resource
// GetObjectKind should be implemented by the generated code.
GetObjectKind() schema.ObjectKind
// DeepCopyObject should be implemented by the generated code.
DeepCopyObject() runtime.Object
// AddFinalizer adds a finalizer to the list of finalizers.
AddFinalizer(name string)
// RemoveFinalizer removes this finalizer from the list.
RemoveFinalizer(name string)
// Finalizers returns the list of finalizers for this object.
Finalizers() []string
// MatchesConsul returns true if the resource has the same fields as the Consul
// config entry.
MatchesConsul(candidate *pbresource.Resource, namespace, partition string) bool
// KubeKind returns the Kube config entry kind, i.e. servicedefaults, not
// service-defaults.
KubeKind() string
// KubernetesName returns the name of the Kubernetes resource.
KubernetesName() string
// SetSyncedCondition updates the synced condition.
SetSyncedCondition(status corev1.ConditionStatus, reason, message string)
// SetLastSyncedTime updates the last synced time.
SetLastSyncedTime(time *metav1.Time)
// SyncedCondition gets the synced condition.
SyncedCondition() (status corev1.ConditionStatus, reason, message string)
// SyncedConditionStatus returns the status of the synced condition.
SyncedConditionStatus() corev1.ConditionStatus
// Validate returns an error if the resource is invalid.
Validate(tenancy ConsulTenancyConfig) error
// DefaultNamespaceFields sets Consul namespace fields on the resource
// spec to their default values if namespaces are enabled.
DefaultNamespaceFields(tenancy ConsulTenancyConfig)
// Object is required so that MeshConfig implements metav1.Object, which is
// the interface supported by controller-runtime reconcile-able resources.
metav1.Object
}
type ConsulResourceLister ¶
type ConsulResourceLister interface {
// List returns all resources of this type across all namespaces in a
// Kubernetes cluster.
List(ctx context.Context) ([]ConsulResource, error)
}
ConsulResourceLister is implemented by CRD-specific webhooks.
type ConsulTenancyConfig ¶
type ConsulTenancyConfig struct {
// EnableConsulPartitions indicates that a user is running Consul Enterprise.
EnableConsulPartitions bool
// ConsulPartition is the Consul Partition to which this controller belongs.
ConsulPartition string
// EnableConsulNamespaces indicates that a user is running Consul Enterprise.
EnableConsulNamespaces bool
// ConsulDestinationNamespace is the name of the Consul namespace to create
// all resources in. If EnableNSMirroring is true this is ignored.
ConsulDestinationNamespace string
// EnableNSMirroring causes Consul namespaces to be created to match the
// k8s namespace of any config entry custom resource. Resources will
// be created in the matching Consul namespace.
EnableNSMirroring bool
// NSMirroringPrefix is an optional prefix that can be added to the Consul
// namespaces created while mirroring. For example, if it is set to "k8s-",
// then the k8s `default` namespace will be mirrored in Consul's
// `k8s-default` namespace.
NSMirroringPrefix string
}
ConsulTenancyConfig manages settings related to Consul namespaces and partitions.
type K8sNamespaceConfig ¶
type K8sNamespaceConfig struct {
// Only endpoints in the AllowK8sNamespacesSet are reconciled.
AllowK8sNamespacesSet mapset.Set
// Endpoints in the DenyK8sNamespacesSet are ignored.
DenyK8sNamespacesSet mapset.Set
}
K8sNamespaceConfig manages allow/deny Kubernetes namespaces.
Source Files
Click to show internal directories.
Click to hide internal directories.