Documentation ¶
Index ¶
- Constants
- type ARGetter
- type Arg
- type Driver
- func (d *Driver) AddConstraint(_ context.Context, _ *unstructured.Unstructured) error
- func (d *Driver) AddData(_ context.Context, _ string, _ storage.Path, _ interface{}) error
- func (d *Driver) AddTemplate(_ context.Context, ct *templates.ConstraintTemplate) error
- func (d *Driver) Dump(_ context.Context) (string, error)
- func (d *Driver) GetDescriptionForStat(statName string) (string, error)
- func (d *Driver) Name() string
- func (d *Driver) Query(ctx context.Context, target string, constraints []*unstructured.Unstructured, ...) (*drivers.QueryResponse, error)
- func (d *Driver) RemoveConstraint(_ context.Context, _ *unstructured.Unstructured) error
- func (d *Driver) RemoveData(_ context.Context, _ string, _ storage.Path) error
- func (d *Driver) RemoveTemplate(_ context.Context, ct *templates.ConstraintTemplate) error
- type IsAdmissionGetter
Constants ¶
View Source
const ( VAPGenerationLabel = "gatekeeper.sh/use-vap" VAPDefaultYes = vapDefault("yes") VAPDefaultNo = vapDefault("no") )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type ARGetter ¶
type ARGetter interface {
GetAdmissionRequest() *admissionv1.AdmissionRequest
}
type Arg ¶
func GatherStats ¶
func GatherStats() Arg
GatherStats starts collecting various stats around the underlying engine's calls.
func VAPGenerationDefault ¶
func VAPGenerationDefault(d vapDefault) Arg
VAPGenerationDefault sets the expected default value of the `gatekeeper.sh/use-vap` label. If no value is provided, VAP generation is presumed to be disabled and the engine will validate ALL policies. Otherwise, the engine will only validate policies not expected to be enforced via VAP.
type Driver ¶
type Driver struct {
// contains filtered or unexported fields
}
func (*Driver) AddConstraint ¶
func (d *Driver) AddConstraint(_ context.Context, _ *unstructured.Unstructured) error
func (*Driver) AddTemplate ¶
func (*Driver) GetDescriptionForStat ¶
func (*Driver) Query ¶
func (d *Driver) Query(ctx context.Context, target string, constraints []*unstructured.Unstructured, review interface{}, opts ...drivers.QueryOpt) (*drivers.QueryResponse, error)
func (*Driver) RemoveConstraint ¶
func (d *Driver) RemoveConstraint(_ context.Context, _ *unstructured.Unstructured) error
func (*Driver) RemoveData ¶
func (*Driver) RemoveTemplate ¶
type IsAdmissionGetter ¶
type IsAdmissionGetter interface {
IsAdmissionRequest() bool
}
Click to show internal directories.
Click to hide internal directories.