Documentation ¶
Index ¶
- func CreateCrds(clientset *apiextensionsclient.Clientset) error
- func CreateNamespaces(clientset kubernetes.Interface) error
- func GetAuthorizationPolicyModelConfig(namespace, name string, apSpec *securityV1beta1.AuthorizationPolicy) *model.Config
- func GetDefaultAthenzDomainForAuthorizationPolicies(athenzDomainModifications []func(signedDomain *zms.SignedDomain)) *athenzdomain.AthenzDomain
- func GetDefaultService(serviceName string, modifications []func(service *v1.Service)) *v1.Service
- type ExpectedRbac
- type ExpectedServices
- type ExpectedV2Rbac
- type OverrideRbac
- type RbacV2Modifications
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func CreateCrds ¶
func CreateCrds(clientset *apiextensionsclient.Clientset) error
CreateCrds creates the athenz domain, service role, service role binding, and cluster rbac config custom resource definitions
func CreateNamespaces ¶
func CreateNamespaces(clientset kubernetes.Interface) error
CreateNamespaces creates testing namespaces
func GetAuthorizationPolicyModelConfig ¶
func GetAuthorizationPolicyModelConfig(namespace, name string, apSpec *securityV1beta1.AuthorizationPolicy) *model.Config
func GetDefaultAthenzDomainForAuthorizationPolicies ¶
func GetDefaultAthenzDomainForAuthorizationPolicies(athenzDomainModifications []func(signedDomain *zms.SignedDomain)) *athenzdomain.AthenzDomain
Types ¶
type ExpectedRbac ¶
type ExpectedRbac struct { AD *athenzdomain.AthenzDomain ModelConfigs []model.Config }
func GetExpectedRbac ¶
func GetExpectedRbac(o *OverrideRbac) *ExpectedRbac
GetExpectedRbac returns an expected resources object which contains the athenz domain along with its service roles / bindings objects
type ExpectedServices ¶
func GetExpectedServices ¶
func GetExpectedServices(o []func(*v1.Service)) *ExpectedServices
GetExpectedServices returns an expected resources object which contains the services along with a list of their full DNS names
type ExpectedV2Rbac ¶
type ExpectedV2Rbac struct { AD *athenzdomain.AthenzDomain Services []*v1.Service AuthorizationPolicies []*model.Config }
func GetBasicRbacV2Case ¶
func GetBasicRbacV2Case(modifications *RbacV2Modifications) *ExpectedV2Rbac
type OverrideRbac ¶
type OverrideRbac struct { ModifyAD func(signedDomain *zms.SignedDomain) ModifySRAndSRBPair []func(sr *v1alpha1.ServiceRole, srb *v1alpha1.ServiceRoleBinding) }
type RbacV2Modifications ¶
type RbacV2Modifications struct { ModifyAthenzDomain []func(signedDomain *zms.SignedDomain) ModifyServices [][]func(service *v1.Service) ModifyAuthorizationPolicies [][]func(policy *securityV1beta1.AuthorizationPolicy) }
Click to show internal directories.
Click to hide internal directories.