istio: istio.io/istio/pilot/pkg/secrets/kube Index | Files

package kube

import "istio.io/istio/pilot/pkg/secrets/kube"

Index

Package Files

multicluster.go secrets.go

Constants 

const (
    // The ID/name for the certificate chain in kubernetes generic secret.
    GenericScrtCert = "cert"
    // The ID/name for the private key in kubernetes generic secret.
    GenericScrtKey = "key"
    // The ID/name for the CA certificate in kubernetes generic secret.
    GenericScrtCaCert = "cacert"

    // The ID/name for the certificate chain in kubernetes tls secret.
    TLSSecretCert = "tls.crt"
    // The ID/name for the k8sKey in kubernetes tls secret.
    TLSSecretKey = "tls.key"
    // The ID/name for the CA certificate in kubernetes tls secret
    TLSSecretCaCert = "ca.crt"

    // GatewaySdsCaSuffix is the suffix of the sds resource name for root CA. All resource
    // names for gateway root certs end with "-cacert".
    GatewaySdsCaSuffix = "-cacert"
)

func DisableAuthorizationForTest Uses

func DisableAuthorizationForTest(fake *fake.Clientset)

DisableAuthorizationForTest makes the authorization check always pass. Should be used only for tests.

type AggregateController Uses

type AggregateController struct {
    // contains filtered or unexported fields
}

func (*AggregateController) AddEventHandler Uses

func (a *AggregateController) AddEventHandler(f func(name string, namespace string))

func (*AggregateController) Authorize Uses

func (a *AggregateController) Authorize(serviceAccount, namespace string) error

func (*AggregateController) GetCaCert Uses

func (a *AggregateController) GetCaCert(name, namespace string) (cert []byte)

func (*AggregateController) GetKeyAndCert Uses

func (a *AggregateController) GetKeyAndCert(name, namespace string) (key []byte, cert []byte)

type Multicluster Uses

type Multicluster struct {
    // contains filtered or unexported fields
}

Multicluster structure holds the remote kube Controllers and multicluster specific attributes.

func NewMulticluster Uses

func NewMulticluster(client kube.Client, localCluster, secretNamespace string, stop chan struct{}) *Multicluster

func (*Multicluster) AddEventHandler Uses

func (m *Multicluster) AddEventHandler(f func(name string, namespace string))

func (*Multicluster) ForCluster Uses

func (m *Multicluster) ForCluster(clusterID string) (secrets.Controller, error)

type RemoteKubeClientGetter Uses

type RemoteKubeClientGetter func(clusterID string) kubernetes.Interface

type SecretsController Uses

type SecretsController struct {
    // contains filtered or unexported fields
}

func NewSecretsController Uses

func NewSecretsController(client kube.Client, clusterID string) *SecretsController

func (*SecretsController) AddEventHandler Uses

func (s *SecretsController) AddEventHandler(f func(name string, namespace string))

func (*SecretsController) Authorize Uses

func (s *SecretsController) Authorize(serviceAccount, namespace string) error

func (*SecretsController) GetCaCert Uses

func (s *SecretsController) GetCaCert(name, namespace string) (cert []byte)

func (*SecretsController) GetKeyAndCert Uses

func (s *SecretsController) GetKeyAndCert(name, namespace string) (key []byte, cert []byte)

Package kube imports 19 packages (graph) and is imported by 4 packages. Updated 2021-01-09. Refresh now. Tools for package owners.