kubernetes: k8s.io/kubernetes/pkg/registry/rbac Index | Files | Directories

package rbac

import "k8s.io/kubernetes/pkg/registry/rbac"

Index

Package Files

escalation_check.go helpers.go

func BindingAuthorized Uses

func BindingAuthorized(ctx context.Context, roleRef rbac.RoleRef, bindingNamespace string, a authorizer.Authorizer) bool

BindingAuthorized returns true if the user associated with the context is explicitly authorized to bind the specified roleRef

func EscalationAllowed Uses

func EscalationAllowed(ctx context.Context) bool

EscalationAllowed checks if the user associated with the context is a superuser

func IsOnlyMutatingGCFields Uses

func IsOnlyMutatingGCFields(obj, old runtime.Object, equalities conversion.Equalities) bool

IsOnlyMutatingGCFields checks finalizers and ownerrefs which GC manipulates and indicates that only those fields are changing

func RoleEscalationAuthorized Uses

func RoleEscalationAuthorized(ctx context.Context, a authorizer.Authorizer) bool

RoleEscalationAuthorized checks if the user associated with the context is explicitly authorized to escalate the role resource associated with the context

Directories

PathSynopsis
clusterrolePackage clusterrole provides Registry interface and its RESTStorage implementation for storing ClusterRole objects.
clusterrolebindingPackage certificates provides Registry interface and its RESTStorage implementation for storing ClusterRoleBinding objects.
clusterrolebinding/policybasedPackage policybased implements a standard storage for ClusterRoleBinding that prevents privilege escalation.
clusterrolebinding/storage
clusterrole/policybasedPackage policybased implements a standard storage for ClusterRole that prevents privilege escalation.
clusterrole/storage
reconciliation
rest
rolePackage role provides Registry interface and its RESTStorage implementation for storing Role objects.
rolebindingPackage certificates provides Registry interface and its RESTStorage implementation for storing RoleBinding objects.
rolebinding/policybasedPackage policybased implements a standard storage for RoleBinding that prevents privilege escalation.
rolebinding/storage
role/policybasedPackage policybased implements a standard storage for Role that prevents privilege escalation.
role/storage
validation

Package rbac imports 12 packages (graph) and is imported by 27 packages. Updated 2019-11-14. Refresh now. Tools for package owners.