kubernetes: k8s.io/kubernetes/test/e2e/framework/auth Index | Files

package auth

import "k8s.io/kubernetes/test/e2e/framework/auth"

Index

Package Files

helpers.go

func BindClusterRole Uses

func BindClusterRole(c bindingsGetter, clusterRole, ns string, subjects ...rbacv1.Subject) error

BindClusterRole binds the cluster role at the cluster scope. If RBAC is not enabled, nil is returned with no action.

func BindClusterRoleInNamespace Uses

func BindClusterRoleInNamespace(c bindingsGetter, clusterRole, ns string, subjects ...rbacv1.Subject) error

BindClusterRoleInNamespace binds the cluster role at the namespace scope. If RBAC is not enabled, nil is returned with no action.

func BindRoleInNamespace Uses

func BindRoleInNamespace(c bindingsGetter, role, ns string, subjects ...rbacv1.Subject) error

BindRoleInNamespace binds the role at the namespace scope. If RBAC is not enabled, nil is returned with no action.

func IsRBACEnabled Uses

func IsRBACEnabled(crGetter v1rbac.ClusterRolesGetter) bool

IsRBACEnabled returns true if RBAC is enabled. Otherwise false.

func WaitForAuthorizationUpdate Uses

func WaitForAuthorizationUpdate(c v1authorization.SubjectAccessReviewsGetter, user, namespace, verb string, resource schema.GroupResource, allowed bool) error

WaitForAuthorizationUpdate checks if the given user can perform the named verb and action. If policyCachePollTimeout is reached without the expected condition matching, an error is returned

func WaitForNamedAuthorizationUpdate Uses

func WaitForNamedAuthorizationUpdate(c v1authorization.SubjectAccessReviewsGetter, user, namespace, verb, resourceName string, resource schema.GroupResource, allowed bool) error

WaitForNamedAuthorizationUpdate checks if the given user can perform the named verb and action on the named resource. If policyCachePollTimeout is reached without the expected condition matching, an error is returned

Package auth imports 12 packages (graph) and is imported by 154 packages. Updated 2020-05-01. Refresh now. Tools for package owners.