Documentation ¶
Overview ¶
+groupName=binaryauthorization.google.kubeform.com
Index ¶
- Variables
- func GetDecoder() map[string]jsoniter.ValDecoder
- func GetEncoder() map[string]jsoniter.ValEncoder
- func Kind(kind string) schema.GroupKind
- func Resource(resource string) schema.GroupResource
- type Attestor
- func (in *Attestor) DeepCopy() *Attestor
- func (in *Attestor) DeepCopyInto(out *Attestor)
- func (in *Attestor) DeepCopyObject() runtime.Object
- func (r *Attestor) SetupWebhookWithManager(mgr ctrl.Manager) error
- func (r *Attestor) ValidateCreate() error
- func (r *Attestor) ValidateDelete() error
- func (r *Attestor) ValidateUpdate(old runtime.Object) error
- type AttestorIamBinding
- func (in *AttestorIamBinding) DeepCopy() *AttestorIamBinding
- func (in *AttestorIamBinding) DeepCopyInto(out *AttestorIamBinding)
- func (in *AttestorIamBinding) DeepCopyObject() runtime.Object
- func (r *AttestorIamBinding) SetupWebhookWithManager(mgr ctrl.Manager) error
- func (r *AttestorIamBinding) ValidateCreate() error
- func (r *AttestorIamBinding) ValidateDelete() error
- func (r *AttestorIamBinding) ValidateUpdate(old runtime.Object) error
- type AttestorIamBindingList
- type AttestorIamBindingSpec
- type AttestorIamBindingSpecCondition
- type AttestorIamBindingSpecConditionCodec
- type AttestorIamBindingSpecResource
- type AttestorIamBindingStatus
- type AttestorIamMember
- func (in *AttestorIamMember) DeepCopy() *AttestorIamMember
- func (in *AttestorIamMember) DeepCopyInto(out *AttestorIamMember)
- func (in *AttestorIamMember) DeepCopyObject() runtime.Object
- func (r *AttestorIamMember) SetupWebhookWithManager(mgr ctrl.Manager) error
- func (r *AttestorIamMember) ValidateCreate() error
- func (r *AttestorIamMember) ValidateDelete() error
- func (r *AttestorIamMember) ValidateUpdate(old runtime.Object) error
- type AttestorIamMemberList
- type AttestorIamMemberSpec
- type AttestorIamMemberSpecCondition
- type AttestorIamMemberSpecConditionCodec
- type AttestorIamMemberSpecResource
- type AttestorIamMemberStatus
- type AttestorIamPolicy
- func (in *AttestorIamPolicy) DeepCopy() *AttestorIamPolicy
- func (in *AttestorIamPolicy) DeepCopyInto(out *AttestorIamPolicy)
- func (in *AttestorIamPolicy) DeepCopyObject() runtime.Object
- func (r *AttestorIamPolicy) SetupWebhookWithManager(mgr ctrl.Manager) error
- func (r *AttestorIamPolicy) ValidateCreate() error
- func (r *AttestorIamPolicy) ValidateDelete() error
- func (r *AttestorIamPolicy) ValidateUpdate(old runtime.Object) error
- type AttestorIamPolicyList
- type AttestorIamPolicySpec
- type AttestorIamPolicySpecResource
- type AttestorIamPolicyStatus
- type AttestorList
- type AttestorSpec
- type AttestorSpecAttestationAuthorityNote
- type AttestorSpecAttestationAuthorityNoteCodec
- type AttestorSpecAttestationAuthorityNotePublicKeys
- type AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey
- type AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec
- func (AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec) Decode(ptr unsafe.Pointer, iter *jsoniter.Iterator)
- func (AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec) Encode(ptr unsafe.Pointer, stream *jsoniter.Stream)
- func (AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec) IsEmpty(ptr unsafe.Pointer) bool
- type AttestorSpecResource
- type AttestorStatus
- type Policy
- func (in *Policy) DeepCopy() *Policy
- func (in *Policy) DeepCopyInto(out *Policy)
- func (in *Policy) DeepCopyObject() runtime.Object
- func (r *Policy) SetupWebhookWithManager(mgr ctrl.Manager) error
- func (r *Policy) ValidateCreate() error
- func (r *Policy) ValidateDelete() error
- func (r *Policy) ValidateUpdate(old runtime.Object) error
- type PolicyList
- type PolicySpec
- type PolicySpecAdmissionWhitelistPatterns
- type PolicySpecClusterAdmissionRules
- type PolicySpecDefaultAdmissionRule
- type PolicySpecDefaultAdmissionRuleCodec
- type PolicySpecResource
- type PolicyStatus
Constants ¶
This section is empty.
Variables ¶
var ( // TODO: move SchemeBuilder with zz_generated.deepcopy.go to k8s.io/api. // localSchemeBuilder and AddToScheme will stay in k8s.io/kubernetes. SchemeBuilder runtime.SchemeBuilder AddToScheme = localSchemeBuilder.AddToScheme )
var SchemeGroupVersion = schema.GroupVersion{Group: binaryauthorization.GroupName, Version: "v1alpha1"}
Functions ¶
func GetDecoder ¶
func GetDecoder() map[string]jsoniter.ValDecoder
func GetEncoder ¶
func GetEncoder() map[string]jsoniter.ValEncoder
func Resource ¶
func Resource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns a Group qualified GroupResource
Types ¶
type Attestor ¶
type Attestor struct { metav1.TypeMeta `json:",inline,omitempty"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec AttestorSpec `json:"spec,omitempty"` Status AttestorStatus `json:"status,omitempty"` }
func (*Attestor) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Attestor.
func (*Attestor) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Attestor) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*Attestor) SetupWebhookWithManager ¶
func (*Attestor) ValidateCreate ¶
ValidateCreate implements webhook.Validator so a webhook will be registered for the type
func (*Attestor) ValidateDelete ¶
ValidateDelete implements webhook.Validator so a webhook will be registered for the type
type AttestorIamBinding ¶
type AttestorIamBinding struct { metav1.TypeMeta `json:",inline,omitempty"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec AttestorIamBindingSpec `json:"spec,omitempty"` Status AttestorIamBindingStatus `json:"status,omitempty"` }
func (*AttestorIamBinding) DeepCopy ¶
func (in *AttestorIamBinding) DeepCopy() *AttestorIamBinding
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamBinding.
func (*AttestorIamBinding) DeepCopyInto ¶
func (in *AttestorIamBinding) DeepCopyInto(out *AttestorIamBinding)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorIamBinding) DeepCopyObject ¶
func (in *AttestorIamBinding) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*AttestorIamBinding) SetupWebhookWithManager ¶
func (r *AttestorIamBinding) SetupWebhookWithManager(mgr ctrl.Manager) error
func (*AttestorIamBinding) ValidateCreate ¶
func (r *AttestorIamBinding) ValidateCreate() error
ValidateCreate implements webhook.Validator so a webhook will be registered for the type
func (*AttestorIamBinding) ValidateDelete ¶
func (r *AttestorIamBinding) ValidateDelete() error
ValidateDelete implements webhook.Validator so a webhook will be registered for the type
func (*AttestorIamBinding) ValidateUpdate ¶
func (r *AttestorIamBinding) ValidateUpdate(old runtime.Object) error
ValidateUpdate implements webhook.Validator so a webhook will be registered for the type
type AttestorIamBindingList ¶
type AttestorIamBindingList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` // Items is a list of AttestorIamBinding CRD objects Items []AttestorIamBinding `json:"items,omitempty"` }
AttestorIamBindingList is a list of AttestorIamBindings
func (*AttestorIamBindingList) DeepCopy ¶
func (in *AttestorIamBindingList) DeepCopy() *AttestorIamBindingList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamBindingList.
func (*AttestorIamBindingList) DeepCopyInto ¶
func (in *AttestorIamBindingList) DeepCopyInto(out *AttestorIamBindingList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorIamBindingList) DeepCopyObject ¶
func (in *AttestorIamBindingList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type AttestorIamBindingSpec ¶
type AttestorIamBindingSpec struct { State *AttestorIamBindingSpecResource `json:"state,omitempty" tf:"-"` Resource AttestorIamBindingSpecResource `json:"resource" tf:"resource"` UpdatePolicy base.UpdatePolicy `json:"updatePolicy,omitempty" tf:"-"` TerminationPolicy base.TerminationPolicy `json:"terminationPolicy,omitempty" tf:"-"` ProviderRef core.LocalObjectReference `json:"providerRef" tf:"-"` BackendRef *core.LocalObjectReference `json:"backendRef,omitempty" tf:"-"` }
func (*AttestorIamBindingSpec) DeepCopy ¶
func (in *AttestorIamBindingSpec) DeepCopy() *AttestorIamBindingSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamBindingSpec.
func (*AttestorIamBindingSpec) DeepCopyInto ¶
func (in *AttestorIamBindingSpec) DeepCopyInto(out *AttestorIamBindingSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamBindingSpecCondition ¶
type AttestorIamBindingSpecCondition struct { // +optional Description *string `json:"description,omitempty" tf:"description"` Expression *string `json:"expression" tf:"expression"` Title *string `json:"title" tf:"title"` }
func (*AttestorIamBindingSpecCondition) DeepCopy ¶
func (in *AttestorIamBindingSpecCondition) DeepCopy() *AttestorIamBindingSpecCondition
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamBindingSpecCondition.
func (*AttestorIamBindingSpecCondition) DeepCopyInto ¶
func (in *AttestorIamBindingSpecCondition) DeepCopyInto(out *AttestorIamBindingSpecCondition)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamBindingSpecConditionCodec ¶
type AttestorIamBindingSpecConditionCodec struct { }
+k8s:deepcopy-gen=false
func (AttestorIamBindingSpecConditionCodec) Decode ¶
func (AttestorIamBindingSpecConditionCodec) Decode(ptr unsafe.Pointer, iter *jsoniter.Iterator)
type AttestorIamBindingSpecResource ¶
type AttestorIamBindingSpecResource struct { ID string `json:"id,omitempty" tf:"id,omitempty"` Attestor *string `json:"attestor" tf:"attestor"` // +optional Condition *AttestorIamBindingSpecCondition `json:"condition,omitempty" tf:"condition"` // +optional Etag *string `json:"etag,omitempty" tf:"etag"` Members []string `json:"members" tf:"members"` // +optional Project *string `json:"project,omitempty" tf:"project"` Role *string `json:"role" tf:"role"` }
func (*AttestorIamBindingSpecResource) DeepCopy ¶
func (in *AttestorIamBindingSpecResource) DeepCopy() *AttestorIamBindingSpecResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamBindingSpecResource.
func (*AttestorIamBindingSpecResource) DeepCopyInto ¶
func (in *AttestorIamBindingSpecResource) DeepCopyInto(out *AttestorIamBindingSpecResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamBindingStatus ¶
type AttestorIamBindingStatus struct { // Resource generation, which is updated on mutation by the API Server. // +optional ObservedGeneration int64 `json:"observedGeneration,omitempty"` // +optional Phase status.Status `json:"phase,omitempty"` // +optional Conditions []kmapi.Condition `json:"conditions,omitempty"` }
func (*AttestorIamBindingStatus) DeepCopy ¶
func (in *AttestorIamBindingStatus) DeepCopy() *AttestorIamBindingStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamBindingStatus.
func (*AttestorIamBindingStatus) DeepCopyInto ¶
func (in *AttestorIamBindingStatus) DeepCopyInto(out *AttestorIamBindingStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamMember ¶
type AttestorIamMember struct { metav1.TypeMeta `json:",inline,omitempty"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec AttestorIamMemberSpec `json:"spec,omitempty"` Status AttestorIamMemberStatus `json:"status,omitempty"` }
func (*AttestorIamMember) DeepCopy ¶
func (in *AttestorIamMember) DeepCopy() *AttestorIamMember
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamMember.
func (*AttestorIamMember) DeepCopyInto ¶
func (in *AttestorIamMember) DeepCopyInto(out *AttestorIamMember)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorIamMember) DeepCopyObject ¶
func (in *AttestorIamMember) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*AttestorIamMember) SetupWebhookWithManager ¶
func (r *AttestorIamMember) SetupWebhookWithManager(mgr ctrl.Manager) error
func (*AttestorIamMember) ValidateCreate ¶
func (r *AttestorIamMember) ValidateCreate() error
ValidateCreate implements webhook.Validator so a webhook will be registered for the type
func (*AttestorIamMember) ValidateDelete ¶
func (r *AttestorIamMember) ValidateDelete() error
ValidateDelete implements webhook.Validator so a webhook will be registered for the type
func (*AttestorIamMember) ValidateUpdate ¶
func (r *AttestorIamMember) ValidateUpdate(old runtime.Object) error
ValidateUpdate implements webhook.Validator so a webhook will be registered for the type
type AttestorIamMemberList ¶
type AttestorIamMemberList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` // Items is a list of AttestorIamMember CRD objects Items []AttestorIamMember `json:"items,omitempty"` }
AttestorIamMemberList is a list of AttestorIamMembers
func (*AttestorIamMemberList) DeepCopy ¶
func (in *AttestorIamMemberList) DeepCopy() *AttestorIamMemberList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamMemberList.
func (*AttestorIamMemberList) DeepCopyInto ¶
func (in *AttestorIamMemberList) DeepCopyInto(out *AttestorIamMemberList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorIamMemberList) DeepCopyObject ¶
func (in *AttestorIamMemberList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type AttestorIamMemberSpec ¶
type AttestorIamMemberSpec struct { State *AttestorIamMemberSpecResource `json:"state,omitempty" tf:"-"` Resource AttestorIamMemberSpecResource `json:"resource" tf:"resource"` UpdatePolicy base.UpdatePolicy `json:"updatePolicy,omitempty" tf:"-"` TerminationPolicy base.TerminationPolicy `json:"terminationPolicy,omitempty" tf:"-"` ProviderRef core.LocalObjectReference `json:"providerRef" tf:"-"` BackendRef *core.LocalObjectReference `json:"backendRef,omitempty" tf:"-"` }
func (*AttestorIamMemberSpec) DeepCopy ¶
func (in *AttestorIamMemberSpec) DeepCopy() *AttestorIamMemberSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamMemberSpec.
func (*AttestorIamMemberSpec) DeepCopyInto ¶
func (in *AttestorIamMemberSpec) DeepCopyInto(out *AttestorIamMemberSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamMemberSpecCondition ¶
type AttestorIamMemberSpecCondition struct { // +optional Description *string `json:"description,omitempty" tf:"description"` Expression *string `json:"expression" tf:"expression"` Title *string `json:"title" tf:"title"` }
func (*AttestorIamMemberSpecCondition) DeepCopy ¶
func (in *AttestorIamMemberSpecCondition) DeepCopy() *AttestorIamMemberSpecCondition
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamMemberSpecCondition.
func (*AttestorIamMemberSpecCondition) DeepCopyInto ¶
func (in *AttestorIamMemberSpecCondition) DeepCopyInto(out *AttestorIamMemberSpecCondition)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamMemberSpecConditionCodec ¶
type AttestorIamMemberSpecConditionCodec struct { }
+k8s:deepcopy-gen=false
func (AttestorIamMemberSpecConditionCodec) Decode ¶
func (AttestorIamMemberSpecConditionCodec) Decode(ptr unsafe.Pointer, iter *jsoniter.Iterator)
type AttestorIamMemberSpecResource ¶
type AttestorIamMemberSpecResource struct { ID string `json:"id,omitempty" tf:"id,omitempty"` Attestor *string `json:"attestor" tf:"attestor"` // +optional Condition *AttestorIamMemberSpecCondition `json:"condition,omitempty" tf:"condition"` // +optional Etag *string `json:"etag,omitempty" tf:"etag"` Member *string `json:"member" tf:"member"` // +optional Project *string `json:"project,omitempty" tf:"project"` Role *string `json:"role" tf:"role"` }
func (*AttestorIamMemberSpecResource) DeepCopy ¶
func (in *AttestorIamMemberSpecResource) DeepCopy() *AttestorIamMemberSpecResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamMemberSpecResource.
func (*AttestorIamMemberSpecResource) DeepCopyInto ¶
func (in *AttestorIamMemberSpecResource) DeepCopyInto(out *AttestorIamMemberSpecResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamMemberStatus ¶
type AttestorIamMemberStatus struct { // Resource generation, which is updated on mutation by the API Server. // +optional ObservedGeneration int64 `json:"observedGeneration,omitempty"` // +optional Phase status.Status `json:"phase,omitempty"` // +optional Conditions []kmapi.Condition `json:"conditions,omitempty"` }
func (*AttestorIamMemberStatus) DeepCopy ¶
func (in *AttestorIamMemberStatus) DeepCopy() *AttestorIamMemberStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamMemberStatus.
func (*AttestorIamMemberStatus) DeepCopyInto ¶
func (in *AttestorIamMemberStatus) DeepCopyInto(out *AttestorIamMemberStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamPolicy ¶
type AttestorIamPolicy struct { metav1.TypeMeta `json:",inline,omitempty"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec AttestorIamPolicySpec `json:"spec,omitempty"` Status AttestorIamPolicyStatus `json:"status,omitempty"` }
func (*AttestorIamPolicy) DeepCopy ¶
func (in *AttestorIamPolicy) DeepCopy() *AttestorIamPolicy
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamPolicy.
func (*AttestorIamPolicy) DeepCopyInto ¶
func (in *AttestorIamPolicy) DeepCopyInto(out *AttestorIamPolicy)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorIamPolicy) DeepCopyObject ¶
func (in *AttestorIamPolicy) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*AttestorIamPolicy) SetupWebhookWithManager ¶
func (r *AttestorIamPolicy) SetupWebhookWithManager(mgr ctrl.Manager) error
func (*AttestorIamPolicy) ValidateCreate ¶
func (r *AttestorIamPolicy) ValidateCreate() error
ValidateCreate implements webhook.Validator so a webhook will be registered for the type
func (*AttestorIamPolicy) ValidateDelete ¶
func (r *AttestorIamPolicy) ValidateDelete() error
ValidateDelete implements webhook.Validator so a webhook will be registered for the type
func (*AttestorIamPolicy) ValidateUpdate ¶
func (r *AttestorIamPolicy) ValidateUpdate(old runtime.Object) error
ValidateUpdate implements webhook.Validator so a webhook will be registered for the type
type AttestorIamPolicyList ¶
type AttestorIamPolicyList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` // Items is a list of AttestorIamPolicy CRD objects Items []AttestorIamPolicy `json:"items,omitempty"` }
AttestorIamPolicyList is a list of AttestorIamPolicys
func (*AttestorIamPolicyList) DeepCopy ¶
func (in *AttestorIamPolicyList) DeepCopy() *AttestorIamPolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamPolicyList.
func (*AttestorIamPolicyList) DeepCopyInto ¶
func (in *AttestorIamPolicyList) DeepCopyInto(out *AttestorIamPolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorIamPolicyList) DeepCopyObject ¶
func (in *AttestorIamPolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type AttestorIamPolicySpec ¶
type AttestorIamPolicySpec struct { State *AttestorIamPolicySpecResource `json:"state,omitempty" tf:"-"` Resource AttestorIamPolicySpecResource `json:"resource" tf:"resource"` UpdatePolicy base.UpdatePolicy `json:"updatePolicy,omitempty" tf:"-"` TerminationPolicy base.TerminationPolicy `json:"terminationPolicy,omitempty" tf:"-"` ProviderRef core.LocalObjectReference `json:"providerRef" tf:"-"` BackendRef *core.LocalObjectReference `json:"backendRef,omitempty" tf:"-"` }
func (*AttestorIamPolicySpec) DeepCopy ¶
func (in *AttestorIamPolicySpec) DeepCopy() *AttestorIamPolicySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamPolicySpec.
func (*AttestorIamPolicySpec) DeepCopyInto ¶
func (in *AttestorIamPolicySpec) DeepCopyInto(out *AttestorIamPolicySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamPolicySpecResource ¶
type AttestorIamPolicySpecResource struct { ID string `json:"id,omitempty" tf:"id,omitempty"` Attestor *string `json:"attestor" tf:"attestor"` // +optional Etag *string `json:"etag,omitempty" tf:"etag"` PolicyData *string `json:"policyData" tf:"policy_data"` // +optional Project *string `json:"project,omitempty" tf:"project"` }
func (*AttestorIamPolicySpecResource) DeepCopy ¶
func (in *AttestorIamPolicySpecResource) DeepCopy() *AttestorIamPolicySpecResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamPolicySpecResource.
func (*AttestorIamPolicySpecResource) DeepCopyInto ¶
func (in *AttestorIamPolicySpecResource) DeepCopyInto(out *AttestorIamPolicySpecResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorIamPolicyStatus ¶
type AttestorIamPolicyStatus struct { // Resource generation, which is updated on mutation by the API Server. // +optional ObservedGeneration int64 `json:"observedGeneration,omitempty"` // +optional Phase status.Status `json:"phase,omitempty"` // +optional Conditions []kmapi.Condition `json:"conditions,omitempty"` }
func (*AttestorIamPolicyStatus) DeepCopy ¶
func (in *AttestorIamPolicyStatus) DeepCopy() *AttestorIamPolicyStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorIamPolicyStatus.
func (*AttestorIamPolicyStatus) DeepCopyInto ¶
func (in *AttestorIamPolicyStatus) DeepCopyInto(out *AttestorIamPolicyStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorList ¶
type AttestorList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` // Items is a list of Attestor CRD objects Items []Attestor `json:"items,omitempty"` }
AttestorList is a list of Attestors
func (*AttestorList) DeepCopy ¶
func (in *AttestorList) DeepCopy() *AttestorList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorList.
func (*AttestorList) DeepCopyInto ¶
func (in *AttestorList) DeepCopyInto(out *AttestorList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AttestorList) DeepCopyObject ¶
func (in *AttestorList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type AttestorSpec ¶
type AttestorSpec struct { State *AttestorSpecResource `json:"state,omitempty" tf:"-"` Resource AttestorSpecResource `json:"resource" tf:"resource"` UpdatePolicy base.UpdatePolicy `json:"updatePolicy,omitempty" tf:"-"` TerminationPolicy base.TerminationPolicy `json:"terminationPolicy,omitempty" tf:"-"` ProviderRef core.LocalObjectReference `json:"providerRef" tf:"-"` BackendRef *core.LocalObjectReference `json:"backendRef,omitempty" tf:"-"` }
func (*AttestorSpec) DeepCopy ¶
func (in *AttestorSpec) DeepCopy() *AttestorSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorSpec.
func (*AttestorSpec) DeepCopyInto ¶
func (in *AttestorSpec) DeepCopyInto(out *AttestorSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorSpecAttestationAuthorityNote ¶
type AttestorSpecAttestationAuthorityNote struct { // This field will contain the service account email address that // this Attestor will use as the principal when querying Container // Analysis. Attestor administrators must grant this service account // the IAM role needed to read attestations from the noteReference in // Container Analysis (containeranalysis.notes.occurrences.viewer). // This email address is fixed for the lifetime of the Attestor, but // callers should not make any other assumptions about the service // account email; future versions may use an email based on a // different naming pattern. // +optional DelegationServiceAccountEmail *string `json:"delegationServiceAccountEmail,omitempty" tf:"delegation_service_account_email"` // The resource name of a ATTESTATION_AUTHORITY Note, created by the // user. If the Note is in a different project from the Attestor, it // should be specified in the format 'projects/*/notes/*' (or the legacy // 'providers/*/notes/*'). This field may not be updated. // An attestation by this attestor is stored as a Container Analysis // ATTESTATION_AUTHORITY Occurrence that names a container image // and that links to this Note. NoteReference *string `json:"noteReference" tf:"note_reference"` // Public keys that verify attestations signed by this attestor. This // field may be updated. // If this field is non-empty, one of the specified public keys must // verify that an attestation was signed by this attestor for the // image specified in the admission request. // If this field is empty, this attestor always returns that no valid // attestations exist. // +optional PublicKeys []AttestorSpecAttestationAuthorityNotePublicKeys `json:"publicKeys,omitempty" tf:"public_keys"` }
func (*AttestorSpecAttestationAuthorityNote) DeepCopy ¶
func (in *AttestorSpecAttestationAuthorityNote) DeepCopy() *AttestorSpecAttestationAuthorityNote
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorSpecAttestationAuthorityNote.
func (*AttestorSpecAttestationAuthorityNote) DeepCopyInto ¶
func (in *AttestorSpecAttestationAuthorityNote) DeepCopyInto(out *AttestorSpecAttestationAuthorityNote)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorSpecAttestationAuthorityNoteCodec ¶
type AttestorSpecAttestationAuthorityNoteCodec struct { }
+k8s:deepcopy-gen=false
func (AttestorSpecAttestationAuthorityNoteCodec) Decode ¶
func (AttestorSpecAttestationAuthorityNoteCodec) Decode(ptr unsafe.Pointer, iter *jsoniter.Iterator)
type AttestorSpecAttestationAuthorityNotePublicKeys ¶
type AttestorSpecAttestationAuthorityNotePublicKeys struct { // ASCII-armored representation of a PGP public key, as the // entire output by the command // 'gpg --export --armor foo@example.com' (either LF or CRLF // line endings). When using this field, id should be left // blank. The BinAuthz API handlers will calculate the ID // and fill it in automatically. BinAuthz computes this ID // as the OpenPGP RFC4880 V4 fingerprint, represented as // upper-case hex. If id is provided by the caller, it will // be overwritten by the API-calculated ID. // +optional AsciiArmoredPgpPublicKey *string `json:"asciiArmoredPgpPublicKey,omitempty" tf:"ascii_armored_pgp_public_key"` // A descriptive comment. This field may be updated. // +optional Comment *string `json:"comment,omitempty" tf:"comment"` // The ID of this public key. Signatures verified by BinAuthz // must include the ID of the public key that can be used to // verify them, and that ID must match the contents of this // field exactly. Additional restrictions on this field can // be imposed based on which public key type is encapsulated. // See the documentation on publicKey cases below for details. // +optional ID *string `json:"ID,omitempty" tf:"id"` // A raw PKIX SubjectPublicKeyInfo format public key. // // NOTE: id may be explicitly provided by the caller when using this // type of public key, but it MUST be a valid RFC3986 URI. If id is left // blank, a default one will be computed based on the digest of the DER // encoding of the public key. // +optional PkixPublicKey *AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey `json:"pkixPublicKey,omitempty" tf:"pkix_public_key"` }
func (*AttestorSpecAttestationAuthorityNotePublicKeys) DeepCopy ¶
func (in *AttestorSpecAttestationAuthorityNotePublicKeys) DeepCopy() *AttestorSpecAttestationAuthorityNotePublicKeys
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorSpecAttestationAuthorityNotePublicKeys.
func (*AttestorSpecAttestationAuthorityNotePublicKeys) DeepCopyInto ¶
func (in *AttestorSpecAttestationAuthorityNotePublicKeys) DeepCopyInto(out *AttestorSpecAttestationAuthorityNotePublicKeys)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey ¶
type AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey struct { // A PEM-encoded public key, as described in // 'https://tools.ietf.org/html/rfc7468#section-13' // +optional PublicKeyPem *string `json:"publicKeyPem,omitempty" tf:"public_key_pem"` // The signature algorithm used to verify a message against // a signature using this key. These signature algorithm must // match the structure and any object identifiers encoded in // publicKeyPem (i.e. this algorithm must match that of the // public key). // +optional SignatureAlgorithm *string `json:"signatureAlgorithm,omitempty" tf:"signature_algorithm"` }
func (*AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey) DeepCopy ¶
func (in *AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey) DeepCopy() *AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey.
func (*AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey) DeepCopyInto ¶
func (in *AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey) DeepCopyInto(out *AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKey)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec ¶
type AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec struct { }
+k8s:deepcopy-gen=false
func (AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec) Decode ¶
func (AttestorSpecAttestationAuthorityNotePublicKeysPkixPublicKeyCodec) Decode(ptr unsafe.Pointer, iter *jsoniter.Iterator)
type AttestorSpecResource ¶
type AttestorSpecResource struct { Timeouts *base.ResourceTimeout `json:"timeouts,omitempty" tf:"timeouts"` ID string `json:"id,omitempty" tf:"id,omitempty"` // A Container Analysis ATTESTATION_AUTHORITY Note, created by the user. AttestationAuthorityNote *AttestorSpecAttestationAuthorityNote `json:"attestationAuthorityNote" tf:"attestation_authority_note"` // A descriptive comment. This field may be updated. The field may be // displayed in chooser dialogs. // +optional Description *string `json:"description,omitempty" tf:"description"` // The resource name. Name *string `json:"name" tf:"name"` // +optional Project *string `json:"project,omitempty" tf:"project"` }
func (*AttestorSpecResource) DeepCopy ¶
func (in *AttestorSpecResource) DeepCopy() *AttestorSpecResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorSpecResource.
func (*AttestorSpecResource) DeepCopyInto ¶
func (in *AttestorSpecResource) DeepCopyInto(out *AttestorSpecResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AttestorStatus ¶
type AttestorStatus struct { // Resource generation, which is updated on mutation by the API Server. // +optional ObservedGeneration int64 `json:"observedGeneration,omitempty"` // +optional Phase status.Status `json:"phase,omitempty"` // +optional Conditions []kmapi.Condition `json:"conditions,omitempty"` }
func (*AttestorStatus) DeepCopy ¶
func (in *AttestorStatus) DeepCopy() *AttestorStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AttestorStatus.
func (*AttestorStatus) DeepCopyInto ¶
func (in *AttestorStatus) DeepCopyInto(out *AttestorStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Policy ¶
type Policy struct { metav1.TypeMeta `json:",inline,omitempty"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec PolicySpec `json:"spec,omitempty"` Status PolicyStatus `json:"status,omitempty"` }
func (*Policy) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Policy.
func (*Policy) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Policy) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*Policy) SetupWebhookWithManager ¶
func (*Policy) ValidateCreate ¶
ValidateCreate implements webhook.Validator so a webhook will be registered for the type
func (*Policy) ValidateDelete ¶
ValidateDelete implements webhook.Validator so a webhook will be registered for the type
type PolicyList ¶
type PolicyList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` // Items is a list of Policy CRD objects Items []Policy `json:"items,omitempty"` }
PolicyList is a list of Policys
func (*PolicyList) DeepCopy ¶
func (in *PolicyList) DeepCopy() *PolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyList.
func (*PolicyList) DeepCopyInto ¶
func (in *PolicyList) DeepCopyInto(out *PolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*PolicyList) DeepCopyObject ¶
func (in *PolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type PolicySpec ¶
type PolicySpec struct { State *PolicySpecResource `json:"state,omitempty" tf:"-"` Resource PolicySpecResource `json:"resource" tf:"resource"` UpdatePolicy base.UpdatePolicy `json:"updatePolicy,omitempty" tf:"-"` TerminationPolicy base.TerminationPolicy `json:"terminationPolicy,omitempty" tf:"-"` ProviderRef core.LocalObjectReference `json:"providerRef" tf:"-"` BackendRef *core.LocalObjectReference `json:"backendRef,omitempty" tf:"-"` }
func (*PolicySpec) DeepCopy ¶
func (in *PolicySpec) DeepCopy() *PolicySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicySpec.
func (*PolicySpec) DeepCopyInto ¶
func (in *PolicySpec) DeepCopyInto(out *PolicySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicySpecAdmissionWhitelistPatterns ¶
type PolicySpecAdmissionWhitelistPatterns struct { // An image name pattern to whitelist, in the form // 'registry/path/to/image'. This supports a trailing * as a // wildcard, but this is allowed only in text after the registry/ // part. NamePattern *string `json:"namePattern" tf:"name_pattern"` }
func (*PolicySpecAdmissionWhitelistPatterns) DeepCopy ¶
func (in *PolicySpecAdmissionWhitelistPatterns) DeepCopy() *PolicySpecAdmissionWhitelistPatterns
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicySpecAdmissionWhitelistPatterns.
func (*PolicySpecAdmissionWhitelistPatterns) DeepCopyInto ¶
func (in *PolicySpecAdmissionWhitelistPatterns) DeepCopyInto(out *PolicySpecAdmissionWhitelistPatterns)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicySpecClusterAdmissionRules ¶
type PolicySpecClusterAdmissionRules struct { Cluster *string `json:"cluster" tf:"cluster"` // The action when a pod creation is denied by the admission rule. Possible values: ["ENFORCED_BLOCK_AND_AUDIT_LOG", "DRYRUN_AUDIT_LOG_ONLY"] EnforcementMode *string `json:"enforcementMode" tf:"enforcement_mode"` // How this admission rule will be evaluated. Possible values: ["ALWAYS_ALLOW", "REQUIRE_ATTESTATION", "ALWAYS_DENY"] EvaluationMode *string `json:"evaluationMode" tf:"evaluation_mode"` // The resource names of the attestors that must attest to a // container image. If the attestor is in a different project from the // policy, it should be specified in the format 'projects/*/attestors/*'. // Each attestor must exist before a policy can reference it. To add an // attestor to a policy the principal issuing the policy change // request must be able to read the attestor resource. // // Note: this field must be non-empty when the evaluation_mode field // specifies REQUIRE_ATTESTATION, otherwise it must be empty. // +optional RequireAttestationsBy []string `json:"requireAttestationsBy,omitempty" tf:"require_attestations_by"` }
func (*PolicySpecClusterAdmissionRules) DeepCopy ¶
func (in *PolicySpecClusterAdmissionRules) DeepCopy() *PolicySpecClusterAdmissionRules
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicySpecClusterAdmissionRules.
func (*PolicySpecClusterAdmissionRules) DeepCopyInto ¶
func (in *PolicySpecClusterAdmissionRules) DeepCopyInto(out *PolicySpecClusterAdmissionRules)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicySpecDefaultAdmissionRule ¶
type PolicySpecDefaultAdmissionRule struct { // The action when a pod creation is denied by the admission rule. Possible values: ["ENFORCED_BLOCK_AND_AUDIT_LOG", "DRYRUN_AUDIT_LOG_ONLY"] EnforcementMode *string `json:"enforcementMode" tf:"enforcement_mode"` // How this admission rule will be evaluated. Possible values: ["ALWAYS_ALLOW", "REQUIRE_ATTESTATION", "ALWAYS_DENY"] EvaluationMode *string `json:"evaluationMode" tf:"evaluation_mode"` // The resource names of the attestors that must attest to a // container image. If the attestor is in a different project from the // policy, it should be specified in the format 'projects/*/attestors/*'. // Each attestor must exist before a policy can reference it. To add an // attestor to a policy the principal issuing the policy change // request must be able to read the attestor resource. // // Note: this field must be non-empty when the evaluation_mode field // specifies REQUIRE_ATTESTATION, otherwise it must be empty. // +optional RequireAttestationsBy []string `json:"requireAttestationsBy,omitempty" tf:"require_attestations_by"` }
func (*PolicySpecDefaultAdmissionRule) DeepCopy ¶
func (in *PolicySpecDefaultAdmissionRule) DeepCopy() *PolicySpecDefaultAdmissionRule
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicySpecDefaultAdmissionRule.
func (*PolicySpecDefaultAdmissionRule) DeepCopyInto ¶
func (in *PolicySpecDefaultAdmissionRule) DeepCopyInto(out *PolicySpecDefaultAdmissionRule)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicySpecDefaultAdmissionRuleCodec ¶
type PolicySpecDefaultAdmissionRuleCodec struct { }
+k8s:deepcopy-gen=false
func (PolicySpecDefaultAdmissionRuleCodec) Decode ¶
func (PolicySpecDefaultAdmissionRuleCodec) Decode(ptr unsafe.Pointer, iter *jsoniter.Iterator)
type PolicySpecResource ¶
type PolicySpecResource struct { Timeouts *base.ResourceTimeout `json:"timeouts,omitempty" tf:"timeouts"` ID string `json:"id,omitempty" tf:"id,omitempty"` // A whitelist of image patterns to exclude from admission rules. If an // image's name matches a whitelist pattern, the image's admission // requests will always be permitted regardless of your admission rules. // +optional AdmissionWhitelistPatterns []PolicySpecAdmissionWhitelistPatterns `json:"admissionWhitelistPatterns,omitempty" tf:"admission_whitelist_patterns"` // Per-cluster admission rules. An admission rule specifies either that // all container images used in a pod creation request must be attested // to by one or more attestors, that all pod creations will be allowed, // or that all pod creations will be denied. There can be at most one // admission rule per cluster spec. // // // Identifier format: '{{location}}.{{clusterId}}'. // A location is either a compute zone (e.g. 'us-central1-a') or a region // (e.g. 'us-central1'). // +optional ClusterAdmissionRules []PolicySpecClusterAdmissionRules `json:"clusterAdmissionRules,omitempty" tf:"cluster_admission_rules"` // Default admission rule for a cluster without a per-cluster admission // rule. DefaultAdmissionRule *PolicySpecDefaultAdmissionRule `json:"defaultAdmissionRule" tf:"default_admission_rule"` // A descriptive comment. // +optional Description *string `json:"description,omitempty" tf:"description"` // Controls the evaluation of a Google-maintained global admission policy // for common system-level images. Images not covered by the global // policy will be subject to the project admission policy. Possible values: ["ENABLE", "DISABLE"] // +optional GlobalPolicyEvaluationMode *string `json:"globalPolicyEvaluationMode,omitempty" tf:"global_policy_evaluation_mode"` // +optional Project *string `json:"project,omitempty" tf:"project"` }
func (*PolicySpecResource) DeepCopy ¶
func (in *PolicySpecResource) DeepCopy() *PolicySpecResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicySpecResource.
func (*PolicySpecResource) DeepCopyInto ¶
func (in *PolicySpecResource) DeepCopyInto(out *PolicySpecResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicyStatus ¶
type PolicyStatus struct { // Resource generation, which is updated on mutation by the API Server. // +optional ObservedGeneration int64 `json:"observedGeneration,omitempty"` // +optional Phase status.Status `json:"phase,omitempty"` // +optional Conditions []kmapi.Condition `json:"conditions,omitempty"` }
func (*PolicyStatus) DeepCopy ¶
func (in *PolicyStatus) DeepCopy() *PolicyStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyStatus.
func (*PolicyStatus) DeepCopyInto ¶
func (in *PolicyStatus) DeepCopyInto(out *PolicyStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files ¶
- attestor_iam_binding_types.go
- attestor_iam_binding_webhook.go
- attestor_iam_member_types.go
- attestor_iam_member_webhook.go
- attestor_iam_policy_types.go
- attestor_iam_policy_webhook.go
- attestor_types.go
- attestor_webhook.go
- codec.go
- doc.go
- policy_types.go
- policy_webhook.go
- register.go
- zz_generated.deepcopy.go