v1alpha1

package
v0.3.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 10, 2020 License: Apache-2.0 Imports: 21 Imported by: 0

Documentation

Overview

+groupName=policy.kubevault.com

Index

Constants

View Source 
const (
	ResourceKindVaultPolicy = "VaultPolicy"
	ResourceVaultPolicy     = "vaultpolicy"
	ResourceVaultPolicies   = "vaultpolicies"
)
View Source 
const (
	ResourceKindVaultPolicyBinding = "VaultPolicyBinding"
	ResourceVaultPolicyBinding     = "vaultpolicybinding"
	ResourceVaultPolicyBindings    = "vaultpolicybindings"
)

Variables

View Source 
var (
	ErrInvalidLengthGenerated = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflowGenerated   = fmt.Errorf("proto: integer overflow")
)
View Source 
var (
	// TODO: move SchemeBuilder with zz_generated.deepcopy.go to k8s.io/api.
	// localSchemeBuilder and AddToScheme will stay in k8s.io/kubernetes.
	SchemeBuilder runtime.SchemeBuilder

	AddToScheme = localSchemeBuilder.AddToScheme
)
View Source 
var SchemeGroupVersion = schema.GroupVersion{Group: policy.GroupName, Version: "v1alpha1"}

Functions

func GetOpenAPIDefinitions 

func GetOpenAPIDefinitions(ref common.ReferenceCallback) map[string]common.OpenAPIDefinition

func Resource 

func Resource(resource string) schema.GroupResource

Resource takes an unqualified resource and returns a Group qualified GroupResource

Types

type KubernetesSubjectRef 

type KubernetesSubjectRef struct {
	// Specifies the path where kubernetes auth is enabled
	// default : kubernetes
	// +optional
	Path string `json:"path,omitempty" protobuf:"bytes,1,opt,name=path"`

	// Specifies the names of the service account to bind with policy
	ServiceAccountNames []string `json:"serviceAccountNames" protobuf:"bytes,2,rep,name=serviceAccountNames"`

	// Specifies the namespaces of the service account
	ServiceAccountNamespaces []string `json:"serviceAccountNamespaces" protobuf:"bytes,3,rep,name=serviceAccountNamespaces"`

	//Specifies the TTL period of tokens issued using this role in seconds.
	// +optional
	TTL string `json:"ttl,omitempty" protobuf:"bytes,4,opt,name=ttl"`

	//Specifies the maximum allowed lifetime of tokens issued in seconds using this role.
	// +optional
	MaxTTL string `json:"maxTTL,omitempty" protobuf:"bytes,5,opt,name=maxTTL"`

	// If set, indicates that the token generated using this role should never expire.
	// The token should be renewed within the duration specified by this value.
	// At each renewal, the token's TTL will be set to the value of this parameter.
	// +optional
	Period string `json:"period,omitempty" protobuf:"bytes,6,opt,name=period"`
}

More info: https://www.vaultproject.io/api/auth/kubernetes/index.html#create-role

func (*KubernetesSubjectRef) DeepCopy 

func (in *KubernetesSubjectRef) DeepCopy() *KubernetesSubjectRef

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KubernetesSubjectRef.

func (*KubernetesSubjectRef) DeepCopyInto 

func (in *KubernetesSubjectRef) DeepCopyInto(out *KubernetesSubjectRef)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KubernetesSubjectRef) Descriptor 

func (*KubernetesSubjectRef) Descriptor() ([]byte, []int)

func (*KubernetesSubjectRef) Marshal 

func (m *KubernetesSubjectRef) Marshal() (dAtA []byte, err error)

func (*KubernetesSubjectRef) MarshalTo 

func (m *KubernetesSubjectRef) MarshalTo(dAtA []byte) (int, error)

func (*KubernetesSubjectRef) MarshalToSizedBuffer 

func (m *KubernetesSubjectRef) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*KubernetesSubjectRef) ProtoMessage 

func (*KubernetesSubjectRef) ProtoMessage()

func (*KubernetesSubjectRef) Reset 

func (m *KubernetesSubjectRef) Reset()

func (*KubernetesSubjectRef) Size 

func (m *KubernetesSubjectRef) Size() (n int)

func (*KubernetesSubjectRef) String 

func (this *KubernetesSubjectRef) String() string

func (*KubernetesSubjectRef) Unmarshal 

func (m *KubernetesSubjectRef) Unmarshal(dAtA []byte) error

func (*KubernetesSubjectRef) XXX_DiscardUnknown 

func (m *KubernetesSubjectRef) XXX_DiscardUnknown()

func (*KubernetesSubjectRef) XXX_Marshal 

func (m *KubernetesSubjectRef) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*KubernetesSubjectRef) XXX_Merge 

func (m *KubernetesSubjectRef) XXX_Merge(src proto.Message)

func (*KubernetesSubjectRef) XXX_Size 

func (m *KubernetesSubjectRef) XXX_Size() int

func (*KubernetesSubjectRef) XXX_Unmarshal 

func (m *KubernetesSubjectRef) XXX_Unmarshal(b []byte) error

type PolicyBindingCondition 

type PolicyBindingCondition struct {
	// Type of PolicyBindingCondition condition.
	// +optional
	Type PolicyBindingConditionType `json:"type,omitempty" protobuf:"bytes,1,opt,name=type,casttype=PolicyBindingConditionType"`

	// Status of the condition, one of True, False, Unknown.
	// +optional
	Status core.ConditionStatus `json:"status,omitempty" protobuf:"bytes,2,opt,name=status,casttype=k8s.io/api/core/v1.ConditionStatus"`

	// The reason for the condition's.
	// +optional
	Reason string `json:"reason,omitempty" protobuf:"bytes,3,opt,name=reason"`

	// A human readable message indicating details about the transition.
	// +optional
	Message string `json:"message,omitempty" protobuf:"bytes,4,opt,name=message"`
}

PolicyBindingCondition describes the state of a VaultPolicyBinding at a certain point.

func (*PolicyBindingCondition) DeepCopy 

func (in *PolicyBindingCondition) DeepCopy() *PolicyBindingCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyBindingCondition.

func (*PolicyBindingCondition) DeepCopyInto 

func (in *PolicyBindingCondition) DeepCopyInto(out *PolicyBindingCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*PolicyBindingCondition) Descriptor 

func (*PolicyBindingCondition) Descriptor() ([]byte, []int)

func (*PolicyBindingCondition) Marshal 

func (m *PolicyBindingCondition) Marshal() (dAtA []byte, err error)

func (*PolicyBindingCondition) MarshalTo 

func (m *PolicyBindingCondition) MarshalTo(dAtA []byte) (int, error)

func (*PolicyBindingCondition) MarshalToSizedBuffer 

func (m *PolicyBindingCondition) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*PolicyBindingCondition) ProtoMessage 

func (*PolicyBindingCondition) ProtoMessage()

func (*PolicyBindingCondition) Reset 

func (m *PolicyBindingCondition) Reset()

func (*PolicyBindingCondition) Size 

func (m *PolicyBindingCondition) Size() (n int)

func (*PolicyBindingCondition) String 

func (this *PolicyBindingCondition) String() string

func (*PolicyBindingCondition) Unmarshal 

func (m *PolicyBindingCondition) Unmarshal(dAtA []byte) error

func (*PolicyBindingCondition) XXX_DiscardUnknown 

func (m *PolicyBindingCondition) XXX_DiscardUnknown()

func (*PolicyBindingCondition) XXX_Marshal 

func (m *PolicyBindingCondition) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*PolicyBindingCondition) XXX_Merge 

func (m *PolicyBindingCondition) XXX_Merge(src proto.Message)

func (*PolicyBindingCondition) XXX_Size 

func (m *PolicyBindingCondition) XXX_Size() int

func (*PolicyBindingCondition) XXX_Unmarshal 

func (m *PolicyBindingCondition) XXX_Unmarshal(b []byte) error

type PolicyBindingConditionType 

type PolicyBindingConditionType string
const (
	PolicyBindingConditionFailure PolicyBindingConditionType = "Failure"
)

These are valid conditions of a VaultPolicyBinding.

type PolicyBindingPhase 

type PolicyBindingPhase string
const (
	PolicyBindingSuccess PolicyBindingPhase = "Success"
	PolicyBindingFailed  PolicyBindingPhase = "Failed"
)

type PolicyCondition 

type PolicyCondition struct {
	// Type of PolicyCondition condition.
	// +optional
	Type PolicyConditionType `json:"type,omitempty" protobuf:"bytes,1,opt,name=type,casttype=PolicyConditionType"`

	// Status of the condition, one of True, False, Unknown.
	// +optional
	Status core.ConditionStatus `json:"status,omitempty" protobuf:"bytes,2,opt,name=status,casttype=k8s.io/api/core/v1.ConditionStatus"`

	// The reason for the condition's.
	// +optional
	Reason string `json:"reason,omitempty" protobuf:"bytes,3,opt,name=reason"`

	// A human readable message indicating details about the transition.
	// +optional
	Message string `json:"message,omitempty" protobuf:"bytes,4,opt,name=message"`
}

PolicyCondition describes the state of a VaultPolicy at a certain point.

func (*PolicyCondition) DeepCopy 

func (in *PolicyCondition) DeepCopy() *PolicyCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyCondition.

func (*PolicyCondition) DeepCopyInto 

func (in *PolicyCondition) DeepCopyInto(out *PolicyCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*PolicyCondition) Descriptor 

func (*PolicyCondition) Descriptor() ([]byte, []int)

func (*PolicyCondition) Marshal 

func (m *PolicyCondition) Marshal() (dAtA []byte, err error)

func (*PolicyCondition) MarshalTo 

func (m *PolicyCondition) MarshalTo(dAtA []byte) (int, error)

func (*PolicyCondition) MarshalToSizedBuffer 

func (m *PolicyCondition) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*PolicyCondition) ProtoMessage 

func (*PolicyCondition) ProtoMessage()

func (*PolicyCondition) Reset 

func (m *PolicyCondition) Reset()

func (*PolicyCondition) Size 

func (m *PolicyCondition) Size() (n int)

func (*PolicyCondition) String 

func (this *PolicyCondition) String() string

func (*PolicyCondition) Unmarshal 

func (m *PolicyCondition) Unmarshal(dAtA []byte) error

func (*PolicyCondition) XXX_DiscardUnknown 

func (m *PolicyCondition) XXX_DiscardUnknown()

func (*PolicyCondition) XXX_Marshal 

func (m *PolicyCondition) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*PolicyCondition) XXX_Merge 

func (m *PolicyCondition) XXX_Merge(src proto.Message)

func (*PolicyCondition) XXX_Size 

func (m *PolicyCondition) XXX_Size() int

func (*PolicyCondition) XXX_Unmarshal 

func (m *PolicyCondition) XXX_Unmarshal(b []byte) error

type PolicyConditionType 

type PolicyConditionType string
const (
	PolicyConditionFailure PolicyConditionType = "Failure"
)

These are valid conditions of a VaultPolicy.

type PolicyIdentifier 

type PolicyIdentifier struct {
	// Name is a Vault server policy name. This name should be returned by `vault read sys/policy` command.
	// More info: https://www.vaultproject.io/docs/concepts/policies.html#listing-policies
	Name string `json:"name,omitempty" protobuf:"bytes,1,opt,name=name"`

	// Ref is name of a VaultPolicy crd object. Actual vault policy name is spec.vaultRoleName field.
	// More info: https://www.vaultproject.io/docs/concepts/policies.html#listing-policies
	Ref string `json:"ref,omitempty" protobuf:"bytes,2,opt,name=ref"`
}

func (*PolicyIdentifier) DeepCopy 

func (in *PolicyIdentifier) DeepCopy() *PolicyIdentifier

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyIdentifier.

func (*PolicyIdentifier) DeepCopyInto 

func (in *PolicyIdentifier) DeepCopyInto(out *PolicyIdentifier)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*PolicyIdentifier) Descriptor 

func (*PolicyIdentifier) Descriptor() ([]byte, []int)

func (*PolicyIdentifier) Marshal 

func (m *PolicyIdentifier) Marshal() (dAtA []byte, err error)

func (*PolicyIdentifier) MarshalTo 

func (m *PolicyIdentifier) MarshalTo(dAtA []byte) (int, error)

func (*PolicyIdentifier) MarshalToSizedBuffer 

func (m *PolicyIdentifier) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*PolicyIdentifier) ProtoMessage 

func (*PolicyIdentifier) ProtoMessage()

func (*PolicyIdentifier) Reset 

func (m *PolicyIdentifier) Reset()

func (*PolicyIdentifier) Size 

func (m *PolicyIdentifier) Size() (n int)

func (*PolicyIdentifier) String 

func (this *PolicyIdentifier) String() string

func (*PolicyIdentifier) Unmarshal 

func (m *PolicyIdentifier) Unmarshal(dAtA []byte) error

func (*PolicyIdentifier) XXX_DiscardUnknown 

func (m *PolicyIdentifier) XXX_DiscardUnknown()

func (*PolicyIdentifier) XXX_Marshal 

func (m *PolicyIdentifier) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*PolicyIdentifier) XXX_Merge 

func (m *PolicyIdentifier) XXX_Merge(src proto.Message)

func (*PolicyIdentifier) XXX_Size 

func (m *PolicyIdentifier) XXX_Size() int

func (*PolicyIdentifier) XXX_Unmarshal 

func (m *PolicyIdentifier) XXX_Unmarshal(b []byte) error

type PolicyPhase 

type PolicyPhase string
const (
	PolicySuccess PolicyPhase = "Success"
	PolicyFailed  PolicyPhase = "Failed"
)

type ServiceAccountReference 

type ServiceAccountReference struct {
	Name      string `json:"name" protobuf:"bytes,1,opt,name=name"`
	Namespace string `json:"namespace" protobuf:"bytes,2,opt,name=namespace"`
}

ServiceAccountReference contains name and namespace of the service account

func (*ServiceAccountReference) DeepCopy 

func (in *ServiceAccountReference) DeepCopy() *ServiceAccountReference

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ServiceAccountReference.

func (*ServiceAccountReference) DeepCopyInto 

func (in *ServiceAccountReference) DeepCopyInto(out *ServiceAccountReference)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*ServiceAccountReference) Descriptor 

func (*ServiceAccountReference) Descriptor() ([]byte, []int)

func (*ServiceAccountReference) Marshal 

func (m *ServiceAccountReference) Marshal() (dAtA []byte, err error)

func (*ServiceAccountReference) MarshalTo 

func (m *ServiceAccountReference) MarshalTo(dAtA []byte) (int, error)

func (*ServiceAccountReference) MarshalToSizedBuffer 

func (m *ServiceAccountReference) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*ServiceAccountReference) ProtoMessage 

func (*ServiceAccountReference) ProtoMessage()

func (*ServiceAccountReference) Reset 

func (m *ServiceAccountReference) Reset()

func (*ServiceAccountReference) Size 

func (m *ServiceAccountReference) Size() (n int)

func (*ServiceAccountReference) String 

func (this *ServiceAccountReference) String() string

func (*ServiceAccountReference) Unmarshal 

func (m *ServiceAccountReference) Unmarshal(dAtA []byte) error

func (*ServiceAccountReference) XXX_DiscardUnknown 

func (m *ServiceAccountReference) XXX_DiscardUnknown()

func (*ServiceAccountReference) XXX_Marshal 

func (m *ServiceAccountReference) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*ServiceAccountReference) XXX_Merge 

func (m *ServiceAccountReference) XXX_Merge(src proto.Message)

func (*ServiceAccountReference) XXX_Size 

func (m *ServiceAccountReference) XXX_Size() int

func (*ServiceAccountReference) XXX_Unmarshal 

func (m *ServiceAccountReference) XXX_Unmarshal(b []byte) error

type SubjectRef 

type SubjectRef struct {
	// Kubernetes refers to Vault users who are authenticated via Kubernetes auth method
	// More info: https://www.vaultproject.io/docs/auth/kubernetes.html#configuration
	Kubernetes *KubernetesSubjectRef `json:"kubernetes,omitempty" protobuf:"bytes,1,opt,name=kubernetes"`
}

func (*SubjectRef) DeepCopy 

func (in *SubjectRef) DeepCopy() *SubjectRef

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SubjectRef.

func (*SubjectRef) DeepCopyInto 

func (in *SubjectRef) DeepCopyInto(out *SubjectRef)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SubjectRef) Descriptor 

func (*SubjectRef) Descriptor() ([]byte, []int)

func (*SubjectRef) Marshal 

func (m *SubjectRef) Marshal() (dAtA []byte, err error)

func (*SubjectRef) MarshalTo 

func (m *SubjectRef) MarshalTo(dAtA []byte) (int, error)

func (*SubjectRef) MarshalToSizedBuffer 

func (m *SubjectRef) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*SubjectRef) ProtoMessage 

func (*SubjectRef) ProtoMessage()

func (*SubjectRef) Reset 

func (m *SubjectRef) Reset()

func (*SubjectRef) Size 

func (m *SubjectRef) Size() (n int)

func (*SubjectRef) String 

func (this *SubjectRef) String() string

func (*SubjectRef) Unmarshal 

func (m *SubjectRef) Unmarshal(dAtA []byte) error

func (*SubjectRef) XXX_DiscardUnknown 

func (m *SubjectRef) XXX_DiscardUnknown()

func (*SubjectRef) XXX_Marshal 

func (m *SubjectRef) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*SubjectRef) XXX_Merge 

func (m *SubjectRef) XXX_Merge(src proto.Message)

func (*SubjectRef) XXX_Size 

func (m *SubjectRef) XXX_Size() int

func (*SubjectRef) XXX_Unmarshal 

func (m *SubjectRef) XXX_Unmarshal(b []byte) error

type VaultPolicy 

type VaultPolicy struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"`
	Spec              VaultPolicySpec   `json:"spec,omitempty" protobuf:"bytes,2,opt,name=spec"`
	Status            VaultPolicyStatus `json:"status,omitempty" protobuf:"bytes,3,opt,name=status"`
}

+kubebuilder:object:root=true +kubebuilder:resource:path=vaultpolicies,singular=vaultpolicy,shortName=vp,categories={vault,policy,appscode,all} +kubebuilder:subresource:status +kubebuilder:printcolumn:name="Status",type="string",JSONPath=".status.phase" +kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp"

func (VaultPolicy) CustomResourceDefinition 

func (_ VaultPolicy) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*VaultPolicy) DeepCopy 

func (in *VaultPolicy) DeepCopy() *VaultPolicy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicy.

func (*VaultPolicy) DeepCopyInto 

func (in *VaultPolicy) DeepCopyInto(out *VaultPolicy)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicy) DeepCopyObject 

func (in *VaultPolicy) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*VaultPolicy) Descriptor 

func (*VaultPolicy) Descriptor() ([]byte, []int)

func (VaultPolicy) GetKey 

func (v VaultPolicy) GetKey() string

func (VaultPolicy) IsValid 

func (v VaultPolicy) IsValid() error

func (*VaultPolicy) Marshal 

func (m *VaultPolicy) Marshal() (dAtA []byte, err error)

func (*VaultPolicy) MarshalTo 

func (m *VaultPolicy) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicy) MarshalToSizedBuffer 

func (m *VaultPolicy) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (VaultPolicy) OffshootLabels 

func (v VaultPolicy) OffshootLabels() map[string]string

func (VaultPolicy) OffshootSelectors 

func (v VaultPolicy) OffshootSelectors() map[string]string

func (VaultPolicy) PolicyName 

func (v VaultPolicy) PolicyName() string

func (*VaultPolicy) ProtoMessage 

func (*VaultPolicy) ProtoMessage()

func (*VaultPolicy) Reset 

func (m *VaultPolicy) Reset()

func (*VaultPolicy) Size 

func (m *VaultPolicy) Size() (n int)

func (*VaultPolicy) String 

func (this *VaultPolicy) String() string

func (*VaultPolicy) Unmarshal 

func (m *VaultPolicy) Unmarshal(dAtA []byte) error

func (*VaultPolicy) XXX_DiscardUnknown 

func (m *VaultPolicy) XXX_DiscardUnknown()

func (*VaultPolicy) XXX_Marshal 

func (m *VaultPolicy) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicy) XXX_Merge 

func (m *VaultPolicy) XXX_Merge(src proto.Message)

func (*VaultPolicy) XXX_Size 

func (m *VaultPolicy) XXX_Size() int

func (*VaultPolicy) XXX_Unmarshal 

func (m *VaultPolicy) XXX_Unmarshal(b []byte) error

type VaultPolicyBinding 

type VaultPolicyBinding struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"`
	Spec              VaultPolicyBindingSpec   `json:"spec,omitempty" protobuf:"bytes,2,opt,name=spec"`
	Status            VaultPolicyBindingStatus `json:"status,omitempty" protobuf:"bytes,3,opt,name=status"`
}

+kubebuilder:object:root=true +kubebuilder:resource:path=vaultpolicybindings,singular=vaultpolicybinding,shortName=vpb,categories={vault,appscode,all} +kubebuilder:subresource:status +kubebuilder:printcolumn:name="Status",type="string",JSONPath=".status.phase" +kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp"

func (VaultPolicyBinding) CustomResourceDefinition 

func (_ VaultPolicyBinding) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*VaultPolicyBinding) DeepCopy 

func (in *VaultPolicyBinding) DeepCopy() *VaultPolicyBinding

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicyBinding.

func (*VaultPolicyBinding) DeepCopyInto 

func (in *VaultPolicyBinding) DeepCopyInto(out *VaultPolicyBinding)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicyBinding) DeepCopyObject 

func (in *VaultPolicyBinding) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*VaultPolicyBinding) Descriptor 

func (*VaultPolicyBinding) Descriptor() ([]byte, []int)

func (VaultPolicyBinding) GetKey 

func (v VaultPolicyBinding) GetKey() string

func (VaultPolicyBinding) IsValid 

func (v VaultPolicyBinding) IsValid() error

func (*VaultPolicyBinding) Marshal 

func (m *VaultPolicyBinding) Marshal() (dAtA []byte, err error)

func (*VaultPolicyBinding) MarshalTo 

func (m *VaultPolicyBinding) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicyBinding) MarshalToSizedBuffer 

func (m *VaultPolicyBinding) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (VaultPolicyBinding) OffshootLabels 

func (v VaultPolicyBinding) OffshootLabels() map[string]string

func (VaultPolicyBinding) OffshootSelectors 

func (v VaultPolicyBinding) OffshootSelectors() map[string]string

func (VaultPolicyBinding) PolicyBindingName 

func (v VaultPolicyBinding) PolicyBindingName() string

func (*VaultPolicyBinding) ProtoMessage 

func (*VaultPolicyBinding) ProtoMessage()

func (*VaultPolicyBinding) Reset 

func (m *VaultPolicyBinding) Reset()

func (*VaultPolicyBinding) SetDefaults 

func (v *VaultPolicyBinding) SetDefaults()

func (*VaultPolicyBinding) Size 

func (m *VaultPolicyBinding) Size() (n int)

func (*VaultPolicyBinding) String 

func (this *VaultPolicyBinding) String() string

func (*VaultPolicyBinding) Unmarshal 

func (m *VaultPolicyBinding) Unmarshal(dAtA []byte) error

func (*VaultPolicyBinding) XXX_DiscardUnknown 

func (m *VaultPolicyBinding) XXX_DiscardUnknown()

func (*VaultPolicyBinding) XXX_Marshal 

func (m *VaultPolicyBinding) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicyBinding) XXX_Merge 

func (m *VaultPolicyBinding) XXX_Merge(src proto.Message)

func (*VaultPolicyBinding) XXX_Size 

func (m *VaultPolicyBinding) XXX_Size() int

func (*VaultPolicyBinding) XXX_Unmarshal 

func (m *VaultPolicyBinding) XXX_Unmarshal(b []byte) error

type VaultPolicyBindingList 

type VaultPolicyBindingList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"`
	Items           []VaultPolicyBinding `json:"items,omitempty" protobuf:"bytes,2,rep,name=items"`
}

func (*VaultPolicyBindingList) DeepCopy 

func (in *VaultPolicyBindingList) DeepCopy() *VaultPolicyBindingList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicyBindingList.

func (*VaultPolicyBindingList) DeepCopyInto 

func (in *VaultPolicyBindingList) DeepCopyInto(out *VaultPolicyBindingList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicyBindingList) DeepCopyObject 

func (in *VaultPolicyBindingList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*VaultPolicyBindingList) Descriptor 

func (*VaultPolicyBindingList) Descriptor() ([]byte, []int)

func (*VaultPolicyBindingList) Marshal 

func (m *VaultPolicyBindingList) Marshal() (dAtA []byte, err error)

func (*VaultPolicyBindingList) MarshalTo 

func (m *VaultPolicyBindingList) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicyBindingList) MarshalToSizedBuffer 

func (m *VaultPolicyBindingList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VaultPolicyBindingList) ProtoMessage 

func (*VaultPolicyBindingList) ProtoMessage()

func (*VaultPolicyBindingList) Reset 

func (m *VaultPolicyBindingList) Reset()

func (*VaultPolicyBindingList) Size 

func (m *VaultPolicyBindingList) Size() (n int)

func (*VaultPolicyBindingList) String 

func (this *VaultPolicyBindingList) String() string

func (*VaultPolicyBindingList) Unmarshal 

func (m *VaultPolicyBindingList) Unmarshal(dAtA []byte) error

func (*VaultPolicyBindingList) XXX_DiscardUnknown 

func (m *VaultPolicyBindingList) XXX_DiscardUnknown()

func (*VaultPolicyBindingList) XXX_Marshal 

func (m *VaultPolicyBindingList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicyBindingList) XXX_Merge 

func (m *VaultPolicyBindingList) XXX_Merge(src proto.Message)

func (*VaultPolicyBindingList) XXX_Size 

func (m *VaultPolicyBindingList) XXX_Size() int

func (*VaultPolicyBindingList) XXX_Unmarshal 

func (m *VaultPolicyBindingList) XXX_Unmarshal(b []byte) error

type VaultPolicyBindingSpec 

type VaultPolicyBindingSpec struct {
	// VaultRef is the name of a AppBinding referencing to a Vault Server
	VaultRef core.LocalObjectReference `json:"vaultRef" protobuf:"bytes,1,opt,name=vaultRef"`

	// VaultRoleName is the role name which will be bound of the policies
	// This defaults to following format: k8s.${cluster}.${metadata.namespace}.${metadata.name}
	// xref: https://www.vaultproject.io/api/auth/kubernetes/index.html#create-role
	// +optional
	VaultRoleName string `json:"vaultRoleName,omitempty" protobuf:"bytes,2,opt,name=vaultRoleName"`

	// Policies is a list of Vault policy identifiers.
	Policies []PolicyIdentifier `json:"policies" protobuf:"bytes,3,rep,name=policies"`

	// SubjectRef refers to Vault users who will be granted policies.
	SubjectRef `json:"subjectRef" protobuf:"bytes,4,opt,name=subjectRef"`
}

links: https://www.vaultproject.io/api/auth/kubernetes/index.html#parameters-1

func (*VaultPolicyBindingSpec) DeepCopy 

func (in *VaultPolicyBindingSpec) DeepCopy() *VaultPolicyBindingSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicyBindingSpec.

func (*VaultPolicyBindingSpec) DeepCopyInto 

func (in *VaultPolicyBindingSpec) DeepCopyInto(out *VaultPolicyBindingSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicyBindingSpec) Descriptor 

func (*VaultPolicyBindingSpec) Descriptor() ([]byte, []int)

func (*VaultPolicyBindingSpec) Marshal 

func (m *VaultPolicyBindingSpec) Marshal() (dAtA []byte, err error)

func (*VaultPolicyBindingSpec) MarshalTo 

func (m *VaultPolicyBindingSpec) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicyBindingSpec) MarshalToSizedBuffer 

func (m *VaultPolicyBindingSpec) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VaultPolicyBindingSpec) ProtoMessage 

func (*VaultPolicyBindingSpec) ProtoMessage()

func (*VaultPolicyBindingSpec) Reset 

func (m *VaultPolicyBindingSpec) Reset()

func (*VaultPolicyBindingSpec) Size 

func (m *VaultPolicyBindingSpec) Size() (n int)

func (*VaultPolicyBindingSpec) String 

func (this *VaultPolicyBindingSpec) String() string

func (*VaultPolicyBindingSpec) Unmarshal 

func (m *VaultPolicyBindingSpec) Unmarshal(dAtA []byte) error

func (*VaultPolicyBindingSpec) XXX_DiscardUnknown 

func (m *VaultPolicyBindingSpec) XXX_DiscardUnknown()

func (*VaultPolicyBindingSpec) XXX_Marshal 

func (m *VaultPolicyBindingSpec) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicyBindingSpec) XXX_Merge 

func (m *VaultPolicyBindingSpec) XXX_Merge(src proto.Message)

func (*VaultPolicyBindingSpec) XXX_Size 

func (m *VaultPolicyBindingSpec) XXX_Size() int

func (*VaultPolicyBindingSpec) XXX_Unmarshal 

func (m *VaultPolicyBindingSpec) XXX_Unmarshal(b []byte) error

type VaultPolicyBindingStatus 

type VaultPolicyBindingStatus struct {
	// ObservedGeneration is the most recent generation observed for this resource. It corresponds to the
	// resource's generation, which is updated on mutation by the API Server.
	// +optional
	ObservedGeneration int64 `json:"observedGeneration,omitempty" protobuf:"varint,1,opt,name=observedGeneration"`

	// Phase indicates whether successfully bind the policy to service account in vault or not or in progress
	// +optional
	Phase PolicyBindingPhase `json:"phase,omitempty" protobuf:"bytes,2,opt,name=phase,casttype=PolicyBindingPhase"`

	// Represents the latest available observations of a VaultPolicyBinding.
	// +optional
	Conditions []PolicyBindingCondition `json:"conditions,omitempty" protobuf:"bytes,3,rep,name=conditions"`
}

func (*VaultPolicyBindingStatus) DeepCopy 

func (in *VaultPolicyBindingStatus) DeepCopy() *VaultPolicyBindingStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicyBindingStatus.

func (*VaultPolicyBindingStatus) DeepCopyInto 

func (in *VaultPolicyBindingStatus) DeepCopyInto(out *VaultPolicyBindingStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicyBindingStatus) Descriptor 

func (*VaultPolicyBindingStatus) Descriptor() ([]byte, []int)

func (*VaultPolicyBindingStatus) Marshal 

func (m *VaultPolicyBindingStatus) Marshal() (dAtA []byte, err error)

func (*VaultPolicyBindingStatus) MarshalTo 

func (m *VaultPolicyBindingStatus) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicyBindingStatus) MarshalToSizedBuffer 

func (m *VaultPolicyBindingStatus) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VaultPolicyBindingStatus) ProtoMessage 

func (*VaultPolicyBindingStatus) ProtoMessage()

func (*VaultPolicyBindingStatus) Reset 

func (m *VaultPolicyBindingStatus) Reset()

func (*VaultPolicyBindingStatus) Size 

func (m *VaultPolicyBindingStatus) Size() (n int)

func (*VaultPolicyBindingStatus) String 

func (this *VaultPolicyBindingStatus) String() string

func (*VaultPolicyBindingStatus) Unmarshal 

func (m *VaultPolicyBindingStatus) Unmarshal(dAtA []byte) error

func (*VaultPolicyBindingStatus) XXX_DiscardUnknown 

func (m *VaultPolicyBindingStatus) XXX_DiscardUnknown()

func (*VaultPolicyBindingStatus) XXX_Marshal 

func (m *VaultPolicyBindingStatus) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicyBindingStatus) XXX_Merge 

func (m *VaultPolicyBindingStatus) XXX_Merge(src proto.Message)

func (*VaultPolicyBindingStatus) XXX_Size 

func (m *VaultPolicyBindingStatus) XXX_Size() int

func (*VaultPolicyBindingStatus) XXX_Unmarshal 

func (m *VaultPolicyBindingStatus) XXX_Unmarshal(b []byte) error

type VaultPolicyList 

type VaultPolicyList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty" protobuf:"bytes,1,opt,name=metadata"`
	Items           []VaultPolicy `json:"items,omitempty" protobuf:"bytes,2,rep,name=items"`
}

func (*VaultPolicyList) DeepCopy 

func (in *VaultPolicyList) DeepCopy() *VaultPolicyList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicyList.

func (*VaultPolicyList) DeepCopyInto 

func (in *VaultPolicyList) DeepCopyInto(out *VaultPolicyList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicyList) DeepCopyObject 

func (in *VaultPolicyList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*VaultPolicyList) Descriptor 

func (*VaultPolicyList) Descriptor() ([]byte, []int)

func (*VaultPolicyList) Marshal 

func (m *VaultPolicyList) Marshal() (dAtA []byte, err error)

func (*VaultPolicyList) MarshalTo 

func (m *VaultPolicyList) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicyList) MarshalToSizedBuffer 

func (m *VaultPolicyList) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VaultPolicyList) ProtoMessage 

func (*VaultPolicyList) ProtoMessage()

func (*VaultPolicyList) Reset 

func (m *VaultPolicyList) Reset()

func (*VaultPolicyList) Size 

func (m *VaultPolicyList) Size() (n int)

func (*VaultPolicyList) String 

func (this *VaultPolicyList) String() string

func (*VaultPolicyList) Unmarshal 

func (m *VaultPolicyList) Unmarshal(dAtA []byte) error

func (*VaultPolicyList) XXX_DiscardUnknown 

func (m *VaultPolicyList) XXX_DiscardUnknown()

func (*VaultPolicyList) XXX_Marshal 

func (m *VaultPolicyList) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicyList) XXX_Merge 

func (m *VaultPolicyList) XXX_Merge(src proto.Message)

func (*VaultPolicyList) XXX_Size 

func (m *VaultPolicyList) XXX_Size() int

func (*VaultPolicyList) XXX_Unmarshal 

func (m *VaultPolicyList) XXX_Unmarshal(b []byte) error

type VaultPolicySpec 

type VaultPolicySpec struct {
	// VaultRef is the name of a AppBinding referencing to a Vault Server
	VaultRef core.LocalObjectReference `json:"vaultRef" protobuf:"bytes,1,opt,name=vaultRef"`

	// VaultPolicyName is the policy name set inside Vault.
	// This defaults to following format: k8s.${cluster}.${metadata.namespace}.${metadata.name}
	// +optional
	VaultPolicyName string `json:"vaultPolicyName,omitempty" protobuf:"bytes,2,opt,name=vaultPolicyName"`

	// PolicyDocument specifies a vault policy in hcl format.
	// For example:
	// path "secret/*" {
	//   capabilities = ["create", "read", "update", "delete", "list"]
	// }
	// +optional
	PolicyDocument string `json:"policyDocument,omitempty" protobuf:"bytes,3,opt,name=policyDocument"`

	// Policy specifies a vault policy in json format.
	// +optional
	// +kubebuilder:validation:EmbeddedResource
	// +kubebuilder:pruning:PreserveUnknownFields
	Policy *runtime.RawExtension `json:"policy,omitempty" protobuf:"bytes,4,opt,name=policy"`
}

More info: https://www.vaultproject.io/docs/concepts/policies.html

func (*VaultPolicySpec) DeepCopy 

func (in *VaultPolicySpec) DeepCopy() *VaultPolicySpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicySpec.

func (*VaultPolicySpec) DeepCopyInto 

func (in *VaultPolicySpec) DeepCopyInto(out *VaultPolicySpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicySpec) Descriptor 

func (*VaultPolicySpec) Descriptor() ([]byte, []int)

func (*VaultPolicySpec) Marshal 

func (m *VaultPolicySpec) Marshal() (dAtA []byte, err error)

func (*VaultPolicySpec) MarshalTo 

func (m *VaultPolicySpec) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicySpec) MarshalToSizedBuffer 

func (m *VaultPolicySpec) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VaultPolicySpec) ProtoMessage 

func (*VaultPolicySpec) ProtoMessage()

func (*VaultPolicySpec) Reset 

func (m *VaultPolicySpec) Reset()

func (*VaultPolicySpec) Size 

func (m *VaultPolicySpec) Size() (n int)

func (*VaultPolicySpec) String 

func (this *VaultPolicySpec) String() string

func (*VaultPolicySpec) Unmarshal 

func (m *VaultPolicySpec) Unmarshal(dAtA []byte) error

func (*VaultPolicySpec) XXX_DiscardUnknown 

func (m *VaultPolicySpec) XXX_DiscardUnknown()

func (*VaultPolicySpec) XXX_Marshal 

func (m *VaultPolicySpec) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicySpec) XXX_Merge 

func (m *VaultPolicySpec) XXX_Merge(src proto.Message)

func (*VaultPolicySpec) XXX_Size 

func (m *VaultPolicySpec) XXX_Size() int

func (*VaultPolicySpec) XXX_Unmarshal 

func (m *VaultPolicySpec) XXX_Unmarshal(b []byte) error

type VaultPolicyStatus 

type VaultPolicyStatus struct {
	// ObservedGeneration is the most recent generation observed for this resource. It corresponds to the
	// resource's generation, which is updated on mutation by the API Server.
	// +optional
	ObservedGeneration int64 `json:"observedGeneration,omitempty" protobuf:"varint,1,opt,name=observedGeneration"`

	// Phase indicates whether the policy successfully applied in vault or not or in progress
	// +optional
	Phase PolicyPhase `json:"phase,omitempty" protobuf:"bytes,2,opt,name=phase,casttype=PolicyPhase"`

	// Represents the latest available observations of a VaultPolicy.
	// +optional
	Conditions []PolicyCondition `json:"conditions,omitempty" protobuf:"bytes,3,rep,name=conditions"`
}

func (*VaultPolicyStatus) DeepCopy 

func (in *VaultPolicyStatus) DeepCopy() *VaultPolicyStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultPolicyStatus.

func (*VaultPolicyStatus) DeepCopyInto 

func (in *VaultPolicyStatus) DeepCopyInto(out *VaultPolicyStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*VaultPolicyStatus) Descriptor 

func (*VaultPolicyStatus) Descriptor() ([]byte, []int)

func (*VaultPolicyStatus) Marshal 

func (m *VaultPolicyStatus) Marshal() (dAtA []byte, err error)

func (*VaultPolicyStatus) MarshalTo 

func (m *VaultPolicyStatus) MarshalTo(dAtA []byte) (int, error)

func (*VaultPolicyStatus) MarshalToSizedBuffer 

func (m *VaultPolicyStatus) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*VaultPolicyStatus) ProtoMessage 

func (*VaultPolicyStatus) ProtoMessage()

func (*VaultPolicyStatus) Reset 

func (m *VaultPolicyStatus) Reset()

func (*VaultPolicyStatus) Size 

func (m *VaultPolicyStatus) Size() (n int)

func (*VaultPolicyStatus) String 

func (this *VaultPolicyStatus) String() string

func (*VaultPolicyStatus) Unmarshal 

func (m *VaultPolicyStatus) Unmarshal(dAtA []byte) error

func (*VaultPolicyStatus) XXX_DiscardUnknown 

func (m *VaultPolicyStatus) XXX_DiscardUnknown()

func (*VaultPolicyStatus) XXX_Marshal 

func (m *VaultPolicyStatus) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*VaultPolicyStatus) XXX_Merge 

func (m *VaultPolicyStatus) XXX_Merge(src proto.Message)

func (*VaultPolicyStatus) XXX_Size 

func (m *VaultPolicyStatus) XXX_Size() int

func (*VaultPolicyStatus) XXX_Unmarshal 

func (m *VaultPolicyStatus) XXX_Unmarshal(b []byte) error

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.