Documentation
¶
Index ¶
Constants ¶
View Source
const ( UserAuthzClusterRolePath = "templates/user-authz-cluster-roles.yaml" RootRBACForUsPath = "templates/rbac-for-us.yaml" RootRBACToUsPath = "templates/rbac-to-us.yaml" RBACv2Path = "templates/rbac" )
View Source
const (
BindingSubjectRuleName = "binding-subject"
)
View Source
const (
PlacementRuleName = "placement"
)
View Source
const (
UzerAuthZRuleName = "uzer-authz"
)
View Source
const (
WildcardsRuleName = "wildcards"
)
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type BindingSubjectRule ¶
func NewBindingSubjectRule ¶
func NewBindingSubjectRule() *BindingSubjectRule
func (*BindingSubjectRule) ObjectBindingSubjectServiceAccountCheck ¶
func (r *BindingSubjectRule) ObjectBindingSubjectServiceAccountCheck(m *module.Module, errorList *errors.LintRuleErrorsList)
type PlacementRule ¶
func NewPlacementRule ¶
func NewPlacementRule(excludeRules []pkg.KindRuleExclude) *PlacementRule
func (*PlacementRule) ObjectRBACPlacement ¶
func (r *PlacementRule) ObjectRBACPlacement(m *module.Module, errorList *errors.LintRuleErrorsList)
type UzerAuthZRule ¶
func NewUzerAuthZRule ¶
func NewUzerAuthZRule() *UzerAuthZRule
func (*UzerAuthZRule) ObjectUserAuthzClusterRolePath ¶
func (*UzerAuthZRule) ObjectUserAuthzClusterRolePath(m *module.Module, errorList *errors.LintRuleErrorsList)
objectUserAuthzClusterRolePath validates that files for user-authz contains only cluster roles. Also, it validates that role names equals to d8:user-authz:<ChartName>:<AccessLevel>
type WildcardsRule ¶
func NewWildcardsRule ¶
func NewWildcardsRule(excludeRules []pkg.KindRuleExclude) *WildcardsRule
func (*WildcardsRule) ObjectRolesWildcard ¶
func (r *WildcardsRule) ObjectRolesWildcard(m *module.Module, errorList *errors.LintRuleErrorsList)
objectRolesWildcard is a linter for checking the presence of a wildcard in a Role and ClusterRole
Source Files
Click to show internal directories.
Click to hide internal directories.