Documentation
¶
Index ¶
- Constants
- func StripSecurityContext(u unstructured.Unstructured) (jsonpatch.Patch, error)
- func UpdateBuildConfig(u unstructured.Unstructured, fields OpenshiftOptionalFields) (jsonpatch.Patch, error)
- func UpdateDefaultPullSecrets(u unstructured.Unstructured, fields OpenshiftOptionalFields) (jsonpatch.Patch, error)
- func UpdateDeploymentConfig(u unstructured.Unstructured, fields OpenshiftOptionalFields) (jsonpatch.Patch, error)
- func UpdateRoleBinding(u unstructured.Unstructured) (jsonpatch.Patch, error)
- func UpdateRoute(u unstructured.Unstructured) (jsonpatch.Patch, error)
- func UpdateServiceAccount(u unstructured.Unstructured) (jsonpatch.Patch, error)
- type OpenShiftTransformPlugin
- type OpenshiftOptionalFields
Constants ¶
View Source
const ( StripDefaultRBACFlag = "strip-default-rbac" StripDefaultCABundleFlag = "strip-default-cabundle" StripDefaultPullSecretsFlag = "strip-default-pull-secrets" PullSecretReplacementFlag = "pull-secret-replacement" PVCRenameMapFlag = "pvc-rename-map" RegistryReplacementFlag = "registry-replacement" )
View Source
const PluginVersion = "v0.1.0"
View Source
const ( // SCCNamespaceUIDMin is the minimum UID value for OpenShift SCC-injected namespace UID ranges. // UIDs >= this value are considered SCC-injected and should be stripped during migration. SCCNamespaceUIDMin int64 = 1000000000 )
Variables ¶
This section is empty.
Functions ¶
func StripSecurityContext ¶ added in v0.1.1
func StripSecurityContext(u unstructured.Unstructured) (jsonpatch.Patch, error)
StripSecurityContext removes SCC-injected security context values while preserving user-configured values.
Only strips:
- runAsUser when >= SCCNamespaceUIDMin (SCC-injected namespace UID range)
- fsGroup when >= SCCNamespaceUIDMin (SCC-injected namespace UID range)
- seLinuxOptions.level (always SCC-injected)
Preserves all other security context values (capabilities, readOnlyRootFilesystem, etc.)
func UpdateBuildConfig ¶
func UpdateBuildConfig(u unstructured.Unstructured, fields OpenshiftOptionalFields) (jsonpatch.Patch, error)
func UpdateDefaultPullSecrets ¶
func UpdateDefaultPullSecrets(u unstructured.Unstructured, fields OpenshiftOptionalFields) (jsonpatch.Patch, error)
func UpdateDeploymentConfig ¶
func UpdateDeploymentConfig(u unstructured.Unstructured, fields OpenshiftOptionalFields) (jsonpatch.Patch, error)
func UpdateRoleBinding ¶
func UpdateRoleBinding(u unstructured.Unstructured) (jsonpatch.Patch, error)
func UpdateRoute ¶
func UpdateRoute(u unstructured.Unstructured) (jsonpatch.Patch, error)
func UpdateServiceAccount ¶
func UpdateServiceAccount(u unstructured.Unstructured) (jsonpatch.Patch, error)
Types ¶
type OpenShiftTransformPlugin ¶
type OpenShiftTransformPlugin struct {
Log logrus.FieldLogger
}
OpenShiftTransformPlugin implements transform.Plugin for OpenShift-specific transformations.
func (*OpenShiftTransformPlugin) Metadata ¶
func (o *OpenShiftTransformPlugin) Metadata() transform.PluginMetadata
func (*OpenShiftTransformPlugin) Run ¶
func (o *OpenShiftTransformPlugin) Run(request transform.PluginRequest) (transform.PluginResponse, error)
type OpenshiftOptionalFields ¶ added in v0.1.1
type OpenshiftOptionalFields struct {
StripDefaultRBAC bool
StripDefaultCABundle bool
StripDefaultPullSecrets bool
PullSecretReplacement map[string]string
PVCRenameMap map[string]string
RegistryReplacement map[string]string
}
OpenshiftOptionalFields contains the optional configuration fields for OpenShift transformations
func ParseOptionalFields ¶ added in v0.1.1
func ParseOptionalFields(extras map[string]string) (OpenshiftOptionalFields, error)
ParseOptionalFields parses the extras map into OpenshiftOptionalFields
Source Files
Click to show internal directories.
Click to hide internal directories.