Documentation
¶
Index ¶
Constants ¶
View Source
const ( ResourceResults = "results" ResourceRecords = "records" ResourceLogs = "logs" PermissionCreate = "create" PermissionGet = "get" PermissionList = "list" PermissionDelete = "delete" PermissionUpdate = "update" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AllowAll ¶
type AllowAll struct{}
AllowAll is an auth check that allows every request, regardless of the params. Useful for testing or cases where you want to disable auth checks.
type Option ¶ added in v0.6.0
type Option func(*RBAC)
func WithImpersonation ¶ added in v0.6.0
WithImpersonation is an option function to enable Impersonation
type RBAC ¶
type RBAC struct {
// contains filtered or unexported fields
}
RBAC is a Kubernetes RBAC based auth checker. This uses the Kubernetes TokenReview and SubjectAccessReview APIs to defer auth decisions to the cluster. Users should pass in `token` metadata through the gRPC context. This checks RBAC permissions in the `results.tekton.dev` group, and assumes checks are done at the namespace
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.