v1alpha1

package
v0.0.13 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 5, 2024 License: Apache-2.0 Imports: 5 Imported by: 3

Documentation

Overview

Package v1alpha1 contains API Schema definitions for the validation v1alpha1 API group +kubebuilder:object:generate=true +groupName=validation.spectrocloud.labs

Index

Constants

This section is empty.

Variables

View Source 
var (
	// GroupVersion is group version used to register these objects
	GroupVersion = schema.GroupVersion{Group: "validation.spectrocloud.labs", Version: "v1alpha1"}

	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
	SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion}

	// AddToScheme adds the types in this group-version to the given scheme.
	AddToScheme = SchemeBuilder.AddToScheme
)

Functions

This section is empty.

Types

type Artifact 

type Artifact struct {
	// Ref is the path to the artifact in the host registry that should be validated.
	// An individual artifact can take any of the following forms:
	// <repository-path>/<artifact-name>
	// <repository-path>/<artifact-name>:<tag>
	// <repository-path>/<artifact-name>@<digest>
	//
	// When no tag or digest are specified, the default tag "latest" is used.
	Ref string `json:"ref" yaml:"ref"`

	// LayerValidation specifies whether deep validation of the artifact layers should be performed.
	// The existence of layers is always validated, but this option allows for the deep validation of the layers.
	// See more details here:
	// https://github.com/google/go-containerregistry/blob/8dadbe76ff8c20d0e509406f04b7eade43baa6c1/pkg/v1/validate/image.go#L105
	LayerValidation bool `json:"layerValidation,omitempty" yaml:"layerValidation,omitempty"`
}

Artifact defines an OCI artifact to be validated.

func (*Artifact) DeepCopy 

func (in *Artifact) DeepCopy() *Artifact

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Artifact.

func (*Artifact) DeepCopyInto 

func (in *Artifact) DeepCopyInto(out *Artifact)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type Auth 

type Auth struct {
	// SecretName is the name of the Kubernetes Secret that exists in the same namespace as the OciValidator
	// and that contains the credentials used to authenticate to the OCI Registry.
	SecretName string `json:"secretName" yaml:"secretName"`
}

Auth defines the authentication information for the registry.

func (*Auth) DeepCopy 

func (in *Auth) DeepCopy() *Auth

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Auth.

func (*Auth) DeepCopyInto 

func (in *Auth) DeepCopyInto(out *Auth)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type OciRegistryRule 

type OciRegistryRule struct {
	// Name is a unique name for the OciRegistryRule.
	RuleName string `json:"name" yaml:"name"`

	// Host is the URI of an OCI registry.
	Host string `json:"host" yaml:"host"`

	// Artifacts is a slice of artifacts in the OCI registry that should be validated.
	Artifacts []Artifact `json:"artifacts,omitempty" yaml:"artifacts,omitempty"`

	// Auth provides authentication information for the registry.
	Auth Auth `json:"auth,omitempty" yaml:"auth,omitempty"`

	// InsecureSkipTLSVerify specifies whether to skip verification of the OCI registry's TLS certificate.
	InsecureSkipTLSVerify bool `json:"insecureSkipTLSVerify,omitempty" yaml:"insecureSkipTLSVerify,omitempty"`

	// CaCert is the CA certificate of the OCI registry.
	CaCert string `json:"caCert,omitempty" yaml:"caCert,omitempty"`

	// SignatureVerification provides signature verification options for the artifacts.
	SignatureVerification SignatureVerification `json:"signatureVerification,omitempty" yaml:"signatureVerification,omitempty"`
}

OciRegistryRule defines the validation rule for an OCI registry.

func (*OciRegistryRule) DeepCopy 

func (in *OciRegistryRule) DeepCopy() *OciRegistryRule

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OciRegistryRule.

func (*OciRegistryRule) DeepCopyInto 

func (in *OciRegistryRule) DeepCopyInto(out *OciRegistryRule)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (OciRegistryRule) Name 

func (r OciRegistryRule) Name() string

Name returns the name of the OciRegistryRule.

type OciValidator 

type OciValidator struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`

	Spec   OciValidatorSpec   `json:"spec,omitempty"`
	Status OciValidatorStatus `json:"status,omitempty"`
}

OciValidator is the Schema for the ocivalidators API.

func (*OciValidator) DeepCopy 

func (in *OciValidator) DeepCopy() *OciValidator

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OciValidator.

func (*OciValidator) DeepCopyInto 

func (in *OciValidator) DeepCopyInto(out *OciValidator)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*OciValidator) DeepCopyObject 

func (in *OciValidator) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (OciValidator) PluginCode added in v0.0.13 

func (v OciValidator) PluginCode() string

PluginCode returns the OCI validator's plugin code.

func (OciValidator) ResultCount added in v0.0.13 

func (v OciValidator) ResultCount() int

ResultCount returns the number of validation results expected for an OciValidator.

type OciValidatorList 

type OciValidatorList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []OciValidator `json:"items"`
}

OciValidatorList contains a list of OciValidator.

func (*OciValidatorList) DeepCopy 

func (in *OciValidatorList) DeepCopy() *OciValidatorList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OciValidatorList.

func (*OciValidatorList) DeepCopyInto 

func (in *OciValidatorList) DeepCopyInto(out *OciValidatorList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*OciValidatorList) DeepCopyObject 

func (in *OciValidatorList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type OciValidatorSpec 

type OciValidatorSpec struct {
	// +kubebuilder:validation:MaxItems=5
	// +kubebuilder:validation:XValidation:message="OciRegistryRules must have a unique RuleName",rule="self.all(e, size(self.filter(x, x.name == e.name)) == 1)"
	OciRegistryRules []OciRegistryRule `json:"ociRegistryRules,omitempty" yaml:"ociRegistryRules,omitempty"`
}

OciValidatorSpec defines the desired state of OciValidator.

func (*OciValidatorSpec) DeepCopy 

func (in *OciValidatorSpec) DeepCopy() *OciValidatorSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OciValidatorSpec.

func (*OciValidatorSpec) DeepCopyInto 

func (in *OciValidatorSpec) DeepCopyInto(out *OciValidatorSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (OciValidatorSpec) PluginCode added in v0.0.13 

func (s OciValidatorSpec) PluginCode() string

PluginCode returns the OCI validator's plugin code.

func (OciValidatorSpec) ResultCount 

func (s OciValidatorSpec) ResultCount() int

ResultCount returns the number of validation results expected for an OciValidatorSpec.

type OciValidatorStatus 

type OciValidatorStatus struct{}

OciValidatorStatus defines the observed state of OciValidator.

func (*OciValidatorStatus) DeepCopy 

func (in *OciValidatorStatus) DeepCopy() *OciValidatorStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OciValidatorStatus.

func (*OciValidatorStatus) DeepCopyInto 

func (in *OciValidatorStatus) DeepCopyInto(out *OciValidatorStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SignatureVerification 

type SignatureVerification struct {
	// Provider specifies the technology used to sign the OCI Artifact.
	// +kubebuilder:validation:Enum=cosign
	// +kubebuilder:default:=cosign
	Provider string `json:"provider" yaml:"provider"`

	// SecretName is the name of the Kubernetes Secret that exists in the same namespace as the OciValidator
	// and that contains the trusted public keys used to sign artifacts in the OciRegistryRule.
	SecretName string `json:"secretName" yaml:"secretName"`
}

SignatureVerification defines the provider and secret name to verify the signatures of artifacts in an OCI registry.

func (*SignatureVerification) DeepCopy 

func (in *SignatureVerification) DeepCopy() *SignatureVerification

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SignatureVerification.

func (*SignatureVerification) DeepCopyInto 

func (in *SignatureVerification) DeepCopyInto(out *SignatureVerification)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.