Documentation
¶
Overview ¶
Package user contains security context constraints user strategy implementations.
Index ¶
- func AnnotationToIntPtr(sUID string) (*int64, error)
- func GetAllocatedID(kClient clientset.Interface, pod *api.Pod, annotation string) (*int64, error)
- type RunAsUserSecurityContextConstraintsStrategy
- func NewMustRunAs(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
- func NewMustRunAsRange(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
- func NewRunAsAny(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
- func NewRunAsNonRoot(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type RunAsUserSecurityContextConstraintsStrategy ¶
type RunAsUserSecurityContextConstraintsStrategy interface {
// Generate creates the uid based on policy rules.
Generate(pod *api.Pod, container *api.Container) (*int64, error)
// Validate ensures that the specified values fall within the range of the strategy.
Validate(pod *api.Pod, container *api.Container) field.ErrorList
}
RunAsUserSecurityContextConstraintsStrategy defines the interface for all uid constraint strategies.
func NewMustRunAs ¶
func NewMustRunAs(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
NewMustRunAs provides a strategy that requires the container to run as a specific UID.
func NewMustRunAsRange ¶
func NewMustRunAsRange(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
NewMustRunAs provides a strategy that requires the container to run as a specific UID in a range.
func NewRunAsAny ¶
func NewRunAsAny(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
NewRunAsAny provides a strategy that will return nil.
func NewRunAsNonRoot ¶
func NewRunAsNonRoot(options *securityapi.RunAsUserStrategyOptions) (RunAsUserSecurityContextConstraintsStrategy, error)
Source Files
¶
- doc.go
- mustrunas.go
- mustrunasrange.go
- nonroot.go
- runasany.go
- types.go
- util.go
Click to show internal directories.
Click to hide internal directories.