Documentation
¶
Index ¶
- Constants
- func NewMapFinalizer() *mapFinalizer
- type Config
- type CtxWithCancel
- type Vault
- type VaultController
- func (c *VaultController) CreateVaultConfig(vs *api.VaultServer, v Vault) error
- func (c *VaultController) CreateVaultTLSSecret(vs *api.VaultServer, v Vault) error
- func (c *VaultController) DeployVault(vs *api.VaultServer, v Vault) error
- func (c *VaultController) Run(stopCh <-chan struct{})
- func (c *VaultController) RunInformers(stopCh <-chan struct{})
Constants ¶
View Source
const ( AWSRolePhaseSuccess api.AWSRolePhase = "Success" AWSRolePhaseProcessing api.AWSRolePhase = "Processing" )
View Source
const ( AzureRolePhaseSuccess api.AzureRolePhase = "Success" AzureRolePhaseProcessing api.AzureRolePhase = "Processing" )
View Source
const ( GCPRolePhaseSuccess api.GCPRolePhase = "Success" GCPRolePhaseProcessing api.GCPRolePhase = "Processing" )
View Source
const ( MongoDBRolePhaseSuccess api.MongoDBRolePhase = "Success" MongoDBRolePhaseProcessing api.MongoDBRolePhase = "Processing" )
View Source
const ( MySQLRolePhaseSuccess api.MySQLRolePhase = "Success" MySQLRolePhaseProcessing api.MySQLRolePhase = "Processing" )
View Source
const ( PostgresRolePhaseSuccess api.PostgresRolePhase = "Success" PostgresRolePhaseProcessing api.PostgresRolePhase = "Processing" )
View Source
const ( SecretEnginePhaseSuccess api.SecretEnginePhase = "Success" SecretEnginePhaseProcessing api.SecretEnginePhase = "Processing" )
View Source
const ( EnvVaultAddr = "VAULT_API_ADDR" EnvVaultClusterAddr = "VAULT_CLUSTER_ADDR" VaultClientPort = 8200 VaultClusterPort = 8201 )
Variables ¶
This section is empty.
Functions ¶
func NewMapFinalizer ¶
func NewMapFinalizer() *mapFinalizer
Types ¶
type Config ¶
type Config struct {
ClientConfig *rest.Config
KubeClient kubernetes.Interface
ExtClient cs.Interface
CRDClient crd_cs.Interface
AppCatalogClient appcat_cs.AppcatalogV1alpha1Interface
PromClient pcm.MonitoringV1Interface
DbClient db_cs.Interface
// contains filtered or unexported fields
}
func (*Config) New ¶
func (c *Config) New() (*VaultController, error)
type CtxWithCancel ¶
type CtxWithCancel struct {
Ctx context.Context
Cancel context.CancelFunc
}
type Vault ¶
type Vault interface {
GetServerTLS() (*core.Secret, []byte, error)
GetConfig() (*core.ConfigMap, error)
Apply(pt *core.PodTemplateSpec) error
GetService() *core.Service
GetDeployment(pt *core.PodTemplateSpec) *apps.Deployment
GetServiceAccounts() []core.ServiceAccount
GetRBACRolesAndRoleBindings() ([]rbac.Role, []rbac.RoleBinding)
GetRBACClusterRoleBinding() rbac.ClusterRoleBinding
GetPodTemplate(c core.Container, saName string) *core.PodTemplateSpec
GetContainer() core.Container
}
type VaultController ¶
type VaultController struct {
// contains filtered or unexported fields
}
func (*VaultController) CreateVaultConfig ¶
func (c *VaultController) CreateVaultConfig(vs *api.VaultServer, v Vault) error
func (*VaultController) CreateVaultTLSSecret ¶
func (c *VaultController) CreateVaultTLSSecret(vs *api.VaultServer, v Vault) error
func (*VaultController) DeployVault ¶
func (c *VaultController) DeployVault(vs *api.VaultServer, v Vault) error
- create service account for vault pod - create deployment - create service - create rbac role, rolebinding and cluster rolebinding
func (*VaultController) Run ¶
func (c *VaultController) Run(stopCh <-chan struct{})
func (*VaultController) RunInformers ¶
func (c *VaultController) RunInformers(stopCh <-chan struct{})
Source Files
¶
- access_key_request.go
- appbinding.go
- auth_method.go
- aws_access_key_request.go
- aws_role.go
- azure_access_key_request.go
- azure_role.go
- config.go
- controller.go
- db_access_request.go
- gcp_access_key_request.go
- gcp_role.go
- mongodb_role.go
- monitor.go
- mysql_role.go
- postgres_role.go
- secret_engine.go
- util.go
- vault.go
- vault_policy.go
- vault_policy_binding.go
- vault_status.go
- vaultservers.go
Click to show internal directories.
Click to hide internal directories.