- Sort Score
- Result 10 results
- Languages All
Results 11 - 17 of 17 for GetAPIGroup (0.12 sec)
-
staging/src/k8s.io/apiserver/pkg/audit/policy/checker.go
if !hasString(r.Namespaces, attrs.GetNamespace()) { // Non-namespaced resources use the empty string. return false } } if len(r.Resources) == 0 { return true } apiGroup := attrs.GetAPIGroup() resource := attrs.GetResource() subresource := attrs.GetSubresource() combinedResource := resource // If subresource, the resource in the policy must match "(resource)/(subresource)" if subresource != "" {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Nov 02 22:24:14 UTC 2022 - 6.1K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/plugin/pkg/authorizer/webhook/webhook.go
} } if attr.IsResourceRequest() { r.Spec.ResourceAttributes = &authorizationv1.ResourceAttributes{ Namespace: attr.GetNamespace(), Verb: attr.GetVerb(), Group: attr.GetAPIGroup(), Version: attr.GetAPIVersion(), Resource: attr.GetResource(), Subresource: attr.GetSubresource(), Name: attr.GetName(), } } else {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Mar 04 19:01:15 UTC 2024 - 18.4K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/audit/request.go
Namespace: attribs.GetNamespace(), Name: attribs.GetName(), Resource: attribs.GetResource(), Subresource: attribs.GetSubresource(), APIGroup: attribs.GetAPIGroup(), APIVersion: attribs.GetAPIVersion(), } } } // LogImpersonatedUser fills in the impersonated user attributes into an audit event. func LogImpersonatedUser(ae *auditinternal.Event, user user.Info) {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Jul 03 16:16:51 UTC 2023 - 9K bytes - Viewed (0) -
pkg/auth/authorizer/abac/abac.go
if a.IsResourceRequest() { if p.Spec.Namespace == "*" || p.Spec.Namespace == a.GetNamespace() { if p.Spec.Resource == "*" || p.Spec.Resource == a.GetResource() { if p.Spec.APIGroup == "*" || p.Spec.APIGroup == a.GetAPIGroup() { return true } } } } return false } // Authorize implements authorizer.Authorize
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Oct 11 03:11:30 UTC 2021 - 7.4K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/endpoints/handlers/update.go
return errors.NewInternalError(authorizerErr) } // The user is not authorized to perform this action, so we need to build the error response gr := schema.GroupResource{ Group: attributes.GetAPIGroup(), Resource: attributes.GetResource(), } name := attributes.GetName() err := fmt.Errorf("%v", authorizerReason) return errors.NewForbidden(gr, name, err) } }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon May 01 20:19:46 UTC 2023 - 11.5K bytes - Viewed (0) -
plugin/pkg/auth/authorizer/node/node_authorizer.go
} // subdivide access to specific resources if attrs.IsResourceRequest() { requestResource := schema.GroupResource{Group: attrs.GetAPIGroup(), Resource: attrs.GetResource()} switch requestResource { case secretResource: return r.authorizeReadNamespacedObject(nodeName, secretVertexType, attrs) case configMapResource:
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Mar 07 21:22:55 UTC 2024 - 16K bytes - Viewed (0) -
plugin/pkg/auth/authorizer/rbac/rbac_test.go
func (d *defaultAttributes) GetSubresource() string { return d.subresource } func (d *defaultAttributes) GetName() string { return "" } func (d *defaultAttributes) GetAPIGroup() string { return d.apiGroup } func (d *defaultAttributes) GetAPIVersion() string { return "" } func (d *defaultAttributes) IsResourceRequest() bool { return true }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Sep 24 15:14:54 UTC 2019 - 21.1K bytes - Viewed (0)