Documentation ¶
Index ¶
- Constants
- func Agent(clx *cli.Context, cfg Config) error
- func ClusterRoleBindingName(r *rbacv1helpers.ClusterRoleBindingBuilder, name string) *rbacv1helpers.ClusterRoleBindingBuilder
- func ClusterRoleBindingNamespacedUsers(r *rbacv1helpers.ClusterRoleBindingBuilder, namespace string, users ...string) *rbacv1helpers.ClusterRoleBindingBuilder
- func ForceRestartFile(dataDir string) string
- func RoleBindingName(r *rbacv1helpers.RoleBindingBuilder, name string) *rbacv1helpers.RoleBindingBuilder
- func RoleBindingNamespacedUsers(r *rbacv1helpers.RoleBindingBuilder, namespace string, users ...string) *rbacv1helpers.RoleBindingBuilder
- func Server(clx *cli.Context, cfg Config) error
- type Config
- type ExtraEnv
- type ExtraMounts
Constants ¶
const ( CISProfile123 = "cis-1.23" KubeAPIServer = "kube-apiserver" KubeScheduler = "kube-scheduler" KubeControllerManager = "kube-controller-manager" KubeProxy = "kube-proxy" Etcd = "etcd" CloudControllerManager = "cloud-controller-manager" )
Valid CIS Profile versions
const ( CPURequest = "cpu-request" CPULimit = "cpu-limit" MemoryRequest = "memory-request" MemoryLimit = "memory-limit" Readiness = "readiness" Liveness = "liveness" Startup = "startup" InitialDelaySeconds = "initial-delay-seconds" TimeoutSeconds = "timeout-seconds" FailureThreshold = "failure-threshold" PeriodSeconds = "period-seconds" )
Variables ¶
This section is empty.
Functions ¶
func ClusterRoleBindingName ¶
func ClusterRoleBindingName(r *rbacv1helpers.ClusterRoleBindingBuilder, name string) *rbacv1helpers.ClusterRoleBindingBuilder
ClusterRoleBindingName sets the name on a ClusterRoleBindingBuilder's policy. The ClusterRoleBindingBuilder sets the ClusterRoleBinding name to the same as ClusterRole it's binding to without providing any way to override it.
func ClusterRoleBindingNamespacedUsers ¶
func ClusterRoleBindingNamespacedUsers(r *rbacv1helpers.ClusterRoleBindingBuilder, namespace string, users ...string) *rbacv1helpers.ClusterRoleBindingBuilder
ClusterRoleBindingNamespacedUsers adds namespaced users to a ClusterRoleBindingBuilder's Subjects list. For some reason the core helpers don't have any methods for adding namespaced users, only namespaced service accounts.
func ForceRestartFile ¶
func RoleBindingName ¶
func RoleBindingName(r *rbacv1helpers.RoleBindingBuilder, name string) *rbacv1helpers.RoleBindingBuilder
RoleBindingName sets the name on a RoleBindingBuilder's policy. The ClusterRoleBindingBuilder sets the ClusterRoleBinding name to the same as ClusterRole it's binding to without providing any way to override it.
func RoleBindingNamespacedUsers ¶
func RoleBindingNamespacedUsers(r *rbacv1helpers.RoleBindingBuilder, namespace string, users ...string) *rbacv1helpers.RoleBindingBuilder
RoleBindingNamespacedUsers adds namespaced users to a RoleBindingBuilder's Subjects list. For some reason the core helpers don't have any methods for adding namespaced users, only namespaced service accounts.
Types ¶
type Config ¶
type Config struct { AuditPolicyFile string PodSecurityAdmissionConfigFile string CloudProviderConfig string CloudProviderName string Images images.ImageOverrideConfig KubeletPath string ControlPlaneResourceRequests cli.StringSlice ControlPlaneResourceLimits cli.StringSlice ControlPlaneProbeConf cli.StringSlice ExtraMounts ExtraMounts ExtraEnv ExtraEnv }
type ExtraEnv ¶
type ExtraEnv struct { KubeAPIServer cli.StringSlice KubeScheduler cli.StringSlice KubeControllerManager cli.StringSlice KubeProxy cli.StringSlice Etcd cli.StringSlice CloudControllerManager cli.StringSlice }
type ExtraMounts ¶
type ExtraMounts struct { KubeAPIServer cli.StringSlice KubeScheduler cli.StringSlice KubeControllerManager cli.StringSlice KubeProxy cli.StringSlice Etcd cli.StringSlice CloudControllerManager cli.StringSlice }