package abac
import "k8s.io/kubernetes/pkg/auth/authorizer/abac"
Package abac authorizes Kubernetes API actions using an Attribute-based access control scheme.
Index ¶
- type PolicyList
- func NewFromFile(path string) (PolicyList, error)
- func (pl PolicyList) Authorize(ctx context.Context, a authorizer.Attributes) (authorizer.Decision, string, error)
- func (pl PolicyList) RulesFor(ctx context.Context, user user.Info, namespace string) ([]authorizer.ResourceRuleInfo, []authorizer.NonResourceRuleInfo, bool, error)
Types ¶
type PolicyList ¶
PolicyList is simply a slice of Policy structs.
func NewFromFile ¶
func NewFromFile(path string) (PolicyList, error)
NewFromFile attempts to create a policy list from the given file.
TODO: Have policies be created via an API call and stored in REST storage.
func (PolicyList) Authorize ¶
func (pl PolicyList) Authorize(ctx context.Context, a authorizer.Attributes) (authorizer.Decision, string, error)
Authorize implements authorizer.Authorize
func (PolicyList) RulesFor ¶
func (pl PolicyList) RulesFor(ctx context.Context, user user.Info, namespace string) ([]authorizer.ResourceRuleInfo, []authorizer.NonResourceRuleInfo, bool, error)
RulesFor returns rules for the given user and namespace.
Source Files ¶
abac.go
- Version
- v1.33.1 (latest)
- Published
- May 15, 2025
- Platform
- linux/amd64
- Imports
- 12 packages
- Last checked
- 23 hours ago –
Tools for package owners.