package abac
import "k8s.io/kubernetes/pkg/auth/authorizer/abac"
Package abac authorizes Kubernetes API actions using an Attribute-based access control scheme.
Index ¶
- type PolicyList
- func NewFromFile(path string) (PolicyList, error)
- func (pl PolicyList) Authorize(ctx context.Context, a authorizer.Attributes) (authorizer.Decision, string, error)
- func (pl PolicyList) RulesFor(ctx context.Context, user user.Info, namespace string) ([]authorizer.ResourceRuleInfo, []authorizer.NonResourceRuleInfo, bool, error)
Types ¶
type PolicyList ¶
PolicyList is simply a slice of Policy structs.
func NewFromFile ¶
func NewFromFile(path string) (PolicyList, error)
NewFromFile attempts to create a policy list from the given file.
TODO: Have policies be created via an API call and stored in REST storage.
func (PolicyList) Authorize ¶
func (pl PolicyList) Authorize(ctx context.Context, a authorizer.Attributes) (authorizer.Decision, string, error)
Authorize implements authorizer.Authorize
func (PolicyList) RulesFor ¶
func (pl PolicyList) RulesFor(ctx context.Context, user user.Info, namespace string) ([]authorizer.ResourceRuleInfo, []authorizer.NonResourceRuleInfo, bool, error)
RulesFor returns rules for the given user and namespace.
Source Files ¶
abac.go
- Version
- v1.33.2 (latest)
- Published
- Jun 17, 2025
- Platform
- js/wasm
- Imports
- 12 packages
- Last checked
- 1 hour ago –
Tools for package owners.