package clusterauthenticationtrust

kubernetes – k8s.io/kubernetes/pkg/controlplane/controller/clusterauthenticationtrust Index | Files

import "k8s.io/kubernetes/pkg/controlplane/controller/clusterauthenticationtrust"

Index ¶

type ClusterAuthenticationInfo
type Controller

func NewClusterAuthenticationTrustController(requiredAuthenticationData ClusterAuthenticationInfo, kubeClient kubernetes.Interface) *Controller
func (c *Controller) Enqueue()
func (c *Controller) Run(ctx context.Context, workers int)

Types ¶

type ClusterAuthenticationInfo ¶

type ClusterAuthenticationInfo struct {
	// ClientCA is the CA that can be used to verify the identity of normal clients
	ClientCA dynamiccertificates.CAContentProvider

	// RequestHeaderUsernameHeaders are the headers used by this kube-apiserver to determine username
	RequestHeaderUsernameHeaders headerrequest.StringSliceProvider
	// RequestHeaderGroupHeaders are the headers used by this kube-apiserver to determine groups
	RequestHeaderGroupHeaders headerrequest.StringSliceProvider
	// RequestHeaderExtraHeaderPrefixes are the headers used by this kube-apiserver to determine user.extra
	RequestHeaderExtraHeaderPrefixes headerrequest.StringSliceProvider
	// RequestHeaderAllowedNames are the sujbects allowed to act as a front proxy
	RequestHeaderAllowedNames headerrequest.StringSliceProvider
	// RequestHeaderCA is the CA that can be used to verify the front proxy
	RequestHeaderCA dynamiccertificates.CAContentProvider
}

ClusterAuthenticationInfo holds the information that will included in public configmap.

type Controller ¶

type Controller struct {
	// contains filtered or unexported fields
}

Controller holds the running state for the controller

func NewClusterAuthenticationTrustController ¶

func NewClusterAuthenticationTrustController(requiredAuthenticationData ClusterAuthenticationInfo, kubeClient kubernetes.Interface) *Controller

NewClusterAuthenticationTrustController returns a controller that will maintain the kube-system configmap/extension-apiserver-authentication that holds information about how to aggregated apiservers are recommended (but not required) to configure themselves.

func (*Controller) Enqueue ¶

func (c *Controller) Enqueue()

Enqueue a method to allow separate control loops to cause the controller to trigger and reconcile content.

func (*Controller) Run ¶

func (c *Controller) Run(ctx context.Context, workers int)

Run the controller until stopped.

Source Files ¶

cluster_authentication_trust_controller.go

Version: v1.26.12
Published: Dec 19, 2023
Platform: js/wasm
Imports: 26 packages
Last checked: 4 minutes ago –

Tools for package owners.

?	: This menu
/	: Search site
f	: Jump to identifier
g then g	: Go to top of page
g then b	: Go to end of page
G	: Go to end of page
g then i	: Go to index
g then e	: Go to examples