package clusterauthenticationtrust

kubernetes – k8s.io/kubernetes/pkg/master/controller/clusterauthenticationtrust Index | Files

import "k8s.io/kubernetes/pkg/master/controller/clusterauthenticationtrust"

Index ¶

type ClusterAuthenticationInfo
type Controller

func NewClusterAuthenticationTrustController(requiredAuthenticationData ClusterAuthenticationInfo, kubeClient kubernetes.Interface) *Controller
func (c *Controller) Enqueue()
func (c *Controller) Run(threadiness int, stopCh <-chan struct{})

Types ¶

type ClusterAuthenticationInfo ¶

type ClusterAuthenticationInfo struct {
	// ClientCA is the CA that can be used to verify the identity of normal clients
	ClientCA dynamiccertificates.CAContentProvider

	// RequestHeaderUsernameHeaders are the headers used by this kube-apiserver to determine username
	RequestHeaderUsernameHeaders headerrequest.StringSliceProvider
	// RequestHeaderGroupHeaders are the headers used by this kube-apiserver to determine groups
	RequestHeaderGroupHeaders headerrequest.StringSliceProvider
	// RequestHeaderExtraHeaderPrefixes are the headers used by this kube-apiserver to determine user.extra
	RequestHeaderExtraHeaderPrefixes headerrequest.StringSliceProvider
	// RequestHeaderAllowedNames are the sujbects allowed to act as a front proxy
	RequestHeaderAllowedNames headerrequest.StringSliceProvider
	// RequestHeaderCA is the CA that can be used to verify the front proxy
	RequestHeaderCA dynamiccertificates.CAContentProvider
}

ClusterAuthenticationInfo holds the information that will included in public configmap.

type Controller ¶

type Controller struct {
	// contains filtered or unexported fields
}

Controller holds the running state for the controller

func NewClusterAuthenticationTrustController ¶

func NewClusterAuthenticationTrustController(requiredAuthenticationData ClusterAuthenticationInfo, kubeClient kubernetes.Interface) *Controller

NewClusterAuthenticationTrustController returns a controller that will maintain the kube-system configmap/extension-apiserver-authentication that holds information about how to aggregated apiservers are recommended (but not required) to configure themselves.

func (*Controller) Enqueue ¶

func (c *Controller) Enqueue()

Enqueue a method to allow separate control loops to cause the controller to trigger and reconcile content.

func (*Controller) Run ¶

func (c *Controller) Run(threadiness int, stopCh <-chan struct{})

Run the controller until stopped.

Source Files ¶

cluster_authentication_trust_controller.go

Version: v1.18.21-rc.0
Published: Jun 16, 2021
Platform: js/wasm
Imports: 26 packages
Last checked: 2 minutes ago –

Tools for package owners.

?	: This menu
/	: Search site
f	: Jump to identifier
g then g	: Go to top of page
g then b	: Go to end of page
G	: Go to end of page
g then i	: Go to index
g then e	: Go to examples