123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111 |
- /*
- Copyright 2017 The Kubernetes Authors.
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
- http://www.apache.org/licenses/LICENSE-2.0
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
- */
- package reconciliation
- import (
- "context"
- rbacv1 "k8s.io/api/rbac/v1"
- metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
- "k8s.io/apimachinery/pkg/runtime"
- corev1client "k8s.io/client-go/kubernetes/typed/core/v1"
- rbacv1client "k8s.io/client-go/kubernetes/typed/rbac/v1"
- )
- // +k8s:deepcopy-gen=true
- // +k8s:deepcopy-gen:interfaces=k8s.io/kubernetes/pkg/registry/rbac/reconciliation.RuleOwner
- // +k8s:deepcopy-gen:nonpointer-interfaces=true
- type RoleRuleOwner struct {
- Role *rbacv1.Role
- }
- func (o RoleRuleOwner) GetObject() runtime.Object {
- return o.Role
- }
- func (o RoleRuleOwner) GetNamespace() string {
- return o.Role.Namespace
- }
- func (o RoleRuleOwner) GetName() string {
- return o.Role.Name
- }
- func (o RoleRuleOwner) GetLabels() map[string]string {
- return o.Role.Labels
- }
- func (o RoleRuleOwner) SetLabels(in map[string]string) {
- o.Role.Labels = in
- }
- func (o RoleRuleOwner) GetAnnotations() map[string]string {
- return o.Role.Annotations
- }
- func (o RoleRuleOwner) SetAnnotations(in map[string]string) {
- o.Role.Annotations = in
- }
- func (o RoleRuleOwner) GetRules() []rbacv1.PolicyRule {
- return o.Role.Rules
- }
- func (o RoleRuleOwner) SetRules(in []rbacv1.PolicyRule) {
- o.Role.Rules = in
- }
- func (o RoleRuleOwner) GetAggregationRule() *rbacv1.AggregationRule {
- return nil
- }
- func (o RoleRuleOwner) SetAggregationRule(in *rbacv1.AggregationRule) {
- }
- type RoleModifier struct {
- Client rbacv1client.RolesGetter
- NamespaceClient corev1client.NamespaceInterface
- }
- func (c RoleModifier) Get(namespace, name string) (RuleOwner, error) {
- ret, err := c.Client.Roles(namespace).Get(context.TODO(), name, metav1.GetOptions{})
- if err != nil {
- return nil, err
- }
- return RoleRuleOwner{Role: ret}, err
- }
- func (c RoleModifier) Create(in RuleOwner) (RuleOwner, error) {
- if err := tryEnsureNamespace(c.NamespaceClient, in.GetNamespace()); err != nil {
- return nil, err
- }
- ret, err := c.Client.Roles(in.GetNamespace()).Create(context.TODO(), in.(RoleRuleOwner).Role, metav1.CreateOptions{})
- if err != nil {
- return nil, err
- }
- return RoleRuleOwner{Role: ret}, err
- }
- func (c RoleModifier) Update(in RuleOwner) (RuleOwner, error) {
- ret, err := c.Client.Roles(in.GetNamespace()).Update(context.TODO(), in.(RoleRuleOwner).Role, metav1.UpdateOptions{})
- if err != nil {
- return nil, err
- }
- return RoleRuleOwner{Role: ret}, err
- }
|