Zaloguj się
golang
/
flannel
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: e6edfac9cb
Gałęzie Tagi
flannel
/
vendor
/
k8s.io
/
kubernetes
/
pkg
/
registry
/
podsecuritypolicy
/
strategy.go

strategy.go 2.9 KB
Historia Czysty

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. /*
    2. 

  2. Copyright 2015 The Kubernetes Authors.
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package podsecuritypolicy
    18. 

  18. 

  19. import (
    20. 

  20. 	"fmt"
    21. 

  21. 

  22. 	"k8s.io/kubernetes/pkg/api"
    23. 

  23. 	"k8s.io/kubernetes/pkg/api/rest"
    24. 

  24. 	"k8s.io/kubernetes/pkg/apis/extensions"
    25. 

  25. 	"k8s.io/kubernetes/pkg/apis/extensions/validation"
    26. 

  26. 	"k8s.io/kubernetes/pkg/fields"
    27. 

  27. 	"k8s.io/kubernetes/pkg/labels"
    28. 

  28. 	"k8s.io/kubernetes/pkg/registry/generic"
    29. 

  29. 	"k8s.io/kubernetes/pkg/runtime"
    30. 

  30. 	"k8s.io/kubernetes/pkg/util/validation/field"
    31. 

  31. )
    32. 

  32. 

  33. // strategy implements behavior for PodSecurityPolicy objects
    34. 

  34. type strategy struct {
    35. 

  35. 	runtime.ObjectTyper
    36. 

  36. 	api.NameGenerator
    37. 

  37. }
    38. 

  38. 

  39. // Strategy is the default logic that applies when creating and updating PodSecurityPolicy
    40. 

  40. // objects via the REST API.
    41. 

  41. var Strategy = strategy{api.Scheme, api.SimpleNameGenerator}
    42. 

  42. 

  43. var _ = rest.RESTCreateStrategy(Strategy)
    44. 

  44. 

  45. var _ = rest.RESTUpdateStrategy(Strategy)
    46. 

  46. 

  47. func (strategy) NamespaceScoped() bool {
    48. 

  48. 	return false
    49. 

  49. }
    50. 

  50. 

  51. func (strategy) AllowCreateOnUpdate() bool {
    52. 

  52. 	return false
    53. 

  53. }
    54. 

  54. 

  55. func (strategy) AllowUnconditionalUpdate() bool {
    56. 

  56. 	return true
    57. 

  57. }
    58. 

  58. 

  59. func (strategy) PrepareForCreate(ctx api.Context, obj runtime.Object) {
    60. 

  60. }
    61. 

  61. 

  62. func (strategy) PrepareForUpdate(ctx api.Context, obj, old runtime.Object) {
    63. 

  63. }
    64. 

  64. 

  65. func (strategy) Canonicalize(obj runtime.Object) {
    66. 

  66. }
    67. 

  67. 

  68. func (strategy) Validate(ctx api.Context, obj runtime.Object) field.ErrorList {
    69. 

  69. 	return validation.ValidatePodSecurityPolicy(obj.(*extensions.PodSecurityPolicy))
    70. 

  70. }
    71. 

  71. 

  72. func (strategy) ValidateUpdate(ctx api.Context, obj, old runtime.Object) field.ErrorList {
    73. 

  73. 	return validation.ValidatePodSecurityPolicyUpdate(old.(*extensions.PodSecurityPolicy), obj.(*extensions.PodSecurityPolicy))
    74. 

  74. }
    75. 

  75. 

  76. // Matcher returns a generic matcher for a given label and field selector.
    77. 

  77. func MatchPodSecurityPolicy(label labels.Selector, field fields.Selector) *generic.SelectionPredicate {
    78. 

  78. 	return &generic.SelectionPredicate{
    79. 

  79. 		Label: label,
    80. 

  80. 		Field: field,
    81. 

  81. 		GetAttrs: func(obj runtime.Object) (labels.Set, fields.Set, error) {
    82. 

  82. 			psp, ok := obj.(*extensions.PodSecurityPolicy)
    83. 

  83. 			if !ok {
    84. 

  84. 				return nil, nil, fmt.Errorf("given object is not a pod security policy.")
    85. 

  85. 			}
    86. 

  86. 			return labels.Set(psp.ObjectMeta.Labels), PodSecurityPolicyToSelectableFields(psp), nil
    87. 

  87. 		},
    88. 

  88. 	}
    89. 

  89. }
    90. 

  90. 

  91. // PodSecurityPolicyToSelectableFields returns a label set that represents the object
    92. 

  92. func PodSecurityPolicyToSelectableFields(obj *extensions.PodSecurityPolicy) fields.Set {
    93. 

  93. 	return generic.ObjectMetaFieldsSet(&obj.ObjectMeta, false)
    94. 

  94. }
    95.