feat: kubesphere 4.0 (#6115)
* feat: kubesphere 4.0 Signed-off-by: ci-bot <ci-bot@kubesphere.io> * feat: kubesphere 4.0 Signed-off-by: ci-bot <ci-bot@kubesphere.io> --------- Signed-off-by: ci-bot <ci-bot@kubesphere.io> Co-authored-by: ks-ci-bot <ks-ci-bot@example.com> Co-authored-by: joyceliu <joyceliu@yunify.com>
This commit is contained in:
KubeSphere CI Bot
committed by
GitHub
GitHub
parent
b5015ec7b9
commit
447a51f08b
84
pkg/componenthelper/auth/rbac/role_interfaces.go
Normal file
84
pkg/componenthelper/auth/rbac/role_interfaces.go
Normal file
@@ -0,0 +1,84 @@
|
||||
/*
|
||||
* Please refer to the LICENSE file in the root directory of the project.
|
||||
* https://github.com/kubesphere/kubesphere/blob/master/LICENSE
|
||||
*/
|
||||
|
||||
package rbac
|
||||
|
||||
import (
|
||||
rbacv1 "k8s.io/api/rbac/v1"
|
||||
"k8s.io/apimachinery/pkg/runtime"
|
||||
iamv1beta1 "kubesphere.io/api/iam/v1beta1"
|
||||
)
|
||||
|
||||
type RoleRuleOwner struct {
|
||||
Role *iamv1beta1.Role
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetRuleOwnerScope() string {
|
||||
return iamv1beta1.ScopeNamespace
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetObject() runtime.Object {
|
||||
return r.Role
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetNamespace() string {
|
||||
return r.Role.Namespace
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetName() string {
|
||||
return r.Role.Name
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetLabels() map[string]string {
|
||||
return r.Role.Labels
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) SetLabels(m map[string]string) {
|
||||
r.Role.Labels = m
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetAnnotations() map[string]string {
|
||||
return r.Role.Annotations
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) SetAnnotations(m map[string]string) {
|
||||
r.Role.Annotations = m
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetRules() []rbacv1.PolicyRule {
|
||||
return r.Role.Rules
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) SetRules(rules []rbacv1.PolicyRule) {
|
||||
r.Role.Rules = rules
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetAggregationRule() *iamv1beta1.AggregationRoleTemplates {
|
||||
return r.Role.AggregationRoleTemplates
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) SetAggregationRule(i *iamv1beta1.AggregationRoleTemplates) {
|
||||
r.Role.AggregationRoleTemplates = i
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) GetRegoPolicy() string {
|
||||
if r.Role.ObjectMeta.Annotations != nil {
|
||||
return r.Role.ObjectMeta.Annotations[iamv1beta1.RegoOverrideAnnotation]
|
||||
}
|
||||
return ""
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) SetRegoPolicy(rego string) {
|
||||
if r.Role.ObjectMeta.Annotations == nil {
|
||||
r.Role.ObjectMeta.Annotations = make(map[string]string)
|
||||
}
|
||||
r.Role.ObjectMeta.Annotations[iamv1beta1.RegoOverrideAnnotation] = rego
|
||||
}
|
||||
|
||||
func (r RoleRuleOwner) DeepCopyRuleOwner() RuleOwner {
|
||||
return RoleRuleOwner{Role: r.Role.DeepCopy()}
|
||||
}
|
||||
|
||||
var _ RuleOwner = RoleRuleOwner{}
|
||||
Reference in New Issue
Block a user