[][src]Module openshift_openapi::api::authorization::v1

Structs

ClusterRole

ClusterRole is a logical grouping of PolicyRules that can be referenced as a unit by ClusterRoleBindings.

ClusterRoleBinding

ClusterRoleBinding references a ClusterRole, but not contain it. It can reference any ClusterRole in the same namespace or in the global namespace. It adds who information via (Users and Groups) OR Subjects and namespace information by which namespace it exists in. ClusterRoleBindings in a given namespace only have effect in that namespace (excepting the master namespace which has power in all namespaces).

GroupRestriction

GroupRestriction matches a group either by a string match on the group name or a label selector applied to group labels.

LocalResourceAccessReview

LocalResourceAccessReview is a means to request a list of which users and groups are authorized to perform the action specified by spec in a particular namespace

LocalSubjectAccessReview

LocalSubjectAccessReview is an object for requesting information about whether a user or group can perform an action in a particular namespace

PolicyRule

PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.

ReadClusterRoleBindingOptional

Optional parameters of ClusterRoleBinding::read_cluster_role_binding

ReadClusterRoleOptional

Optional parameters of ClusterRole::read_cluster_role

ReadNamespacedRoleBindingOptional

Optional parameters of RoleBinding::read_namespaced_role_binding

ReadNamespacedRoleBindingRestrictionOptional

Optional parameters of RoleBindingRestriction::read_namespaced_role_binding_restriction

ReadNamespacedRoleOptional

Optional parameters of Role::read_namespaced_role

ResourceAccessReview

ResourceAccessReview is a means to request a list of which users and groups are authorized to perform the action specified by spec

Role

Role is a logical grouping of PolicyRules that can be referenced as a unit by RoleBindings.

RoleBinding

RoleBinding references a Role, but not contain it. It can reference any Role in the same namespace or in the global namespace. It adds who information via (Users and Groups) OR Subjects and namespace information by which namespace it exists in. RoleBindings in a given namespace only have effect in that namespace (excepting the master namespace which has power in all namespaces).

RoleBindingRestriction

RoleBindingRestriction is an object that can be matched against a subject (user, group, or service account) to determine whether rolebindings on that subject are allowed in the namespace to which the RoleBindingRestriction belongs. If any one of those RoleBindingRestriction objects matches a subject, rolebindings on that subject in the namespace are allowed.

RoleBindingRestrictionSpec

RoleBindingRestrictionSpec defines a rolebinding restriction. Exactly one field must be non-nil.

SelfSubjectRulesReview

SelfSubjectRulesReview is a resource you can create to determine which actions you can perform in a namespace

SelfSubjectRulesReviewSpec

SelfSubjectRulesReviewSpec adds information about how to conduct the check

ServiceAccountReference

ServiceAccountReference specifies a service account and namespace by their names.

ServiceAccountRestriction

ServiceAccountRestriction matches a service account by a string match on either the service-account name or the name of the service account's namespace.

SubjectAccessReview

SubjectAccessReview is an object for requesting information about whether a user or group can perform an action

SubjectRulesReview

SubjectRulesReview is a resource you can create to determine which actions another user can perform in a namespace

SubjectRulesReviewSpec

SubjectRulesReviewSpec adds information about how to conduct the check

SubjectRulesReviewStatus

SubjectRulesReviewStatus is contains the result of a rules check

UserRestriction

UserRestriction matches a user either by a string match on the user name, a string match on the name of a group to which the user belongs, or a label selector applied to the user labels.

Enums

ReadClusterRoleBindingResponse

Use <ReadClusterRoleBindingResponse as Response>::try_from_parts to parse the HTTP response body of ClusterRoleBinding::read_cluster_role_binding

ReadClusterRoleResponse

Use <ReadClusterRoleResponse as Response>::try_from_parts to parse the HTTP response body of ClusterRole::read_cluster_role

ReadNamespacedRoleBindingResponse

Use <ReadNamespacedRoleBindingResponse as Response>::try_from_parts to parse the HTTP response body of RoleBinding::read_namespaced_role_binding

ReadNamespacedRoleBindingRestrictionResponse

Use <ReadNamespacedRoleBindingRestrictionResponse as Response>::try_from_parts to parse the HTTP response body of RoleBindingRestriction::read_namespaced_role_binding_restriction

ReadNamespacedRoleResponse

Use <ReadNamespacedRoleResponse as Response>::try_from_parts to parse the HTTP response body of Role::read_namespaced_role