github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-11-21 18:54:41 +00:00
Code Issues Projects Releases Wiki Activity

Validate usage strings when creating bootstrap tokens via kubeadm

Browse Source
This commit is contained in:
wackxu
2017-10-14 20:44:57 +08:00
parent 338ee7f5d5
commit 0e1a74731d
6 changed files with 70 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
pkg/bootstrap/api/helpers.go
View File

@@ -18,7 +18,9 @@ package api
import (
"fmt"
"k8s.io/apimachinery/pkg/util/sets"
"regexp"
"strings"
)
var bootstrapGroupRegexp = regexp.MustCompile(`\A` + BootstrapGroupPattern + `\z`)
@@ -32,3 +34,19 @@ func ValidateBootstrapGroupName(name string) error {
}
return fmt.Errorf("bootstrap group %q is invalid (must match %s)", name, BootstrapGroupPattern)
}
// ValidateUsages validates that the passed in string are valid usage strings for bootstrap tokens.
func ValidateUsages(usages []string) error {
usageAuthentication := strings.TrimPrefix(BootstrapTokenUsageAuthentication, BootstrapTokenUsagePrefix)
usageSigning := strings.TrimPrefix(BootstrapTokenUsageSigningKey, BootstrapTokenUsagePrefix)
invalidUsages := sets.NewString()
for _, usage := range usages {
if usage != usageAuthentication && usage != usageSigning {
invalidUsages.Insert(usage)
}
}
if len(invalidUsages) > 0 {
return fmt.Errorf("invalide bootstrap token usage string: %s, valid usage option: %s, %s", strings.Join(invalidUsages.List(), ","), usageAuthentication, usageSigning)
}
return nil
}