From 2f642ebc9edac8afd1755a32942977e71d8f770f Mon Sep 17 00:00:00 2001 From: deads2k Date: Tue, 23 Aug 2016 15:18:32 -0400 Subject: [PATCH] generated --- .../authorization.k8s.io_v1beta1.json | 133 +++++++++++++++--- .../unversioned/authorization_client.go | 5 + .../fake/fake_authorization_client.go | 4 + .../fake/fake_selfsubjectaccessreview.go | 22 +++ .../unversioned/selfsubjectaccessreview.go | 40 ++++++ .../v1beta1/authorization_client.go | 5 + .../v1beta1/fake/fake_authorization_client.go | 4 + .../fake/fake_selfsubjectaccessreview.go | 22 +++ .../v1beta1/selfsubjectaccessreview.go | 40 ++++++ 9 files changed, 252 insertions(+), 23 deletions(-) create mode 100644 pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_selfsubjectaccessreview.go create mode 100644 pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/selfsubjectaccessreview.go create mode 100644 pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_selfsubjectaccessreview.go create mode 100644 pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/selfsubjectaccessreview.go diff --git a/api/swagger-spec/authorization.k8s.io_v1beta1.json b/api/swagger-spec/authorization.k8s.io_v1beta1.json index 4116f3e0937..eb539d24548 100644 --- a/api/swagger-spec/authorization.k8s.io_v1beta1.json +++ b/api/swagger-spec/authorization.k8s.io_v1beta1.json @@ -8,6 +8,51 @@ "description": "" }, "apis": [ + { + "path": "/apis/authorization.k8s.io/v1beta1/selfsubjectaccessreviews", + "description": "API at /apis/authorization.k8s.io/v1beta1", + "operations": [ + { + "type": "v1beta1.SelfSubjectAccessReview", + "method": "POST", + "summary": "create a SelfSubjectAccessReview", + "nickname": "createSelfSubjectAccessReview", + "parameters": [ + { + "type": "string", + "paramType": "query", + "name": "pretty", + "description": "If 'true', then the output is pretty printed.", + "required": false, + "allowMultiple": false + }, + { + "type": "v1beta1.SelfSubjectAccessReview", + "paramType": "body", + "name": "body", + "description": "", + "required": true, + "allowMultiple": false + } + ], + "responseMessages": [ + { + "code": 200, + "message": "OK", + "responseModel": "v1beta1.SelfSubjectAccessReview" + } + ], + "produces": [ + "application/json", + "application/yaml", + "application/vnd.kubernetes.protobuf" + ], + "consumes": [ + "*/*" + ] + } + ] + }, { "path": "/apis/authorization.k8s.io/v1beta1/subjectaccessreviews", "description": "API at /apis/authorization.k8s.io/v1beta1", @@ -78,9 +123,9 @@ } ], "models": { - "v1beta1.SubjectAccessReview": { - "id": "v1beta1.SubjectAccessReview", - "description": "SubjectAccessReview checks whether or not a user or group can perform an action.", + "v1beta1.SelfSubjectAccessReview": { + "id": "v1beta1.SelfSubjectAccessReview", + "description": "SelfSubjectAccessReview checks whether or the current user can perform an action. Not filling in a spec.namespace means \"in all namespaces\". Self is a special case, because users should always be able to check whether they can perform an action", "required": [ "spec" ], @@ -97,8 +142,8 @@ "$ref": "v1.ObjectMeta" }, "spec": { - "$ref": "v1beta1.SubjectAccessReviewSpec", - "description": "Spec holds information about the request being evaluated" + "$ref": "v1beta1.SelfSubjectAccessReviewSpec", + "description": "Spec holds information about the request being evaluated. user and groups must be empty" }, "status": { "$ref": "v1beta1.SubjectAccessReviewStatus", @@ -214,9 +259,9 @@ } } }, - "v1beta1.SubjectAccessReviewSpec": { - "id": "v1beta1.SubjectAccessReviewSpec", - "description": "SubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set", + "v1beta1.SelfSubjectAccessReviewSpec": { + "id": "v1beta1.SelfSubjectAccessReviewSpec", + "description": "SelfSubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set", "properties": { "resourceAttributes": { "$ref": "v1beta1.ResourceAttributes", @@ -225,21 +270,6 @@ "nonResourceAttributes": { "$ref": "v1beta1.NonResourceAttributes", "description": "NonResourceAttributes describes information for a non-resource access request" - }, - "user": { - "type": "string", - "description": "User is the user you're testing for. If you specify \"User\" but not \"Group\", then is it interpreted as \"What if User were not a member of any groups" - }, - "group": { - "type": "array", - "items": { - "type": "string" - }, - "description": "Groups is the groups you're testing for." - }, - "extra": { - "type": "object", - "description": "Extra corresponds to the user.Info.GetExtra() method from the authenticator. Since that is input to the authorizer it needs a reflection here." } } }, @@ -312,6 +342,63 @@ } } }, + "v1beta1.SubjectAccessReview": { + "id": "v1beta1.SubjectAccessReview", + "description": "SubjectAccessReview checks whether or not a user or group can perform an action.", + "required": [ + "spec" + ], + "properties": { + "kind": { + "type": "string", + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: http://releases.k8s.io/HEAD/docs/devel/api-conventions.md#types-kinds" + }, + "apiVersion": { + "type": "string", + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: http://releases.k8s.io/HEAD/docs/devel/api-conventions.md#resources" + }, + "metadata": { + "$ref": "v1.ObjectMeta" + }, + "spec": { + "$ref": "v1beta1.SubjectAccessReviewSpec", + "description": "Spec holds information about the request being evaluated" + }, + "status": { + "$ref": "v1beta1.SubjectAccessReviewStatus", + "description": "Status is filled in by the server and indicates whether the request is allowed or not" + } + } + }, + "v1beta1.SubjectAccessReviewSpec": { + "id": "v1beta1.SubjectAccessReviewSpec", + "description": "SubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set", + "properties": { + "resourceAttributes": { + "$ref": "v1beta1.ResourceAttributes", + "description": "ResourceAuthorizationAttributes describes information for a resource access request" + }, + "nonResourceAttributes": { + "$ref": "v1beta1.NonResourceAttributes", + "description": "NonResourceAttributes describes information for a non-resource access request" + }, + "user": { + "type": "string", + "description": "User is the user you're testing for. If you specify \"User\" but not \"Group\", then is it interpreted as \"What if User were not a member of any groups" + }, + "group": { + "type": "array", + "items": { + "type": "string" + }, + "description": "Groups is the groups you're testing for." + }, + "extra": { + "type": "object", + "description": "Extra corresponds to the user.Info.GetExtra() method from the authenticator. Since that is input to the authorizer it needs a reflection here." + } + } + }, "unversioned.APIResourceList": { "id": "unversioned.APIResourceList", "description": "APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.", diff --git a/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/authorization_client.go b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/authorization_client.go index 5b63753ea6d..cb7faf3ac01 100644 --- a/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/authorization_client.go +++ b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/authorization_client.go @@ -24,6 +24,7 @@ import ( type AuthorizationInterface interface { GetRESTClient() *restclient.RESTClient + SelfSubjectAccessReviewsGetter SubjectAccessReviewsGetter } @@ -32,6 +33,10 @@ type AuthorizationClient struct { *restclient.RESTClient } +func (c *AuthorizationClient) SelfSubjectAccessReviews() SelfSubjectAccessReviewInterface { + return newSelfSubjectAccessReviews(c) +} + func (c *AuthorizationClient) SubjectAccessReviews() SubjectAccessReviewInterface { return newSubjectAccessReviews(c) } diff --git a/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_authorization_client.go b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_authorization_client.go index 2151c25baed..b125d121683 100644 --- a/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_authorization_client.go +++ b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_authorization_client.go @@ -26,6 +26,10 @@ type FakeAuthorization struct { *core.Fake } +func (c *FakeAuthorization) SelfSubjectAccessReviews() unversioned.SelfSubjectAccessReviewInterface { + return &FakeSelfSubjectAccessReviews{c} +} + func (c *FakeAuthorization) SubjectAccessReviews() unversioned.SubjectAccessReviewInterface { return &FakeSubjectAccessReviews{c} } diff --git a/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_selfsubjectaccessreview.go b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_selfsubjectaccessreview.go new file mode 100644 index 00000000000..b107c1b2c45 --- /dev/null +++ b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/fake/fake_selfsubjectaccessreview.go @@ -0,0 +1,22 @@ +/* +Copyright 2016 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package fake + +// FakeSelfSubjectAccessReviews implements SelfSubjectAccessReviewInterface +type FakeSelfSubjectAccessReviews struct { + Fake *FakeAuthorization +} diff --git a/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/selfsubjectaccessreview.go b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/selfsubjectaccessreview.go new file mode 100644 index 00000000000..258b9ff9517 --- /dev/null +++ b/pkg/client/clientset_generated/internalclientset/typed/authorization/unversioned/selfsubjectaccessreview.go @@ -0,0 +1,40 @@ +/* +Copyright 2016 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package unversioned + +// SelfSubjectAccessReviewsGetter has a method to return a SelfSubjectAccessReviewInterface. +// A group's client should implement this interface. +type SelfSubjectAccessReviewsGetter interface { + SelfSubjectAccessReviews() SelfSubjectAccessReviewInterface +} + +// SelfSubjectAccessReviewInterface has methods to work with SelfSubjectAccessReview resources. +type SelfSubjectAccessReviewInterface interface { + SelfSubjectAccessReviewExpansion +} + +// selfSubjectAccessReviews implements SelfSubjectAccessReviewInterface +type selfSubjectAccessReviews struct { + client *AuthorizationClient +} + +// newSelfSubjectAccessReviews returns a SelfSubjectAccessReviews +func newSelfSubjectAccessReviews(c *AuthorizationClient) *selfSubjectAccessReviews { + return &selfSubjectAccessReviews{ + client: c, + } +} diff --git a/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/authorization_client.go b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/authorization_client.go index 3e1c216dab8..43c4ddbbf13 100644 --- a/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/authorization_client.go +++ b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/authorization_client.go @@ -25,6 +25,7 @@ import ( type AuthorizationInterface interface { GetRESTClient() *restclient.RESTClient + SelfSubjectAccessReviewsGetter SubjectAccessReviewsGetter } @@ -33,6 +34,10 @@ type AuthorizationClient struct { *restclient.RESTClient } +func (c *AuthorizationClient) SelfSubjectAccessReviews() SelfSubjectAccessReviewInterface { + return newSelfSubjectAccessReviews(c) +} + func (c *AuthorizationClient) SubjectAccessReviews() SubjectAccessReviewInterface { return newSubjectAccessReviews(c) } diff --git a/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_authorization_client.go b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_authorization_client.go index 0933cfe4d83..719b41a083d 100644 --- a/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_authorization_client.go +++ b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_authorization_client.go @@ -26,6 +26,10 @@ type FakeAuthorization struct { *core.Fake } +func (c *FakeAuthorization) SelfSubjectAccessReviews() v1beta1.SelfSubjectAccessReviewInterface { + return &FakeSelfSubjectAccessReviews{c} +} + func (c *FakeAuthorization) SubjectAccessReviews() v1beta1.SubjectAccessReviewInterface { return &FakeSubjectAccessReviews{c} } diff --git a/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_selfsubjectaccessreview.go b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_selfsubjectaccessreview.go new file mode 100644 index 00000000000..b107c1b2c45 --- /dev/null +++ b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/fake/fake_selfsubjectaccessreview.go @@ -0,0 +1,22 @@ +/* +Copyright 2016 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package fake + +// FakeSelfSubjectAccessReviews implements SelfSubjectAccessReviewInterface +type FakeSelfSubjectAccessReviews struct { + Fake *FakeAuthorization +} diff --git a/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/selfsubjectaccessreview.go b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/selfsubjectaccessreview.go new file mode 100644 index 00000000000..7e0fd5fc260 --- /dev/null +++ b/pkg/client/clientset_generated/release_1_4/typed/authorization/v1beta1/selfsubjectaccessreview.go @@ -0,0 +1,40 @@ +/* +Copyright 2016 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package v1beta1 + +// SelfSubjectAccessReviewsGetter has a method to return a SelfSubjectAccessReviewInterface. +// A group's client should implement this interface. +type SelfSubjectAccessReviewsGetter interface { + SelfSubjectAccessReviews() SelfSubjectAccessReviewInterface +} + +// SelfSubjectAccessReviewInterface has methods to work with SelfSubjectAccessReview resources. +type SelfSubjectAccessReviewInterface interface { + SelfSubjectAccessReviewExpansion +} + +// selfSubjectAccessReviews implements SelfSubjectAccessReviewInterface +type selfSubjectAccessReviews struct { + client *AuthorizationClient +} + +// newSelfSubjectAccessReviews returns a SelfSubjectAccessReviews +func newSelfSubjectAccessReviews(c *AuthorizationClient) *selfSubjectAccessReviews { + return &selfSubjectAccessReviews{ + client: c, + } +}