From ac369c30420dbcab8f4eafbdb964b784b1bf2e5c Mon Sep 17 00:00:00 2001 From: Taahir Ahmed Date: Fri, 21 Oct 2022 19:50:01 -0700 Subject: [PATCH] Define ClusterTrustBundlePEM projected volume This commit defines the ClusterTrustBundlePEM projected volume types. These types have been renamed from the KEP (PEMTrustAnchors) in order to leave open the possibility of a similar projection drawing from a yet-to-exist namespaced-scoped TrustBundle object, which came up during KEP discussion. * Add the projection field to internal and v1 APIs. * Add validation to ensure that usages of the project must specify a name and path. * Add TODO covering admission control to forbid mirror pods from using the projection. Part of KEP-3257. Kubernetes-commit: ecfdc8fda55923c18708488ec1561a4fcf9f3e33 --- .../v1/clustertrustbundlepemprojection.go | 48 +++++++++++++++++++ 1 file changed, 48 insertions(+) create mode 100644 applyconfigurations/core/v1/clustertrustbundlepemprojection.go diff --git a/applyconfigurations/core/v1/clustertrustbundlepemprojection.go b/applyconfigurations/core/v1/clustertrustbundlepemprojection.go new file mode 100644 index 0000000000..d9f7d5b401 --- /dev/null +++ b/applyconfigurations/core/v1/clustertrustbundlepemprojection.go @@ -0,0 +1,48 @@ +/* +Copyright The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Code generated by applyconfiguration-gen. DO NOT EDIT. + +package v1 + +// ClusterTrustBundlePEMProjectionApplyConfiguration represents an declarative configuration of the ClusterTrustBundlePEMProjection type for use +// with apply. +type ClusterTrustBundlePEMProjectionApplyConfiguration struct { + Name *string `json:"name,omitempty"` + Path *string `json:"path,omitempty"` +} + +// ClusterTrustBundlePEMProjectionApplyConfiguration constructs an declarative configuration of the ClusterTrustBundlePEMProjection type for use with +// apply. +func ClusterTrustBundlePEMProjection() *ClusterTrustBundlePEMProjectionApplyConfiguration { + return &ClusterTrustBundlePEMProjectionApplyConfiguration{} +} + +// WithName sets the Name field in the declarative configuration to the given value +// and returns the receiver, so that objects can be built by chaining "With" function invocations. +// If called multiple times, the Name field is set to the value of the last call. +func (b *ClusterTrustBundlePEMProjectionApplyConfiguration) WithName(value string) *ClusterTrustBundlePEMProjectionApplyConfiguration { + b.Name = &value + return b +} + +// WithPath sets the Path field in the declarative configuration to the given value +// and returns the receiver, so that objects can be built by chaining "With" function invocations. +// If called multiple times, the Path field is set to the value of the last call. +func (b *ClusterTrustBundlePEMProjectionApplyConfiguration) WithPath(value string) *ClusterTrustBundlePEMProjectionApplyConfiguration { + b.Path = &value + return b +}