Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
lcy
/
truenas
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: 52c29991c9
Branche Tagy
truenas
/
library
/
common
/
templates
/
lib
/
rbac
/
_rules.tpl

_rules.tpl 1.8 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. {{/* Returns Rules for rbac */}}
    2. 

  2. {{/* Call this template:
    3. 

  3. {{ include "ix.v1.common.lib.rbac.rules" (dict "rootCtx" $ "objectData" $objectData) }}
    4. 

  4. rootCtx: The root context of the chart.
    5. 

  5. objectData: The object data to be used to render the RBAC.
    6. 

  6. */}}
    7. 

  7. {{/* Parses service accounts, and checks if RBAC have selected any of them */}}
    8. 

  8. {{- define "ix.v1.common.lib.rbac.rules" -}}
    9. 

  9.   {{- $rootCtx := .rootCtx -}}
    10. 

  10.   {{- $objectData := .objectData -}}
    11. 

  11. 

  12.   {{- if not $objectData.rules -}}
    13. 

  13.     {{- fail "RBAC - Expected non-empty <rbac.rules>" -}}
    14. 

  14.   {{- end -}}
    15. 

  15. 

  16.   {{- range $objectData.rules -}}
    17. 

  17.     {{- if not .apiGroups -}}
    18. 

  18.       {{- fail "RBAC - Expected non-empty <rbac.rules.apiGroups>" -}}
    19. 

  19.     {{- end -}}
    20. 

  20.     {{- if not .resources -}}
    21. 

  21.       {{- fail "RBAC - Expected non-empty <rbac.rules.resources>" -}}
    22. 

  22.     {{- end -}}
    23. 

  23.     {{- if not .verbs -}}
    24. 

  24.       {{- fail "RBAC - Expected non-empty <rbac.rules.verbs>" -}}
    25. 

  25.     {{- end -}}
    26. 

  26. 

  27.   {{- /* apiGroups */}}
    28. 

  28. - apiGroups:
    29. 

  29.     {{- range .apiGroups }}
    30. 

  30.   - {{ tpl . $rootCtx | quote }}
    31. 

  31.     {{- end -}}
    32. 

  32.   {{- /* resources */}}
    33. 

  33.   resources:
    34. 

  34.     {{- range .resources -}}
    35. 

  35.       {{- if not . -}}
    36. 

  36.         {{- fail "RBAC - Expected non-empty entry in <rbac.rules.resources>" -}}
    37. 

  37.       {{- end }}
    38. 

  38.   - {{ tpl . $rootCtx | quote }}
    39. 

  39.     {{- end -}}
    40. 

  40.   {{- /* resourceNames */}}
    41. 

  41.   {{- if .resourceNames }}
    42. 

  42.   resourceNames:
    43. 

  43.     {{- range .resourceNames -}}
    44. 

  44.       {{- if not . -}}
    45. 

  45.         {{- fail "RBAC - Expected non-empty entry in <rbac.rules.resourceNames>" -}}
    46. 

  46.       {{- end }}
    47. 

  47.   - {{ tpl . $rootCtx | quote }}
    48. 

  48.     {{- end -}}
    49. 

  49.   {{- end -}}
    50. 

  50.   {{- /* verbs */}}
    51. 

  51.   verbs:
    52. 

  52.     {{- range .verbs -}}
    53. 

  53.       {{- if not . -}}
    54. 

  54.         {{- fail "RBAC - Expected non-empty entry in <rbac.rules.verbs>" -}}
    55. 

  55.       {{- end }}
    56. 

  56.   - {{ tpl . $rootCtx | quote }}
    57. 

  57.     {{- end -}}
    58. 

  58.   {{- end -}}
    59. 

  59. 

  60. {{- end -}}
    61.