Example 21 with RoleBinding
use of io.fabric8.kubernetes.api.model.rbac.RoleBinding in project jointware by isdream.
the class KubernetesKeyValueStyleGeneratorTest method testOpenShiftWithAllKind.
protected static void testOpenShiftWithAllKind() throws Exception {
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new Policy());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new Group());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new User());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new OAuthClient());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new ClusterRoleBinding());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new ImageStreamTag());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new ImageStream());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new Build());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new BuildConfig());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new RoleBinding());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new Route());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new PolicyBinding());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new OAuthAuthorizeToken());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new Role());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new Project());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new OAuthAccessToken());
info(OPENSHIFT_KIND, OpenShiftDocumentKeyValueStyleGenerator.class.getName(), new DeploymentConfig());
}
Also used :
NetworkPolicy(io.fabric8.kubernetes.api.model.extensions.NetworkPolicy)
Policy(io.fabric8.openshift.api.model.Policy)
Group(io.fabric8.openshift.api.model.Group)
User(io.fabric8.openshift.api.model.User)
OAuthClient(io.fabric8.openshift.api.model.OAuthClient)
ClusterRoleBinding(io.fabric8.openshift.api.model.ClusterRoleBinding)
ImageStreamTag(io.fabric8.openshift.api.model.ImageStreamTag)
ImageStream(io.fabric8.openshift.api.model.ImageStream)
PolicyBinding(io.fabric8.openshift.api.model.PolicyBinding)
OAuthAuthorizeToken(io.fabric8.openshift.api.model.OAuthAuthorizeToken)
Role(io.fabric8.openshift.api.model.Role)
Project(io.fabric8.openshift.api.model.Project)
Build(io.fabric8.openshift.api.model.Build)
OpenShiftDocumentKeyValueStyleGenerator(com.github.isdream.chameleon.docs.OpenShiftDocumentKeyValueStyleGenerator)
BuildConfig(io.fabric8.openshift.api.model.BuildConfig)
OAuthAccessToken(io.fabric8.openshift.api.model.OAuthAccessToken)
ClusterRoleBinding(io.fabric8.openshift.api.model.ClusterRoleBinding)
RoleBinding(io.fabric8.openshift.api.model.RoleBinding)
DeploymentConfig(io.fabric8.openshift.api.model.DeploymentConfig)
Route(io.fabric8.openshift.api.model.Route)
Example 22 with RoleBinding
use of io.fabric8.kubernetes.api.model.rbac.RoleBinding in project fabric8-maven-plugin by fabric8io.
the class ApplyService method applyRoleBinding.
public void applyRoleBinding(RoleBinding entity, String sourceName) {
OpenShiftClient openShiftClient = getOpenShiftClient();
if (openShiftClient != null) {
String id = getName(entity);
Objects.requireNonNull(id, "No name for " + entity + " " + sourceName);
String namespace = KubernetesHelper.getNamespace(entity);
if (StringUtils.isBlank(namespace)) {
namespace = getNamespace(entity);
}
applyNamespace(namespace);
RoleBinding old = openShiftClient.rbac().roleBindings().inNamespace(namespace).withName(id).get();
if (isRunning(old)) {
if (UserConfigurationCompare.configEqual(entity, old)) {
log.info("RoleBinding has not changed so not doing anything");
} else {
if (isRecreateMode()) {
log.info("Deleting RoleBinding: " + id);
openShiftClient.roleBindings().inNamespace(namespace).withName(id).delete();
doCreateRoleBinding(entity, namespace, sourceName);
} else {
log.info("Updating RoleBinding from " + sourceName);
try {
String resourceVersion = KubernetesHelper.getResourceVersion(old);
ObjectMeta metadata = getOrCreateMetadata(entity);
metadata.setNamespace(namespace);
metadata.setResourceVersion(resourceVersion);
Object answer = openShiftClient.rbac().roleBindings().inNamespace(namespace).withName(id).replace(entity);
logGeneratedEntity("Updated RoleBinding: ", namespace, entity, answer);
} catch (Exception e) {
onApplyError("Failed to update RoleBinding from " + sourceName + ". " + e + ". " + entity, e);
}
}
}
} else {
if (!isAllowCreate()) {
log.warn("Creation disabled so not creating RoleBinding from " + sourceName + " namespace " + namespace + " name " + getName(entity));
} else {
doCreateRoleBinding(entity, namespace, sourceName);
}
}
}
}
Also used :
ObjectMeta(io.fabric8.kubernetes.api.model.ObjectMeta)
OpenShiftClient(io.fabric8.openshift.client.OpenShiftClient)
RoleBinding(io.fabric8.kubernetes.api.model.rbac.RoleBinding)
KubernetesClientException(io.fabric8.kubernetes.client.KubernetesClientException)
JsonProcessingException(com.fasterxml.jackson.core.JsonProcessingException)
IOException(java.io.IOException)
Example 23 with RoleBinding
use of io.fabric8.kubernetes.api.model.rbac.RoleBinding in project strimzi by strimzi.
the class EntityTopicOperatorTest method testRoleBindingInOtherNamespace.
@ParallelTest
public void testRoleBindingInOtherNamespace() {
RoleBinding binding = entityTopicOperator.generateRoleBindingForRole(namespace, toWatchedNamespace);
assertThat(binding.getSubjects().get(0).getNamespace(), is(namespace));
assertThat(binding.getMetadata().getNamespace(), is(toWatchedNamespace));
assertThat(binding.getMetadata().getOwnerReferences().size(), is(0));
assertThat(binding.getRoleRef().getKind(), is("Role"));
assertThat(binding.getRoleRef().getName(), is("foo-entity-operator"));
}
Also used :
RoleBinding(io.fabric8.kubernetes.api.model.rbac.RoleBinding)
ParallelTest(io.strimzi.test.annotations.ParallelTest)
Example 24 with RoleBinding
use of io.fabric8.kubernetes.api.model.rbac.RoleBinding in project strimzi by strimzi.
the class RoleBindingOperatorIT method getOriginal.
@Override
protected RoleBinding getOriginal() {
Subject ks = new SubjectBuilder().withKind("ServiceAccount").withName("my-service-account").withNamespace("my-namespace").build();
RoleRef roleRef = new RoleRefBuilder().withName("my-cluster-role").withApiGroup("rbac.authorization.k8s.io").withKind("ClusterRole").build();
return new RoleBindingBuilder().withNewMetadata().withName(resourceName).withNamespace(namespace).withLabels(singletonMap("state", "new")).endMetadata().withSubjects(ks).withRoleRef(roleRef).build();
}
Also used :
RoleBindingBuilder(io.fabric8.kubernetes.api.model.rbac.RoleBindingBuilder)
RoleRef(io.fabric8.kubernetes.api.model.rbac.RoleRef)
SubjectBuilder(io.fabric8.kubernetes.api.model.rbac.SubjectBuilder)
Subject(io.fabric8.kubernetes.api.model.rbac.Subject)
RoleRefBuilder(io.fabric8.kubernetes.api.model.rbac.RoleRefBuilder)
Example 25 with RoleBinding
use of io.fabric8.kubernetes.api.model.rbac.RoleBinding in project strimzi by strimzi.
the class RoleBindingOperatorTest method resource.
@Override
protected RoleBinding resource() {
Subject ks = new SubjectBuilder().withKind("ServiceAccount").withName("some-service-account").withNamespace(NAMESPACE).build();
RoleRef roleRef = new RoleRefBuilder().withName("some-role").withApiGroup("rbac.authorization.k8s.io").withKind("ClusterRole").build();
return new RoleBindingBuilder().withNewMetadata().withName(RESOURCE_NAME).withNamespace(NAMESPACE).withLabels(singletonMap("foo", "bar")).endMetadata().withRoleRef(roleRef).withSubjects(singletonList(ks)).build();
}
Also used :
RoleBindingBuilder(io.fabric8.kubernetes.api.model.rbac.RoleBindingBuilder)
RoleRef(io.fabric8.kubernetes.api.model.rbac.RoleRef)
SubjectBuilder(io.fabric8.kubernetes.api.model.rbac.SubjectBuilder)
Subject(io.fabric8.kubernetes.api.model.rbac.Subject)
RoleRefBuilder(io.fabric8.kubernetes.api.model.rbac.RoleRefBuilder)
Aggregations
RoleBinding (io.fabric8.kubernetes.api.model.rbac.RoleBinding)22
RoleRefBuilder (io.fabric8.kubernetes.api.model.rbac.RoleRefBuilder)18
RoleRef (io.fabric8.kubernetes.api.model.rbac.RoleRef)16
SubjectBuilder (io.fabric8.kubernetes.api.model.rbac.SubjectBuilder)12
RoleBindingBuilder (io.fabric8.kubernetes.api.model.rbac.RoleBindingBuilder)10
Subject (io.fabric8.kubernetes.api.model.rbac.Subject)10
Role (io.fabric8.kubernetes.api.model.rbac.Role)9
Kafka (io.strimzi.api.kafka.model.Kafka)6
KafkaBuilder (io.strimzi.api.kafka.model.KafkaBuilder)6
CertManager (io.strimzi.certs.CertManager)6
KubernetesVersion (io.strimzi.operator.KubernetesVersion)6
PlatformFeaturesAvailability (io.strimzi.operator.PlatformFeaturesAvailability)6
ClusterOperatorConfig (io.strimzi.operator.cluster.ClusterOperatorConfig)6
KafkaVersionTestUtils (io.strimzi.operator.cluster.KafkaVersionTestUtils)6
ResourceUtils (io.strimzi.operator.cluster.ResourceUtils)6
EntityOperator (io.strimzi.operator.cluster.model.EntityOperator)6
KafkaVersion (io.strimzi.operator.cluster.model.KafkaVersion)6
ResourceOperatorSupplier (io.strimzi.operator.cluster.operator.resource.ResourceOperatorSupplier)6
ParallelTest (io.strimzi.test.annotations.ParallelTest)5
JsonProcessingException (com.fasterxml.jackson.core.JsonProcessingException)4
