Package io.kubernetes.client.proto

Class V1beta1Policy.PodSecurityPolicySpec

java.lang.Object
com.google.protobuf.AbstractMessageLite
com.google.protobuf.AbstractMessage
com.google.protobuf.GeneratedMessageV3
io.kubernetes.client.proto.V1beta1Policy.PodSecurityPolicySpec
All Implemented Interfaces:
com.google.protobuf.Message, com.google.protobuf.MessageLite, com.google.protobuf.MessageLiteOrBuilder, com.google.protobuf.MessageOrBuilder, V1beta1Policy.PodSecurityPolicySpecOrBuilder, Serializable
Enclosing class:
V1beta1Policy
public static final class V1beta1Policy.PodSecurityPolicySpec extends com.google.protobuf.GeneratedMessageV3 implements V1beta1Policy.PodSecurityPolicySpecOrBuilder
 PodSecurityPolicySpec defines the policy enforced.
Protobuf type k8s.io.api.policy.v1beta1.PodSecurityPolicySpec
See Also:

  • Field Details

    • PRIVILEGED_FIELD_NUMBER

      public static final int PRIVILEGED_FIELD_NUMBER
      See Also:

    • DEFAULTADDCAPABILITIES_FIELD_NUMBER

      public static final int DEFAULTADDCAPABILITIES_FIELD_NUMBER
      See Also:

    • REQUIREDDROPCAPABILITIES_FIELD_NUMBER

      public static final int REQUIREDDROPCAPABILITIES_FIELD_NUMBER
      See Also:

    • ALLOWEDCAPABILITIES_FIELD_NUMBER

      public static final int ALLOWEDCAPABILITIES_FIELD_NUMBER
      See Also:

    • VOLUMES_FIELD_NUMBER

      public static final int VOLUMES_FIELD_NUMBER
      See Also:

    • HOSTNETWORK_FIELD_NUMBER

      public static final int HOSTNETWORK_FIELD_NUMBER
      See Also:

    • HOSTPORTS_FIELD_NUMBER

      public static final int HOSTPORTS_FIELD_NUMBER
      See Also:

    • HOSTPID_FIELD_NUMBER

      public static final int HOSTPID_FIELD_NUMBER
      See Also:

    • HOSTIPC_FIELD_NUMBER

      public static final int HOSTIPC_FIELD_NUMBER
      See Also:

    • SELINUX_FIELD_NUMBER

      public static final int SELINUX_FIELD_NUMBER
      See Also:

    • RUNASUSER_FIELD_NUMBER

      public static final int RUNASUSER_FIELD_NUMBER
      See Also:

    • RUNASGROUP_FIELD_NUMBER

      public static final int RUNASGROUP_FIELD_NUMBER
      See Also:

    • SUPPLEMENTALGROUPS_FIELD_NUMBER

      public static final int SUPPLEMENTALGROUPS_FIELD_NUMBER
      See Also:

    • FSGROUP_FIELD_NUMBER

      public static final int FSGROUP_FIELD_NUMBER
      See Also:

    • READONLYROOTFILESYSTEM_FIELD_NUMBER

      public static final int READONLYROOTFILESYSTEM_FIELD_NUMBER
      See Also:

    • DEFAULTALLOWPRIVILEGEESCALATION_FIELD_NUMBER

      public static final int DEFAULTALLOWPRIVILEGEESCALATION_FIELD_NUMBER
      See Also:

    • ALLOWPRIVILEGEESCALATION_FIELD_NUMBER

      public static final int ALLOWPRIVILEGEESCALATION_FIELD_NUMBER
      See Also:

    • ALLOWEDHOSTPATHS_FIELD_NUMBER

      public static final int ALLOWEDHOSTPATHS_FIELD_NUMBER
      See Also:

    • ALLOWEDFLEXVOLUMES_FIELD_NUMBER

      public static final int ALLOWEDFLEXVOLUMES_FIELD_NUMBER
      See Also:

    • ALLOWEDCSIDRIVERS_FIELD_NUMBER

      public static final int ALLOWEDCSIDRIVERS_FIELD_NUMBER
      See Also:

    • ALLOWEDUNSAFESYSCTLS_FIELD_NUMBER

      public static final int ALLOWEDUNSAFESYSCTLS_FIELD_NUMBER
      See Also:

    • FORBIDDENSYSCTLS_FIELD_NUMBER

      public static final int FORBIDDENSYSCTLS_FIELD_NUMBER
      See Also:

    • ALLOWEDPROCMOUNTTYPES_FIELD_NUMBER

      public static final int ALLOWEDPROCMOUNTTYPES_FIELD_NUMBER
      See Also:

    • RUNTIMECLASS_FIELD_NUMBER

      public static final int RUNTIMECLASS_FIELD_NUMBER
      See Also:

    • PARSER

      @Deprecated public static final com.google.protobuf.Parser<V1beta1Policy.PodSecurityPolicySpec> PARSER
      Deprecated.

  • Method Details

    • getUnknownFields

      public final com.google.protobuf.UnknownFieldSet getUnknownFields()
      Specified by:
      getUnknownFields in interface com.google.protobuf.MessageOrBuilder
      Overrides:
      getUnknownFields in class com.google.protobuf.GeneratedMessageV3

    • getDescriptor

      public static final com.google.protobuf.Descriptors.Descriptor getDescriptor()

    • internalGetFieldAccessorTable

      protected com.google.protobuf.GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
      Specified by:
      internalGetFieldAccessorTable in class com.google.protobuf.GeneratedMessageV3

    • hasPrivileged

      public boolean hasPrivileged()
       privileged determines if a pod can request to be run as privileged.
 +optional
      optional bool privileged = 1;
      Specified by:
      hasPrivileged in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getPrivileged

      public boolean getPrivileged()
       privileged determines if a pod can request to be run as privileged.
 +optional
      optional bool privileged = 1;
      Specified by:
      getPrivileged in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getDefaultAddCapabilitiesList

      public com.google.protobuf.ProtocolStringList getDefaultAddCapabilitiesList()
       defaultAddCapabilities is the default set of capabilities that will be added to the container
 unless the pod spec specifically drops the capability.  You may not list a capability in both
 defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly
 allowed, and need not be included in the allowedCapabilities list.
 +optional
      repeated string defaultAddCapabilities = 2;
      Specified by:
      getDefaultAddCapabilitiesList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getDefaultAddCapabilitiesCount

      public int getDefaultAddCapabilitiesCount()
       defaultAddCapabilities is the default set of capabilities that will be added to the container
 unless the pod spec specifically drops the capability.  You may not list a capability in both
 defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly
 allowed, and need not be included in the allowedCapabilities list.
 +optional
      repeated string defaultAddCapabilities = 2;
      Specified by:
      getDefaultAddCapabilitiesCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getDefaultAddCapabilities

      public String getDefaultAddCapabilities(int index)
       defaultAddCapabilities is the default set of capabilities that will be added to the container
 unless the pod spec specifically drops the capability.  You may not list a capability in both
 defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly
 allowed, and need not be included in the allowedCapabilities list.
 +optional
      repeated string defaultAddCapabilities = 2;
      Specified by:
      getDefaultAddCapabilities in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getDefaultAddCapabilitiesBytes

      public com.google.protobuf.ByteString getDefaultAddCapabilitiesBytes(int index)
       defaultAddCapabilities is the default set of capabilities that will be added to the container
 unless the pod spec specifically drops the capability.  You may not list a capability in both
 defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly
 allowed, and need not be included in the allowedCapabilities list.
 +optional
      repeated string defaultAddCapabilities = 2;
      Specified by:
      getDefaultAddCapabilitiesBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRequiredDropCapabilitiesList

      public com.google.protobuf.ProtocolStringList getRequiredDropCapabilitiesList()
       requiredDropCapabilities are the capabilities that will be dropped from the container.  These
 are required to be dropped and cannot be added.
 +optional
      repeated string requiredDropCapabilities = 3;
      Specified by:
      getRequiredDropCapabilitiesList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRequiredDropCapabilitiesCount

      public int getRequiredDropCapabilitiesCount()
       requiredDropCapabilities are the capabilities that will be dropped from the container.  These
 are required to be dropped and cannot be added.
 +optional
      repeated string requiredDropCapabilities = 3;
      Specified by:
      getRequiredDropCapabilitiesCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRequiredDropCapabilities

      public String getRequiredDropCapabilities(int index)
       requiredDropCapabilities are the capabilities that will be dropped from the container.  These
 are required to be dropped and cannot be added.
 +optional
      repeated string requiredDropCapabilities = 3;
      Specified by:
      getRequiredDropCapabilities in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRequiredDropCapabilitiesBytes

      public com.google.protobuf.ByteString getRequiredDropCapabilitiesBytes(int index)
       requiredDropCapabilities are the capabilities that will be dropped from the container.  These
 are required to be dropped and cannot be added.
 +optional
      repeated string requiredDropCapabilities = 3;
      Specified by:
      getRequiredDropCapabilitiesBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCapabilitiesList

      public com.google.protobuf.ProtocolStringList getAllowedCapabilitiesList()
       allowedCapabilities is a list of capabilities that can be requested to add to the container.
 Capabilities in this field may be added at the pod author's discretion.
 You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
 +optional
      repeated string allowedCapabilities = 4;
      Specified by:
      getAllowedCapabilitiesList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCapabilitiesCount

      public int getAllowedCapabilitiesCount()
       allowedCapabilities is a list of capabilities that can be requested to add to the container.
 Capabilities in this field may be added at the pod author's discretion.
 You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
 +optional
      repeated string allowedCapabilities = 4;
      Specified by:
      getAllowedCapabilitiesCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCapabilities

      public String getAllowedCapabilities(int index)
       allowedCapabilities is a list of capabilities that can be requested to add to the container.
 Capabilities in this field may be added at the pod author's discretion.
 You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
 +optional
      repeated string allowedCapabilities = 4;
      Specified by:
      getAllowedCapabilities in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCapabilitiesBytes

      public com.google.protobuf.ByteString getAllowedCapabilitiesBytes(int index)
       allowedCapabilities is a list of capabilities that can be requested to add to the container.
 Capabilities in this field may be added at the pod author's discretion.
 You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
 +optional
      repeated string allowedCapabilities = 4;
      Specified by:
      getAllowedCapabilitiesBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getVolumesList

      public com.google.protobuf.ProtocolStringList getVolumesList()
       volumes is an allowlist of volume plugins. Empty indicates that
 no volumes may be used. To allow all volumes you may use '*'.
 +optional
      repeated string volumes = 5;
      Specified by:
      getVolumesList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getVolumesCount

      public int getVolumesCount()
       volumes is an allowlist of volume plugins. Empty indicates that
 no volumes may be used. To allow all volumes you may use '*'.
 +optional
      repeated string volumes = 5;
      Specified by:
      getVolumesCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getVolumes

      public String getVolumes(int index)
       volumes is an allowlist of volume plugins. Empty indicates that
 no volumes may be used. To allow all volumes you may use '*'.
 +optional
      repeated string volumes = 5;
      Specified by:
      getVolumes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getVolumesBytes

      public com.google.protobuf.ByteString getVolumesBytes(int index)
       volumes is an allowlist of volume plugins. Empty indicates that
 no volumes may be used. To allow all volumes you may use '*'.
 +optional
      repeated string volumes = 5;
      Specified by:
      getVolumesBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasHostNetwork

      public boolean hasHostNetwork()
       hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
 +optional
      optional bool hostNetwork = 6;
      Specified by:
      hasHostNetwork in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostNetwork

      public boolean getHostNetwork()
       hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
 +optional
      optional bool hostNetwork = 6;
      Specified by:
      getHostNetwork in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostPortsList

      public List<V1beta1Policy.HostPortRange> getHostPortsList()
       hostPorts determines which host port ranges are allowed to be exposed.
 +optional
      repeated .k8s.io.api.policy.v1beta1.HostPortRange hostPorts = 7;
      Specified by:
      getHostPortsList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostPortsOrBuilderList

      public List<? extends V1beta1Policy.HostPortRangeOrBuilder> getHostPortsOrBuilderList()
       hostPorts determines which host port ranges are allowed to be exposed.
 +optional
      repeated .k8s.io.api.policy.v1beta1.HostPortRange hostPorts = 7;
      Specified by:
      getHostPortsOrBuilderList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostPortsCount

      public int getHostPortsCount()
       hostPorts determines which host port ranges are allowed to be exposed.
 +optional
      repeated .k8s.io.api.policy.v1beta1.HostPortRange hostPorts = 7;
      Specified by:
      getHostPortsCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostPorts

      public V1beta1Policy.HostPortRange getHostPorts(int index)
       hostPorts determines which host port ranges are allowed to be exposed.
 +optional
      repeated .k8s.io.api.policy.v1beta1.HostPortRange hostPorts = 7;
      Specified by:
      getHostPorts in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostPortsOrBuilder

      public V1beta1Policy.HostPortRangeOrBuilder getHostPortsOrBuilder(int index)
       hostPorts determines which host port ranges are allowed to be exposed.
 +optional
      repeated .k8s.io.api.policy.v1beta1.HostPortRange hostPorts = 7;
      Specified by:
      getHostPortsOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasHostPID

      public boolean hasHostPID()
       hostPID determines if the policy allows the use of HostPID in the pod spec.
 +optional
      optional bool hostPID = 8;
      Specified by:
      hasHostPID in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostPID

      public boolean getHostPID()
       hostPID determines if the policy allows the use of HostPID in the pod spec.
 +optional
      optional bool hostPID = 8;
      Specified by:
      getHostPID in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasHostIPC

      public boolean hasHostIPC()
       hostIPC determines if the policy allows the use of HostIPC in the pod spec.
 +optional
      optional bool hostIPC = 9;
      Specified by:
      hasHostIPC in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getHostIPC

      public boolean getHostIPC()
       hostIPC determines if the policy allows the use of HostIPC in the pod spec.
 +optional
      optional bool hostIPC = 9;
      Specified by:
      getHostIPC in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasSeLinux

      public boolean hasSeLinux()
       seLinux is the strategy that will dictate the allowable labels that may be set.
      optional .k8s.io.api.policy.v1beta1.SELinuxStrategyOptions seLinux = 10;
      Specified by:
      hasSeLinux in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getSeLinux

      public V1beta1Policy.SELinuxStrategyOptions getSeLinux()
       seLinux is the strategy that will dictate the allowable labels that may be set.
      optional .k8s.io.api.policy.v1beta1.SELinuxStrategyOptions seLinux = 10;
      Specified by:
      getSeLinux in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getSeLinuxOrBuilder

      public V1beta1Policy.SELinuxStrategyOptionsOrBuilder getSeLinuxOrBuilder()
       seLinux is the strategy that will dictate the allowable labels that may be set.
      optional .k8s.io.api.policy.v1beta1.SELinuxStrategyOptions seLinux = 10;
      Specified by:
      getSeLinuxOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasRunAsUser

      public boolean hasRunAsUser()
       runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
      optional .k8s.io.api.policy.v1beta1.RunAsUserStrategyOptions runAsUser = 11;
      Specified by:
      hasRunAsUser in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRunAsUser

      public V1beta1Policy.RunAsUserStrategyOptions getRunAsUser()
       runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
      optional .k8s.io.api.policy.v1beta1.RunAsUserStrategyOptions runAsUser = 11;
      Specified by:
      getRunAsUser in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRunAsUserOrBuilder

      public V1beta1Policy.RunAsUserStrategyOptionsOrBuilder getRunAsUserOrBuilder()
       runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
      optional .k8s.io.api.policy.v1beta1.RunAsUserStrategyOptions runAsUser = 11;
      Specified by:
      getRunAsUserOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasRunAsGroup

      public boolean hasRunAsGroup()
       RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set.
 If this field is omitted, the pod's RunAsGroup can take any value. This field requires the
 RunAsGroup feature gate to be enabled.
 +optional
      optional .k8s.io.api.policy.v1beta1.RunAsGroupStrategyOptions runAsGroup = 22;
      Specified by:
      hasRunAsGroup in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRunAsGroup

      public V1beta1Policy.RunAsGroupStrategyOptions getRunAsGroup()
       RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set.
 If this field is omitted, the pod's RunAsGroup can take any value. This field requires the
 RunAsGroup feature gate to be enabled.
 +optional
      optional .k8s.io.api.policy.v1beta1.RunAsGroupStrategyOptions runAsGroup = 22;
      Specified by:
      getRunAsGroup in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRunAsGroupOrBuilder

      public V1beta1Policy.RunAsGroupStrategyOptionsOrBuilder getRunAsGroupOrBuilder()
       RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set.
 If this field is omitted, the pod's RunAsGroup can take any value. This field requires the
 RunAsGroup feature gate to be enabled.
 +optional
      optional .k8s.io.api.policy.v1beta1.RunAsGroupStrategyOptions runAsGroup = 22;
      Specified by:
      getRunAsGroupOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasSupplementalGroups

      public boolean hasSupplementalGroups()
       supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
      optional .k8s.io.api.policy.v1beta1.SupplementalGroupsStrategyOptions supplementalGroups = 12;
      Specified by:
      hasSupplementalGroups in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getSupplementalGroups

      public V1beta1Policy.SupplementalGroupsStrategyOptions getSupplementalGroups()
       supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
      optional .k8s.io.api.policy.v1beta1.SupplementalGroupsStrategyOptions supplementalGroups = 12;
      Specified by:
      getSupplementalGroups in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getSupplementalGroupsOrBuilder

      public V1beta1Policy.SupplementalGroupsStrategyOptionsOrBuilder getSupplementalGroupsOrBuilder()
       supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
      optional .k8s.io.api.policy.v1beta1.SupplementalGroupsStrategyOptions supplementalGroups = 12;
      Specified by:
      getSupplementalGroupsOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasFsGroup

      public boolean hasFsGroup()
       fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
      optional .k8s.io.api.policy.v1beta1.FSGroupStrategyOptions fsGroup = 13;
      Specified by:
      hasFsGroup in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getFsGroup

      public V1beta1Policy.FSGroupStrategyOptions getFsGroup()
       fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
      optional .k8s.io.api.policy.v1beta1.FSGroupStrategyOptions fsGroup = 13;
      Specified by:
      getFsGroup in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getFsGroupOrBuilder

      public V1beta1Policy.FSGroupStrategyOptionsOrBuilder getFsGroupOrBuilder()
       fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
      optional .k8s.io.api.policy.v1beta1.FSGroupStrategyOptions fsGroup = 13;
      Specified by:
      getFsGroupOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasReadOnlyRootFilesystem

      public boolean hasReadOnlyRootFilesystem()
       readOnlyRootFilesystem when set to true will force containers to run with a read only root file
 system.  If the container specifically requests to run with a non-read only root file system
 the PSP should deny the pod.
 If set to false the container may run with a read only root file system if it wishes but it
 will not be forced to.
 +optional
      optional bool readOnlyRootFilesystem = 14;
      Specified by:
      hasReadOnlyRootFilesystem in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getReadOnlyRootFilesystem

      public boolean getReadOnlyRootFilesystem()
       readOnlyRootFilesystem when set to true will force containers to run with a read only root file
 system.  If the container specifically requests to run with a non-read only root file system
 the PSP should deny the pod.
 If set to false the container may run with a read only root file system if it wishes but it
 will not be forced to.
 +optional
      optional bool readOnlyRootFilesystem = 14;
      Specified by:
      getReadOnlyRootFilesystem in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasDefaultAllowPrivilegeEscalation

      public boolean hasDefaultAllowPrivilegeEscalation()
       defaultAllowPrivilegeEscalation controls the default setting for whether a
 process can gain more privileges than its parent process.
 +optional
      optional bool defaultAllowPrivilegeEscalation = 15;
      Specified by:
      hasDefaultAllowPrivilegeEscalation in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getDefaultAllowPrivilegeEscalation

      public boolean getDefaultAllowPrivilegeEscalation()
       defaultAllowPrivilegeEscalation controls the default setting for whether a
 process can gain more privileges than its parent process.
 +optional
      optional bool defaultAllowPrivilegeEscalation = 15;
      Specified by:
      getDefaultAllowPrivilegeEscalation in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasAllowPrivilegeEscalation

      public boolean hasAllowPrivilegeEscalation()
       allowPrivilegeEscalation determines if a pod can request to allow
 privilege escalation. If unspecified, defaults to true.
 +optional
      optional bool allowPrivilegeEscalation = 16;
      Specified by:
      hasAllowPrivilegeEscalation in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowPrivilegeEscalation

      public boolean getAllowPrivilegeEscalation()
       allowPrivilegeEscalation determines if a pod can request to allow
 privilege escalation. If unspecified, defaults to true.
 +optional
      optional bool allowPrivilegeEscalation = 16;
      Specified by:
      getAllowPrivilegeEscalation in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedHostPathsList

      public List<V1beta1Policy.AllowedHostPath> getAllowedHostPathsList()
       allowedHostPaths is an allowlist of host paths. Empty indicates
 that all host paths may be used.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedHostPath allowedHostPaths = 17;
      Specified by:
      getAllowedHostPathsList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedHostPathsOrBuilderList

      public List<? extends V1beta1Policy.AllowedHostPathOrBuilder> getAllowedHostPathsOrBuilderList()
       allowedHostPaths is an allowlist of host paths. Empty indicates
 that all host paths may be used.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedHostPath allowedHostPaths = 17;
      Specified by:
      getAllowedHostPathsOrBuilderList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedHostPathsCount

      public int getAllowedHostPathsCount()
       allowedHostPaths is an allowlist of host paths. Empty indicates
 that all host paths may be used.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedHostPath allowedHostPaths = 17;
      Specified by:
      getAllowedHostPathsCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedHostPaths

      public V1beta1Policy.AllowedHostPath getAllowedHostPaths(int index)
       allowedHostPaths is an allowlist of host paths. Empty indicates
 that all host paths may be used.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedHostPath allowedHostPaths = 17;
      Specified by:
      getAllowedHostPaths in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedHostPathsOrBuilder

      public V1beta1Policy.AllowedHostPathOrBuilder getAllowedHostPathsOrBuilder(int index)
       allowedHostPaths is an allowlist of host paths. Empty indicates
 that all host paths may be used.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedHostPath allowedHostPaths = 17;
      Specified by:
      getAllowedHostPathsOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedFlexVolumesList

      public List<V1beta1Policy.AllowedFlexVolume> getAllowedFlexVolumesList()
       allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all
 Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes
 is allowed in the "volumes" field.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedFlexVolume allowedFlexVolumes = 18;
      Specified by:
      getAllowedFlexVolumesList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedFlexVolumesOrBuilderList

      public List<? extends V1beta1Policy.AllowedFlexVolumeOrBuilder> getAllowedFlexVolumesOrBuilderList()
       allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all
 Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes
 is allowed in the "volumes" field.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedFlexVolume allowedFlexVolumes = 18;
      Specified by:
      getAllowedFlexVolumesOrBuilderList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedFlexVolumesCount

      public int getAllowedFlexVolumesCount()
       allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all
 Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes
 is allowed in the "volumes" field.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedFlexVolume allowedFlexVolumes = 18;
      Specified by:
      getAllowedFlexVolumesCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedFlexVolumes

      public V1beta1Policy.AllowedFlexVolume getAllowedFlexVolumes(int index)
       allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all
 Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes
 is allowed in the "volumes" field.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedFlexVolume allowedFlexVolumes = 18;
      Specified by:
      getAllowedFlexVolumes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedFlexVolumesOrBuilder

      public V1beta1Policy.AllowedFlexVolumeOrBuilder getAllowedFlexVolumesOrBuilder(int index)
       allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all
 Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes
 is allowed in the "volumes" field.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedFlexVolume allowedFlexVolumes = 18;
      Specified by:
      getAllowedFlexVolumesOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCSIDriversList

      public List<V1beta1Policy.AllowedCSIDriver> getAllowedCSIDriversList()
       AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec.
 An empty value indicates that any CSI driver can be used for inline ephemeral volumes.
 This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedCSIDriver allowedCSIDrivers = 23;
      Specified by:
      getAllowedCSIDriversList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCSIDriversOrBuilderList

      public List<? extends V1beta1Policy.AllowedCSIDriverOrBuilder> getAllowedCSIDriversOrBuilderList()
       AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec.
 An empty value indicates that any CSI driver can be used for inline ephemeral volumes.
 This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedCSIDriver allowedCSIDrivers = 23;
      Specified by:
      getAllowedCSIDriversOrBuilderList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCSIDriversCount

      public int getAllowedCSIDriversCount()
       AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec.
 An empty value indicates that any CSI driver can be used for inline ephemeral volumes.
 This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedCSIDriver allowedCSIDrivers = 23;
      Specified by:
      getAllowedCSIDriversCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCSIDrivers

      public V1beta1Policy.AllowedCSIDriver getAllowedCSIDrivers(int index)
       AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec.
 An empty value indicates that any CSI driver can be used for inline ephemeral volumes.
 This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedCSIDriver allowedCSIDrivers = 23;
      Specified by:
      getAllowedCSIDrivers in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedCSIDriversOrBuilder

      public V1beta1Policy.AllowedCSIDriverOrBuilder getAllowedCSIDriversOrBuilder(int index)
       AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec.
 An empty value indicates that any CSI driver can be used for inline ephemeral volumes.
 This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
 +optional
      repeated .k8s.io.api.policy.v1beta1.AllowedCSIDriver allowedCSIDrivers = 23;
      Specified by:
      getAllowedCSIDriversOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedUnsafeSysctlsList

      public com.google.protobuf.ProtocolStringList getAllowedUnsafeSysctlsList()
       allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed.
 Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
 Examples:
 e.g. "foo/*" allows "foo/bar", "foo/baz", etc.
 e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
 +optional
      repeated string allowedUnsafeSysctls = 19;
      Specified by:
      getAllowedUnsafeSysctlsList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedUnsafeSysctlsCount

      public int getAllowedUnsafeSysctlsCount()
       allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed.
 Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
 Examples:
 e.g. "foo/*" allows "foo/bar", "foo/baz", etc.
 e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
 +optional
      repeated string allowedUnsafeSysctls = 19;
      Specified by:
      getAllowedUnsafeSysctlsCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedUnsafeSysctls

      public String getAllowedUnsafeSysctls(int index)
       allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed.
 Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
 Examples:
 e.g. "foo/*" allows "foo/bar", "foo/baz", etc.
 e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
 +optional
      repeated string allowedUnsafeSysctls = 19;
      Specified by:
      getAllowedUnsafeSysctls in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedUnsafeSysctlsBytes

      public com.google.protobuf.ByteString getAllowedUnsafeSysctlsBytes(int index)
       allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed.
 Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
 Examples:
 e.g. "foo/*" allows "foo/bar", "foo/baz", etc.
 e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
 +optional
      repeated string allowedUnsafeSysctls = 19;
      Specified by:
      getAllowedUnsafeSysctlsBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getForbiddenSysctlsList

      public com.google.protobuf.ProtocolStringList getForbiddenSysctlsList()
       forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 Examples:
 e.g. "foo/*" forbids "foo/bar", "foo/baz", etc.
 e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
 +optional
      repeated string forbiddenSysctls = 20;
      Specified by:
      getForbiddenSysctlsList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getForbiddenSysctlsCount

      public int getForbiddenSysctlsCount()
       forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 Examples:
 e.g. "foo/*" forbids "foo/bar", "foo/baz", etc.
 e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
 +optional
      repeated string forbiddenSysctls = 20;
      Specified by:
      getForbiddenSysctlsCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getForbiddenSysctls

      public String getForbiddenSysctls(int index)
       forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 Examples:
 e.g. "foo/*" forbids "foo/bar", "foo/baz", etc.
 e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
 +optional
      repeated string forbiddenSysctls = 20;
      Specified by:
      getForbiddenSysctls in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getForbiddenSysctlsBytes

      public com.google.protobuf.ByteString getForbiddenSysctlsBytes(int index)
       forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none.
 Each entry is either a plain sysctl name or ends in "*" in which case it is considered
 as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 Examples:
 e.g. "foo/*" forbids "foo/bar", "foo/baz", etc.
 e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
 +optional
      repeated string forbiddenSysctls = 20;
      Specified by:
      getForbiddenSysctlsBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedProcMountTypesList

      public com.google.protobuf.ProtocolStringList getAllowedProcMountTypesList()
       AllowedProcMountTypes is an allowlist of allowed ProcMountTypes.
 Empty or nil indicates that only the DefaultProcMountType may be used.
 This requires the ProcMountType feature flag to be enabled.
 +optional
      repeated string allowedProcMountTypes = 21;
      Specified by:
      getAllowedProcMountTypesList in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedProcMountTypesCount

      public int getAllowedProcMountTypesCount()
       AllowedProcMountTypes is an allowlist of allowed ProcMountTypes.
 Empty or nil indicates that only the DefaultProcMountType may be used.
 This requires the ProcMountType feature flag to be enabled.
 +optional
      repeated string allowedProcMountTypes = 21;
      Specified by:
      getAllowedProcMountTypesCount in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedProcMountTypes

      public String getAllowedProcMountTypes(int index)
       AllowedProcMountTypes is an allowlist of allowed ProcMountTypes.
 Empty or nil indicates that only the DefaultProcMountType may be used.
 This requires the ProcMountType feature flag to be enabled.
 +optional
      repeated string allowedProcMountTypes = 21;
      Specified by:
      getAllowedProcMountTypes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getAllowedProcMountTypesBytes

      public com.google.protobuf.ByteString getAllowedProcMountTypesBytes(int index)
       AllowedProcMountTypes is an allowlist of allowed ProcMountTypes.
 Empty or nil indicates that only the DefaultProcMountType may be used.
 This requires the ProcMountType feature flag to be enabled.
 +optional
      repeated string allowedProcMountTypes = 21;
      Specified by:
      getAllowedProcMountTypesBytes in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • hasRuntimeClass

      public boolean hasRuntimeClass()
       runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod.
 If this field is omitted, the pod's runtimeClassName field is unrestricted.
 Enforcement of this field depends on the RuntimeClass feature gate being enabled.
 +optional
      optional .k8s.io.api.policy.v1beta1.RuntimeClassStrategyOptions runtimeClass = 24;
      Specified by:
      hasRuntimeClass in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRuntimeClass

      public V1beta1Policy.RuntimeClassStrategyOptions getRuntimeClass()
       runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod.
 If this field is omitted, the pod's runtimeClassName field is unrestricted.
 Enforcement of this field depends on the RuntimeClass feature gate being enabled.
 +optional
      optional .k8s.io.api.policy.v1beta1.RuntimeClassStrategyOptions runtimeClass = 24;
      Specified by:
      getRuntimeClass in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • getRuntimeClassOrBuilder

      public V1beta1Policy.RuntimeClassStrategyOptionsOrBuilder getRuntimeClassOrBuilder()
       runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod.
 If this field is omitted, the pod's runtimeClassName field is unrestricted.
 Enforcement of this field depends on the RuntimeClass feature gate being enabled.
 +optional
      optional .k8s.io.api.policy.v1beta1.RuntimeClassStrategyOptions runtimeClass = 24;
      Specified by:
      getRuntimeClassOrBuilder in interface V1beta1Policy.PodSecurityPolicySpecOrBuilder

    • isInitialized

      public final boolean isInitialized()
      Specified by:
      isInitialized in interface com.google.protobuf.MessageLiteOrBuilder
      Overrides:
      isInitialized in class com.google.protobuf.GeneratedMessageV3

    • writeTo

      public void writeTo(com.google.protobuf.CodedOutputStream output) throws IOException
      Specified by:
      writeTo in interface com.google.protobuf.MessageLite
      Overrides:
      writeTo in class com.google.protobuf.GeneratedMessageV3
      Throws:
      IOException

    • getSerializedSize

      public int getSerializedSize()
      Specified by:
      getSerializedSize in interface com.google.protobuf.MessageLite
      Overrides:
      getSerializedSize in class com.google.protobuf.GeneratedMessageV3

    • equals

      public boolean equals(Object obj)
      Specified by:
      equals in interface com.google.protobuf.Message
      Overrides:
      equals in class com.google.protobuf.AbstractMessage

    • hashCode

      public int hashCode()
      Specified by:
      hashCode in interface com.google.protobuf.Message
      Overrides:
      hashCode in class com.google.protobuf.AbstractMessage

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(ByteBuffer data) throws com.google.protobuf.InvalidProtocolBufferException
      Throws:
      com.google.protobuf.InvalidProtocolBufferException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(ByteBuffer data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException
      Throws:
      com.google.protobuf.InvalidProtocolBufferException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(com.google.protobuf.ByteString data) throws com.google.protobuf.InvalidProtocolBufferException
      Throws:
      com.google.protobuf.InvalidProtocolBufferException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(com.google.protobuf.ByteString data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException
      Throws:
      com.google.protobuf.InvalidProtocolBufferException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(byte[] data) throws com.google.protobuf.InvalidProtocolBufferException
      Throws:
      com.google.protobuf.InvalidProtocolBufferException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(byte[] data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException
      Throws:
      com.google.protobuf.InvalidProtocolBufferException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(InputStream input) throws IOException
      Throws:
      IOException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
      Throws:
      IOException

    • parseDelimitedFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseDelimitedFrom(InputStream input) throws IOException
      Throws:
      IOException

    • parseDelimitedFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseDelimitedFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
      Throws:
      IOException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(com.google.protobuf.CodedInputStream input) throws IOException
      Throws:
      IOException

    • parseFrom

      public static V1beta1Policy.PodSecurityPolicySpec parseFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
      Throws:
      IOException

    • newBuilderForType

      public V1beta1Policy.PodSecurityPolicySpec.Builder newBuilderForType()
      Specified by:
      newBuilderForType in interface com.google.protobuf.Message
      Specified by:
      newBuilderForType in interface com.google.protobuf.MessageLite

    • newBuilder

      public static V1beta1Policy.PodSecurityPolicySpec.Builder newBuilder()

    • newBuilder

      public static V1beta1Policy.PodSecurityPolicySpec.Builder newBuilder(V1beta1Policy.PodSecurityPolicySpec prototype)

    • toBuilder

      public V1beta1Policy.PodSecurityPolicySpec.Builder toBuilder()
      Specified by:
      toBuilder in interface com.google.protobuf.Message
      Specified by:
      toBuilder in interface com.google.protobuf.MessageLite

    • newBuilderForType

      protected V1beta1Policy.PodSecurityPolicySpec.Builder newBuilderForType(com.google.protobuf.GeneratedMessageV3.BuilderParent parent)
      Specified by:
      newBuilderForType in class com.google.protobuf.GeneratedMessageV3

    • getDefaultInstance

      public static V1beta1Policy.PodSecurityPolicySpec getDefaultInstance()

    • parser

      public static com.google.protobuf.Parser<V1beta1Policy.PodSecurityPolicySpec> parser()

    • getParserForType

      public com.google.protobuf.Parser<V1beta1Policy.PodSecurityPolicySpec> getParserForType()
      Specified by:
      getParserForType in interface com.google.protobuf.Message
      Specified by:
      getParserForType in interface com.google.protobuf.MessageLite
      Overrides:
      getParserForType in class com.google.protobuf.GeneratedMessageV3

    • getDefaultInstanceForType

      public V1beta1Policy.PodSecurityPolicySpec getDefaultInstanceForType()
      Specified by:
      getDefaultInstanceForType in interface com.google.protobuf.MessageLiteOrBuilder
      Specified by:
      getDefaultInstanceForType in interface com.google.protobuf.MessageOrBuilder