Package org.cdk8s.plus24.k8s

Interface PolicyRulesWithSubjectsV1Beta2

  • All Superinterfaces:
    software.amazon.jsii.JsiiSerializable
    All Known Implementing Classes:
    PolicyRulesWithSubjectsV1Beta2.Jsii$Proxy
    @Generated(value="jsii-pacmak/1.80.0 (build bce6a1d)",
           date="2023-05-05T16:22:34.230Z")
@Stability(Stable)
public interface PolicyRulesWithSubjectsV1Beta2
extends software.amazon.jsii.JsiiSerializable
    PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver.

    The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.

    • Method Detail

      • getSubjects

        @Stability(Stable)
@NotNull
List<SubjectV1Beta2> getSubjects()
        subjects is the list of normal user, serviceaccount, or group that this rule cares about.

        There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.

      • getNonResourceRules

        @Stability(Stable)
@Nullable
default List<NonResourcePolicyRuleV1Beta2> getNonResourceRules()
        `nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.

      • getResourceRules

        @Stability(Stable)
@Nullable
default List<ResourcePolicyRuleV1Beta2> getResourceRules()
        `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource.

        At least one of resourceRules and nonResourceRules has to be non-empty.