github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update design doc with final PR merge

Browse Source
This commit is contained in:
derekwaynecarr
2015-01-08 11:15:40 -05:00
parent 869f06c4e8
commit cfd58000e9
1 changed files with 2 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
docs/design/admission_control.md
View File

@@ -40,7 +40,6 @@ package admission
// Attributes is an interface used by a plug-in to make an admission decision on a individual request. // Attributes is an interface used by a plug-in to make an admission decision on a individual request.
type Attributes interface { type Attributes interface {
GetClient() client.Interface
GetNamespace() string GetNamespace() string
GetKind() string GetKind() string
GetOperation() string GetOperation() string
@@ -60,7 +59,7 @@ of admission.Interface.
``` ```
func init() { func init() {
admission.RegisterPlugin("AlwaysDeny", func(config io.Reader) (admission.Interface, error) { return NewAlwaysDeny(), nil }) admission.RegisterPlugin("AlwaysDeny", func(client client.Interface, config io.Reader) (admission.Interface, error) { return NewAlwaysDeny(), nil })
} }
``` ```
@@ -73,7 +72,7 @@ will ensure the following:
2. Authenticate user 2. Authenticate user
3. Authorize user 3. Authorize user
4. If operation=create|update, then validate(object) 4. If operation=create|update, then validate(object)
5. If operation=create|update|delete, then admissionControl.AdmissionControl(requestAttributes) 5. If operation=create|update|delete, then admission.Admit(requestAttributes)
a. invoke each admission.Interface object in sequence a. invoke each admission.Interface object in sequence
6. Object is persisted 6. Object is persisted