github.com/caos/orbos@v1.5.14-0.20221103111702-e6cd0cea7ad4/pkg/kubernetes/resources/role/adapt.go

github.com/caos/orbos@v1.5.14-0.20221103111702-e6cd0cea7ad4/pkg/kubernetes/resources/role/adapt.go (about)

     1  package role
     2  
     3  import (
     4  	"github.com/caos/orbos/pkg/kubernetes"
     5  	"github.com/caos/orbos/pkg/kubernetes/resources"
     6  	"github.com/caos/orbos/pkg/labels"
     7  	rbac "k8s.io/api/rbac/v1"
     8  	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
     9  )
    10  
    11  func AdaptFuncToEnsure(namespace string, nameLabels *labels.Name, apiGroups, kubeResources, verbs []string) (resources.QueryFunc, error) {
    12  	role := &rbac.Role{
    13  		ObjectMeta: metav1.ObjectMeta{
    14  			Name:      nameLabels.Name(),
    15  			Namespace: namespace,
    16  			Labels:    labels.MustK8sMap(nameLabels),
    17  		},
    18  		Rules: []rbac.PolicyRule{{
    19  			APIGroups: apiGroups,
    20  			Resources: kubeResources,
    21  			Verbs:     verbs,
    22  		}},
    23  	}
    24  	return func(_ kubernetes.ClientInt, _ map[string]interface{}) (resources.EnsureFunc, error) {
    25  		return func(k8sClient kubernetes.ClientInt) error {
    26  			return k8sClient.ApplyRole(role)
    27  		}, nil
    28  	}, nil
    29  }
    30  
    31  func AdaptFuncToDestroy(name, namespace string) (resources.DestroyFunc, error) {
    32  	return func(client kubernetes.ClientInt) error {
    33  		return client.DeleteRole(namespace, name)
    34  	}, nil
    35  }