class K8S::Api::Policy::V1beta1::PodSecurityPolicySpec
- K8S::Api::Policy::V1beta1::PodSecurityPolicySpec
- Reference
- Object
Overview
PodSecurityPolicySpec defines the policy enforced.
Included Modules
- JSON::Serializable
- JSON::Serializable::Unmapped
- YAML::Serializable
- YAML::Serializable::Unmapped
Defined in:
versions/v1.18/api/policy/v1beta1/pod_security_policy_spec.crConstructors
- .new(ctx : YAML::ParseContext, node : YAML::Nodes::Node)
- .new(pull : JSON::PullParser)
- .new(*, fs_group : Api::Policy::V1beta1::FSGroupStrategyOptions, run_as_user : Api::Policy::V1beta1::RunAsUserStrategyOptions, se_linux : Api::Policy::V1beta1::SELinuxStrategyOptions, supplemental_groups : Api::Policy::V1beta1::SupplementalGroupsStrategyOptions, allow_privilege_escalation : Bool? = nil, allowed_csi_drivers : Array(Api::Policy::V1beta1::AllowedCSIDriver)? = nil, allowed_capabilities : Array(String)? = nil, allowed_flex_volumes : Array(Api::Policy::V1beta1::AllowedFlexVolume)? = nil, allowed_host_paths : Array(Api::Policy::V1beta1::AllowedHostPath)? = nil, allowed_proc_mount_types : Array(String)? = nil, allowed_unsafe_sysctls : Array(String)? = nil, default_add_capabilities : Array(String)? = nil, default_allow_privilege_escalation : Bool? = nil, forbidden_sysctls : Array(String)? = nil, host_ipc : Bool? = nil, host_network : Bool? = nil, host_pid : Bool? = nil, host_ports : Array(Api::Policy::V1beta1::HostPortRange)? = nil, privileged : Bool? = nil, read_only_root_filesystem : Bool? = nil, required_drop_capabilities : Array(String)? = nil, run_as_group : Api::Policy::V1beta1::RunAsGroupStrategyOptions? = nil, runtime_class : Api::Policy::V1beta1::RuntimeClassStrategyOptions? = nil, volumes : Array(String)? = nil)
Instance Method Summary
- #allow_privilege_escalation : Bool?
- #allow_privilege_escalation=(allow_privilege_escalation : Bool?)
- #allowed_capabilities : Array(String)?
- #allowed_capabilities=(allowed_capabilities : Array(String)?)
- #allowed_csi_drivers : Array(Api::Policy::V1beta1::AllowedCSIDriver)?
- #allowed_csi_drivers=(allowed_csi_drivers : Array(Api::Policy::V1beta1::AllowedCSIDriver)?)
- #allowed_flex_volumes : Array(Api::Policy::V1beta1::AllowedFlexVolume)?
- #allowed_flex_volumes=(allowed_flex_volumes : Array(Api::Policy::V1beta1::AllowedFlexVolume)?)
- #allowed_host_paths : Array(Api::Policy::V1beta1::AllowedHostPath)?
- #allowed_host_paths=(allowed_host_paths : Array(Api::Policy::V1beta1::AllowedHostPath)?)
- #allowed_proc_mount_types : Array(String)?
- #allowed_proc_mount_types=(allowed_proc_mount_types : Array(String)?)
- #allowed_unsafe_sysctls : Array(String)?
- #allowed_unsafe_sysctls=(allowed_unsafe_sysctls : Array(String)?)
- #default_add_capabilities : Array(String)?
- #default_add_capabilities=(default_add_capabilities : Array(String)?)
- #default_allow_privilege_escalation : Bool?
- #default_allow_privilege_escalation=(default_allow_privilege_escalation : Bool?)
- #forbidden_sysctls : Array(String)?
- #forbidden_sysctls=(forbidden_sysctls : Array(String)?)
- #fs_group : Api::Policy::V1beta1::FSGroupStrategyOptions
- #fs_group=(fs_group : Api::Policy::V1beta1::FSGroupStrategyOptions)
- #host_ipc : Bool?
- #host_ipc=(host_ipc : Bool?)
- #host_network : Bool?
- #host_network=(host_network : Bool?)
- #host_pid : Bool?
- #host_pid=(host_pid : Bool?)
- #host_ports : Array(Api::Policy::V1beta1::HostPortRange)?
- #host_ports=(host_ports : Array(Api::Policy::V1beta1::HostPortRange)?)
- #privileged : Bool?
- #privileged=(privileged : Bool?)
- #read_only_root_filesystem : Bool?
- #read_only_root_filesystem=(read_only_root_filesystem : Bool?)
- #required_drop_capabilities : Array(String)?
- #required_drop_capabilities=(required_drop_capabilities : Array(String)?)
- #run_as_group : Api::Policy::V1beta1::RunAsGroupStrategyOptions?
- #run_as_group=(run_as_group : Api::Policy::V1beta1::RunAsGroupStrategyOptions?)
- #run_as_user : Api::Policy::V1beta1::RunAsUserStrategyOptions
- #run_as_user=(run_as_user : Api::Policy::V1beta1::RunAsUserStrategyOptions)
- #runtime_class : Api::Policy::V1beta1::RuntimeClassStrategyOptions?
- #runtime_class=(runtime_class : Api::Policy::V1beta1::RuntimeClassStrategyOptions?)
- #se_linux : Api::Policy::V1beta1::SELinuxStrategyOptions
- #se_linux=(se_linux : Api::Policy::V1beta1::SELinuxStrategyOptions)
- #supplemental_groups : Api::Policy::V1beta1::SupplementalGroupsStrategyOptions
- #supplemental_groups=(supplemental_groups : Api::Policy::V1beta1::SupplementalGroupsStrategyOptions)
- #volumes : Array(String)?
- #volumes=(volumes : Array(String)?)
Constructor Detail
def self.new(*, fs_group : Api::Policy::V1beta1::FSGroupStrategyOptions, run_as_user : Api::Policy::V1beta1::RunAsUserStrategyOptions, se_linux : Api::Policy::V1beta1::SELinuxStrategyOptions, supplemental_groups : Api::Policy::V1beta1::SupplementalGroupsStrategyOptions, allow_privilege_escalation : Bool? = nil, allowed_csi_drivers : Array(Api::Policy::V1beta1::AllowedCSIDriver)? = nil, allowed_capabilities : Array(String)? = nil, allowed_flex_volumes : Array(Api::Policy::V1beta1::AllowedFlexVolume)? = nil, allowed_host_paths : Array(Api::Policy::V1beta1::AllowedHostPath)? = nil, allowed_proc_mount_types : Array(String)? = nil, allowed_unsafe_sysctls : Array(String)? = nil, default_add_capabilities : Array(String)? = nil, default_allow_privilege_escalation : Bool? = nil, forbidden_sysctls : Array(String)? = nil, host_ipc : Bool? = nil, host_network : Bool? = nil, host_pid : Bool? = nil, host_ports : Array(Api::Policy::V1beta1::HostPortRange)? = nil, privileged : Bool? = nil, read_only_root_filesystem : Bool? = nil, required_drop_capabilities : Array(String)? = nil, run_as_group : Api::Policy::V1beta1::RunAsGroupStrategyOptions? = nil, runtime_class : Api::Policy::V1beta1::RuntimeClassStrategyOptions? = nil, volumes : Array(String)? = nil)
#
Instance Method Detail
def allowed_csi_drivers=(allowed_csi_drivers : Array(Api::Policy::V1beta1::AllowedCSIDriver)?)
#
def allowed_flex_volumes=(allowed_flex_volumes : Array(Api::Policy::V1beta1::AllowedFlexVolume)?)
#
def allowed_host_paths=(allowed_host_paths : Array(Api::Policy::V1beta1::AllowedHostPath)?)
#
def runtime_class=(runtime_class : Api::Policy::V1beta1::RuntimeClassStrategyOptions?)
#
def supplemental_groups=(supplemental_groups : Api::Policy::V1beta1::SupplementalGroupsStrategyOptions)
#