/
cr.go
49 lines (41 loc) 路 1.18 KB
/
cr.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
// SPDX-License-Identifier: Apache-2.0
// Copyright Authors of Popeye
package scrub
import (
"context"
"github.com/derailed/popeye/internal"
"github.com/derailed/popeye/internal/db"
"github.com/derailed/popeye/internal/issues"
"github.com/derailed/popeye/internal/lint"
v1 "k8s.io/api/core/v1"
rbacv1 "k8s.io/api/rbac/v1"
)
// ClusterRole represents a ClusterRole scruber.
type ClusterRole struct {
*issues.Collector
*Cache
}
// NewClusterRole returns a new instance.
func NewClusterRole(ctx context.Context, c *Cache, codes *issues.Codes) Linter {
return &ClusterRole{
Collector: issues.NewCollector(codes, c.Config),
Cache: c,
}
}
func (s *ClusterRole) Preloads() Preloads {
return Preloads{
internal.CR: db.LoadResource[*rbacv1.ClusterRole],
internal.CRB: db.LoadResource[*rbacv1.ClusterRoleBinding],
internal.RO: db.LoadResource[*rbacv1.Role],
internal.SA: db.LoadResource[*v1.ServiceAccount],
}
}
// Lint all available ClusterRoles.
func (s *ClusterRole) Lint(ctx context.Context) error {
for k, f := range s.Preloads() {
if err := f(ctx, s.Loader, internal.Glossary[k]); err != nil {
return err
}
}
return lint.NewClusterRole(s.Collector, s.DB).Lint(ctx)
}