mirror of
https://github.com/projectcapsule/capsule.git
synced 2026-02-14 09:59:57 +00:00
730151cb44
* chore: improve dev targets Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> * feat(controller): implement deterministic rolebinding reflection Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> * feat(controller): capsule users are determined from configuration status Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> * feat(tenantowners): added agreggate option - tenantowners are always considered capsule users Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> * feat(tenantowner): add implicit aggregation for tenants Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> * chore: remove helm flags Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> * fix(config): remove usergroups default Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com> --------- Signed-off-by: Oliver Bähler <oliverbaehler@hotmail.com>
74 lines
1.7 KiB
Go
74 lines
1.7 KiB
Go
// Copyright 2020-2025 Project Capsule Authors
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package meta
|
|
|
|
import (
|
|
"strings"
|
|
|
|
"sigs.k8s.io/controller-runtime/pkg/client"
|
|
)
|
|
|
|
const (
|
|
TenantNameLabel = "kubernetes.io/metadata.name"
|
|
|
|
TenantLabel = "capsule.clastix.io/tenant"
|
|
NewTenantLabel = "projectcapsule.dev/tenant"
|
|
|
|
ResourcePoolLabel = "projectcapsule.dev/pool"
|
|
|
|
FreezeLabel = "projectcapsule.dev/freeze"
|
|
FreezeLabelTrigger = "true"
|
|
|
|
OwnerPromotionLabel = "owner.projectcapsule.dev/promote"
|
|
OwnerPromotionLabelTrigger = "true"
|
|
|
|
CordonedLabel = "projectcapsule.dev/cordoned"
|
|
CordonedLabelTrigger = "true"
|
|
|
|
ManagedByCapsuleLabel = "capsule.clastix.io/managed-by"
|
|
|
|
LimitRangeLabel = "capsule.clastix.io/limit-range"
|
|
NetworkPolicyLabel = "capsule.clastix.io/network-policy"
|
|
ResourceQuotaLabel = "capsule.clastix.io/resource-quota"
|
|
RolebindingLabel = "capsule.clastix.io/role-binding"
|
|
)
|
|
|
|
func FreezeLabelTriggers(obj client.Object) bool {
|
|
return labelTriggers(obj, FreezeLabel, FreezeLabelTrigger)
|
|
}
|
|
|
|
func FreezeLabelRemove(obj client.Object) {
|
|
labelRemove(obj, FreezeLabel)
|
|
}
|
|
|
|
func OwnerPromotionLabelTriggers(obj client.Object) bool {
|
|
return labelTriggers(obj, OwnerPromotionLabel, OwnerPromotionLabelTrigger)
|
|
}
|
|
|
|
func OwnerPromotionLabelRemove(obj client.Object) {
|
|
labelRemove(obj, OwnerPromotionLabel)
|
|
}
|
|
|
|
func labelRemove(obj client.Object, anno string) {
|
|
annotations := obj.GetLabels()
|
|
|
|
if _, ok := annotations[anno]; ok {
|
|
delete(annotations, anno)
|
|
|
|
obj.SetLabels(annotations)
|
|
}
|
|
}
|
|
|
|
func labelTriggers(obj client.Object, anno string, trigger string) bool {
|
|
annotations := obj.GetLabels()
|
|
|
|
if val, ok := annotations[anno]; ok {
|
|
if strings.ToLower(val) == trigger {
|
|
return true
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|