plugin/kubernetes: correctly set NODATA for ns (#1229)
* plugin/kubernetes: Add GetNamespaceByName A bare or wildcard query for just the namespace should return NODATA, not NXDOMAIN, otherwise we deny the entirety of the names under the namespace. Add test to check for this in pod verified mode. * Review More comments and move namespace code to namespace.go
This commit is contained in:
Miek Gieben
GitHub
parent
9018451dd3
commit
c37bf56b1e
8 changed files with 101 additions and 10 deletions
20
plugin/kubernetes/namespace.go
Normal file
20
plugin/kubernetes/namespace.go
Normal file
|
|
@ -0,0 +1,20 @@
|
|||
package kubernetes
|
||||
|
||||
// namespace checks if namespace n exists in this cluster. This returns true
|
||||
// even for non exposed namespaces, see namespaceExposed.
|
||||
func (k *Kubernetes) namespace(n string) bool {
|
||||
ns, err := k.APIConn.GetNamespaceByName(n)
|
||||
if err != nil {
|
||||
return false
|
||||
}
|
||||
return ns.ObjectMeta.Name == n
|
||||
}
|
||||
|
||||
// namespaceExposed returns true when the namespace is exposed.
|
||||
func (k *Kubernetes) namespaceExposed(namespace string) bool {
|
||||
_, ok := k.Namespaces[namespace]
|
||||
if len(k.Namespaces) > 0 && !ok {
|
||||
return false
|
||||
}
|
||||
return true
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue