Class PolicyClusterAdmissionRuleArgs
Inherited Members
System.Object.Equals(System.Object)
System.Object.Equals(System.Object, System.Object)
System.Object.GetHashCode()
System.Object.GetType()
System.Object.MemberwiseClone()
System.Object.ReferenceEquals(System.Object, System.Object)
System.Object.ToString()
Namespace: Pulumi.Gcp.BinaryAuthorization.Inputs
Assembly: Pulumi.Gcp.dll
Syntax
public sealed class PolicyClusterAdmissionRuleArgs : ResourceArgsConstructors
View SourcePolicyClusterAdmissionRuleArgs()
Declaration
public PolicyClusterAdmissionRuleArgs()Properties
View SourceCluster
The identifier for this object. Format specified above.
Declaration
public Input<string> Cluster { get; set; }Property Value
| Type | Description |
|---|---|
| Input<System.String> |
EnforcementMode
The action when a pod creation is denied by the admission rule.
Declaration
public Input<string> EnforcementMode { get; set; }Property Value
| Type | Description |
|---|---|
| Input<System.String> |
EvaluationMode
How this admission rule will be evaluated.
Declaration
public Input<string> EvaluationMode { get; set; }Property Value
| Type | Description |
|---|---|
| Input<System.String> |
RequireAttestationsBies
The resource names of the attestors that must attest to a
container image. If the attestor is in a different project from the
policy, it should be specified in the format projects/*/attestors/*.
Each attestor must exist before a policy can reference it. To add an
attestor to a policy the principal issuing the policy change
request must be able to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field
specifies REQUIRE_ATTESTATION, otherwise it must be empty.
Declaration
public InputList<string> RequireAttestationsBies { get; set; }Property Value
| Type | Description |
|---|---|
| InputList<System.String> |