Class PolicyClusterAdmissionRule
Inheritance
System.Object
PolicyClusterAdmissionRule
Inherited Members
System.Object.Equals(System.Object)
System.Object.Equals(System.Object, System.Object)
System.Object.GetHashCode()
System.Object.GetType()
System.Object.MemberwiseClone()
System.Object.ReferenceEquals(System.Object, System.Object)
System.Object.ToString()
Namespace: Pulumi.Gcp.BinaryAuthorization.Outputs
Assembly: Pulumi.Gcp.dll
Syntax
public sealed class PolicyClusterAdmissionRuleFields
View SourceCluster
The identifier for this object. Format specified above.
Declaration
public readonly string ClusterField Value
| Type | Description |
|---|---|
| System.String |
EnforcementMode
The action when a pod creation is denied by the admission rule.
Declaration
public readonly string EnforcementModeField Value
| Type | Description |
|---|---|
| System.String |
EvaluationMode
How this admission rule will be evaluated.
Declaration
public readonly string EvaluationModeField Value
| Type | Description |
|---|---|
| System.String |
RequireAttestationsBies
The resource names of the attestors that must attest to a
container image. If the attestor is in a different project from the
policy, it should be specified in the format projects/*/attestors/*.
Each attestor must exist before a policy can reference it. To add an
attestor to a policy the principal issuing the policy change
request must be able to read the attestor resource.
Note: this field must be non-empty when the evaluation_mode field
specifies REQUIRE_ATTESTATION, otherwise it must be empty.
Declaration
public readonly ImmutableArray<string> RequireAttestationsBiesField Value
| Type | Description |
|---|---|
| System.Collections.Immutable.ImmutableArray<System.String> |