Class PolicyArgs

Inheritance

System.Object

InputArgs

ResourceArgs

PolicyArgs

Inherited Members

ResourceArgs.Empty

System.Object.Equals(System.Object)

System.Object.Equals(System.Object, System.Object)

System.Object.GetHashCode()

System.Object.GetType()

System.Object.MemberwiseClone()

System.Object.ReferenceEquals(System.Object, System.Object)

System.Object.ToString()

Namespace: Pulumi.Gcp.BinaryAuthorization

Assembly: Pulumi.Gcp.dll

Syntax

public sealed class PolicyArgs : ResourceArgs

Constructors

View Source

PolicyArgs()

Declaration

public PolicyArgs()

Properties

View Source

AdmissionWhitelistPatterns

A whitelist of image patterns to exclude from admission rules. If an image's name matches a whitelist pattern, the image's admission requests will always be permitted regardless of your admission rules. Structure is documented below.

Declaration

public InputList<PolicyAdmissionWhitelistPatternArgs> AdmissionWhitelistPatterns { get; set; }

Property Value

Type	Description
InputList<PolicyAdmissionWhitelistPatternArgs>

View Source

ClusterAdmissionRules

Per-cluster admission rules. An admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied. There can be at most one admission rule per cluster spec.

Declaration

public InputList<PolicyClusterAdmissionRuleArgs> ClusterAdmissionRules { get; set; }

Property Value

Type	Description
InputList<PolicyClusterAdmissionRuleArgs>

View Source

DefaultAdmissionRule

Default admission rule for a cluster without a per-cluster admission rule. Structure is documented below.

Declaration

public Input<PolicyDefaultAdmissionRuleArgs> DefaultAdmissionRule { get; set; }

Property Value

Type	Description
Input<PolicyDefaultAdmissionRuleArgs>

View Source

Description

A descriptive comment.

Declaration

public Input<string> Description { get; set; }

Property Value

Type	Description
Input<System.String>

View Source

GlobalPolicyEvaluationMode

Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy.

Declaration

public Input<string> GlobalPolicyEvaluationMode { get; set; }

Property Value

Type	Description
Input<System.String>

View Source

Project

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

Declaration

public Input<string> Project { get; set; }

Property Value

Type	Description
Input<System.String>