UNPKG

k8ts

Version:

Powerful framework for building Kubernetes manifests in TypeScript.

100 lines (95 loc) 2.48 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
import { Kind, Resource_Top } from "@k8ts/instruments" import { CDK } from "@k8ts/sample-interfaces" import { seq } from "doddle" import { rbac } from "../../kinds/rbac" export interface ClusterRole_Rule< Groups extends Kind.Group[] = Kind.Group[], Resources extends Kind.Kind<Groups[number]["name"], string, string>[] = Kind.Kind[] > { resources: Resources verbs: Verbs[] } export type ClusterRole_RuleProducer<Rules extends ClusterRole_Rule> = ( scope: ClusterRole_Scope ) => Iterable<Rules> class ClusterRole_Scope { Rule<const R extends Kind[]>(...resources: R) { return { verbs(...verbs: Verbs[]) { return { resources: resources, verbs: verbs } } } } } export interface ClusterRole_Props<Rules extends ClusterRole_Rule = ClusterRole_Rule> { rules: ClusterRole_RuleProducer<Rules> } export class ClusterRole<Name extends string = string> extends Resource_Top< Name, ClusterRole_Props > { get kind() { return rbac.v1.ClusterRole._ } constructor(name: Name, props: ClusterRole_Props) { super(name, props) } private _fromObject(rule: ClusterRole_Rule) { return { apiGroups: Array.from(new Set(rule.resources.map(x => x.parent.parent.name))), resources: rule.resources.map(r => r.plural), verbs: rule.verbs } } protected body(): CDK.KubeClusterRoleProps { const rules = seq(this.props.rules(new ClusterRole_Scope())) .map(rule => { return this._fromObject(rule) }) .toArray() .pull() return { rules: rules } } } export type Verbs = | "get" | "list" | "watch" | "create" | "update" | "patch" | "delete" | "deletecollection" export type ApiGroup = | "namespaces" | "pods" | "services" | "endpoints" | "persistentvolumeclaims" | "events" | "configmaps" | "secrets" | "httproutes" | "gateways" | "jobs" | "cronjobs" | "deployments" | "replicasets" | "statefulsets" | "daemonsets" | "podtemplates" | "clusterroles" | "roles" | "rolebindings" | "clusterrolebindings" | "serviceaccounts" | "nodes" | "persistentvolumes" | "storageclasses" | "volumeattachments" | "persistentvolumeclaims"