代码拉取完成,页面将自动刷新
package authn
import (
"github.com/sirupsen/logrus"
"k8s.io/apimachinery/pkg/api/errors"
"strings"
"context"
"github.com/rancher/norman/httperror"
"github.com/rancher/norman/store/transform"
"github.com/rancher/norman/types"
"github.com/rancher/norman/types/values"
"github.com/rancher/rancher/pkg/auth/providers"
"github.com/rancher/rancher/pkg/auth/requests"
"github.com/rancher/types/client/management/v3"
"github.com/rancher/types/config"
)
func SetRTBStore(ctx context.Context, schema *types.Schema, mgmt *config.ScaledContext) {
providers.Configure(ctx, mgmt)
userLister := mgmt.Management.Users("").Controller().Lister()
t := &transform.Store{
Store: schema.Store,
Transformer: func(apiContext *types.APIContext, schema *types.Schema, data map[string]interface{}, opt *types.QueryOptions) (map[string]interface{}, error) {
if id, ok := data[client.ClusterRoleTemplateBindingFieldUserID].(string); ok && id != "" {
u, err := userLister.Get("", id)
if err != nil {
if !errors.IsNotFound(err) {
logrus.Errorf("problem retrieving user for CRTB %v from cache during CRTB transformation: %v", data, err)
}
return data, nil
}
for _, pid := range u.PrincipalIDs {
if strings.HasPrefix(pid, "system://") {
if opt != nil && opt.Options["ByID"] == "true" {
return nil, httperror.NewAPIError(httperror.NotFound, "resource not found")
}
return nil, nil
}
}
}
return data, nil
},
}
s := &Store{
Store: t,
auth: requests.NewAuthenticator(ctx, mgmt),
}
schema.Store = s
}
type Store struct {
types.Store
auth requests.Authenticator
}
func (s *Store) Create(apiContext *types.APIContext, schema *types.Schema, data map[string]interface{}) (map[string]interface{}, error) {
if principalID, ok := data[client.ClusterRoleTemplateBindingFieldUserPrincipalID].(string); ok && principalID != "" && !strings.HasPrefix(principalID, "local://") {
token, err := s.auth.TokenFromRequest(apiContext.Request)
if err != nil {
return nil, err
}
princ, err := providers.GetPrincipal(principalID, *token)
if err != nil {
return nil, err
}
if princ.DisplayName != "" {
values.PutValue(data, princ.DisplayName, "annotations", "auth.cattle.io/principal-display-name")
}
}
return s.Store.Create(apiContext, schema, data)
}
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。