diff options
| author | Ananya Kumar <skywalker94@gmail.com> | 2015-08-03 23:00:48 -0700 |
|---|---|---|
| committer | Ananya Kumar <skywalker94@gmail.com> | 2015-08-03 23:00:48 -0700 |
| commit | 0a0fbb58fe67fbfb864145956bf3b8b86625d190 (patch) | |
| tree | 3f70853ef3eb967aed37319f9a99f91a0bd85694 | |
| parent | 4a1dcd958ef57876885631f8b19b8cc803e6316e (diff) | |
Update admission_control.md
| -rw-r--r-- | admission_control.md | 13 |
1 files changed, 7 insertions, 6 deletions
diff --git a/admission_control.md b/admission_control.md index 8cc6cf03..b84b2543 100644 --- a/admission_control.md +++ b/admission_control.md @@ -98,16 +98,17 @@ func init() { Invocation of admission control is handled by the **APIServer** and not individual **RESTStorage** implementations. -This design assumes that **Issue 297** is adopted, and as a consequence, the general framework of the APIServer request/response flow -will ensure the following: +This design assumes that **Issue 297** is adopted, and as a consequence, the general framework of the APIServer request/response flow will ensure the following: 1. Incoming request 2. Authenticate user 3. Authorize user -4. If operation=create|update|delete, then admission.Admit(requestAttributes) - a. invoke each admission.Interface object in sequence -5. If operation=create|update, then validate(object) -6. Object is persisted +4. If operation=create|update|delete|connect, then admission.Admit(requestAttributes) + - invoke each admission.Interface object in sequence +5. Case on the operation: + - If operation=create|update, then validate(object) and persist + - If operation=delete, delete the object + - If operation=connect, exec If at any step, there is an error, the request is canceled. |