DefaultAuthWebhookRetryBackoff is the default backoff parameters for both authentication and authorization webhook used by the apiserver.

NewAdmissionOptions creates a new instance of AdmissionOptions Note: In addition it calls RegisterAllAdmissionPlugins to register all generic admission plugins.

NewEgressSelectorOptions creates a new instance of EgressSelectorOptions The option is to point to a configuration file for egress/konnectivity.

NewTracingOptions creates a new instance of TracingOptions.

ParseWatchCacheSizes turns a list of cache size values into a map of group resources to requested sizes.

WriteWatchCacheSizes turns a map of cache size values into a list of string specifications.

ModeBatch indicates that the audit backend should buffer audit events internally, sending batch updates either once a certain number of events have been received or a certain amount of time has passed.

ModeBlocking causes the audit backend to block on every attempt to process a set of events.

ModeBlockingStrict is the same as ModeBlocking, except when there is a failure during audit logging at RequestReceived stage, the whole request to apiserver will fail.

AllowedModes is the modes known for audit backends.

AdmissionOptions holds the admission options.

APIEnablementOptions contains the options for which resources to turn on and off.

AuditDynamicOptions control the configuration of dynamic backends for audit events.

AuditLogOptions determines the output of the structured audit log by default.

AuditWebhookOptions control the webhook configuration for audit events.

ClientCertAuthenticationOptions provides different options for client cert auth.

CoreAPIOptions contains options to configure the connection to a core API Kubernetes apiserver.

DelegatingAuthenticationOptions provides an easy way for composing API servers to delegate their authentication to the root kube API server.

DelegatingAuthorizationOptions provides an easy way for composing API servers to delegate their authorization to the root kube API server.

DeprecatedInsecureServingOptions are for creating an unauthenticated, unauthorized, insecure port.

DeprecatedInsecureServingOptionsWithLoopback adds loopback functionality to the DeprecatedInsecureServingOptions.

DynamicRequestHeaderController combines DynamicCAFromConfigMapController and RequestHeaderAuthRequestController into one controller for dynamically filling RequestHeaderConfig struct.

EgressSelectorOptions holds the api server egress selector options.

RecommendedOptions contains the recommended options for running an API server.

ServerRunOptions contains the options while running a generic api server.

TracingOptions contain configuration options for tracing exporters.

GroupRegistry provides a method to check whether given group is registered.