k8s: Validate API server included authorization mode

This patch verifies if CIS Kubernetes Benchmark v1.3.0 section regarding master node configuration is satisfied (1.1.32). It also fixes wrong documentation comment for similar validator (1.1.19). Issue-ID: SECCOM-235 Change-Id: I00cb8a458871b091b16fe60fc0087b7972aa3b6b Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
author: Pawel Wieczorek <p.wieczorek2@samsung.com> 2019-09-25 16:37:24 +0200
committer: Pawel Wieczorek <p.wieczorek2@samsung.com> 2019-09-26 19:02:01 +0200
commit: 4dbeacb893fce6c6c6dad99cd691362fda48ec91 (patch)
tree: 4119e4f4de56e883eb8ff291e44e29bc444c0f28 /test/security/k8s/src/check/cmd
parent: 944993869240ba58beab8958a61dacf927706a68 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/test/security/k8s/src/check/cmd/check/check.go b/test/security/k8s/src/check/cmd/check/check.go
index f348cd01a..0447d5bb0 100644
--- a/test/security/k8s/src/check/cmd/check/check.go
+++ b/test/security/k8s/src/check/cmd/check/check.go
@@ -65,6 +65,7 @@ func main() {
 	log.Printf("IsNamespaceLifecycleAdmissionControlPluginNotExcluded: %t\n", master.IsNamespaceLifecycleAdmissionControlPluginNotExcluded(k8sParams))
 
 	log.Printf("IsAlwaysAllowAuthorizationModeExcluded: %t\n", master.IsAlwaysAllowAuthorizationModeExcluded(k8sParams))
+	log.Printf("IsNodeAuthorizationModeIncluded: %t\n", master.IsNodeAuthorizationModeIncluded(k8sParams))
 
 	log.Printf("IsAuditLogPathSet: %t\n", master.IsAuditLogPathSet(k8sParams))
 	log.Printf("IsAuditLogMaxAgeValid: %t\n", master.IsAuditLogPathSet(k8sParams))
author	Pawel Wieczorek <p.wieczorek2@samsung.com>	2019-09-25 16:37:24 +0200
committer	Pawel Wieczorek <p.wieczorek2@samsung.com>	2019-09-26 19:02:01 +0200
commit	4dbeacb893fce6c6c6dad99cd691362fda48ec91 (patch)
tree	4119e4f4de56e883eb8ff291e44e29bc444c0f28 /test/security/k8s/src/check/cmd
parent	944993869240ba58beab8958a61dacf927706a68 (diff)