kyverno/pkg/webhooks/utils.go

package webhooks

import (
	kubeclient "github.com/nirmata/kube-policy/kubeclient"
	types "github.com/nirmata/kube-policy/pkg/apis/policy/v1alpha1"
	mutation "github.com/nirmata/kube-policy/pkg/policyengine/mutation"
	"k8s.io/api/admission/v1beta1"
)

func kindIsSupported(kind string) bool {
	for _, k := range kubeclient.GetSupportedKinds() {
		if k == kind {
			return true
		}
	}
	return false
}

// Checks for admission if kind is supported
func AdmissionIsRequired(request *v1beta1.AdmissionRequest) bool {
	// Here you can make additional hardcoded checks
	return kindIsSupported(request.Kind.Kind)
}

// Checks requests kind, name and labels to fit the policy
func IsRuleApplicableToRequest(policyResource types.ResourceDescription, request *v1beta1.AdmissionRequest) (bool, error) {
	return mutation.IsRuleApplicableToResource(request.Object.Raw, policyResource)
}
NK-10: Controller renamed to PolicyController. Created MutationWebhook class in new webhook package. Implemented filtering of incoming objects by Kind. Implemented simple usage of PolicyController in MutationWebhook. 2019-02-21 20:31:18 +02:00			`package webhooks`

NK-10: Refactored policy types, used patch operation struct from there instead of internal struct. Implemented checking of incoming request to correspond the policy rule, added tests. Implemented generation of JSON patches according to patches in policy object, added tests. Implemented base version of Mutate function as a wrapper for all mutation functions. 2019-02-22 18:12:14 +02:00			`import (`
redesign event & violation builders. kubeclient to provide resource handlers 2019-05-06 09:12:37 -07:00			`kubeclient "github.com/nirmata/kube-policy/kubeclient"`
NK-23: Thre creation of default loggers moved to inside classes. Removed fatal termination from object constructors. Implemented new KubeClient class with test method which creates a Secret. Improved comments for the types structures. Added WebhookServerConfig structure instead of the most parameters to NewWebhookServer. 2019-03-04 20:40:02 +02:00			`types "github.com/nirmata/kube-policy/pkg/apis/policy/v1alpha1"`
Add PolicyEngine 2019-05-09 22:26:22 -07:00			`mutation "github.com/nirmata/kube-policy/pkg/policyengine/mutation"`
NK-23: Thre creation of default loggers moved to inside classes. Removed fatal termination from object constructors. Implemented new KubeClient class with test method which creates a Secret. Improved comments for the types structures. Added WebhookServerConfig structure instead of the most parameters to NewWebhookServer. 2019-03-04 20:40:02 +02:00			`"k8s.io/api/admission/v1beta1"`
NK-10: Refactored policy types, used patch operation struct from there instead of internal struct. Implemented checking of incoming request to correspond the policy rule, added tests. Implemented generation of JSON patches according to patches in policy object, added tests. Implemented base version of Mutate function as a wrapper for all mutation functions. 2019-02-22 18:12:14 +02:00			`)`
NK-10: Controller renamed to PolicyController. Created MutationWebhook class in new webhook package. Implemented filtering of incoming objects by Kind. Implemented simple usage of PolicyController in MutationWebhook. 2019-02-21 20:31:18 +02:00
			`func kindIsSupported(kind string) bool {`
code review changes 2019-05-07 13:26:54 -07:00			`for _, k := range kubeclient.GetSupportedKinds() {`
NK-23: Thre creation of default loggers moved to inside classes. Removed fatal termination from object constructors. Implemented new KubeClient class with test method which creates a Secret. Improved comments for the types structures. Added WebhookServerConfig structure instead of the most parameters to NewWebhookServer. 2019-03-04 20:40:02 +02:00			`if k == kind {`
			`return true`
			`}`
			`}`
			`return false`
NK-10: Controller renamed to PolicyController. Created MutationWebhook class in new webhook package. Implemented filtering of incoming objects by Kind. Implemented simple usage of PolicyController in MutationWebhook. 2019-02-21 20:31:18 +02:00			`}`

NK-23: Implemented Validate() methods for structures in types.go. Implemented tests for added methods. Added usage of Validate() methods to the code, removed old checks. Fixed some comments, added new comments. 2019-03-05 20:04:23 +02:00			`// Checks for admission if kind is supported`
NK-10: Controller renamed to PolicyController. Created MutationWebhook class in new webhook package. Implemented filtering of incoming objects by Kind. Implemented simple usage of PolicyController in MutationWebhook. 2019-02-21 20:31:18 +02:00			`func AdmissionIsRequired(request *v1beta1.AdmissionRequest) bool {`
NK-23: Thre creation of default loggers moved to inside classes. Removed fatal termination from object constructors. Implemented new KubeClient class with test method which creates a Secret. Improved comments for the types structures. Added WebhookServerConfig structure instead of the most parameters to NewWebhookServer. 2019-03-04 20:40:02 +02:00			`// Here you can make additional hardcoded checks`
			`return kindIsSupported(request.Kind.Kind)`
NK-10: Controller renamed to PolicyController. Created MutationWebhook class in new webhook package. Implemented filtering of incoming objects by Kind. Implemented simple usage of PolicyController in MutationWebhook. 2019-02-21 20:31:18 +02:00			`}`
NK-10: Refactored policy types, used patch operation struct from there instead of internal struct. Implemented checking of incoming request to correspond the policy rule, added tests. Implemented generation of JSON patches according to patches in policy object, added tests. Implemented base version of Mutate function as a wrapper for all mutation functions. 2019-02-22 18:12:14 +02:00
NK-23: Implemented Validate() methods for structures in types.go. Implemented tests for added methods. Added usage of Validate() methods to the code, removed old checks. Fixed some comments, added new comments. 2019-03-05 20:04:23 +02:00			`// Checks requests kind, name and labels to fit the policy`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`func IsRuleApplicableToRequest(policyResource types.ResourceDescription, request *v1beta1.AdmissionRequest) (bool, error) {`
Add PolicyEngine 2019-05-09 22:26:22 -07:00			`return mutation.IsRuleApplicableToResource(request.Object.Raw, policyResource)`
NK-10: Refactored policy types, used patch operation struct from there instead of internal struct. Implemented checking of incoming request to correspond the policy rule, added tests. Implemented generation of JSON patches according to patches in policy object, added tests. Implemented base version of Mutate function as a wrapper for all mutation functions. 2019-02-22 18:12:14 +02:00			`}`