kyverno/pkg/utils/admission/policy.go

package admission

import (
	"encoding/json"
	"fmt"

	kyvernov1 "github.com/kyverno/kyverno/api/kyverno/v1"
	admissionv1 "k8s.io/api/admission/v1"
)

func UnmarshalPolicy(kind string, raw []byte) (kyvernov1.PolicyInterface, error) {
	if kind == "ClusterPolicy" {
		var policy *kyvernov1.ClusterPolicy
		if err := json.Unmarshal(raw, &policy); err != nil {
			return nil, err
		}
		return policy, nil
	} else if kind == "Policy" {
		var policy *kyvernov1.Policy
		if err := json.Unmarshal(raw, &policy); err != nil {
			return nil, err
		}
		return policy, nil
	}
	return nil, fmt.Errorf("admission request does not contain a policy")
}

func GetPolicy(request *admissionv1.AdmissionRequest) (kyvernov1.PolicyInterface, error) {
	return UnmarshalPolicy(request.Kind.Kind, request.Object.Raw)
}

func GetPolicies(request *admissionv1.AdmissionRequest) (kyvernov1.PolicyInterface, kyvernov1.PolicyInterface, error) {
	policy, err := UnmarshalPolicy(request.Kind.Kind, request.Object.Raw)
	if err != nil {
		return policy, nil, err
	}
	if request.Operation == admissionv1.Update {
		oldPolicy, err := UnmarshalPolicy(request.Kind.Kind, request.OldObject.Raw)
		return policy, oldPolicy, err
	}
	return policy, nil, nil
}
feat: add CleanupPolicy validation code to CleanupPolicyHandler (#5338) * add validation code for cleanupPolicyHandler Signed-off-by: Nikhil Sharma <nikhilsharma230303@gmail.com> * update Signed-off-by: Nikhil Sharma <nikhilsharma230303@gmail.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * register kuttl tests for cleanup policy Signed-off-by: Nikhil Sharma <nikhilsharma230303@gmail.com> Signed-off-by: Nikhil Sharma <nikhilsharma230303@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> 2022-11-16 18:41:33 +05:30			`package admission`

			`import (`
			`"encoding/json"`
			`"fmt"`

			`kyvernov1 "github.com/kyverno/kyverno/api/kyverno/v1"`
			`admissionv1 "k8s.io/api/admission/v1"`
			`)`

			`func UnmarshalPolicy(kind string, raw []byte) (kyvernov1.PolicyInterface, error) {`
			`if kind == "ClusterPolicy" {`
			`var policy *kyvernov1.ClusterPolicy`
			`if err := json.Unmarshal(raw, &policy); err != nil {`
			`return nil, err`
			`}`
			`return policy, nil`
			`} else if kind == "Policy" {`
			`var policy *kyvernov1.Policy`
			`if err := json.Unmarshal(raw, &policy); err != nil {`
			`return nil, err`
			`}`
			`return policy, nil`
			`}`
			`return nil, fmt.Errorf("admission request does not contain a policy")`
			`}`

			`func GetPolicy(request *admissionv1.AdmissionRequest) (kyvernov1.PolicyInterface, error) {`
			`return UnmarshalPolicy(request.Kind.Kind, request.Object.Raw)`
			`}`

			`func GetPolicies(request *admissionv1.AdmissionRequest) (kyvernov1.PolicyInterface, kyvernov1.PolicyInterface, error) {`
			`policy, err := UnmarshalPolicy(request.Kind.Kind, request.Object.Raw)`
			`if err != nil {`
			`return policy, nil, err`
			`}`
			`if request.Operation == admissionv1.Update {`
			`oldPolicy, err := UnmarshalPolicy(request.Kind.Kind, request.OldObject.Raw)`
			`return policy, oldPolicy, err`
			`}`
			`return policy, nil, nil`
			`}`