kyverno/pkg/engine/generation.go

package engine

import (
	"fmt"

	"github.com/golang/glog"
	kubepolicy "github.com/nirmata/kyverno/pkg/apis/policy/v1alpha1"
	client "github.com/nirmata/kyverno/pkg/dclient"
	"github.com/nirmata/kyverno/pkg/info"
	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
)

// Generate should be called to process generate rules on the resource
func Generate(client *client.Client, policy kubepolicy.Policy, rawResource []byte, gvk metav1.GroupVersionKind, processExisting bool) []*info.RuleInfo {
	ris := []*info.RuleInfo{}

	for _, rule := range policy.Spec.Rules {
		if rule.Generation == nil {
			continue
		}

		ri := info.NewRuleInfo(rule.Name, info.Generation)

		ok := ResourceMeetsDescription(rawResource, rule.ResourceDescription, gvk)
		if !ok {
			glog.Infof("Rule is not applicable to the request: rule name = %s in policy %s \n", rule.Name, policy.ObjectMeta.Name)
			continue
		}

		err := applyRuleGenerator(client, rawResource, rule.Generation, gvk, processExisting)
		if err != nil {
			ri.Fail()
			ri.Addf("Rule %s: Failed to apply rule generator, err %v.", rule.Name, err)
		} else {
			ri.Addf("Rule %s: Generation succesfully.", rule.Name)
		}
		ris = append(ris, ri)
	}
	return ris
}

func applyRuleGenerator(client *client.Client, rawResource []byte, generator *kubepolicy.Generation, gvk metav1.GroupVersionKind, processExistingResources bool) error {

	var err error

	namespace := ParseNameFromObject(rawResource)
	err = client.GenerateResource(*generator, namespace, processExistingResources)
	if err != nil {
		return fmt.Errorf("Unable to apply generator for %s '%s/%s' : %v", generator.Kind, namespace, generator.Name, err)
	}
	glog.Infof("Successfully applied generator %s '%s/%s'", generator.Kind, namespace, generator.Name)
	return nil
}
Resolve PR 27 2019-05-13 18:17:28 -07:00			`package engine`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00
			`import (`
			`"fmt"`

support generation of any resource 2019-05-31 17:59:36 -07:00			`"github.com/golang/glog"`
rename pkg to kyverno 2019-05-21 11:00:09 -07:00			`kubepolicy "github.com/nirmata/kyverno/pkg/apis/policy/v1alpha1"`
move client to pkg, helper script for self-signed certs & update documentation 2019-05-29 14:12:09 -07:00			`client "github.com/nirmata/kyverno/pkg/dclient"`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`"github.com/nirmata/kyverno/pkg/info"`
Implement Generate() 2019-05-14 18:20:41 -07:00			`metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`)`

Implement Generate() 2019-05-14 18:20:41 -07:00			`// Generate should be called to process generate rules on the resource`
create events for processExisting 2019-06-26 12:19:11 -07:00			`func Generate(client client.Client, policy kubepolicy.Policy, rawResource []byte, gvk metav1.GroupVersionKind, processExisting bool) []info.RuleInfo {`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`ris := []*info.RuleInfo{}`
Implement Generate() 2019-05-14 18:20:41 -07:00
Fixed issue with validation error messages 2019-05-20 14:48:38 +03:00			`for _, rule := range policy.Spec.Rules {`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`if rule.Generation == nil {`
			`continue`
			`}`
Implement Generate() 2019-05-14 18:20:41 -07:00
rule info uses type of rule 2019-06-25 23:58:28 -07:00			`ri := info.NewRuleInfo(rule.Name, info.Generation)`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00
			`ok := ResourceMeetsDescription(rawResource, rule.ResourceDescription, gvk)`
Implement Generate() 2019-05-14 18:20:41 -07:00			`if !ok {`
support generation of any resource 2019-05-31 17:59:36 -07:00			`glog.Infof("Rule is not applicable to the request: rule name = %s in policy %s \n", rule.Name, policy.ObjectMeta.Name)`
Implement Generate() 2019-05-14 18:20:41 -07:00			`continue`
			`}`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00
create events for processExisting 2019-06-26 12:19:11 -07:00			`err := applyRuleGenerator(client, rawResource, rule.Generation, gvk, processExisting)`
Implement Generate() 2019-05-14 18:20:41 -07:00			`if err != nil {`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`ri.Fail()`
create event from policy info 2019-06-26 18:04:50 -07:00			`ri.Addf("Rule %s: Failed to apply rule generator, err %v.", rule.Name, err)`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`} else {`
create event from policy info 2019-06-26 18:04:50 -07:00			`ri.Addf("Rule %s: Generation succesfully.", rule.Name)`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`}`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`ris = append(ris, ri)`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`}`
introduce info struct for engine responses 2019-06-25 18:16:02 -07:00			`return ris`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`}`

create events for processExisting 2019-06-26 12:19:11 -07:00			`func applyRuleGenerator(client client.Client, rawResource []byte, generator kubepolicy.Generation, gvk metav1.GroupVersionKind, processExistingResources bool) error {`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00
Merge branch 'develop' into lists-validation 2019-05-20 17:25:57 +03:00			`var err error`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00
Merge branch 'lists-validation' into 28-Stateless-policy-engine # Conflicts: # pkg/engine/generation.go 2019-05-16 18:09:20 -07:00			`namespace := ParseNameFromObject(rawResource)`
create events for processExisting 2019-06-26 12:19:11 -07:00			`err = client.GenerateResource(*generator, namespace, processExistingResources)`
Finished Generate() logic to actual generating the resource 2019-05-16 14:09:02 -07:00			`if err != nil {`
			`return fmt.Errorf("Unable to apply generator for %s '%s/%s' : %v", generator.Kind, namespace, generator.Name, err)`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`}`
update namespace trigger + update documentation 2019-06-03 16:02:34 -07:00			`glog.Infof("Successfully applied generator %s '%s/%s'", generator.Kind, namespace, generator.Name)`
Finished Generate() logic to actual generating the resource 2019-05-16 14:09:02 -07:00			`return nil`
Updated code in the project to be compilable with new version of Policy. Moved logic from webhooks/mutation.go to policyengine/mutation.go and server.go 2019-05-13 21:27:47 +03:00			`}`