kyverno/documentation/writing-policies-generate.md

<small>*[documentation](/README.md#documentation) / [Writing Policies](/documentation/writing-policies.md) / Generate*</small>

# Generate Configurations 

```generatate``` feature can be applied to created namespaces to create new resources in them. This feature is useful when every namespace in a cluster must contain some basic required resources. The feature is available for policy rules in which the resource kind is Namespace.

## Example

````yaml
apiVersion : kyverno.io/v1alpha1
kind : Policy
metadata :
  name : basic-policy
spec :
  rules:
    - name: "Basic confog generator for all namespaces"
      resource:
        kind: Namespace
      generate:
        # For now the next kinds are supported:
        #  ConfigMap
        #  Secret
      - kind: ConfigMap
        name: default-config
        copyFrom:
          namespace: default
          name: config-template
        data:
          DB_ENDPOINT: mongodb://mydomain.ua/db_stage:27017
        labels:
          purpose: mongo
      - kind: Secret
        name: mongo-creds
        data:
          DB_USER: YWJyYWthZGFicmE=
          DB_PASSWORD: YXBwc3dvcmQ=
        labels:
          purpose: mongo
````

In this example, when this policy is applied, any new namespace will receive 2 new resources after its creation:
* ConfigMap copied from default/config-template with added value DB_ENDPOINT.
* Secret with values DB_USER and DB_PASSWORD.

Both resources will contain a label ```purpose: mongo```

---
<small>*Read Next >> [Testing Policies](/documentation/testing-policies.md)*</small>
fix links 2019-05-21 15:56:01 -07:00			`<small>[documentation](/README.md#documentation) / [Writing Policies](/documentation/writing-policies.md) / Generate</small>`
update links and consolidate test docs 2019-05-21 15:50:36 -07:00
fix links 2019-05-21 15:56:01 -07:00			`# Generate Configurations`
update links and consolidate test docs 2019-05-21 15:50:36 -07:00
34: Updated documentation 2019-05-22 18:14:10 +03:00			```generatate``` feature can be applied to created namespaces to create new resources in them. This feature is useful when every namespace in a cluster must contain some basic required resources. The feature is available for policy rules in which the resource kind is Namespace.
update links and consolidate test docs 2019-05-21 15:50:36 -07:00
34: Updated documentation 2019-05-22 18:14:10 +03:00			`## Example`
update links and consolidate test docs 2019-05-21 15:50:36 -07:00
34: Updated documentation 2019-05-22 18:14:10 +03:00			````yaml
			`apiVersion : kyverno.io/v1alpha1`
			`kind : Policy`
			`metadata :`
			`name : basic-policy`
			`spec :`
			`rules:`
			`- name: "Basic confog generator for all namespaces"`
			`resource:`
			`kind: Namespace`
			`generate:`
			`# For now the next kinds are supported:`
			`# ConfigMap`
			`# Secret`
			`- kind: ConfigMap`
			`name: default-config`
			`copyFrom:`
			`namespace: default`
			`name: config-template`
			`data:`
			`DB_ENDPOINT: mongodb://mydomain.ua/db_stage:27017`
			`labels:`
			`purpose: mongo`
			`- kind: Secret`
			`name: mongo-creds`
			`data:`
			`DB_USER: YWJyYWthZGFicmE=`
			`DB_PASSWORD: YXBwc3dvcmQ=`
			`labels:`
			`purpose: mongo`
			````

			`In this example, when this policy is applied, any new namespace will receive 2 new resources after its creation:`
			`* ConfigMap copied from default/config-template with added value DB_ENDPOINT.`
			`* Secret with values DB_USER and DB_PASSWORD.`
Update writing-policies-generate.md 2019-05-22 18:15:35 +03:00
34: Updated documentation 2019-05-22 18:14:10 +03:00			Both resources will contain a label ```purpose: mongo```
update links and consolidate test docs 2019-05-21 15:50:36 -07:00
- add validation example - update docs for validation 2019-05-22 00:09:45 -07:00			`---`
fix links 2019-05-21 15:56:01 -07:00			`<small>Read Next >> [Testing Policies](/documentation/testing-policies.md)</small>`
update links and consolidate test docs 2019-05-21 15:50:36 -07:00