converting patches to patchesJSON6902 (#1115)

* converting patches to patchesJSON6902 * updated readme * removed patch section from readme
2024-12-14 11:57:48 +00:00 · 2020-09-16 23:23:05 +05:30 · 2020-09-16 23:23:05 +05:30 · ba5c656d76
commit ba5c656d76
parent 3fa745bc3e
2 changed files with 51 additions and 0 deletions
--- a/documentation/writing-policies-mutate.md
+++ b/documentation/writing-policies-mutate.md
@ -138,6 +138,8 @@ spec:

 Note, that if **remove** operation cannot be applied, then this **remove** operation will be skipped with no error.

+
+
 ## Strategic Merge Patch

 A `patchStrategicMerge` patch is [stategic-merge](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-api-machinery/strategic-merge-patch.md)-style patch. The `patchStrategicMerge` overlay resolves to a partial resource definition.
--- a/pkg/policymutation/policymutation.go
+++ b/pkg/policymutation/policymutation.go
@ -44,9 +44,58 @@ func GenerateJSONPatchesForDefaults(policy *kyverno.ClusterPolicy, log logr.Logg

 	patches = append(patches, patch...)

+	convertPatch, errs := convertPatchToJSON6902(policy, log)
+	if len(errs) > 0 {
+		var errMsgs []string
+		for _, err := range errs {
+			errMsgs = append(errMsgs, err.Error())
+			log.Error(err, "failed to generate pod controller rule")
+		}
+		updateMsgs = append(updateMsgs, strings.Join(errMsgs, ";"))
+	}
+
+	patches = append(patches, convertPatch...)
+
 	return utils.JoinPatches(patches), updateMsgs
 }

+func convertPatchToJSON6902(policy *kyverno.ClusterPolicy, log logr.Logger) (patches [][]byte, errs []error) {
+	patches = make([][]byte, 0)
+
+	for i, rule := range policy.Spec.Rules {
+		if !reflect.DeepEqual(rule.Mutation, kyverno.Mutation{}) {
+			if len(rule.Mutation.Patches) > 0 {
+				mutation := rule.Mutation
+				patchesJSON6902 := ""
+				for _, patch := range mutation.Patches {
+					patchesJSON6902 += fmt.Sprintf("- path : %s\n  op : %s\n  value: %s\n", patch.Path, patch.Operation, patch.Value)
+				}
+				mutation.PatchesJSON6902 = patchesJSON6902
+				mutation.Patches = []kyverno.Patch{}
+
+				jsonPatch := struct {
+					Path  string            `json:"path"`
+					Op    string            `json:"op"`
+					Value *kyverno.Mutation `json:"value"`
+				}{
+					fmt.Sprintf("/spec/rules/%s/mutate", strconv.Itoa(i)),
+					"replace",
+					&mutation,
+				}
+
+				patchByte, err := json.Marshal(jsonPatch)
+				if err != nil {
+					errs = append(errs, fmt.Errorf("failed to convert patch to patchesJson6902 for policy '%s': %v", policy.Name, err))
+				}
+
+				patches = append(patches, patchByte)
+			}
+		}
+	}
+
+	return patches, errs
+}
+
 func defaultBackgroundFlag(policy *kyverno.ClusterPolicy, log logr.Logger) ([]byte, string) {
 	// set 'Background' flag to 'true' if not specified
 	defaultVal := true