mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
6522 commits 16 branches 550 tags 288 MiB
Commit graph

171 commits

Author SHA1 Message Date
Jim Bugwadia
8d03f8c59e merge main 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2021-03-25 18:00:02 -07:00
Jim Bugwadia
6dff9e0ab9 merge and resolve conflicts 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2021-03-25 16:43:12 -07:00
Jim Bugwadia
4d70013e22
Merge pull request #1724 from MarcelMue/fix-apipath-validation 
Make validateAPICall work with special characters in variables
 2021-03-24 22:28:09 -07:00
Max Goncharenko
3373a79f26
Bug Fix: #1585 issue; validate on DELETE the oldResource (#1710) 
* fix #1585 issue; validate on DELETE the oldResource

Signed-off-by: Max Goncharenko <kacejot@fex.net>

* apply PR edits for #1585 issue fix; add test with nested var

Signed-off-by: Max Goncharenko <kacejot@fex.net>
 2021-03-19 14:43:26 -07:00
Marcel Mueller
4f96232e62 Make validateAPICall work with special characters in variables 
Signed-off-by: Marcel Mueller <marcel.mueller1@rwth-aachen.de>
 2021-03-19 20:29:55 +01:00
Shuting Zhao
7502e5da98 fix variable substitution in NumericOperatorHandler 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-18 13:40:14 -07:00
Joshua Snider
6699bfab8c Fix tests 
Signed-off-by: Joshua Snider <jsnider@mtu.edu>
 2021-03-16 15:00:42 -04:00
Joshua Snider
9377f70840 Change isNotIn 
Signed-off-by: Joshua Snider <jsnider@mtu.edu>
 2021-03-16 14:26:41 -04:00
Max Goncharenko
24c4f06ecd Fix #1506; Resolve path reference in entire rule instead of just pattern/overlay 
Signed-off-by: Max Goncharenko <kacejot@fex.net>
 2021-03-16 13:45:40 +02:00
Arsh Sharma
1dfcef1cc8
fix: changed logic for In and NotIn for sets (#1704) 
Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>
 2021-03-15 12:59:24 -07:00
Yashvardhan Kukreja
10c714d5ba
feat: [preconditions, conditions] added backwards-compatible support for logical operators (#1604) 
Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>
 2021-03-01 20:31:06 -08:00
Arsh Sharma
86879bd267
feat(operators): supporting subset checking (#1613) 
* fix(operators): supporting subset checking

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* fix(operators): removed print statement

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* test(operators): added test file for in

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* fix(operators): fixed switching

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* tests(operators): completed tests for In and NotIn

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* chore(operators): code cleanup

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* chore(operators): added comments for tests

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* fix(operators): changed logic based on new definitions

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* test: updated NotIn tests

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>
 2021-02-26 10:53:54 -08:00
shuting
267be0815f
Bug fixes - policy validation, auto-generated rules, apiCall support in mutate and generate (#1629) 
* Fix invalid policy reports generated for blocked resource

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* fix 1464 - copy context and preconditions to auto-gen rules

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* fix 1628 - add policy validations

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* fix 1593 - support apiCall in mutate and generate

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* fix test

Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-02-22 12:08:26 -08:00
Arsh Sharma
596bc9ba6f
feat(operators): support subset checking for in and notin (#1555) 
* feat(operators): support subset checking for in and notin

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* feat(operators): fixed NotIn function

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>
 2021-02-10 13:05:36 -08:00
Yashvardhan Kukreja
6b3ab3fe23
added: generic NumericOperator to handle numeric operations for kyverno policies (#1536) 
Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>
 2021-02-05 19:49:23 -08:00
Jim Bugwadia
f93e3020e1
support nested JMESPATH var substitution (#1471) 2021-01-14 10:46:51 -08:00
Jim Bugwadia
ed232ba118 add test case 2020-12-23 15:57:12 -08:00
Jim Bugwadia
e2f10c6f83 update validation logic 2020-12-23 15:10:07 -08:00
Jim Bugwadia
6afd2e6f3a
ignore non-policy files in CLI and improve validation messages (#1362) 
* improve validation message

* improve error behaviors

* fix tests

* fix tests
 2020-12-07 11:26:04 -08:00
Shuting Zhao
bf0128726a fix bug in configmap lookup - wrong return value for invalidType 2020-11-30 12:57:26 -08:00
Jim Bugwadia
251129d09b fix wildcard match 2020-11-29 00:35:33 -08:00
Jim Bugwadia
27f9516eb2 allow wildcards in condition values 2020-11-28 23:38:44 -08:00
Jim Bugwadia
e67779eeb5 allow wildcards in condition values 2020-11-28 23:29:15 -08:00
Jim Bugwadia
52d8977aab handle complex types for variable substitution 2020-11-25 14:21:01 -08:00
Jim Bugwadia
3dfe3169dc add logger 2020-11-25 10:11:08 -08:00
Jim Bugwadia
125faaf4e3 fix variable substitution 2020-11-25 00:21:51 -08:00
Jim Bugwadia
54f816c246 trim variable for context lookups 2020-11-24 17:48:54 -08:00
Shuting Zhao
b9fb926ddb fixes for golint ./... 2020-11-17 13:07:30 -08:00
Jim Bugwadia
74b656768e
1251 fix generate panic (#1252) 
* improve error message

* fix panic and add error logs

* update log levels and messages

* fix tests
 2020-11-12 16:44:57 -08:00
Jim Bugwadia
7e9b08baeb
Feature/make operators case insensitive (#1217) 
* fix typo

* make operators case insensitive

* fix case statement
 2020-10-29 15:00:22 -07:00
Shuting Zhao
cdc5190c56 update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00
Shuting Zhao
b8b1d81df0 handles array parsing in configmap value 2020-09-22 18:26:52 -07:00
Mohan B E
51ac382c6c
Feature/configmaps var 724 (#1118) 
* added configmap data substitution for foreground mutate and validate

* added configmap data substitution for foreground mutate and validate fmt

* added configmap lookup for background

* added comments to resource cache

* added configmap data lookup in preConditions

* added parse strings in In operator and configmap lookup docs

* added configmap lookup docs

* modified configmap lookup docs
 2020-09-22 14:11:49 -07:00
NoSkillGirl
8bbc722e7b small fixes 2020-06-26 12:48:45 +05:30
NoSkillGirl
b589169b5e Added in-notin operator 2020-06-26 12:48:45 +05:30
NoSkillGirl
e8c4050d49 Added In and NotIn Operators 2020-06-26 12:48:12 +05:30
shuting
da943325fe
Ignore auto-gen annotation on Pod when processing DENY rule (#944) 
* ignore auto-gen annotation on Pod when processing DENY rule

* remove unused code
 2020-06-24 10:26:04 -07:00
shravan
3a146a5952 744 added not found error type 2020-05-13 10:06:21 +05:30
shravan
f08f7e22c7 744 supporting Equals and NotEquals as operater types 2020-05-06 22:43:17 +05:30
shravan
09310d19e1 744 fixing policy validation 2020-05-06 22:27:06 +05:30
shravan
1b2868620e 744 fixing tests and making sure policy with variables that are not request.object are not allowed in background mode 2020-05-06 00:29:40 +05:30
shravan
717e8e7245 744 fixed error messages 2020-05-05 23:52:52 +05:30
shravan
9c457b9c1a 786 fixed tests 2020-04-09 22:21:59 +05:30
shravan
49e26aface 786 tested prototype 2020-04-09 22:00:24 +05:30
shivkumar dudhani
6e822ece40 fix CR 2020-03-20 09:18:15 -07:00
shivkumar dudhani
d327309d72 refactor logging 2020-03-17 16:25:34 -07:00
shivkumar dudhani
1b1ab78f77 logs & access 2020-03-17 11:05:20 -07:00
shivkumar dudhani
b1063a95e1 refactor & validate operations for generate rules in PolicyValidation 2020-03-11 18:14:23 -07:00
shivkumar dudhani
73c0aaca79 CR refactor 2020-02-26 17:02:16 -08:00
shivkumar dudhani
03ee46e1d9 support nested variable resolution 2020-02-26 16:41:48 -08:00