mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
2754 commits 16 branches 550 tags 288 MiB
Commit graph

1510 commits

Author SHA1 Message Date
evalsocket
37e3c08476 policy name added in labels 2020-07-15 14:30:00 -07:00
shuting
55d5812404
bugfix - delete synchronized resources (#997) 
* Delete individual resource when policy deleted

Co-authored-by: evalsocket <yuvraj.yad001@gmail.com>
 2020-07-15 23:09:02 +05:30
Pooja Singh
bfaeefafd3
print mutated policy as yaml (#995) 2020-07-15 08:16:49 -07:00
Pooja Singh
352d9710a0
Feature/auto gen policy rule (#991) 
* small fix

* printing mutated policies
 2020-07-14 20:49:10 -07:00
shuting
67f7ed0ed3
Bug fix: perform OR across types in UserInfo (#992) 
* remove policy name cache entry on policy DELETE

* buugfix: perform OR in userInfo match

* add function description
 2020-07-14 20:23:30 -07:00
Yuvraj
2d11d4a695
Error message update (#988) 
* error message update
 2020-07-15 01:20:34 +05:30
Yuvraj
e8faa88673
fix bug (#987) 2020-07-14 09:22:08 -07:00
shuting
267f38bb93
remove policy name cache entry on policy DELETE (#986) 2020-07-13 20:29:39 -07:00
Yuvraj
4535f43283
Added Synchronize flag in Generate Request (#980) 
* fix Synchronize flag issue
 2020-07-14 02:12:11 +05:30
NoSkillGirl
fed8d7f967 small fixes 2020-07-11 18:12:35 +05:30
NoSkillGirl
c26a414182 auto generating policy rules 2020-07-11 17:57:31 +05:30
NoSkillGirl
b23cfa9f93 added auto-gen policy rule for cli 2020-07-11 17:57:07 +05:30
NoSkillGirl
f0fab9499e temp 2020-07-11 17:56:14 +05:30
evalsocket
e7c486c196 bug fixed 2020-07-10 17:44:54 -07:00
evalsocket
67920cf194 bug fixed 2020-07-10 17:44:41 -07:00
evalsocket
98fa10ea59 fix delete logic 2020-07-10 17:21:30 -07:00
evalsocket
04ecfd3998 delete if sync is true 2020-07-10 17:06:16 -07:00
evalsocket
c319add062 used raw object 2020-07-10 17:01:48 -07:00
evalsocket
a64789c59d code fixes 2020-07-10 16:59:17 -07:00
evalsocket
8cf5cd70fe remove log 2020-07-10 15:43:49 -07:00
evalsocket
26ae7e2052 merge master changes 2020-07-10 15:25:05 -07:00
evalsocket
8289450c1c bug fixes 2020-07-10 15:23:07 -07:00
evalsocket
44a164b184 validation added 2020-07-10 12:27:31 -07:00
evalsocket
014db64ed2 validation added for deny request for generated resource 2020-07-10 11:48:27 -07:00
Yuvraj
ffe18aab86
Resolve Kyverno panic when sync the generate request (#975) 
* handle validate error panic

* return error in validate array

* fix error log message

Co-authored-by: Yuvraj <yuvraj@neualto.com>
 2020-07-09 11:50:05 -07:00
shuting
87fa77fbcc
965 add validate audit handler (#967) 
* store policy names cache to reduce lookup time

* add validate audit handler

* fix #958, remove auto-gen annotation on Pod

* formatting code

* update processTime to readable format

* #586, add back unit test

* update logging info

* remove unused interface

* handle generate policy in a single thread in weboook

* resolve pr comments
 2020-07-09 11:48:34 -07:00
Yuvraj
85d2ac9f84 added validation log 2020-07-09 05:48:35 -07:00
Yuvraj
b708770be1 added label for synchronize 2020-07-08 14:22:32 -07:00
Yuvraj
50b849aead delete generated resource logic added 2020-07-08 08:01:47 -07:00
Yuvraj
de51a7fdbd Merge branch 'master' of github.com:nirmata/kyverno into fix-976 2020-07-08 06:18:56 -07:00
Yuvraj
604dc395d8 check added for kyverno managed resource 2020-07-08 06:18:18 -07:00
NoSkillGirl
d01d5226a6 small fix 2020-07-07 17:40:54 +05:30
NoSkillGirl
643fe77394 added variable validation for validate 2020-07-07 17:11:37 +05:30
NoSkillGirl
2fde3146e8 added more validation for policies 2020-07-07 17:08:57 +05:30
Pooja Singh
59b2378274
reading kyverno svc from environment variable (#962) 
* reading kyverno svc from environment variable

* updated readme
 2020-07-04 19:35:31 -07:00
Jim Bugwadia
c962971372
Update mutate overlay to handle keys with slashes for labels (like annotations). Added debug V4 logs for mutate flows. (#972) 2020-07-04 19:32:11 -07:00
Jim Bugwadia
acff2f1237 handle nil error 2020-07-03 17:42:08 -07:00
shuting
ed52bd3d9f
Add policy cache based on policyType (#960) 
* add policy cache based on policyType

* fetch policy from cache in webhook

* add unit test for policy cache

* update log for exclude resources filter

* skip webhook mutation on DELETE operation

* remove duplicate k8s version check

* add description
 2020-07-02 12:49:10 -07:00
Pooja Singh
ac5d69895a
removing hardcoded namespace from the code (#955) 
* removing hardcoded namespace from the code

* Added to helm chart

* removing hard-coded namespace and deployment name from config, generate, checker

* added namespace to configMap, service, serviceAccount

* updated installation documentation

passing `KYVERNO_NAMESPACE` while running in debug mode.

* Update installation.md

removing `kyverno` only namespace note
 2020-07-01 14:50:49 -07:00
Jim Bugwadia
05250c2870
replace deletion timestamp check (#961) 2020-06-30 23:30:31 -07:00
Jim Bugwadia
65193feccb
update logging, naming, and event retry (#959) 
* update logging and naming

* check per policy patch count
 2020-06-30 11:53:27 -07:00
NoSkillGirl
8bbc722e7b small fixes 2020-06-26 12:48:45 +05:30
NoSkillGirl
b589169b5e Added in-notin operator 2020-06-26 12:48:45 +05:30
NoSkillGirl
e8c4050d49 Added In and NotIn Operators 2020-06-26 12:48:12 +05:30
shuting
abb51348cf
skip inserting auto-gen annotation to podController on UPDATE admission request (#953) 2020-06-25 17:24:10 -07:00
shuting
7ffeb6efca
skip generate violation on pre-exist pod (#952) 2020-06-25 09:52:54 -07:00
shuting
06a2b246dd
Background mode only apply to running pods (#949) 
* background mode process Running pod only

* update debug doc
 2020-06-25 09:52:27 -07:00
shuting
da943325fe
Ignore auto-gen annotation on Pod when processing DENY rule (#944) 
* ignore auto-gen annotation on Pod when processing DENY rule

* remove unused code
 2020-06-24 10:26:04 -07:00
Yuvraj
01724d63cf
Synchronize data for generated resources (#933) 
* Generate request added fro update resource

* synchronize flag added

* documentation added for keeping resource synchronized

Signed-off-by: Yuvraj <yuvraj.yad001@gmail.com>
 2020-06-23 07:19:43 +05:30
NoSkillGirl
6cfd4d345b Updated error messages as per the convention (lowercase) 2020-06-21 11:52:50 +05:30