Charles-Edouard Brétéché
1bbda7bc46
chore: add VP/CEL unit tests ( #12271 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-03-03 08:41:37 +00:00
shuting
f2f724469d
chore: remove mutatingpolicies ( #12261 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-28 14:22:09 +00:00
Mariam Fahmy
2ea7e7ce76
feat: add new field to control VAP generation per policy ( #12242 )
...
* feat: add new field to control VAP generation per policy
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: remove 1.28 and 1.29 from tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-28 13:35:13 +00:00
Vishal Choudhary
7439fcc733
feat(test): image verification on any payload ( #12266 )
2025-02-28 09:09:25 +00:00
Charles-Edouard Brétéché
007ae5c1b1
chore: add VP/CEL unit tests ( #12264 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-02-27 12:14:23 +00:00
shuting
26a6b37265
feat: add evaluation mode to api ( #12262 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-27 16:31:10 +05:30
Vishal Choudhary
8d915b52ce
feat: add evaluator for image verification policies ( #12251 )
...
* feat: add variables
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: implement evaluator
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: build
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: unit tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2025-02-27 15:19:11 +08:00
Charles-Edouard Brétéché
ebaad6fbb1
feat: improve validating policy api ( #12243 )
...
* feat: improve validating policy api
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-02-26 15:18:12 +00:00
shuting
7a34b60ed2
feat: create patchers and apply mutations ( #12253 )
...
* feat: create patchers and apply mutations
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: create patchers and apply mutations
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-26 13:32:28 +00:00
Vishal Choudhary
f68706cab2
feat: add cel library for image verification ( #12233 )
...
* feat: concurrently add images to context
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add cel library for image verification
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: add tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: ci
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: type conv
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-02-26 00:56:17 +00:00
Charles-Edouard Brétéché
c0621cc3fc
chore: add VP api unit tests ( #12248 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-02-25 18:31:33 +00:00
Mariam Fahmy
75a10ac550
feat: introduce generic exception interface ( #12244 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-25 16:11:19 +00:00
Charles-Edouard Brétéché
9d56f5f2b5
feat: stop reusing admissionregistrationv1.ValidatingAdmissionPolicySpec ( #12246 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-02-25 14:48:47 +00:00
Mariam Fahmy
6359fd4a1a
feat: generate VAPs from VPs ( #12222 )
...
* feat: generate VAPs from VPs
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix codegen
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix chainsaw tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-25 20:27:29 +08:00
shuting
2326a4e393
feat: add mpol.spec.admission and mpol.spec.background ( #12218 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-21 17:48:22 +00:00
Vishal Choudhary
221c559247
feat: cosign verifier for new image verifier crd ( #12196 )
...
* feat: cosign verifier for new image verifier crd
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/gcp (#12170 )
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore ) from 1.8.12 to 1.8.14.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.12...v1.8.14 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
* feat: add MutatingPolicies CRD (#12150 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* README: fix markdown syntax (#12176 )
Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
* chore(deps): bump sigs.k8s.io/controller-runtime from 0.20.1 to 0.20.2 (#12180 )
Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime ) from 0.20.1 to 0.20.2.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases )
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md )
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.20.1...v0.20.2 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore: cel policies nits (#12184 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* use serviceAccountName instead of deprecated serviceAccount (#12158 )
Signed-off-by: Francesco Ilario <filario@redhat.com>
Co-authored-by: shuting <shuting@nirmata.com>
* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/azure (#12179 )
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore ) from 1.8.12 to 1.8.14.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.12...v1.8.14 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore(deps): bump github.com/awslabs/amazon-ecr-credential-helper/ecr-login (#12178 )
Bumps [github.com/awslabs/amazon-ecr-credential-helper/ecr-login](https://github.com/awslabs/amazon-ecr-credential-helper ) from 0.0.0-20241227172826-c97b94eac159 to 0.9.1.
- [Release notes](https://github.com/awslabs/amazon-ecr-credential-helper/releases )
- [Changelog](https://github.com/awslabs/amazon-ecr-credential-helper/blob/main/CHANGELOG.md )
- [Commits](https://github.com/awslabs/amazon-ecr-credential-helper/commits/v0.9.1 )
---
updated-dependencies:
- dependency-name: github.com/awslabs/amazon-ecr-credential-helper/ecr-login
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* feat: add notary verifier with tsa support (#12160 )
* feat: add notary repository
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add notary verifier
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: more tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: more tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: ci
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: update types
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
* fix: codegen (#12195 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat(gctx): add jmespath caching through projections (#11833 )
feat(gctx): move ready check to runtime
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
* fix: publish codecov reports (#12197 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: format conformance.yaml workflow file (#12194 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: add result count for VPs in the CLI (#12193 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: implement functions
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Francesco Ilario <filario@redhat.com>
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Koichi Shiraishi <zchee.io@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Francesco Ilario <filario@redhat.com>
Co-authored-by: Khaled Emara <khaled.emara@nirmata.com>
2025-02-21 09:03:53 +08:00
Khaled Emara
2b28538bd3
feat(gctx): add jmespath caching through projections ( #11833 )
...
feat(gctx): move ready check to runtime
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-02-18 15:51:14 +00:00
Vishal Choudhary
219f25ace2
feat: add notary verifier with tsa support ( #12160 )
...
* feat: add notary repository
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add notary verifier
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: more tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: more tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: ci
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: update types
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-02-18 07:23:39 +00:00
Mariam Fahmy
2c7dd2fd59
feat: add MutatingPolicies CRD ( #12150 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-17 12:02:04 +00:00
shuting
9aebe10d15
refactor: status manager ( #12173 )
...
* chore: move webhook status reconciler
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: status removal
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-14 15:22:25 +00:00
Frank Jogeleit
05f9bb4506
feat: configure admission and background flag for ValidatingPolicies ( #12153 )
2025-02-13 17:24:45 +00:00
Vishal Choudhary
ae9e68e052
feat: add types for image verification attestors ( #12080 )
...
* feat: add types for image verification attestors
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: codegen
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-02-13 13:47:51 +00:00
Mariam Fahmy
609a122ede
chore: remove vp and celpolex from the kyverno group ( #12156 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-12 14:21:17 +00:00
shuting
7ef2764365
feat: aggregate vpol.status.conditions ( #12133 )
...
* feat: add vpol status controller
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update ready API struct
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: printer coloum
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update status cmp func
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: support status.RBACPermissionsGranted
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-12 11:04:18 +00:00
Mariam Fahmy
7d5750a717
chore: move celexceptions to the new group ( #12143 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-11 19:05:22 +02:00
shuting
0548d09c21
feat: add status.autogen ( #12109 )
...
* feat: add status.autogen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update codegen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update codegen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-07 22:22:49 +05:30
Charles-Edouard Brétéché
e3ac39827d
feat: use dedicated group for new policies ( #12123 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-02-07 12:51:03 +01:00
Mariam Fahmy
04efe351a7
chore: remove polex match constraints ( #12103 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-02-05 17:56:58 +00:00
shuting
1f3d82893b
feat: add vpol status ( #11956 )
...
* feat: add vpol status
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update status API
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update code-gen manifests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: reconcile vpol.status.conditions
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: add default webhook filters
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update codegen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update codegen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: enable .status subresource
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-02-05 14:16:53 +00:00
Charles-Edouard Brétéché
b908b1037a
feat: consider validation actions ( #12072 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-02-04 06:29:40 +02:00
Mariam Fahmy
4c950dcb32
feat: use v1 of ValidatingAdmissionPolicies ( #12050 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-01-31 14:21:43 +00:00
Mariam Fahmy
d1536580da
feat: add CEL PolicyException CRD ( #12038 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-01-31 11:39:17 +00:00
Mariam Fahmy
da717c4b17
feat: add validation action to VPs ( #12017 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2025-01-28 14:34:26 +01:00
Mariam Fahmy
879f76a1d7
feat: add generic policy interface ( #11922 )
...
* feat: add generic policy interface
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix codegen
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-01-20 08:28:13 +00:00
shuting
97ed53f6bb
feat: register webhook configurations for validatingpolicies ( #11892 )
...
* feat: add spec.webhookConfiguration
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: refactor build webhook for kyverno policies
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update yamls
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add listers
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update api
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: remove matchPolicy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update crd yaml
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add short name
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update deepcopy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: upadte spec
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix description
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: register webhook for validatingpolicies
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix import
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update manifests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update manifests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2025-01-17 11:33:47 +02:00
Charles-Edouard Brétéché
616cb93bc4
feat: add validating policy compiler ( #11906 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-01-13 13:56:36 +01:00
Charles-Edouard Brétéché
8be679cdfb
feat: bump kube deps to 1.32 ( #11877 )
2025-01-09 19:51:43 +08:00
Charles-Edouard Brétéché
47e99166a5
feat: add kyverno vap API ( #11790 )
...
* feat: add kyverno vap API
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add context lib
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2025-01-08 15:56:36 +00:00
Yann ILAS
d215ce5344
Fix(doc): correct invalid links in documentation ( #11681 )
...
* Fix doc: s|kustomize/patchesjson6902|kustomize/kustomization/patchesjson6902|
Signed-off-by: Yann ILAS <yann.ilas@gmail.com>
* Fix doc: s|kustomize/patchesstrategicmerge|kustomize/kustomization/patchesstrategicmerge|
Signed-off-by: Yann ILAS <yann.ilas@gmail.com>
---------
Signed-off-by: Yann ILAS <yann.ilas@gmail.com>
2024-12-02 13:31:33 +00:00
Mariam Fahmy
2ff41d10ca
fix: add emitWarning field in v2beta1 ( #11489 )
...
* fix: add emitWarning field in v2beta1
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: add artificathub changes
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-10-30 15:17:59 +00:00
Shivam Kumar
1bc76f6d7f
Introduced the DeletionPropagationPolicy field in CleanupPolicy and C… ( #11368 )
...
* Introduced the DeletionPropagationPolicy field in CleanupPolicy and ClusterCleanupPolicy
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Add DeletionPropagation field to API versions and implement handling in controller.go for improved cleanup functionality
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* removed the type for DeletionPrpagationPolicy
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Add DeletionPropagationPolicy to CleanupPolicy
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Updated DeletionPropagationPolicy in different api versions
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Removed the string type declaration from the DeletionPropagationPolicy
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Reverted the changes
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Added the DeletionPropagation to the cleanup/controller.go
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fixed minor bugs
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fixed the verify-codegen error
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Revert "Fixed the verify-codegen error"
This reverts commit 05428bd99b187b93086dc403e674f06f8eeb5a40.
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Changed the field's type string to pointer
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fixing the linter issue
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* changing the v1 to metav1 in the controller.go
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Resolved linter problem
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* fix: codegen
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* Refactor DeletionPropagationPolicy to use a pointer type
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fixed linter
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Refactor String type to pointer in controller.go
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* fixing Linter
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Make DeletionPropagationPolicy optional in validation
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* fix: Update validation for DeletionPropagationPolicy in CleanupPolicySpec
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Refactored deletion policy handling
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Resolved linter
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Updated logic to set deletion options based on user-provided deletion policy.
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Removed default deletion policy assignment in the deletion logic
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fix: removed default deletion policy in the deletion logic
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fixing minor issues
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fix: Linter
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* fix: propagation policy
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-10-22 13:04:01 +02:00
Ammar Yasser
9a8e35d787
Selector with mutate target ( #11208 )
...
* feature: Add LabelSelector as a field of resource spec to allow fetching by labels
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Generate CRDs
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Add the capability to fetch with label selector
- Add the label selector as a parameter to GetResources of the engine api client and the dclient.
- Use the label selector with list options in the dclient.
- convert a metav1.LabelSelector to a labels.Selector before fetching to be able to convert it to a string to be used with ListOptions.
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Pass label selector to the GetResources method
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Return the resource selector when resolving spec
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Instantiate the fake client schema using the passed gvrToListKind map and by inferring schema from passed resources
All tests that use List will fail because the fake client doesn't infer the schema from the passed resources.
gvrToListKind can't be fully deprecated as some parts of kyverno use the fake client without passing resources to it (resource generation). And so both approaches have to be supported.
References:
- https://github.com/kubernetes/client-go/issues/983
- 46c1ad3baa
2024-10-16 11:17:08 +00:00
Shivam Kumar
48b7a68733
Added propagationPolicy to TTL controller for resource deletion ( #11207 )
...
* Added propagationPolicy to TTL controller for resource deletion
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Added per-resource deletion policy with optional global default
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fix: Added nil check for annotations to prevent runtime errors
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fix: Moved logic for retrieving propagation policy from annotations to a dedicated function
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Fix: Resolve merge conflict in controller.go and update propagation policy handling
- Added missing gvr field from main branch
- Improved annotation naming as per team discussion
- Moved propagation policy logic closer to usage
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Simplified propagation policy logic
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Add unit tests for controller.go
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
* Removed the test file for controller.go and fixed the lint error
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
---------
Signed-off-by: ShivamJha2436 <shivamkumar87148@gmail.com>
2024-09-27 14:45:09 +00:00
Charles-Edouard Brétéché
b463ee40d2
feat: use pointer in rule (validate field) ( #11095 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-11 09:12:53 +00:00
Charles-Edouard Brétéché
e7e2f0a07f
feat: use pointer in rule (mutation field) ( #11078 )
...
* feat: use pointer in rule (mutation field)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-11 04:32:10 +03:00
Charles-Edouard Brétéché
12edb6d405
feat: use pointer in rule (generate field) ( #11076 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-10 13:56:00 +00:00
Charles-Edouard Brétéché
b5e1c97913
feat: use pointer in rule (exclude field) ( #11050 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-10 11:14:49 +00:00
Jim Bugwadia
ce5cd476df
support HTTP headers in service API calls ( #11041 )
...
* support HTTP headers in service API calls
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* generate CRDs
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix chunked tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix POST call
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-09 21:04:08 +00:00
Charles-Edouard Brétéché
6837483895
fix: make match field required in rule API ( #11048 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-09 14:24:57 +00:00
Charles-Edouard Brétéché
d5dcd4611d
feat: use pointer in rule ( #11037 )
...
* feat: use pointer in rule
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix unit tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix policy controller
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-09 21:10:02 +08:00
