treydock
ee46e9ed19
Ensure preconditions are present with default values ( #4046 )
...
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
2022-05-31 20:39:06 +00:00
treydock
566eae7d94
Fix handling of kyverno-policies version check when port in image tag ( #4042 )
...
* Fix handling of kyverno-policies version check when port in image tag
Fixes #4031
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Add release notes for chart
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Fix release notes and use splitList
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
2022-05-31 15:02:19 +00:00
Vyankatesh Kudtarkar
18ae9c7d6d
fix policy typo ( #4039 )
2022-05-31 06:28:02 +00:00
shuting
8260820a16
Fix labels with invalid charrs ( #4034 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-30 05:21:08 +00:00
Charles-Edouard Brétéché
dae3dad027
refactor: used typed admission request in ur ( #4022 )
...
* refactor: add policy event listener in ur controller (#4012 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit cd1fa030ee
2022-05-29 07:27:14 +00:00
Vyankatesh Kudtarkar
7245c92dcf
fix vulnerable ( #4027 )
2022-05-26 04:19:00 +00:00
Shubham Nazare
165c5d9fc3
feat: Extend CLI to cover generate policies ( #3456 )
...
- Change in namespace for test-generate example
- Change cloneResource to cloneSourceResource
- Add support for namespaced Policy and fix log messages
- Add test-generate in Makefile and an example of namespaced Policy
- Fix namespaced policy issue and add comments
- Refactor according to new generate controller
- Add json tag to GeneratedResource field of RuleResponse struct
Signed-off-by: Shubham Nazare <shubham4443@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-25 14:26:22 +00:00
vivek kumar sahu
fbbe57f5e1
Request operation value by default to CREATE ( #3894 )
...
* set by default request.operation to CREATE
Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com>
* Added test cases
Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-25 13:59:53 +00:00
Anton Popovichenko
afc9a56d33
Feature: Add support for allowing insecure registries. ( #3983 )
...
Now you can work with self signed registries by updating your deployment with adding `--allowInsecureRegistry` to the `args` field.
Signed-off-by: Anton Popovichenko <anton.popovichenko@mendix.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-25 11:03:36 +02:00
Charles-Edouard Brétéché
4a6d5f7864
refactor: move policy deletion code from policy controller to ur controller ( #4013 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 21:05:11 +02:00
Charles-Edouard Brétéché
74f5f30e3b
fix: bypass policy mutation if autogen internals enabled ( #4007 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 17:37:01 +00:00
Charles-Edouard Brétéché
3a3556919f
fix: use background helper in ur generator ( #4009 )
...
* fix: stop mutating cached resource in ur controller (#4003 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit dac733755b
2022-05-24 16:58:45 +00:00
Charles-Edouard Brétéché
2e91d233c0
fix: remove update ur status in generator ( #4008 )
...
* fix: stop mutating cached resource in ur controller (#4003 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit dac733755b
2022-05-25 00:31:56 +08:00
Charles-Edouard Brétéché
cd1fa030ee
refactor: add policy event listener in ur controller ( #4012 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 22:41:17 +08:00
Charles-Edouard Brétéché
b967d7388b
chore: remove unused ur errors ( #4011 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
2022-05-24 13:59:12 +00:00
Charles-Edouard Brétéché
73fdbd3e76
refactor: ur cleaner controller ( #3974 )
...
* fix: move ur controller filtering in reconciler
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: mark ur retry on conflict
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: test data
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: add filter back in update ur handler
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: added some logs about attempts and increased backoff
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: reconciliation logic
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: Test_Generate_Synchronize_Flag
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: small nits
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: interface and logger
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: remove useless Control and ControlInterface
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: use GetObjectWithTombstone helper
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: reoder methods
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: is not found check
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: move check in reconcile code
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: stop mutating cached resource in ur controller (#4003 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit dac733755b
2022-05-24 13:30:00 +00:00
Vyankatesh Kudtarkar
bea0b794d5
add validation check to ensure the annotations quoted ( #3976 )
2022-05-24 12:45:23 +00:00
shuting
85b486eb27
Support @ for mutate targets ( #3998 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-24 17:49:36 +05:30
Charles-Edouard Brétéché
c9f8a68d8a
fix: stop mutation policies when autogen internals is enabled ( #4004 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 13:08:29 +02:00
Charles-Edouard Brétéché
e47176d695
refactor: background controllers cleanup ( #4001 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 10:27:26 +00:00
Charles-Edouard Brétéché
dac733755b
fix: stop mutating cached resource in ur controller ( #4003 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 11:25:37 +02:00
Charles-Edouard Brétéché
1712dfa947
refactor: move label helper utils from policy package to background package ( #3996 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 13:11:12 +05:30
Jim Bugwadia
8fe9163f4e
fix attestation checks ( #3999 )
...
* fix attestation checks
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* make fmt
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix linter issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* make codegen
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* dos2unix
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2022-05-24 14:57:01 +08:00
Charles-Edouard Brétéché
88f769cb39
fix: init container gr copy ( #3995 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-23 17:57:19 +02:00
Charles-Edouard Brétéché
caa769fb1d
refactor: clean updaterequest generator ( #3949 )
...
* refactor: clean updaterequest generator
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: clean updaterequest generator
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-23 22:39:12 +08:00
Charles-Edouard Brétéché
005400c606
chore: enable nosprintfhostport linter ( #3989 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
2022-05-23 14:14:52 +00:00
Charles-Edouard Brétéché
dd4fd943b1
feat: add controller utils package ( #3952 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-23 13:45:04 +00:00
Charles-Edouard Brétéché
1afda6a137
refactor: make registry client variables private ( #3975 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-23 18:45:25 +05:30
Charles-Edouard Brétéché
5340c5608c
fix: ur is nil in ur controller ( #3986 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-23 11:19:27 +05:30
Charles-Edouard Brétéché
8175fc15c9
chore: add previous pod logs in case of job failure ( #3978 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-20 20:34:55 +05:30
Charles-Edouard Brétéché
facac02e1d
fix: remove unused field ( #3971 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
2022-05-20 13:04:26 +02:00
Charles-Edouard Brétéché
c1df363a0e
fix: release ur when handler pod is gone ( #3973 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-20 17:43:00 +08:00
Charles-Edouard Brétéché
1936d86623
fix: move ur controller filtering in reconciler ( #3964 )
...
* fix: move ur controller filtering in reconciler
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: mark ur retry on conflict
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: test data
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: add filter back in update ur handler
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: added some logs about attempts and increased backoff
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: reconciliation logic
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: Test_Generate_Synchronize_Flag
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: small nits
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-20 00:06:56 +08:00
Charles-Edouard Brétéché
c988d519b4
fix: mark ur retry on conflict ( #3961 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-18 06:07:13 +00:00
Charles-Edouard Brétéché
8026d5b09d
chore: enable paralleltest linter ( #3946 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-18 04:49:19 +00:00
Charles-Edouard Brétéché
755ade9c2d
chore: enable goimports linter ( #3959 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-18 04:24:08 +00:00
Charles-Edouard Brétéché
41a3f6c388
chore: make kyverno informers and listers import aliases consistent ( #3958 )
...
* chore: make kyverno api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make apimachinery api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make dclient api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make clients import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make kube informers and listers import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make kyverno informers and listers import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-18 04:02:31 +00:00
Charles-Edouard Brétéché
840307fc69
chore: enable ifshort linter ( #3945 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-17 18:55:13 +00:00
Charles-Edouard Brétéché
daddae27b4
fix: add helmignore ( #3948 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: treydock <tdockendorf@osc.edu>
2022-05-17 18:34:16 +00:00
Charles-Edouard Brétéché
4255809e93
fix: replica count in helm chart ( #3954 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-17 17:59:53 +00:00
Vyankatesh Kudtarkar
bee9f4df55
fix panic issue for ur ( #3953 )
2022-05-17 16:57:47 +00:00
shuting
e7ccbb68d8
Cleanup URs on trigger deletion ( #3955 )
...
* Clean URs on trigger deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Make kyverno api import aliases consistent
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Fix gofumpt error
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Remove unused code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-17 16:10:47 +00:00
Charles-Edouard Brétéché
572a76ce33
chore: make kube informers and listers import aliases consistent ( #3957 )
...
* chore: make kyverno api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make apimachinery api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make dclient api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make clients import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make kube informers and listers import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-17 17:51:03 +02:00
Charles-Edouard Brétéché
a6d4cd186d
chore: make clients import aliases consistent ( #3956 )
...
* chore: make kyverno api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make apimachinery api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make dclient api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make clients import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-17 15:26:32 +00:00
Charles-Edouard Brétéché
5243763674
chore: make dclient import aliases consistent ( #3951 )
...
* chore: make kyverno api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make apimachinery api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make dclient api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-17 14:40:51 +00:00
Charles-Edouard Brétéché
666bcb3c15
chore: make k8s api import aliases consistent ( #3950 )
...
* chore: make kyverno api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore: make apimachinery api import aliases consistent
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-17 22:14:31 +08:00
Charles-Edouard Brétéché
b3e227dbaf
fix: use admissionrequest subresource to filter webhooks ( #3944 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-17 12:15:02 +00:00
Charles-Edouard Brétéché
5aaf2d8770
chore: make kyverno api import aliases consistent ( #3939 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-17 13:12:43 +02:00
Charles-Edouard Brétéché
a4348fd455
chore: enable nolintlint linter ( #3941 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-17 09:57:31 +00:00
Charles-Edouard Brétéché
9abf99b052
chore: enable grouper linter ( #3940 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-17 09:17:06 +00:00
