mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
3116 commits 16 branches 550 tags 288 MiB
Commit graph

28 commits

Author SHA1 Message Date
shuting
52d091c5a3
Improve / clean up code (#1444) 
* Remove lock embedded in CRD controller, use concurrent map to store shcemas

* delete rcr info from data store

* skip policy validation on status update

* - remove status check in policy mutation; - fix test

* Remove fqdncn flag

* add flag profiling port

* skip policy mutation & validation on status update

* sync policy status every minute

* update log messages
 2021-01-06 16:32:02 -08:00
Shuting Zhao
cdc5190c56 update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00
shuting
f82b4a4952
skip policy mutation on status update (#1112) 2020-09-14 10:56:06 -07:00
NoSkillGirl
afe98bb93c Added set flag 2020-08-22 01:07:03 +05:30
NoSkillGirl
c26a414182 auto generating policy rules 2020-07-11 17:57:31 +05:30
NoSkillGirl
b23cfa9f93 added auto-gen policy rule for cli 2020-07-11 17:57:07 +05:30
NoSkillGirl
f0fab9499e temp 2020-07-11 17:56:14 +05:30
Shuting Zhao
ad4f06f22d Merge branch 'master' into 744_deny_requests 
# Conflicts:
#	pkg/webhooks/mutation.go
#	pkg/webhooks/server.go
#	pkg/webhooks/validation.go
 2020-05-18 12:32:42 -07:00
Yuvraj
c4c28b709b
Feature - Change annotation for auto-generate pod controllers policy (#849) 
* replace auto-generate pod controllers policy

* replace auto-generate pod controllers policy

* handled backword compatibility

* added backword compatibility

* Change annotation for auto-generate pod controllers

* Typo fixed
 2020-05-18 11:50:54 -07:00
Jim Bugwadia
304c75403e - skip resource schema validation when no mutate rules are applied 
- cleanup webhook registration logic and logs
 2020-05-17 14:37:05 -07:00
shravan
2451756651 744 tested prototype 2020-04-10 23:24:54 +05:30
shivkumar dudhani
1b1ab78f77 logs & access 2020-03-17 11:05:20 -07:00
shravan
cbbf8a2cfb 635 fixed issue with kubectl edit 2020-02-16 23:29:20 +05:30
shravan
d52312da82 635 prototype changes 2020-02-06 15:11:49 +05:30
Shivkumar Dudhani
f4406bbefc
linter fixes (#656) 
* cleanup phase 1

* linter fixes phase 2

* linter fixes

* linter fixes
 2020-01-24 16:27:51 -08:00
Shuting Zhao
e3123e96b6 Merge branch 'master' into add_testscenario 2020-01-08 16:48:15 -08:00
Shivkumar Dudhani
3cf9141f4d
593 feature (#594) 
* initial commit

* background policy validation

* correct message

* skip non-background policy process for add/update

* add Generate Request CR

* generate Request Generator Initial

* test generate request CR generation

* initial commit gr generator

* generate controller initial framework

* add crd for generate request

* gr cleanup controller initial commit

* cleanup controller initial

* generate mid-commit

* generate rule processing

* create PV on generate error

* embed resource type

* testing phase 1- generate resources with variable substitution

* fix tests

* comment broken test #586

* add printer column for state

* return if existing resource for clone

* set resync time to 2 mins & remove resource version check in update handler for gr

* generate events for reporting

* fix logs

* initial commit

* fix trailing quote in patch

* remove comments

* initial condition (equal & notequal)

* initial support for conditions

* initial support fo conditions in generate

* support precondition checks

* cleanup

* re-evaluate GR on namespace update using dynamic informers

* add status for generated resources

* display loaded variable SA

* support delete cleanup of generate request main resources

* fix log

* remove namespace from SA username

* support multiple variables per statement for scalar values

* fix fail variables

* add check for userInfo

* validation checks for conditions

* update policy

* refactor logs

* code review

* add openapispec for clusterpolicy preconditions

* Update documentation

* CR fixes

* documentation

* CR fixes

* update variable

* fix logs

* update policy

* pre-defined variables (serviceAccountName & serviceAccountNamespace)

* update test
 2020-01-07 15:13:57 -08:00
Shuting Zhao
9194251a38 fix pod controller annotation to "none" 2020-01-06 14:41:25 -08:00
Shuting Zhao
56c03f712a only generate rule on policy creation 2019-12-27 15:57:43 -08:00
Shuting Zhao
bae2865550 - add =() to volumes; - update error msg 2019-12-27 14:59:12 -08:00
Shuting Zhao
54ecb7738a - insert annotation to podTemplate; - skip apply rule on pod if annotation exists 2019-12-26 15:34:19 -08:00
Shuting Zhao
b5255893e3 update autogen annotation for pod controllers 2019-12-26 10:09:49 -08:00
Shuting Zhao
74b85d8143 generate rule for pod controllers 2019-12-20 18:53:29 -08:00
Shuting Zhao
b67577994a update apiversion to v1 in code 2019-11-13 13:41:08 -08:00
shivkumar dudhani
2669b0ae6b set default ValidationFailureAction to 'audit' 2019-09-06 10:18:45 -07:00
shivkumar dudhani
fa53519e2a change CRD Name to ClusterPolicy & ClusterPolicyViolations 2019-09-03 14:51:51 -07:00
shivkumar dudhani
db3bcf3ca3 formatting error, fixes tests 2019-08-27 23:48:13 -07:00
shivkumar dudhani
470862a7b1 endpoint for policy mutation + refactor + graceful shutdown 2019-08-27 16:44:10 -07:00