kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-01-20 18:52:16 +00:00

Author	SHA1	Message	Date
Bricktop	9a6f7043b0	Add e2e test for mutation (#1761 ) Signed-off-by: MarcelMue <marcel.mueller1@rwth-aachen.de> Signed-off-by: Marcel Mueller <marcel.mueller1@rwth-aachen.de>	2021-04-08 16:14:08 -07:00
shuting	f3ca1d78f1	Fix log message (#1779 ) * update log message Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update printer column - validation failure action Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-08 12:10:30 -07:00
Vyankatesh Kudtarkar	e2cd04c91f	Fix #1446 :Failed to mutate policy (#1767 ) * Fix failed to mutate policy Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix autogen rule issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> * addPolicy and AddNsPolicy changes * fix code indentation * change kind -> policy Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix kind for policy * fix comments Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-04-07 16:34:45 -07:00
Frank Jogeleit	072d9f7951	Add Support for policies.kyverno.io/severity annotation (#1763 ) Signed-off-by: Frank Jogeleit <fj@move-elevator.de>	2021-04-07 14:56:27 -07:00
Shuting Zhao	6f41acde03	tag v1.3.5-rc3 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-06 11:13:56 -07:00
Max Goncharenko	01004e1db0	Fix #1754 Invalid variable validation (#1770 ) Signed-off-by: Max Goncharenko <kacejot@fex.net>	2021-04-06 10:56:06 -07:00
Jim Bugwadia	675c808b2f	Merge pull request #1766 from realshuting/1764_fix_generate Remove namespace field on kind Namespace	2021-04-05 21:27:04 -07:00
Shuting Zhao	741f230272	add unit tests Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-05 14:41:30 -07:00
Shuting Zhao	8affebb680	bump kind to 0.10.0, k8s 1.20.2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-05 13:58:51 -07:00
Shuting Zhao	4b8b8cbfa6	remove namespace field on kind Namespace Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-05 13:05:47 -07:00
Vyankatesh Kudtarkar	3ab75095b7	remove permission (#1758 ) * remove permission Signed-off-by: vyankatesh <vyankatesh@neualto.com> * remove duplicate resource Signed-off-by: vyankatesh <vyankatesh@neualto.com> Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-04-02 11:22:59 -07:00
Shuting Zhao	a1d9cdd14b	tag v1.3.5-rc2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-01 13:57:33 -07:00
Jim Bugwadia	3cffc3654a	Merge pull request #1762 from realshuting/1757_default_image_info Set default image registry and tag if not present	2021-04-01 13:40:13 -07:00
Jim Bugwadia	fb368ba24b	Merge pull request #1755 from realshuting/1749_fix_concurrent_read_write Fix concurrent read/write when loading configmap data	2021-04-01 13:39:27 -07:00
Shuting Zhao	1cf8efd472	set default image registry and tag if not present Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-01 09:50:34 -07:00
shuting	72fd921cb6	fix exclude logic (#1756 ) Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-31 22:02:36 -07:00
Shuting Zhao	cab81eadda	operate on the copy of configmap data Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-31 15:22:25 -07:00
Shuting Zhao	b0cee60100	change the order for variable validation: add allowed vars first Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-31 14:29:46 -07:00
Shuting Zhao	4d01f76797	- fix variable validation; - update log level Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-31 13:24:36 -07:00
treydock	91713ee566	Check webhooks are present during liveness (#1748 ) Fixes #1747 Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>	2021-03-31 12:44:56 -07:00
treydock	0131f375f1	Register webhooks only once service endpoint is ready (#1741 ) * Register webhooks only once service endpoint is ready Fixes #1740 Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu> * Wait for webhook to become ready in main loop Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu> * Better error handling and logging around checking endpoint Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu> * Log soft failure as info, remove redundant return Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>	2021-03-30 13:46:01 -07:00
Yuto Takahashi	e2cb30e752	Allow generatecontroller to handle Roles (#1739 ) * Allow generateoperator to handle Roles Signed-off-by: Yuto Takahashi <ytaka23dev@gmail.com> * Restore the releasable manifest Signed-off-by: Yuto Takahashi <ytaka23dev@gmail.com>	2021-03-29 22:48:41 -07:00
Pooja Singh	ca5a4e1986	added multiple item logic for clone in generate policy (#1744 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-29 22:36:16 -07:00
Pooja Singh	118b979ef1	skipping schema check for unknown kinds (#1736 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-29 12:13:26 -07:00
Shuting Zhao	cd5070191f	correct tag Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-26 15:47:11 -07:00
Shuting Zhao	0c860b7327	release v1.3.5-rc1 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-26 15:14:05 -07:00
Jim Bugwadia	e7a8eb93ee	Merge pull request #1714 from kacejot/vars-substitution Bug Fix: #1506 issue; Resolve path reference in entire rule	2021-03-26 14:53:30 -07:00
Vyankatesh Kudtarkar	057ec4e690	Fix : 1657 (Update variable paths when auto generate the controller rules) and 1615 ( kyverno apply pipe through to kubectl) (#1735 ) * Fix 1657and 1615 Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix build issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> * remove logs Signed-off-by: vyankatesh <vyankatesh@neualto.com> Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-03-26 11:03:45 -07:00
Jim Bugwadia	f29f6b0369	add comment Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-26 10:47:59 -07:00
Jim Bugwadia	908950c47a	address comments Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 21:27:16 -07:00
Jim Bugwadia	72cdbafbae	fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 18:11:32 -07:00
Jim Bugwadia	8d03f8c59e	merge main Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 18:00:02 -07:00
Pooja Singh	a0ddd2c184	Added validate logic for generate to handle multiple items in array (#1727 ) * added validate logic for generate Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * format fix Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * gofmt fix Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * added test cases Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-25 17:04:43 -07:00
Jim Bugwadia	6dff9e0ab9	merge and resolve conflicts Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 16:43:12 -07:00
shuting	fd9acf21a7	Auto-recover policy report (#1730 ) * auto-recover policy report Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add flag background-scan to tune this interval Signed-off-by: Shuting Zhao <shutting06@gmail.com> * cleanup webhook configurations when Kyverno deployment is deleted Signed-off-by: Shuting Zhao <shutting06@gmail.com> * reconcile policy reports if Kyverno Configmap changes Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-25 12:28:03 -07:00
Jim Bugwadia	4d70013e22	Merge pull request #1724 from MarcelMue/fix-apipath-validation Make validateAPICall work with special characters in variables	2021-03-24 22:28:09 -07:00
shuting	c08843ef77	Add Images info to variables context (#1725 ) * - remove supportMutateValidate; - refactor new context in the webhook Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add ImageInfo to variables context Signed-off-by: Shuting Zhao <shutting06@gmail.com> * revert unexpected changes Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-23 10:34:03 -07:00
Marcel Mueller	c10a994045	Rename variable to kyvernoapicallvariable Signed-off-by: Marcel Mueller <marcel.mueller1@rwth-aachen.de>	2021-03-23 18:24:17 +01:00
Jim Bugwadia	f9be2651ad	Merge pull request #1729 from realshuting/1670_generate_concurrently make the number of generate workers configurable	2021-03-23 08:26:19 -07:00
Jim Bugwadia	9b90b215fe	Merge pull request #1728 from realshuting/fix-variable-subtitution-in-context.apiCall.jmesPath fixes variable substitution in context.apiCall.jmesPath	2021-03-23 08:25:12 -07:00
Shuting Zhao	669f01e9d2	add flag to kyverno's manifest Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-22 19:19:12 -07:00
Shuting Zhao	c3360b7389	make the number of generate workers configurable Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-22 19:14:06 -07:00
Shuting Zhao	d650d2b609	fixes variable substitution in context.apiCall.jmesPath Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-22 12:15:29 -07:00
Pooja Singh	bcc19971eb	skip GRs for spec being same in old and updated policy (#1723 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-19 15:33:52 -07:00
Pooja Singh	4128410207	Enhancement/existence anchor - should loop all the items in the array (#1719 ) * updated validating policy code Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * changed existance logic to loop all the items in array Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * updated comments and error messages Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-19 15:18:26 -07:00
Max Goncharenko	3373a79f26	Bug Fix: #1585 issue; validate on DELETE the oldResource (#1710 ) * fix #1585 issue; validate on DELETE the oldResource Signed-off-by: Max Goncharenko <kacejot@fex.net> * apply PR edits for #1585 issue fix; add test with nested var Signed-off-by: Max Goncharenko <kacejot@fex.net>	2021-03-19 14:43:26 -07:00
Marcel Mueller	4f96232e62	Make validateAPICall work with special characters in variables Signed-off-by: Marcel Mueller <marcel.mueller1@rwth-aachen.de>	2021-03-19 20:29:55 +01:00
Jim Bugwadia	802e6c2507	Merge pull request #1721 from realshuting/webhook_ha Fix variable substitution in NumericOperatorHandler	2021-03-18 14:09:02 -07:00
Shuting Zhao	7502e5da98	fix variable substitution in NumericOperatorHandler Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-18 13:40:14 -07:00
shuting	9a99cc3a33	fix Namespace scope (#1718 ) Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-17 10:28:44 -07:00

1 2 3 4 5 ...

3153 commits