* added for deployment.yaml
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* added for helm
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* to be tested
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* removed not needed ends
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* made changes to pass the test
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* removed hard from values.yaml
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* added condition to disable pod-affinity
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
* changed with to if condition
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
* small fix for trailing spaces
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
* small fix
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
Co-authored-by: NoSkillGirl <singhpooja240393@gmail.com>
* intial commit
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* update types
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* updated all type
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* extract to single struct
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* updated match resource description function
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* minor test working
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* match resources test is working
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* exclude resources test is working
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* changed double negetive in logic
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* yamls updated and added validation and cache loops
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* match exclude working but need to fix matchExcludeConflict function
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* restored doMatchAndExcludeConflict function
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* rewrote the matchExcludeConflictFunction
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* finalizing completed till utils_test.go
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* ready for review complete
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* update yamls
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* one more merge conflict solved
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* regenerates YAMLs
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* possible fix for failing tests
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* removed duplicate any/all logic and added a test, (rest refacotring is in progress)
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* cache test is working
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* improved cache test and it is working
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* added check for mutate and generate policies too
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* cleaned doesResourceMatchConditionBlock logic but validation still has code from attempt to combine the all block
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* reverted validate.go to older logic
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* removed commented code
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* removed extra comments
Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>
* Allow metrics service annotations to be defined separate from main service
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Add test for metrics during Helm deployment testing
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Make services separate for kustomize
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Run 'make kustomize-crd'
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Fix e2e tests for metrics
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Fix Helm chart for metrics service
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Fix helm chart testing
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* initial commit for api server lookups
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* initial commit for API server lookups
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* Enhancing dockerfiles (multi-stage) of kyverno components and adding non-root user to the docker images (#1495)
* Dockerfile refactored
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
* Adding non-root commands to docker images and enhanced the dockerfiles
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
* changing base image to scratch
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
* Minor typo fix
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
* changing dockerfiles to use /etc/passwd to use non-root user'
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
* minor typo
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
* minor typo
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* revert cli image name (#1507)
Signed-off-by: Raj Babu Das <mail.rajdas@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* Refactor resourceCache; Reduce throttling requests (background controller) (#1500)
* skip sending API request for filtered resource
* fix PR comment
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
* fixes https://github.com/kyverno/kyverno/issues/1490
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
* fix bug - namespace is not returned properly
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
* reduce throttling - list resource using lister
* refactor resource cache
* fix test
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
* fix label selector
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
* fix build failure
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix merge issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix unit test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add nil check for API client
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Raj Babu Das <mail.rajdas@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
