kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-01-20 18:52:16 +00:00

Author	SHA1	Message	Date
vivek kumar sahu	a37901425f	return helpful error message on invalid patched resources. (#4129 ) Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-07-06 13:24:28 +05:30
Charles-Edouard Brétéché	24e96884c5	refactor: finish refactoring generate e2e tests (#4090 ) * refactor: generate e2e GeneratePolicyDeletionforCloneTests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: generate e2e test GenerateNetworkPolicyOnNamespaceWithoutLabelTests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * chore: cleanup Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * finish refactoring tests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: is not found Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor expectations part 1 Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: repeat update on conflict Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-07-05 23:34:09 +08:00
Charles-Edouard Brétéché	27e5772986	fix: add more verify images e2e test for bool fields (#4172 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-06-30 21:36:28 +02:00
Tathagata Paul	16f8620993	added resource lists for test cli (#4082 ) Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com>	2022-06-20 06:38:13 +00:00
Charles-Edouard Brétéché	e1db7c9814	feat: add e2e framework and verify image new test (#4094 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-06-09 21:58:07 +08:00
Charles-Edouard Brétéché	e3c39f1da1	refactor: generate e2e GeneratePolicyDeletionforCloneTests (#4071 ) * refactor: generate e2e GeneratePolicyDeletionforCloneTests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: unit test Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * chore: remove resourceExpectation type Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-06-07 23:35:44 +08:00
Charles-Edouard Brétéché	0b7b2458eb	refactor: generate e2e tests (#4068 ) * refactor: use t.Cleanup in e2e tests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: generate e2e tests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * helpers Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-06-03 21:08:27 +02:00
Charles-Edouard Brétéché	fe3c12628c	refactor: use t.Cleanup in e2e tests (#4067 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-06-03 19:08:33 +05:30
Vyankatesh Kudtarkar	18ae9c7d6d	fix policy typo (#4039 )	2022-05-31 06:28:02 +00:00
Shubham Nazare	165c5d9fc3	feat: Extend CLI to cover generate policies (#3456 ) - Change in namespace for test-generate example - Change cloneResource to cloneSourceResource - Add support for namespaced Policy and fix log messages - Add test-generate in Makefile and an example of namespaced Policy - Fix namespaced policy issue and add comments - Refactor according to new generate controller - Add json tag to GeneratedResource field of RuleResponse struct Signed-off-by: Shubham Nazare <shubham4443@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-05-25 14:26:22 +00:00
vivek kumar sahu	fbbe57f5e1	Request operation value by default to CREATE (#3894 ) * set by default request.operation to CREATE Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> * Added test cases Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-05-25 13:59:53 +00:00
Charles-Edouard Brétéché	1936d86623	fix: move ur controller filtering in reconciler (#3964 ) * fix: move ur controller filtering in reconciler Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: mark ur retry on conflict Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: test data Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: add filter back in update ur handler Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: added some logs about attempts and increased backoff Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: reconciliation logic Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: Test_Generate_Synchronize_Flag Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix: small nits Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-05-20 00:06:56 +08:00
Charles-Edouard Brétéché	0099ef54ad	chore: enable gofmt and gofumpt linters (#3931 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-05-17 06:19:03 +00:00
Dhaval Shah	fce35b91d2	[Bugbash] Kceu22 bugbash/fix staticcheck warnings (#3917 ) * cleanup: error string formating Fixes Staticcheck ST1005 KubeCon EU 2022 BugBash Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * cleanup: merge var declaration with assignment Fixes staticcheck S1021 Kubecon EU 2022 Bugbash Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * cleanup normalize yoda condition to simple compare fixes staticcheck ST1017 Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * cleanup: remove extraneous err param on executeTest err is not used anywhere except to throw Fatal inside execureTest() fix staticcheck SA4009 Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * fix: match validation error message to actual errors Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * cleanup: more of normalize validation error messages Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> * cleanup: additional error message formatting fixes Signed-off-by: Dhaval Shah <30974879+dhavalgshah@users.noreply.github.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-05-14 22:04:35 +01:00
Vyankatesh Kudtarkar	31928c9507	Fix subject match selector issue in cli (#3887 ) * Fix subject match selector issue in cli * remove space * code refactoring	2022-05-11 15:21:13 +00:00
Charles-Edouard Brétéché	747f4128ef	chore: enable noctx linter (#3888 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-05-11 17:34:40 +05:30
Charles-Edouard Brétéché	f508e9a0b8	chore: add unconvert linter (#3867 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-05-10 20:28:45 +01:00
Charles-Edouard Brétéché	97e5e64fd4	chore: enable whitespace linter (#3864 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-05-10 17:01:29 +00:00
Jim Bugwadia	bc07943c81	handle subresources (#3841 ) * handle subresources Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix logger name Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix webhook and logs Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-05-09 18:50:50 -07:00
Sambhav Kothari	2dc54e5c1b	Allow variables of any kind to be defined (#3828 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-05-07 20:30:11 +00:00
Afzal Ansari	3845225db1	refactor: imported pkg redeclared and a few other unused func (#3827 ) * Removes paths redeclared Signed-off-by: afzal442 <afzal442@gmail.com> * fixes v1 redeclared Signed-off-by: afzal442 <afzal442@gmail.com> * fixes mergeSucceededResults func never used Signed-off-by: afzal442 <afzal442@gmail.com> * fixes func unused Signed-off-by: afzal442 <afzal442@gmail.com> * refactors unused func Signed-off-by: afzal442 <afzal442@gmail.com> * refactors unused func Signed-off-by: afzal442 <afzal442@gmail.com> * refactors getNamespacesForRule unused Signed-off-by: afzal442 <afzal442@gmail.com> * refactors policyNamespace unused Signed-off-by: afzal442 <afzal442@gmail.com> * refactors replacing loop with ... Signed-off-by: afzal442 <afzal442@gmail.com> * refactors func buildPolicyLabel unused Signed-off-by: afzal442 <afzal442@gmail.com> * removes unused func Signed-off-by: afzal442 <afzal442@gmail.com> * removes unused comment Signed-off-by: afzal442 <afzal442@gmail.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-05-07 16:44:57 +00:00
Moritz Johner	4d2ec26c90	CLI should respect scored annotation for warnings (#3821 ) Co-authored-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-05-07 13:33:50 +00:00
Sambhav Kothari	c3604c1170	Add an object_from_lists function (#3824 )	2022-05-07 12:05:04 +00:00
Sambhav Kothari	e55bf0bf6f	Relax JMESPath variable validation (#3826 )	2022-05-07 16:40:53 +05:30
shuting	b4f2b63f53	Load `mutate.targets` via dclient (#3797 ) * Load mutate.targets via dclient Signed-off-by: ShutingZhao <shuting@nirmata.com> * Do not fail on namespace cleanup for e2e generate Signed-off-by: ShutingZhao <shuting@nirmata.com> * Fix wildcard name listing for a certain namespace Signed-off-by: ShutingZhao <shuting@nirmata.com> * Rename onPolicyUpdate to mutateExistingOnPolicyUpdate Signed-off-by: ShutingZhao <shuting@nirmata.com> * Enable "mutateExistingOnPolicyUpdate" on policy events Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-05-06 05:46:36 +00:00
Jim Bugwadia	db3502656d	Cert attestor (#3809 ) * add certificates attestor Signed-off-by: Jim Bugwadia <jim@nirmata.com> * handle duplicate images; use container name as key Signed-off-by: Jim Bugwadia <jim@nirmata.com> * use OldObject for modify requests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * use unique image names Signed-off-by: Jim Bugwadia <jim@nirmata.com> * merge main Signed-off-by: Jim Bugwadia <jim@nirmata.com> * create a single annotation patch across rules and images Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fmt and change annotation key name Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix linter issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> * split certs from keys Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test Signed-off-by: Jim Bugwadia <jim@nirmata.com> * add Rekor and fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-05-05 21:57:20 -07:00
shuting	8a9a98d8b5	Add `handler` to `UR.status` (#3791 ) * - Add "handler" to "ur.status" - Mark / Unmark handler upon UR reconciliation Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add field onPolicyUpdate Signed-off-by: ShutingZhao <shuting@nirmata.com> * Update API docs Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add delay in generate e2e tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * Remove duplicate logic for cleaning up the cloned resource Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-05-05 16:26:27 +05:30
Sambhav Kothari	6e48fdf4ce	Fix issue with image registry when decoding OCI descriptors with out of spec keys (#3799 )	2022-05-04 13:38:56 -04:00
gsweene2	af51ceb4ff	Add JMESPath Function `items` (#3777 ) Co-authored-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-05-04 10:33:24 +00:00
Vyankatesh Kudtarkar	fca068d0f6	Fix Cli test for image verification (#3760 ) * fix Cli test for image verification	2022-05-04 04:11:59 +00:00
Sambhav Kothari	0a5f004047	Allow non-object type elements for foreach rules (#3763 ) Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-05-02 16:39:37 +00:00
Jim Bugwadia	3cb620499e	Remove YAML multiline support in CM values (#3721 ) * remove YAML multiline support in CM values Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove unused code Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-05-02 08:57:35 +01:00
Sambhav Kothari	655e2a74d7	Add tests for required checks for image verify (#3755 )	2022-05-01 18:00:44 -07:00
Sambhav Kothari	8342d86a9e	Retry policy creation to avoid flaky CRD readiness (#3752 ) Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-05-01 22:42:14 +00:00
Sambhav Kothari	dd0f6baa7d	Enable tests in makefile (#3699 )	2022-05-01 14:20:22 -07:00
shuting	a4815f77c4	Convert GenerateRequest to UpdateRequest for backward compatibility (#3730 ) - Remove GenerateRequest Informer - Rename GenerateRequest to UpdateRequest in logs and vars - Fix initContainer leader election - Convert GenerateRequest to UpdateRequest in initContainer - Remove unused methods - Add printer column ruleType to UR Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-29 16:35:49 +05:30
shuting	e248308cb3	Create UR for both mutate and generate policies (#3717 ) * remove mutateExisting field Signed-off-by: ShutingZhao <shuting@nirmata.com> * update policy controller to create UR for generate Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove debug log Signed-off-by: ShutingZhao <shuting@nirmata.com> * - Update api docs - Ignore e2e tests cleanup failure Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add back index to helm template Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-29 11:01:02 +05:30
shuting	b740e84f06	add e2e tests for mutate existing policies (#3703 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-27 21:44:52 +02:00
Jim Bugwadia	ab5171cee5	Verify digest (#3679 ) * add verifyDigest to check all tags are converted to digests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * add required to check for image verification annotation Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * generate CRD Signed-off-by: Jim Bugwadia <jim@nirmata.com> * adding imageverify true/false patch Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * patch addition logic Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * image verify CLI tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fixes and unit tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix digest mutate Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make codegen Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix policy cache Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>	2022-04-27 15:09:52 +00:00
Sambhav Kothari	9d13e89697	Enable verifyImages and CLI registry tests (#3684 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-04-27 17:29:54 +08:00
shuting	d5f6167e56	Fix flaky e2e tests for generate policies (#3681 ) * fix flaky generate e2e tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * enable validate, verifyimage e2e tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * set policy names different within a single test Signed-off-by: ShutingZhao <shuting@nirmata.com> * do not delete cloned resource when sync generate policy is deleted Signed-off-by: ShutingZhao <shuting@nirmata.com> * replace grLister by urLister Signed-off-by: ShutingZhao <shuting@nirmata.com> * re-queue pending URs only to fix clone policy deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove duplicate import Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-04-26 19:18:24 +00:00
Sambhav Kothari	25badfe4fb	Fix regression in wildcard matches in In/AnyIn operators (#3686 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-04-26 18:03:05 +00:00
Vyankatesh Kudtarkar	79be6379b2	fix test cli CI failures from main (#3682 )	2022-04-26 20:00:46 +08:00
Vyankatesh Kudtarkar	56c90fd087	Support context variables when using foreach CLI (#3637 ) * Support context variables when using foreach CLI * add testcases	2022-04-25 16:36:31 +00:00
Ioannis Bouloumpasis	a205bc3e2e	fix: webhooks are not configured correctly (#3660 ) * Fix webhook rules equality when internal is empty The current implementation of the 'webhookRulesEqual' didn't check for the corner case were both the internal representation and the API have length of one, but the internal representation has 1 rule with no selectors. In this case the 'webhookRulesEqual' should return false, as the 2 configurations are not the same. Signed-off-by: Ioannis Bouloumpasis <buluba@arrikto.com> * Fix tests Add a small time delay when checking if a Policy is ready in tests to ensure that the Policy is actually ready. Signed-off-by: Ioannis Bouloumpasis <buluba@arrikto.com>	2022-04-25 15:19:39 +00:00
Sambhav Kothari	44b5bf0b57	Allow definition of inline variables in context (#3658 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-04-25 19:06:07 +08:00
Sambhav Kothari	ec4e4ba452	Add support for custom image extractors (#3596 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-04-14 09:08:30 -07:00
Tathagata Paul	10cf0f2344	add support for roles, cluster roles and subjects (#3188 ) * add support for roles, cluster roles and subjects in kyverno cli Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-04-12 04:00:49 +00:00
Vyankatesh Kudtarkar	e268be9e88	support for deprecated API's (#3439 ) * support for deprecated API's * add testcase * update condition * fix logic	2022-03-22 18:25:35 +00:00
Aidan Delaney	4ec3b36f7f	Remove support for test.yaml (#3442 ) kyverno-test.yaml is now the only supported test file name Signed-off-by: Aidan Delaney <adelaney21@bloomberg.net>	2022-03-22 14:09:08 +05:30

1 2 3 4 5 ...

376 commits