Shuting Zhao
c4ebef7b0d
- support AllowMissingPathOnRemove and EnsurePathExistsOnAdd in patchesJSON6902
...
- upgrade to evanphx/json-patch/v5
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
2021-02-25 15:25:07 -08:00
Shuting Zhao
cdc5190c56
update nirmata/kyverno to kyverno/kyverno
2020-10-07 11:12:31 -07:00
Mohan B E
a827f88dc7
resolved conditional anchor issue and added validation to pattern labels ( #1060 )
...
* resolved conditional anchor issue and added validation to pattern labels
* restored IsConditionAnchor
* added annotation and anypattern validation
* added conditional anchor key checker
* reverted docs
* fixed tests
* modified validation
* modified validate condition check
2020-08-28 18:22:22 -07:00
shuting
39de46fe39
983 kustomize support ( #1026 )
...
* prototype - strategic merge patch
* add end to end test
* add engine strategic merge patch support
* set webhook reinvocationPolicy to IfNeeded
* refactor engine mutate code
* support JMESPath in strategic merge patch
* implement patchesJson6902
* update doc
* resolve pr comments
2020-08-05 09:11:23 -07:00
shuting
87fa77fbcc
965 add validate audit handler ( #967 )
...
* store policy names cache to reduce lookup time
* add validate audit handler
* fix #958 , remove auto-gen annotation on Pod
* formatting code
* update processTime to readable format
* #586 , add back unit test
* update logging info
* remove unused interface
* handle generate policy in a single thread in weboook
* resolve pr comments
2020-07-09 11:48:34 -07:00
Jim Bugwadia
c962971372
Update mutate overlay to handle keys with slashes for labels (like annotations). Added debug V4 logs for mutate flows. ( #972 )
2020-07-04 19:32:11 -07:00
Jim Bugwadia
838d02c475
Bugfix/659 support wildcards for namespaces ( #871 )
...
* - support wildcards for namespaces
* do not annotate resource, unless policy is an autogen policy
* close HTTP body
* improve messages
* remove policy store
Policy store was not fully implemented and simply provided a way
to list all polices and get a policy by name, which can be done via
standard client-go interfaces.
We need to revisit and design a better PolicyStore that provides fast
lookups for matching policies based on names, namespaces, etc.
* handle wildcard namespaces in background processing
* fix unit tests 1) remove platform dependent path usage 2) remove policy store
* add test case for mutate with wildcard namespaces
2020-05-26 10:36:56 -07:00
Yuvraj
4fa5a056f3
Fix conflict
...
Signed-off-by: Yuvraj <yuvraj.yad001@gmail.com>
2020-03-27 14:10:21 +05:30
Yuvraj
801c7513cb
golanfci-lint changes
...
Signed-off-by: Yuvraj <yuvraj.yad001@gmail.com>
2020-03-24 00:35:05 +05:30
shivkumar dudhani
e6e5bbb603
Merge branch 'master' into access_check
2020-03-17 17:23:18 -07:00
shivkumar dudhani
d327309d72
refactor logging
2020-03-17 16:25:34 -07:00
shravan
4db0cf7a87
522 adding force mutate function
2020-03-06 01:09:38 +05:30
shivkumar dudhani
5cee543755
refactor variable substitution
2020-02-14 11:59:28 -08:00
shuting
3343d73b76
linter fix ( #657 )
2020-01-27 08:58:53 -08:00
Shivkumar Dudhani
f4406bbefc
linter fixes ( #656 )
...
* cleanup phase 1
* linter fixes phase 2
* linter fixes
* linter fixes
2020-01-24 16:27:51 -08:00
Shivkumar Dudhani
8c1d79ab28
linter suggestions ( #655 )
...
* cleanup phase 1
* linter fixes phase 2
2020-01-24 12:05:53 -08:00
Shuting Zhao
7e59e8e484
mutation failure to not block resource creation
2020-01-15 21:46:58 -08:00
Shuting Zhao
fbe6ea2f24
fix annotation path error if applied to pod controller
2020-01-14 15:57:02 -08:00
Shuting Zhao
4c83ab8b52
add more unit tests
2020-01-10 17:15:44 -08:00
Shuting Zhao
5a44ab3e16
generate violation in validate when substitute path not present
2020-01-09 17:44:11 -08:00
Shuting Zhao
f78ca61859
generate violation in mutation when substitute path not present
2020-01-09 12:24:37 -08:00
Shuting Zhao
472fa29fce
move mutation to subpackage pkg/engine/mutate
2020-01-07 17:06:17 -08:00
