HIHIA
0849c8f929
fix: schema validation for mutateExisting type of policy ( #6602 )
...
Signed-off-by: HIHIA <283304489@qq.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-03-17 05:01:02 +00:00
shuting
dbfeb75793
feat: ignore admission requests sent by the kyverno background controller ( #6499 )
...
* ignore ARs sent by the kyverno background controller
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add background controller sa to exclude usernames
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-15 12:27:28 +00:00
Charles-Edouard Brétéché
861776d50c
fix: policy cache use GVR instead of kind ( #6543 )
...
* fix: policy cache use GVR instead of kind
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unit tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unit tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* GVRS
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* ephemeralcontainers
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* nit
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-13 14:44:39 +00:00
Charles-Edouard Brétéché
9d81549b8a
test: clean a couple kuttl tests ( #6553 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-13 09:17:16 -04:00
Charles-Edouard Brétéché
062bd798f0
test: add kuttl tests for policy kinds validation ( #6547 )
...
* test: add kuttl tests for policy kinds validation
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-13 18:24:11 +08:00
Charles-Edouard Brétéché
73d2063853
feat: change webhook configuration to better support wildcards ( #6534 )
...
* feat: change webhook configuration to better support wildcards
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-13 09:27:49 +00:00
shuting
637f830917
feat: apply generate rules on trigger events ( #6508 )
...
* - fire generation on trigger deletion, with condition rules;
- delete downstream if trigger no longer matches;
- delete downstream if trigger is deleted, with sync rule
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* trim condition key spaces
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix UR spec
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-create-on-trigger-deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-create-on-trigger-deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-data-sync-delete-trigger
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-data-nosync-delete-trigger
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-data-sync-update-trigger-no-match
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* rename policy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-data-nosync-update-trigger-no-match
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add debug logs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-clone-create-on-trigger-deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update readme
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-clone-sync-delete-trigger
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-clone-nosync-delete-trigger
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-clone-sync-update-trigger-no-match
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update readme
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test cpol-clone-nosync-update-trigger-no-match
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-10 17:17:10 +00:00
shuting
48726dcd4a
feat: validate immutable fields for a generate rule - 2 ( #6451 )
...
* update validation checks
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix ns assertions
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-10 14:39:44 +00:00
shuting
85a83e4fae
fix: namespace matching for background namespaced policies ( #6530 )
...
* fix namespace matching for background policies
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test match-trigger-namespace
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-10 13:55:08 +00:00
Charles-Edouard Brétéché
5160b63154
feat: use kind selectors ( #6514 )
...
* fix: compile regex globally
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: use kind selectors
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* clean
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* webhooks rules
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-10 13:24:55 +00:00
shuting
a61dac613b
add a kuttl test cpol-data-sync-to-nosync-delete-rule ( #6529 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-10 12:55:33 +00:00
shuting
4572eab750
fix: apply generate existing when a new rule is added ( #6472 )
...
* trigger generate existing when a new rule is added
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* refactor
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* ignore existing rule updates
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-06 15:40:49 +00:00
shuting
ea306d6d7f
rename generateExistingOnPolicyUpdate to generateExisting ( #6470 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-03 12:05:53 +01:00
shuting
0b359d07db
rename GenerateExistingOnPolicyUpdate to GenerateExisting ( #6321 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-03 09:34:55 +00:00
shuting
264eaec049
fix: remove timestamp checks for the clone rule ( #6439 )
...
* remove timestamp checks
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-01 15:49:05 +00:00
shuting
86fc31f63b
feat: add validations for generate immutable fields ( #6328 )
...
* add validations for generate immutable fields
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore(deps): bump github.com/onsi/gomega from 1.26.0 to 1.27.0 (#6334 )
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.26.0 to 1.27.0.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.26.0...v1.27.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Jmespath typo fix (#6342 )
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
* chore(deps): bump golang.org/x/net from 0.6.0 to 0.7.0 (#6341 )
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions (#6348 )
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) from 2.0.5 to 2.1.0.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](bd2868d14a...b9ddf6a515#6347 )
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.27.0 to 1.27.1.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.27.0...v1.27.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: dump admission response (#6349 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: use labels.Everything in userinfo clusterroles matching (#6351 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update k8s.gcr.io to registry.k8s.io (#6340 )
Signed-off-by: Rayan Das <rayandas91@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* Notary v2 (#6011 )
* fix make debug-deploy
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* improve log messages
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* initial update
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* initial update
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update registry credentials handling order
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* comment out ACR helper - breaks anonymous image pull
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* merge main and refactor verifiers
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix opt init
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove local address
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update to NotaryV2 RC
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix fmt
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update deps
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* format imports
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove env and no-op statement
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix merge issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix linter issue
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove unused field
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* make fmt
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* renable ACR credential helper
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* Update .vscode/launch.json
Signed-off-by: shuting <shutting06@gmail.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shutting06@gmail.com>
* chore(deps): bump fluxcd/flux2 from 0.39.0 to 0.40.0 (#6362 )
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 0.39.0 to 0.40.0.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](978cc0c5b8...2cac6ce281#6305 )
* OldObject translation solved in autogen
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
* CronJob fixed in autogen
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
* tests added
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
---------
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: logger key value in wrong order (#6365 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: missing metrics for policies in audit mode (#6363 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore(deps): bump github.com/notaryproject/notation-go (#6361 )
Bumps [github.com/notaryproject/notation-go](https://github.com/notaryproject/notation-go ) from 1.0.0-rc.1 to 1.0.0-rc.3.
- [Release notes](https://github.com/notaryproject/notation-go/releases )
- [Commits](https://github.com/notaryproject/notation-go/compare/v1.0.0-rc.1...v1.0.0-rc.3 )
---
updated-dependencies:
- dependency-name: github.com/notaryproject/notation-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* fix: role matching from authentication infos (#6358 )
* fix: role matching from authentication infos
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: delete certificate secret if type is not TLS (#6368 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: user/groups exclusions (#6357 )
* refactor: user/groups exclusions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* wildcard
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* add labels to downstream and source resources (#6322 )
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update generate validation checks
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Rayan Das <rayandas91@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Abhishek Kumar <76171953+octonawish-akcodes@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Rayan Das <rayandas91@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2023-03-01 06:52:20 +00:00
shuting
0c91e87bbb
fix: delete downstream for a generate rule removal, with data and sync ( #6393 )
...
* remove policy handler for updates
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* remove policy update handler from the ur controller
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* rework cleanup downstream on policy deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix downstream deletion on data rule removal
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl test for clusterpolicy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* linter fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl test for policy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update api docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add delays
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix name assertion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* delete downstream when deletes the clone source
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl test pol-clone-sync-delete-source
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* linter fixes
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl test pol-clone-sync-delete-downstream
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl test pol-data-sync-modify-rule
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix panic
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix panic
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix labels
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix policy assertions
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix annotation missing names
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* rename policy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* remove dead code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* create unique namespaces
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* create more unique namespaces
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix assertion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-03-01 03:48:18 +00:00
Charles-Edouard Brétéché
5585ed5e9d
chore: add cascading kuttl test ( #6425 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-28 15:27:27 +00:00
Charles-Edouard Brétéché
8e123bc2ce
chore: split kuttl tests ( #6423 )
...
* fix: makefile build/kind targets and add target to save built images to files
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* try in ci
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* prepare for kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* load
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* install
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* makefile
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* makefile
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: split kuttl tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* config
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more test suites
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* config
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-28 15:33:46 +01:00
Charles-Edouard Brétéché
33a07f3c80
fix: cascading mutations ( #6411 )
...
* fix: cascading mutations
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* remove explicit AddResource call
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update resource in context
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-27 18:33:07 +01:00
Chip Zoller
bc7b73401e
More kuttl standard generate tests ( #6332 )
...
* add test cpol-data-sync-delete-downstream
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test cpol-data-sync-modify-downstream
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* rename to be more descriptive
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-sync-delete-downstream
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* cleanup test
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test cpol-data-nosync-delete-rule
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test cpol-data-nosync-delete-policy
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* fix formatting
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add Kyverno kuttl specific snippets to BEST_PRACTICES
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add reminder note
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test cpol-data-nosync-modify-rule
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test cpol-data-nosync-modify-downstream
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-nosync-create-policy-invalid
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-sync-delete-policy
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* separate files
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-nosync-delete-downstream
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-nosync-delete-rule
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-nosync-delete-policy
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* fix description
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* fix description
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-nosync-modify-rule
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test pol-data-nosync-modify-downstream
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test existing-basic-create-data
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test existing-basic-create-preconditions-data
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add basic clone multiple test
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add delays
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add generate permissions
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* reorder source and ClusterPolicy, cleanup removal, README update
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add test for cascading-mutation
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* Change creation order, remove cleanup
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* increase sleep
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* remove unused test files
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* remove networkpolicies from perms
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* add networkpolicies back
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
* clarify readme
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
---------
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-02-27 14:39:18 +00:00
Charles-Edouard Brétéché
fb3a90c703
refactor: remove MutateResourceWithImageInfo ( #6397 )
...
* refactor: remove new resource from policy context
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fallback
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* test something else
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix cli tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* clean
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* changelog
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-27 13:45:00 +00:00
shuting
ccfcce83da
add kuttl test pol-clone-sync-modify-source ( #6407 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-27 11:51:21 +00:00
Charles-Edouard Brétéché
3331b13561
feat: add view aggregated cluster role support ( #6350 )
...
* feat: add view aggregated cluster role support
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* release note
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: treydock <tdockendorf@osc.edu>
2023-02-25 20:57:56 +01:00
shuting
3653130806
feat: add the kuttl test for Policy (Namespaced) with generate rule, data, and sync ( #6387 )
...
* add the test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update readme
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-24 21:59:17 +00:00
shuting
d3c2cd23fa
add kuttl tests ( #6336 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-24 14:59:55 +00:00
shuting
07b350166f
feat: add kuttl test for namespaced generate policy, with clone and sync ( #6386 )
...
* add a kuttl test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix policy type
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix policy type
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix policy type
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* rename files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* rename files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* rename files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-24 11:36:19 +00:00
Abhishek Kumar
f4e9d9ab0e
Update README.md ( #6389 )
...
Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-24 10:07:26 +00:00
shuting
d5684f6794
add labels to downstream and source resources ( #6322 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-22 10:49:09 +00:00
Charles-Edouard Brétéché
cfd4501dcc
test: add a couple pattern unit tests ( #6252 )
...
* test: add a couple pattern unit tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-08 11:17:42 +00:00
shuting
6b3be9ada1
feat: enable leader election for the background controller ( #6237 )
...
* enable leader election for the background controller
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update api docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-07 14:44:51 +01:00
yinka
60cf8afff9
spec.background field implementation for PolicyExceptions ( #6127 )
...
* spec.background field implementation for PolicyExceptions
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* generated files
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add kuttl test
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* set background to false
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* checks for variables
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* check if aggregate is nil
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* reject variables in polex
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* update
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* Update pkg/validation/exception/validate.go
Signed-off-by: shuting <shutting06@gmail.com>
* updates
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* change error
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* remove file
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* fix
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* fix lint error
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
---------
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
Signed-off-by: shuting <shutting06@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shutting06@gmail.com>
2023-02-06 15:45:31 +00:00
cleverhu
04cd2a2cfb
add kuttl test for allnotin ( #5700 )
...
Signed-off-by: cleverhu <shouping.hu@daocloud.io>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-06 09:39:23 +00:00
Charles-Edouard Brétéché
6934c66a71
refactor: add more functionnalities to engine interface ( #6212 )
...
* refactor: add more functionnalities to engine interface
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* exclude mechanism
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* polex
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix kuttl tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-06 13:49:47 +08:00
shuting
d03ad5deb1
fix ns selector ( #6216 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-03 15:22:11 +00:00
shuting
c8edf1ab32
fix: admission review variables for DELETE operations ( #6197 )
...
* build trigger from the stored admission request payload
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add a kuttl test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-02 14:46:53 +00:00
shuting
e8146e786e
fix: namespaceSelector for background policies ( #6188 )
2023-02-02 08:56:00 +00:00
Charles-Edouard Brétéché
47b4a177dd
chore: improve a couple kuttl tests ( #6079 )
...
* chore: improve a couple kuttl tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* readme
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Update test/conformance/kuttl/cleanup/validation/cron-format/README.md
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-30 14:11:06 +00:00
Charles-Edouard Brétéché
d36336d499
refactor: helm rbac component ( #6096 )
...
* refactor: helm labels management
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* readme
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: helm rbac component
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-26 22:40:12 +00:00
Charles-Edouard Brétéché
39d5ceb00c
refactor: event package ( #6124 )
...
* refactor: event package
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* more
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Update pkg/event/source.go
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-26 21:19:02 +00:00
Charles-Edouard Brétéché
6545f64ce1
refactor: helm labels management ( #6073 )
...
* refactor: helm labels management
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* readme
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2023-01-24 20:41:24 +00:00
Charles-Edouard Brétéché
c933da999f
refactor: helm tests ( #6074 )
...
* refactor: helm tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* test other components
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* values
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* resources
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* image
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* annotations
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* annotations
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* delete
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-23 08:31:22 -05:00
Charles-Edouard Brétéché
ad4c4da690
feat: remove generate request CRD ( #6043 )
...
* feat: remove generate request CRD
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* changelog
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-19 19:39:05 +08:00
shuting
36abeaecf9
fix: ns labels matching ( #6020 )
...
* fix ns labels matching
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-01-18 11:26:34 +00:00
yinka
fcf27bb035
fix: change inrange operator regexs ( #5962 )
...
* fix inrange operator regexs
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add support for + sign
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add support for leftEndpoint + sign
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* update regexs
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add range operator tests in client code
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* extract range values
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add cases
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add test
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* fix test
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* add cli test
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* clean up code
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* fix lint error
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
* fix kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* regex nits
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-16 16:23:36 +01:00
Vyom Yadav
c2dfd1d130
fix: policy match Kind case-senstive ( #6008 )
...
Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
2023-01-16 16:01:05 +08:00
Charles-Edouard Brétéché
07264a3f3f
fix: policy exceptions not working in background mode ( #5980 )
...
* fix: policy exceptions not working in background mode
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Update test/conformance/kuttl/reports/admission/exception/README.md
Signed-off-by: shuting <shutting06@gmail.com>
* Update test/conformance/kuttl/reports/background/exception/README.md
Signed-off-by: shuting <shutting06@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shutting06@gmail.com>
2023-01-13 10:58:02 +00:00
shuting
68fb237d25
fix imageRef matching ( #5956 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-01-10 09:44:31 +00:00
Charles-Edouard Brétéché
76b716da4e
fix: cleanup policies with user infos in match/exclude should be rejected ( #5943 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-09 21:00:35 +08:00
Charles-Edouard Brétéché
2c172b151c
test: add kuttl test for policy exception ( #5935 )
2023-01-09 10:52:16 +08:00
