kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-10 18:06:55 +00:00

Author	SHA1	Message	Date
shuting	f6b097db17	fix: deletion mismatch for the generate policy (#7579 ) * fix deletion mismatch Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix clone source kind Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test Signed-off-by: ShutingZhao <shuting@nirmata.com> * fetch kinds Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-06-20 12:58:23 +00:00
Mike Bryant	91021b65b6	fix: Delete downstream objects on precondition fail (#7496 ) * fix: Delete downstream objects on precondition fail When a rule fails the match in a generate rule, the downstream resource gets deleted. This will now also happen if the rule is skipped due to a precondition. Signed-off-by: Mike Bryant <mike.bryant@mettle.co.uk> * add debug command Signed-off-by: ShutingZhao <shuting@nirmata.com> * sync trigger updates to downstream Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix bgscan fetching trigger Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: Move rbac change into tests for better isolation Signed-off-by: Mike Bryant <mike.bryant@mettle.co.uk> * fix unit test Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: Mike Bryant <mike.bryant@mettle.co.uk> Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2023-06-15 11:32:19 -04:00
shuting	0c3351887a	fix: the same source cannot be used for multiple targets with a generate clone rule (#7436 ) * add source labels to targets Signed-off-by: ShutingZhao <shuting@nirmata.com> * handle multiple triggers/targets for the same clone source Signed-off-by: ShutingZhao <shuting@nirmata.com> * add source labels to targets Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix test Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove unused code Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * rename the test Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * split apiversion label into version and group Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-06-07 13:50:47 +00:00
shuting	9bfbe7d2e8	split tests (#6900 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-04-13 09:50:35 +00:00
shuting	637f830917	feat: apply generate rules on trigger events (#6508 ) * - fire generation on trigger deletion, with condition rules; - delete downstream if trigger no longer matches; - delete downstream if trigger is deleted, with sync rule Signed-off-by: ShutingZhao <shuting@nirmata.com> * trim condition key spaces Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix UR spec Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-create-on-trigger-deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-create-on-trigger-deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-data-sync-delete-trigger Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-data-nosync-delete-trigger Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-data-sync-update-trigger-no-match Signed-off-by: ShutingZhao <shuting@nirmata.com> * rename policy Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-data-nosync-update-trigger-no-match Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix Signed-off-by: ShutingZhao <shuting@nirmata.com> * add debug logs Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-clone-create-on-trigger-deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * update readme Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-clone-sync-delete-trigger Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-clone-nosync-delete-trigger Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-clone-sync-update-trigger-no-match Signed-off-by: ShutingZhao <shuting@nirmata.com> * update readme Signed-off-by: ShutingZhao <shuting@nirmata.com> * add a kuttl test cpol-clone-nosync-update-trigger-no-match Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-03-10 17:17:10 +00:00
shuting	ea306d6d7f	rename generateExistingOnPolicyUpdate to generateExisting (#6470 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-03-03 12:05:53 +01:00
shuting	0b359d07db	rename GenerateExistingOnPolicyUpdate to GenerateExisting (#6321 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-03-03 09:34:55 +00:00
shuting	0c91e87bbb	fix: delete downstream for a generate rule removal, with data and sync (#6393 ) * remove policy handler for updates Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove policy update handler from the ur controller Signed-off-by: ShutingZhao <shuting@nirmata.com> * rework cleanup downstream on policy deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix downstream deletion on data rule removal Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test for clusterpolicy Signed-off-by: ShutingZhao <shuting@nirmata.com> * linter fix Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test for policy Signed-off-by: ShutingZhao <shuting@nirmata.com> * update api docs Signed-off-by: ShutingZhao <shuting@nirmata.com> * add delays Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix name assertion Signed-off-by: ShutingZhao <shuting@nirmata.com> * delete downstream when deletes the clone source Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test pol-clone-sync-delete-source Signed-off-by: ShutingZhao <shuting@nirmata.com> * linter fixes Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test pol-clone-sync-delete-downstream Signed-off-by: ShutingZhao <shuting@nirmata.com> * add kuttl test pol-data-sync-modify-rule Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix panic Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix panic Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix labels Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix policy assertions Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix annotation missing names Signed-off-by: ShutingZhao <shuting@nirmata.com> * rename policy Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove dead code Signed-off-by: ShutingZhao <shuting@nirmata.com> * create unique namespaces Signed-off-by: ShutingZhao <shuting@nirmata.com> * create more unique namespaces Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix assertion Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2023-03-01 03:48:18 +00:00
Chip Zoller	bc7b73401e	More kuttl standard generate tests (#6332 ) * add test cpol-data-sync-delete-downstream Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test cpol-data-sync-modify-downstream Signed-off-by: Chip Zoller <chipzoller@gmail.com> * rename to be more descriptive Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-sync-delete-downstream Signed-off-by: Chip Zoller <chipzoller@gmail.com> * cleanup test Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test cpol-data-nosync-delete-rule Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test cpol-data-nosync-delete-policy Signed-off-by: Chip Zoller <chipzoller@gmail.com> * fix formatting Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add Kyverno kuttl specific snippets to BEST_PRACTICES Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add reminder note Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test cpol-data-nosync-modify-rule Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test cpol-data-nosync-modify-downstream Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-nosync-create-policy-invalid Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-sync-delete-policy Signed-off-by: Chip Zoller <chipzoller@gmail.com> * separate files Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-nosync-delete-downstream Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-nosync-delete-rule Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-nosync-delete-policy Signed-off-by: Chip Zoller <chipzoller@gmail.com> * fix description Signed-off-by: Chip Zoller <chipzoller@gmail.com> * fix description Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-nosync-modify-rule Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test pol-data-nosync-modify-downstream Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test existing-basic-create-data Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test existing-basic-create-preconditions-data Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add basic clone multiple test Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add delays Signed-off-by: ShutingZhao <shuting@nirmata.com> * add generate permissions Signed-off-by: ShutingZhao <shuting@nirmata.com> * reorder source and ClusterPolicy, cleanup removal, README update Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add test for cascading-mutation Signed-off-by: Chip Zoller <chipzoller@gmail.com> * Change creation order, remove cleanup Signed-off-by: Chip Zoller <chipzoller@gmail.com> * increase sleep Signed-off-by: Chip Zoller <chipzoller@gmail.com> * remove unused test files Signed-off-by: Chip Zoller <chipzoller@gmail.com> * remove networkpolicies from perms Signed-off-by: Chip Zoller <chipzoller@gmail.com> * add networkpolicies back Signed-off-by: Chip Zoller <chipzoller@gmail.com> * clarify readme Signed-off-by: Chip Zoller <chipzoller@gmail.com> --------- Signed-off-by: Chip Zoller <chipzoller@gmail.com> Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2023-02-27 14:39:18 +00:00
shuting	d3c2cd23fa	add kuttl tests (#6336 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-02-24 14:59:55 +00:00
shuting	6b3be9ada1	feat: enable leader election for the background controller (#6237 ) * enable leader election for the background controller Signed-off-by: ShutingZhao <shuting@nirmata.com> * update api docs Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-02-07 14:44:51 +01:00
Prateek Pandey	9b2331fedc	refactor: optimise and use kuttl TestStep with tests (#5328 ) * refactor: use kuttl teststep with tests Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> * optimize kuttl generate test Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-11-15 07:32:11 -05:00
Charles-Edouard Brétéché	1899938f05	chore: use conditions in kuttl tests to check ready policies (#5252 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-11-07 18:34:29 +00:00
Chip Zoller	da18305015	add kuttl tests (#5204 ) - add kuttl tests - try rekor: {url: "https://rekor.sigstore.dev"} - add rekor{} object to last two policies Signed-off-by: Chip Zoller <chipzoller@gmail.com>	2022-11-04 14:00:31 +00:00

14 commits