mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-09 09:26:54 +00:00
7ef2764365
* feat: add vpol status controller Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update ready API struct Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: printer coloum Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: update status cmp func Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: support status.RBACPermissionsGranted Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>
57 lines
1.9 KiB
Go
57 lines
1.9 KiB
Go
package v1alpha1
|
|
|
|
import (
|
|
admissionregistrationv1 "k8s.io/api/admissionregistration/v1"
|
|
"k8s.io/apimachinery/pkg/api/meta"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
)
|
|
|
|
type PolicyConditionType string
|
|
|
|
const (
|
|
PolicyConditionTypeWebhookConfigured PolicyConditionType = "WebhookConfigured"
|
|
PolicyConditionTypePolicyCached PolicyConditionType = "PolicyCached"
|
|
PolicyConditionTypeRBACPermissionsGranted PolicyConditionType = "RBACPermissionsGranted"
|
|
)
|
|
|
|
type PolicyStatus struct {
|
|
// The ready of a policy is a high-level summary of where the policy is in its lifecycle.
|
|
// The conditions array, the reason and message fields contain more detail about the policy's status.
|
|
// +optional
|
|
Ready *bool `json:"ready,omitempty"`
|
|
|
|
// +optional
|
|
Conditions []metav1.Condition `json:"conditions,omitempty"`
|
|
|
|
// +optional
|
|
Autogen AutogenStatus `json:"autogen"`
|
|
}
|
|
|
|
// AutogenStatus contains autogen status information.
|
|
type AutogenStatus struct {
|
|
// Rules is a list of Rule instances. It contains auto generated rules added for pod controllers
|
|
Rules []AutogenRule `json:"rules,omitempty"`
|
|
}
|
|
|
|
type AutogenRule struct {
|
|
MatchConstraints *admissionregistrationv1.MatchResources `json:"matchConstraints,omitempty"`
|
|
MatchConditions []admissionregistrationv1.MatchCondition `json:"matchConditions,omitempty"`
|
|
Validations []admissionregistrationv1.Validation `json:"validations,omitempty"`
|
|
AuditAnnotation []admissionregistrationv1.AuditAnnotation `json:"auditAnnotations,omitempty"`
|
|
Variables []admissionregistrationv1.Variable `json:"variables,omitempty"`
|
|
}
|
|
|
|
func (status *PolicyStatus) SetReadyByCondition(c PolicyConditionType, s metav1.ConditionStatus, message string) {
|
|
reason := "Succeeded"
|
|
if s != metav1.ConditionTrue {
|
|
reason = "Failed"
|
|
}
|
|
newCondition := metav1.Condition{
|
|
Type: string(c),
|
|
Reason: reason,
|
|
Status: s,
|
|
Message: message,
|
|
}
|
|
|
|
meta.SetStatusCondition(&status.Conditions, newCondition)
|
|
}
|