mirror of
https://github.com/kyverno/kyverno.git
synced 2025-01-20 18:52:16 +00:00
f0be3bdc0b
* fix: display a message when the controller has no permissions for VAPs Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * fix: add a warning when a Kyverno policy is created Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> --------- Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
88 lines
2.6 KiB
Go
88 lines
2.6 KiB
Go
package toggle
|
|
|
|
import (
|
|
"os"
|
|
"strconv"
|
|
)
|
|
|
|
const (
|
|
// protect managed resource
|
|
ProtectManagedResourcesFlagName = "protectManagedResources"
|
|
ProtectManagedResourcesDescription = "Set the flag to 'true', to enable managed resources protection."
|
|
protectManagedResourcesEnvVar = "FLAG_PROTECT_MANAGED_RESOURCES"
|
|
defaultProtectManagedResources = false
|
|
// force failure policy ignore
|
|
ForceFailurePolicyIgnoreFlagName = "forceFailurePolicyIgnore"
|
|
ForceFailurePolicyIgnoreDescription = "Set the flag to 'true', to force set Failure Policy to 'ignore'."
|
|
forceFailurePolicyIgnoreEnvVar = "FLAG_FORCE_FAILURE_POLICY_IGNORE"
|
|
defaultForceFailurePolicyIgnore = false
|
|
// enable deferred context loading
|
|
EnableDeferredLoadingFlagName = "enableDeferredLoading"
|
|
EnableDeferredLoadingDescription = "enable deferred loading of context variables"
|
|
enableDeferredLoadingEnvVar = "FLAG_ENABLE_DEFERRED_LOADING"
|
|
defaultEnableDeferredLoading = true
|
|
// generate validating admission policies
|
|
GenerateValidatingAdmissionPolicyFlagName = "generateValidatingAdmissionPolicy"
|
|
GenerateValidatingAdmissionPolicyDescription = "Set the flag to 'true', to generate validating admission policies."
|
|
generateValidatingAdmissionPolicyEnvVar = "FLAG_GENERATE_VALIDATING_ADMISSION_POLICY"
|
|
defaultGenerateValidatingAdmissionPolicy = false
|
|
)
|
|
|
|
var (
|
|
ProtectManagedResources = newToggle(defaultProtectManagedResources, protectManagedResourcesEnvVar)
|
|
ForceFailurePolicyIgnore = newToggle(defaultForceFailurePolicyIgnore, forceFailurePolicyIgnoreEnvVar)
|
|
EnableDeferredLoading = newToggle(defaultEnableDeferredLoading, enableDeferredLoadingEnvVar)
|
|
GenerateValidatingAdmissionPolicy = newToggle(defaultGenerateValidatingAdmissionPolicy, generateValidatingAdmissionPolicyEnvVar)
|
|
)
|
|
|
|
type ToggleFlag interface {
|
|
Parse(string) error
|
|
}
|
|
|
|
type Toggle interface {
|
|
ToggleFlag
|
|
enabled() bool
|
|
}
|
|
|
|
type toggle struct {
|
|
value *bool
|
|
defaultValue bool
|
|
envVar string
|
|
}
|
|
|
|
func newToggle(defaultValue bool, envVar string) Toggle {
|
|
return &toggle{
|
|
defaultValue: defaultValue,
|
|
envVar: envVar,
|
|
}
|
|
}
|
|
|
|
func (t *toggle) Parse(in string) error {
|
|
if value, err := getBool(in); err != nil {
|
|
return err
|
|
} else {
|
|
t.value = value
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func (t *toggle) enabled() bool {
|
|
if t.value != nil {
|
|
return *t.value
|
|
}
|
|
if value, err := getBool(os.Getenv(t.envVar)); err == nil && value != nil {
|
|
return *value
|
|
}
|
|
return t.defaultValue
|
|
}
|
|
|
|
func getBool(in string) (*bool, error) {
|
|
if in == "" {
|
|
return nil, nil
|
|
}
|
|
value, err := strconv.ParseBool(in)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &value, nil
|
|
}
|