mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00
Code Activity
kyverno/samples/RequirePodProbes.md
Jim Bugwadia 733633637e update descriptions...
2019-10-23 15:36:37 -07:00

939 B
Raw Blame History

Require livenessProbe and readinessProbe

For each pod, a livenessProbe is carried out by the kubelet to determine if containers are running and when to restart the pod. A readinessProbe is used by services and deployments to determine if the pod is ready to recieve network traffic.

Both liveness and readiness probes need to be configured to manage the pod lifecycle during restarts and upgrades.

Policy YAML

require_probes.yaml

apiVersion: kyverno.io/v1alpha1
kind: ClusterPolicy
metadata:
  name: validate-probes
spec:
  rules:
  - name: check-probes
    match:
      resources:
        kinds:
        - Pod
    validate:
      message: "Liveness and readiness probes are required"
      pattern:
        spec:
          containers:
          - livenessProbe:
              periodSeconds: ">0"      
            readinessProbe:
              periodSeconds: ">0"