mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
kyverno/cmd/cli/kubectl-kyverno/variables/variables.go
Charles-Edouard Brétéché 6b62358dae
refactore: move utils store package (#8293) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-09-06 15:17:12 +00:00

114 lines
2.6 KiB
Go
Raw Blame History

package variables
import (
"fmt"
valuesapi "github.com/kyverno/kyverno/cmd/cli/kubectl-kyverno/apis/values"
"github.com/kyverno/kyverno/cmd/cli/kubectl-kyverno/store"
"k8s.io/apimachinery/pkg/util/sets"
)
type Variables struct {
values *valuesapi.Values
variables map[string]string
}
func (v Variables) HasVariables() bool {
return len(v.variables) != 0
}
func (v Variables) HasPolicyVariables(policy string) bool {
if v.values == nil {
return false
}
for _, pol := range v.values.Policies {
if pol.Name == policy {
return true
}
}
return false
}
func (v Variables) Subresources() []valuesapi.Subresource {
if v.values == nil {
return nil
}
return v.values.Subresources
}
func (v Variables) NamespaceSelectors() map[string]Labels {
if v.values == nil {
return nil
}
out := map[string]Labels{}
if v.values.NamespaceSelectors != nil {
for _, n := range v.values.NamespaceSelectors {
out[n.Name] = n.Labels
}
}
if len(out) == 0 {
return nil
}
return out
}
func (v Variables) CheckVariableForPolicy(policy, resource, kind string, kindMap sets.Set[string], variables ...string) (map[string]interface{}, error) {
resourceValues := map[string]interface{}{}
// first apply global values
if v.values != nil {
for k, v := range v.values.GlobalValues {
resourceValues[k] = v
}
}
// apply resource values
if v.values != nil {
for _, p := range v.values.Policies {
if p.Name != policy {
continue
}
for _, r := range p.Resources {
if r.Name != resource {
continue
}
for k, v := range r.Values {
resourceValues[k] = v
}
}
}
}
// apply variable
for k, v := range v.variables {
resourceValues[k] = v
}
// make sure `request.operation` is set
if _, ok := resourceValues["request.operation"]; !ok {
resourceValues["request.operation"] = "CREATE"
}
// skipping the variable check for non matching kind
// TODO remove dependency to store
if kindMap.Has(kind) && len(variables) > 0 && len(resourceValues) == 0 && store.HasPolicies() {
return nil, fmt.Errorf("policy `%s` have variables. pass the values for the variables for resource `%s` using set/values_file flag", policy, resource)
}
return resourceValues, nil
}
func (v Variables) SetInStore() {
storePolicies := []store.Policy{}
if v.values != nil {
for _, p := range v.values.Policies {
sp := store.Policy{
Name: p.Name,
}
for _, r := range p.Rules {
sr := store.Rule{
Name: r.Name,
Values: r.Values,
ForEachValues: r.ForeachValues,
}
sp.Rules = append(sp.Rules, sr)
}
storePolicies = append(storePolicies, sp)
}
}
store.SetPolicies(storePolicies...)
}
View git blame Copy permalink