mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-10 01:46:55 +00:00
c796bb765c
* fix: return policies with either audit or enforce rules from the cache Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * feat: introduce validationFailureAction under verifyImage rules Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * feat: add chainsaw tests Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * fix Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> --------- Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com> |
||
|---|---|---|
| .. | ||
| admission-controller-assert.yaml | ||
| admission-controller.yaml | ||
| chainsaw-test.yaml | ||
| event-assert.yaml | ||
| policy-assert.yaml | ||
| policy.yaml | ||
| README.md | ||
| resource-fail.yaml | ||
| resource.yaml | ||
Description
This test updates the deployment with flag --omitEvents=PolicyApplied set
Then it creates a policy, and a resource.
The resource is expected to be accepted.
A PolicyApplied event should be created.
Then it creates a respource that is expected to be rejected
A PolicyViolation event should not be emitted as the flag does not include that.
Steps
- Update the deployment of admission controller to add this ar
--omitEvents=PolicyApplied. -
- Create a policy
- Assert the policy becomes ready
-
- Create a resource,
-
- Asset a
PolicyAppliedevent is created
- Asset a
- Try creating a resource with a script that is expected to fail.
- Exit the script with
0if it returns an error