mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-22 07:41:10 +00:00
c0ab93b95b
* feat: enable mutating webhook for ivpol Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: unit tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: add objects to payload Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: add chainsaw test Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: add update codegen Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: propagate policy response to admission reponse Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update chainsaw tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: ivpol autogen meta Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>
29 lines
815 B
YAML
Executable file
29 lines
815 B
YAML
Executable file
# yaml-language-server: $schema=https://raw.githubusercontent.com/kyverno/chainsaw/main/.schemas/json/test-chainsaw-v1alpha1.json
|
|
apiVersion: chainsaw.kyverno.io/v1alpha1
|
|
kind: Test
|
|
metadata:
|
|
name: audit
|
|
spec:
|
|
steps:
|
|
- name: create policy
|
|
try:
|
|
- create:
|
|
file: policy.yaml
|
|
- assert:
|
|
file: policy-assert.yaml
|
|
- name: create bad pod
|
|
try:
|
|
- create:
|
|
file: bad-pod.yaml
|
|
expect:
|
|
- check:
|
|
($error): >-
|
|
admission webhook "ivpol.validate.kyverno.svc-ignore-finegrained-ivpol-sample" denied the request: Policy ivpol-sample failed: failed to verify image with notary cert
|
|
- name: create good pod
|
|
try:
|
|
- create:
|
|
file: good-pod.yaml
|
|
- sleep:
|
|
duration: 10s
|
|
- assert:
|
|
file: good-pod.yaml
|