From 876bcd64afc5349e0840f6d0a9ece4c6062bea11 Mon Sep 17 00:00:00 2001 From: Riley O'Donnell <riley.odonnell@rancherfederal.com> Date: Fri, 15 Apr 2022 12:58:53 -0600 Subject: [PATCH] add gatekeeper back in --- charter/BigBangPackages.md | 21 ++++++++++++++++++- .../licensing_expectations.md | 1 + 2 files changed, 21 insertions(+), 1 deletion(-) diff --git a/charter/BigBangPackages.md b/charter/BigBangPackages.md index 053e1a092e..8147918787 100644 --- a/charter/BigBangPackages.md +++ b/charter/BigBangPackages.md @@ -151,7 +151,26 @@ Owners: ### Policy Enforcement -The Policy Enforcement Package installs Kyverno. +The Policy Enforcement Package installs either the Open Policy Agent Gatekeeper [Operator](https://kubernetes.io/docs/concepts/extend-kubernetes/operator/) or Kyverno. + +#### OPA Gatekeeper + +Product: + +* [OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper) +* [Open Policy Agent](https://www.openpolicyagent.org/) + +Repository: + +* [Policy Repo](https://repo1.dso.mil/platform-one/big-bang/apps/core/policy) + +Dependencies: None + +Owners: + +* [CODEOWNERS](https://repo1.dso.mil/platform-one/big-bang/apps/core/policy/-/blob/main/CODEOWNERS) + +#### Kyverno Product: diff --git a/docs/understanding_bigbang/licensing_expectations.md b/docs/understanding_bigbang/licensing_expectations.md index eb41c64ed3..ca331e6004 100644 --- a/docs/understanding_bigbang/licensing_expectations.md +++ b/docs/understanding_bigbang/licensing_expectations.md @@ -42,6 +42,7 @@ Licensing of products deployable by BigBang are not covered by the BigBang team. | Package | Purpose | Licenses | Notes about Licensed Features and Support | |-----------------------------------------------------------------------|---------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | FluxCD | GitOps (Prerequisite App) | Apache License 2.0 (Free/OSS) | | +| Open Policy Agent Gatekeeper | Policy Enforcement (Core App) | Apache License 2.0 (Free/OSS) | * [Styra](https://www.openpolicyagent.org/support) is the original creator of OPA and can offer commercial support. | | Kyverno | Policy Enforcement (Core App) | Apache License 2.0 (Free/OSS) | * Kyverno is a fully open-source product, however there are [multiple companies](https://kyverno.io/support/) which provide paid support services for it. | | Istio Controlplane, Istio Operator, and Kiali | Service Mesh, Operator, and Service Mesh Dashboard (Core App) | Apache License 2.0 (Free/OSS) | * [Tetrate](https://www.tetrate.io/) is an Istio Vendor that can offer commercial support. | | Jaeger | APM (Application Performance Monitoring) / Tracing (Core App) | Apache License 2.0 (Free/OSS) | | -- GitLab