UNCLASSIFIED - NO CUI

Skip to content
Snippets Groups Projects

SKIP UPGRADE: Move gatekeeper overrides to BigBang

Merged SKIP UPGRADE: Move gatekeeper overrides to BigBang
672-move-gatekeeper-overrides into master
All threads resolved!
Merged Michael McLeroy requested to merge 672-move-gatekeeper-overrides into master
All threads resolved!

Package Owner Merge Request

No package changes.

Additional Details

  • Adds Istio enable as a condition for checking istio constraints
  • Moves registry.dso.mil into BB override
  • Formatting

Related to #672 (closed)

Edited by Micah Nagel

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • Micah Nagel
    Micah Nagel @micah.nagel ·
    Guest

    Related to and potentially closes https://repo1.dso.mil/platform-one/big-bang/bigbang/-/issues/604 ?

    • Ryan Garcia
      Ryan Garcia @ryan.j.garcia ·
      Contributor
      Resolved by Michael McLeroy

      Might require a new issue, but sounds like it should be covered under this MR Title, what if we made a value at gatekeeper.violations or gatekeeper.exceptions that then does a dig to insert them into the bigbang values template rather than in an override values file that could overlap with what BigBang already sets?

      Eg:

      • Values file
      gatekeeper:
  exceptions:
    allowedHostFilesystem:
      - namespace1
      • chart/templates/gatekeeper/values.yaml
        allowedHostFilesystem:
    match:
      excludedNamespaces: 
        # required for monitoring's prometheus-node-exporter to get node metrics
      excludedNamespaces:
        # Prometheus-node-exporter needs access to host to get node metrics
        {{- if .Values.monitoring.enabled }}
        - monitoring
        {{- end }}
        # Maybe a range or if/with function, just an example
        {{ dig "gatekeeper" "exceptions" $values }}
  • Michael McLeroy added 31 commits

    added 31 commits

    Compare with previous version

  • Michael McLeroy resolved all threads

    resolved all threads

  • Michael McLeroy added 1 commit

    added 1 commit

    • d6438ae8 - chore(gatekeeper): remove dead code for istio

    Compare with previous version

  • Michael McLeroy resolved all threads

    resolved all threads

  • Michael McLeroy added 5 commits

    added 5 commits

    Compare with previous version

  • Micah Nagel changed title from Move gatekeeper overrides to BigBang to SKIP UPGRADE: Move gatekeeper overrides to BigBang

    changed title from Move gatekeeper overrides to BigBang to SKIP UPGRADE: Move gatekeeper overrides to BigBang

  • Micah Nagel
    Micah Nagel @micah.nagel ·
    Guest

    Skipping upgrade because master is broken on sonar.

  • Micah Nagel approved this merge request

    approved this merge request

  • Micah Nagel enabled an automatic merge when the pipeline for 74b3418e succeeds

    enabled an automatic merge when the pipeline for 74b3418e succeeds

  • Micah Nagel mentioned in issue #692 (closed)

    mentioned in issue #692 (closed)

  • Micah Nagel merged

    merged

  • Micah Nagel mentioned in commit 79105876

    mentioned in commit 79105876

  • Branden Cobb mentioned in issue #632 (closed)

    mentioned in issue #632 (closed)

  • Lynn Still mentioned in issue #633 (closed)

    mentioned in issue #633 (closed)

    • Please register or sign in to reply

    UNCLASSIFIED - NO CUI