Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allows more customisation to audit-scanner #282

Merged
merged 5 commits into from
Sep 7, 2023
Merged

Allows more customisation to audit-scanner #282

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
e90d4f5
Allows more customisation to audit-scanner
nnelas Aug 24, 2023
95fe075
Cleans .idea files from the PR
nnelas Aug 24, 2023
c6096bd
Code-review changes:
nnelas Sep 6, 2023
a8201d1
Update charts/kubewarden-controller/chart-values.yaml
flavio Sep 7, 2023
1953842
chore: add inline comments
flavio Sep 7, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions charts/kubewarden-controller/chart-values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -110,3 +110,8 @@ auditScanner:
containerRestartPolicy: Never
# Additional namespaces that the audit scanner will not scan:
skipAdditionalNamespaces: []
logLevel: info
flavio marked this conversation as resolved.
Show resolved Hide resolved
# File path to CA cert in PEM format of PolicyServer endpoints
policyServerCa: "/pki/policy-server-root-ca-pem"
flavio marked this conversation as resolved.
Show resolved Hide resolved
# Prints the result of scan in JSON to stdout
enableJsonReport: true
9 changes: 7 additions & 2 deletions charts/kubewarden-controller/templates/_helpers.tpl
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -99,10 +99,15 @@ Create the name of the service account to use for kubewarden-controller

{{- define "audit-scanner.command" -}}
- /audit-scanner
- --kubewarden-namespace
- {{ .Release.Namespace }}
- --loglevel
- info
- {{- .Values.auditScanner.logLevel }}
- --extra-ca
- "/pki/policy-server-root-ca-pem"
- {{- .Values.auditScanner.policyServerCa }}
{{- if .Values.auditScanner.enableJsonReport }}
- --print
{{- end }}
flavio marked this conversation as resolved.
Show resolved Hide resolved
{{- range .Values.global.skipNamespaces }}
- {{ printf "-i" }}
- {{ printf "%s" . }}
Expand Down
5 changes: 5 additions & 0 deletions charts/kubewarden-controller/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -146,3 +146,8 @@ auditScanner:
containerRestartPolicy: Never
# Additional namespaces that the audit scanner will not scan:
skipAdditionalNamespaces: []
logLevel: info
# File path to CA cert in PEM format of PolicyServer endpoints
policyServerCa: "/pki/policy-server-root-ca-pem"
# Prints the result of scan in JSON to stdout
enableJsonReport: true