-
Notifications
You must be signed in to change notification settings - Fork 18
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #259 from viccuad/main
feat: Add questions, move auditScanner out of experimental
- Loading branch information
Showing
13 changed files
with
132 additions
and
83 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,51 @@ | ||
# This is a Rancher questions file | ||
--- | ||
questions: | ||
- variable: "auditScanner.enable" | ||
type: boolean | ||
default: false | ||
required: true | ||
label: Enable Background Audit check | ||
description: | | ||
The Background Audit Check looks at existing Kubernetes resources and | ||
periodically determines whether they are still compliant with regards to the | ||
policies that are currently defined. | ||
group: "Features" | ||
- variable: "auditScanner.cronJob.schedule" | ||
type: string | ||
default: "*/60 * * * *" | ||
show_if: auditScanner.enable=true | ||
label: Schedule | ||
description: | | ||
Schedule of the Background Audit check. Follows the Unix-cron syntax. | ||
group: "Features" | ||
- variable: "auditScanner.serviceAccountName" | ||
type: string | ||
default: "audit-scanner" | ||
show_if: auditScanner.enable=true | ||
label: ServiceAccount name | ||
description: | | ||
The default audit-scanner ServiceAccount is bound to the ClusterRoles | ||
"view" (allows read-only access to most objects in a namespace, does not | ||
allow viewing secrets, roles or role bindings), and "audit-scanner-cluster-role" | ||
(allows read-write to Kubewarden resources and PolicyReports). | ||
group: "Features" | ||
- variable: tls.source | ||
default: "cert-manager-self-signed" | ||
description: "Source for TLS certificates" | ||
label: TLS certificates source | ||
type: enum | ||
options: | ||
- "cert-manager-self-signed" | ||
- "cert-manager" | ||
show_subquestion_if: "cert-manager" | ||
group: "Certificates" | ||
subquestions: | ||
- variable: "tls.certManagerIssuerName" | ||
type: string | ||
default: "" | ||
label: cert-manager Issuer name | ||
description: | | ||
Name of cert-manager Issuer | ||
group: "Certificates" | ||
show_if: "tls.source=cert-manager" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,3 @@ | ||
policyReports: | ||
# deploy policyreports.wgpolicyk8s.io, clusterpolicyreports.wgpolicyk8s.io CRDs | ||
# Set to false if they are already in the cluster | ||
enable: true | ||
# deploy policyreports.wgpolicyk8s.io, clusterpolicyreports.wgpolicyk8s.io CRDs | ||
# Set to false if they are already defined inside of the cluster | ||
installPolicyReportCRDs: true |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,6 +1,5 @@ | ||
# This file was autogenerated. | ||
|
||
policyReports: | ||
# deploy policyreports.wgpolicyk8s.io, clusterpolicyreports.wgpolicyk8s.io CRDs | ||
# Set to false if they are already in the cluster | ||
enable: true | ||
# deploy policyreports.wgpolicyk8s.io, clusterpolicyreports.wgpolicyk8s.io CRDs | ||
# Set to false if they are already defined inside of the cluster | ||
installPolicyReportCRDs: true |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters