terraform-modules icon indicating copy to clipboard operation
terraform-modules copied to clipboard
verified publisher icon XenitAB

Opa gatekeeper pdb constraint

Open nissessenap opened this issue 2 years ago • 3 comments

Use the new PDB rule to make sure that a user can't define a PDB minAvliable bigger then an HPA/deployment number.

nissessenap avatar Jan 13 '23 14:01 nissessenap

I have hit times when OPA admission webhook don't protect against miss configuration: For more info see: https://open-policy-agent.github.io/gatekeeper/website/docs/failing-closed/

nissessenap avatar Jan 18 '23 10:01 nissessenap

It seems like the admisionwebhook isn't perfect, I have created an issue upstream about this: https://github.com/open-policy-agent/gatekeeper-library/issues/279

Lets see if we get any luck

nissessenap avatar Jan 18 '23 14:01 nissessenap

With Azure Policy, we would have to do this in the azure-policy module in a different way.

landerss1 avatar May 27 '24 12:05 landerss1

Closing this as this wasn't solved upstream.

landerss1 avatar Aug 15 '24 09:08 landerss1