Alex Vest
Alex Vest
@maxsmythe No I can't see any violations in the audit logs either. Yet I do have events showing that Admission webhook raised warnings for resources. The policy is currently set...
Kafka User resources with `All` operation set. The only operations allowed are `read`, `write` and `delete` - so the "Check that the operation is globally allowed - read OR write...
Ah thanks for pointing that out. Sadly it's not made a difference. I updated the sync config this morning and still no `gatekeeper_violations` metric nor has the constraint status been...
What we're aiming to do is validate `KafkaUser` resources based off `KafkaTopic` resources. Essentially the KafkaUser resource specifies certain permissions the user requires and one of our validations it that...
@maxsmythe We are indeed auditing from cache. Ah of course we'd need to sync the KafkaUsers as well. Our sync config now looks like this: ``` apiVersion: config.gatekeeper.sh/v1alpha1 kind: Config...
@maxsmythe I'm very happy to report that we do have violations being added to our constraint now! The solution was eventually twofold. As you pointed out, I needed to add...
About 3.5k objects. I can see we're getting about 4k violations which is somewhat expected.
@nesv @eljohnson92 Hello from the other side 👋 Tagging the two of you as you've been here recently. Do you want to take this PR over? It's just an E2E...