Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: initial implementation of OPA subsystem chart and policy catalogue #16

Merged
merged 11 commits into from
Nov 13, 2024
Merged

feat: initial implementation of OPA subsystem chart and policy catalogue #16

merged 11 commits into from
Nov 13, 2024

Conversation

strieflin
Copy link
Member

No description provided.

@strieflin strieflin mentioned this pull request Oct 25, 2024
Merged
@codecov Codecov
Copy link

codecov bot commented Oct 25, 2024

Welcome to Codecov 🎉

Once you merge this PR into your default branch, you're all set! Codecov will compare coverage reports and display results in all future pull requests.

Thanks for integrating Codecov - We've got you covered ☂️

@strieflin
Copy link
Member Author

strieflin commented Oct 25, 2024
edited
Loading

The following things have to be done before this PR can be merged:

  • Add a Java client implementation that interacts with the policy catalogue service (see feat: add java client #20)
  • Fullfil license obligations
  • Check whether all required secrets are available for the workflows

@strieflin strieflin force-pushed the add-policy-subsystem branch from 3cd6811 to caaf657 Compare November 12, 2024 13:10
@strieflin
feat: initial implementation of OPA deployment and policy catalogue
284c423 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin
feat: add healthcheck endpoint and improve testing
86ee9fe 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin
feat(chart): improve chart incl. exposing virtual service for catalogue
8a668bb 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin
chore: rename 'policies' folder to 'services"
6700c88 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin
chore: update release please configuration (remove root and add servi…
f130c4f 
…ces package)

Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin
chore: add build / test / publish workflows for the services
d3988ed 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin
fix: broken test using content type instead of accept header
ad388d1 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin strieflin force-pushed the add-policy-subsystem branch from f8f9f0e to ad388d1 Compare November 12, 2024 13:51
@strieflin strieflin marked this pull request as ready for review November 12, 2024 13:53
@strieflin strieflin requested a review from a team as a code owner November 12, 2024 13:53
@strieflin strieflin changed the title feat: initial implementation of OPA deployment and policy catalogue (WIP) feat: initial implementation of OPA subsystem chart and policy catalogue Nov 12, 2024
@strieflin
chore: fulfill license obligations
330347f 
Signed-off-by: Sven Trieflinger <[email protected]>
@strieflin strieflin force-pushed the add-policy-subsystem branch from 0564d21 to 330347f Compare November 12, 2024 14:45
sbckr
sbckr requested changes Nov 13, 2024
View reviewed changes
services/pkg/catalogue/opa.go Outdated
}

// fetchPolicyFromOPA fetches a single policy from the OPA service by its ID.
// Note that there is no way to fetch a single policy by ID, so we fetch all.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

but one could simply call v1/policies/<POLICY_ID>

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see get-a-policy

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't know how I have missed that. Used now.

sbckr
sbckr reviewed Nov 13, 2024
View reviewed changes
services/pkg/catalogue/server.go

switch c.GetHeader("Accept") {
case "application/json":
c.JSON(http.StatusOK, policy)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why are ID's encoded when listing, but not when fetching individually. That's kinda inconsistent

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Correct. The ID is now consistently encoded.

@strieflin strieflin requested a review from sbckr November 13, 2024 09:39
sbckr
sbckr previously approved these changes Nov 13, 2024
View reviewed changes
Copy link
Member

@sbckr sbckr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@strieflin strieflin requested a review from sbckr November 13, 2024 10:12
sbckr
sbckr approved these changes Nov 13, 2024
View reviewed changes
Copy link
Member

@sbckr sbckr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@strieflin strieflin merged commit 8284e69 into master Nov 13, 2024
6 checks passed
@strieflin strieflin deleted the add-policy-subsystem branch November 13, 2024 10:15
@cs-minion cs-minion mentioned this pull request Nov 13, 2024
Merged
@cs-minion cs-minion mentioned this pull request Nov 13, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sbckr sbckr sbckr approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@strieflin @sbckr