Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set the severity annotation for non-OCM policies #132

Merged
merged 1 commit into from
Nov 16, 2023
Merged

Set the severity annotation for non-OCM policies #132

merged 1 commit into from
Nov 16, 2023

Conversation

mprahl
Copy link
Member

@mprahl mprahl commented Nov 16, 2023
edited
Loading

For policy-templates entries that are not OCM policies, it is supported to set the policy.open-cluster-management.io/severity annotation for other tooling to determine the severity of a noncompliant event. This adds that automatically.

Relates:
https://issues.redhat.com/browse/ACM-6860

@mprahl mprahl requested a review from dhaiducek November 16, 2023 15:31
@openshift-ci openshift-ci bot requested review from gparvin and JustinKuli November 16, 2023 15:32
dhaiducek
dhaiducek requested changes Nov 16, 2023
View reviewed changes
Copy link
Member

@dhaiducek dhaiducek left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Gatekeeper is our current use-case, but I think this should be more generic, removing the fact that it's Gatekeeper and just setting the annotation if it's not OCM? It'd make the logic simpler and also prevent reverting this change if we ever add integrations for other policy engines. What do you think?

@mprahl mprahl changed the title Set the severity annotation for supported Gatekeeper objects Set the severity annotation for non-OCM policies Nov 16, 2023
@mprahl mprahl requested a review from dhaiducek November 16, 2023 16:27
@mprahl
Set the severity annotation for non-OCM policies
6661fa8 
For policy-templates entries that are not OCM policies, it is supported
to set the `policy.open-cluster-management.io/severity` annotation for
other tooling to determine the severity of a noncompliant event. This
adds that automatically.

Relates:
https://issues.redhat.com/browse/ACM-6860

Signed-off-by: mprahl <[email protected]>
dhaiducek
dhaiducek approved these changes Nov 16, 2023
View reviewed changes
Copy link
Member

@dhaiducek dhaiducek left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Thanks! 🙂

@openshift-ci openshift-ci bot added the lgtm label Nov 16, 2023
@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Nov 16, 2023

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dhaiducek, mprahl

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-merge-bot openshift-merge-bot bot merged commit fd7a535 into open-cluster-management-io:main Nov 16, 2023
2 checks passed
@magic-mirror-bot magic-mirror-bot bot mentioned this pull request Nov 16, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dhaiducek dhaiducek dhaiducek approved these changes

@gparvin gparvin Awaiting requested review from gparvin

@JustinKuli JustinKuli Awaiting requested review from JustinKuli

Assignees

@dhaiducek dhaiducek

Labels
approved dco-signoff: yes lgtm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mprahl @dhaiducek