-
Currently the Gatekeeper deployment happens in the `user-cluster-controller` and its deployed through code, meaning we have coded-in Deployments, SA and so on.
This makes the Gatekeeper deployment ve…
-
This is an initiative to track the work needed until we have an integrated authentication & authorization story for our platform.
This will be split into sub-epics to generate units of work that can …
-
### DOR
- [x] Acesso ao [styleguide](https://www.figma.com/design/3qawe9F2BwNxmGG87aWBzn/Portal-Ascepa?node-id=0-1&t=kYw3K6ogZM9t1KXp-0)
- [x] #86
### DOD
- [ ] Criação do componente apto para ser re…
-
Let's add support for opa and rego to support interesting things
-
Context: We want to move from our - honestly early stage - authorizer to the one Bloomberg build.
It has a much nicer API and allows to batch multiple requests as well.
Long-term we want to have o…
-
Docker Daemon allows us to set the [authZ plugin at dockerd bootstrap](https://docs.docker.com/engine/extend/plugins_authorization/#setting-up-docker-daemon). This would be very helpful, rather than u…
-
- OPA chart installs few built-in constrainttemplates.
- Rancher should block edit/delete of these built-in templates
- Explore if this can be done using another builtin OPA policy itself.
-
-
##### SUMMARY
Currently community.docker.docker_stack module is able to use variables (lookups, ...) for several parts of the compose file, like the name of the stack or the image. Unfortunately, thi…
-
authorization denied by plugin opa-docker-authz: request rejected by administrative policy