Policy Generator

Overview

The Policy Generator constructs Open Cluster Management policies from Kubernetes YAML files provided through a PolicyGenerator Custom Resource. The Policy Generator is a binary compiled for use as a kustomize exec plugin.

For more about Open Cluster Management and its Policy Framework:

Getting Started

Go to the Contributing guide to learn how to get involved.

Using the Policy Generator

As a Kustomize plugin

Installation

Install from the GitHub release

Download the precompiled plugin binary from the release of your choice.

Create the plugin directory:

mkdir -p ${HOME}/.config/kustomize/plugin/policy.open-cluster-management.io/v1/policygenerator

Move the binary to the plugin directory:

Linux:

chmod +x linux-amd64-PolicyGenerator
mv linux-amd64-PolicyGenerator ${HOME}/.config/kustomize/plugin/policy.open-cluster-management.io/v1/policygenerator/PolicyGenerator

MacOS:

chmod +x darwin-amd64-PolicyGenerator
mv darwin-amd64-PolicyGenerator ${HOME}/.config/kustomize/plugin/policy.open-cluster-management.io/v1/policygenerator/PolicyGenerator

Build and install from source

Build the plugin binary (only needed once or to update the plugin):
```
make build
```
NOTE: This will default to placing the binary in ${HOME}/.config/kustomize/plugin/. You can change this by exporting KUSTOMIZE_PLUGIN_HOME to a different path.

Configuration

Create a kustomization.yaml file that points to PolicyGenerator manifest(s), with any additional desired patches or customizations (see examples/policyGenerator.yaml for an example):
```
generators:
  - path/to/generator/file.yaml
```
- To read more about the PolicyGenerator YAML, see About the PolicyGenerator plugin
To use the plugin to generate policies, do one of:
- Utilize the examples/ directory in this repository (the directory can be modified by exporting a new path to SOURCE_DIR):
```
make generate
```
- From any directory with a kustomization.yaml file pointing to PolicyGenerator manifests:
```
kustomize build --enable-alpha-plugins
```

As a standalone binary

In order to bypass Kustomize and run the generator binary directly:

Build the binary:
```
make build-binary
```
Run the binary from the location of the PolicyGenerator manifest(s):
```
path/to/PolicyGenerator <path/to/file/1> ... <path/to/file/n>
```
- For example:
```
cd examples
../PolicyGenerator policyGenerator.yaml
```
  NOTE: To print the trace in the case of an error, you can add the --debug flag to the arguments.

Name		Name	Last commit message	Last commit date
Latest commit History 53 Commits
.github/workflows		.github/workflows
CHANGELOG		CHANGELOG
build/common		build/common
cmd		cmd
docs		docs
examples		examples
internal		internal
.gitignore		.gitignore
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
DCO		DCO
LICENSE		LICENSE
Makefile		Makefile
OWNERS		OWNERS
README.md		README.md
SECURITY.md		SECURITY.md
go.mod		go.mod
go.sum		go.sum

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Policy Generator

Overview

Getting Started

Using the Policy Generator

As a Kustomize plugin

Installation

Install from the GitHub release

Build and install from source

Configuration

As a standalone binary

About

Releases

Packages

Languages

License

ChunxiAlexLuo/ocm-kustomize-generator-plugins

Folders and files

Latest commit

History

Repository files navigation

Policy Generator

Overview

Getting Started

Using the Policy Generator

As a Kustomize plugin

Installation

Install from the GitHub release

Build and install from source

Configuration

As a standalone binary

About

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages