Skip to content

Feature/53 add pod security #54

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 18 commits into from
Jan 6, 2025
Merged

Feature/53 add pod security #54

merged 18 commits into from
Jan 6, 2025

Conversation

ppxl
Copy link
Member

@ppxl ppxl commented Dec 10, 2024

resolve #53 by adding and describing container security features

alexander-dammeier and others added 2 commits December 10, 2024 10:57
@alexander-dammeier @ppxl
#53 add security block to dogu descriptor
cbbf629 
Add docs for all capabilities

Co-authored-by: Philipp Pixel <ppxl@users.noreply.github.com>
@ppxl @alexander-dammeier
#53 Add more doc comments on dogu security fields
959c5ff 
Co-authored-by: Alexander Dammeier <alexander.dammeier@cloudogu.com>
@ppxl ppxl force-pushed the feature/53-add-pod-security branch from b7c134a to 959c5ff Compare December 10, 2024 13:40
ppxl and others added 12 commits December 10, 2024 14:54
@ppxl @alexander-dammeier
#53 Make security fields optional, also in JSON
d8ea9b5 
Co-authored-by: Alexander Dammeier <alexander.dammeier@cloudogu.com>
@ppxl
#53 Update go version to 1.23
b3f37c2
@ppxl
#53 Add dogu validation
1a633df 
There is no way to formalize list entries in JSON, so the capabilities
slice could contain anything. This commit adds a way to check these and
fail if the list contains unknown capabilities
@ppxl
#53 List effective dogu capabilities
3e90913
@ppxl
#53 Update go version in Makefile
42fa0ac 
In a previous commit the go version was raised to 1.23. This commit
amends this situation for the Makefile
@ppxl
#53 Fix unhandled error return in dogu v2 format provider
fd8d8f5
@alexander-dammeier @ppxl
#53 optimize EffectiveCapabilities implementation
bc84e4b 
Co-authored-by: Philipp Pixel <ppxl@users.noreply.github.com>
@ppxl
#53 Extract validateDogu function into dogu method, remove mass check
6276c70 
The validate function was not located in the best possible location,
that was: during parsing dogus from strings.

That might interfere with parsing otherwise empty dogus which would then
be possibly considered invalid. Instead, this commit extracts this very
method onto the dogu struct so developers can call this function
independent of the parsing method.

This commit removes the respective bulk dogu counterpart because YAGNI
@ppxl
#53 remove dead test code
2f91aa8
@ppxl
#53 Move ValidateSecurity within same file for better readability
435804c
@ppxl @alexander-dammeier
#53 Extract Dogu relevant types into own files, update markdown gener…
12642f8 
…ator

Co-authored-by: Alexander Dammeier <alexander.dammeier@cloudogu.com>
@ppxl
#53 Extract tests into own files according extracted core.Dogu types
0c21a99
jelemux
jelemux reviewed Dec 12, 2024
View reviewed changes
jelemux
jelemux reviewed Dec 12, 2024
View reviewed changes
@jelemux
#53 Expose all capabilities
7fc33a5 
This allows us to use them in the dogu operator
and prevents us from keeping two lists in sync.
@jelemux
#53 Include all keyword in validation
c9fba0f 
+ better error handling
@jelemux
#53 Add doc for all
37b9c56
ppxl
ppxl commented Jan 6, 2025
View reviewed changes
Copy link
Member Author

@ppxl ppxl left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@ppxl ppxl merged commit 6f4618b into develop Jan 6, 2025
1 check passed
@ppxl ppxl deleted the feature/53-add-pod-security branch January 6, 2025 13:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jelemux jelemux jelemux left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

add pod security context to dogu descriptor
3 participants
@ppxl @jelemux @alexander-dammeier