Uploaded image for project: 'Red Hat Advanced Cluster Management'
  1. Red Hat Advanced Cluster Management
  2. ACM-5398

ACM ignores Policies about empty label/field

    XMLWordPrintable

Details

    • False
    • None
    • False
    • No
    • ?
    • 2
    • GRC Sprint 2023-10, GRC Sprint 2023-11, GRC Sprint 2023-12, GRC Sprint 2023-13, GRC Sprint 2023-14, GRC Sprint 2023-15

    Description

      Description of problem:

      Wen create a policy to set some empty labels, like:

       

            - complianceType: musthave
                objectDefinition:
                  apiVersion: v1
                  kind: Node
                  metadata:
                    labels:
                      cluster.ocs.openshift.io/openshift-storage: ""               
                      node-role.kubernetes.io/worker: ""  
                      node-role.kubernetes.io/role2: ""
                    name: master-0

       

       

      This is ignored. It seems to be related to that empty label, that is used to add an extra role to a Node object.

      The policy appears as compliant, when it is not.

      Version-Release number of selected component (if applicable):

      2.7

      How reproducible:

      Create a policy that sets some empty fields, like a role for a Node.

      Steps to Reproduce:

      1.  
      2.  
      3. ...

      Actual results:

      The Policy appears as compliance. But this has not be applied, and the empty fields (roles) have not been added. You cannot enforce the Policy because it is set as compliance, when is not.

      Expected results:

      Additional info:

      Attachments

        Issue Links

          Activity

            People

              rh-ee-jaszhang Jason Zhang
              jgato@redhat.com Jose Gato Luis
              Derek Ho Derek Ho
              Votes:
              2 Vote for this issue
              Watchers:
              12 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: