Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-6043

RHACS: Expose StackRox functionality via Kubernetes APIs

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • API, RHACS
    • None
    • False
    • None
    • False

      StackRox can be configured programmatically using the StackRox APIs. It would be great if at least some of the APIs would be exposed as Kubernetes custom resources (CRs).

      Currently, we have to use tools like Ansible to make API calls to StackRox. If StackRox functionality would be accessible via Kubernetes APIs, we could work with StackRox using just the kubectl/oc client. We could also leverage GitOps tools to configure StackRox. For example, if StackRox policies would be exposed as a Kubernetes CR we could manage policies using GitOps.

      Kubernetes API concepts like annotations and labels could be beneficial for StackRox as well. For example, we could label StackRox policies and group them based on labels.

      Implementing Kubernetes-native APIs in StackRox could unlock further integration possibilities in the future.

              bmichael@redhat.com Boaz Michaely
              anosek@redhat.com Ales Nosek
              Anjali Telang, Boaz Michaely, Doron Caspin, JP Jung, Maria Simon Marcos, Shubha Badve
              Votes:
              16 Vote for this issue
              Watchers:
              19 Start watching this issue

                Created:
                Updated: