Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-28590

Support third party policy violations via PolicyReport

XMLWordPrintable

    • Product / Portfolio Work
    • False
    • Hide

      None

      Show
      None
    • False
    • Not Selected
    • 0

      Goal Summary:

      An elevator pitch (value statement) that describes the Feature in a clear, concise way. Complete during New status.

      Integrate the Kubernetes PolicyReport API with Red Hat Advanced Cluster Security (ACS) to support third-party policy engines such as Kyverno. 

      This integration will initially occur at the secured cluster level using the PolicyReport API.  Sensor will be changed to sync policy violations in the secured cluster with central and a new section will be added to secured cluster installation for PolicyReport integrations. 

      PolicyReport API resources (namespace, cluster, deployment ID where possible) will be mapped back to the internal ACS pages in the violation. If resource mapping is not possible, the violation will be shown only on the violations page.

      Third-party policy engines such as kyverno would not be managed by ACS.

      Goals and expected user outcomes:

      The observable functionality that the user now has as a result of receiving this feature. Include the anticipated primary user type/persona and which existing features, if any, will be expanded. Complete during New status.

      <your text here>

      Acceptance Criteria:

      A list of specific needs or objectives that a feature must deliver in order to be considered complete. Be sure to include nonfunctional requirements such as security, reliability, performance, maintainability, scalability, usability, etc. Initial completion during Refinement status.

      <enter general Feature acceptance here>

      Success Criteria or KPIs measured:

      A list of specific, measurable criteria that will be used to determine if the feature is successful. Include key performance indicators (KPIs) or other metrics., etc. Initial completion during Refinement status.

      • Adoption Rate: Percentage of secured clusters actively using the PolicyReport API integration.
      • Telemetry: Volume and type of PolicyReport entries to guide future ACS policy integration investments.
      • User feedback

      Use Cases (Optional):

      Include use case diagrams, main success scenarios, alternative flow scenarios together with user type/persona. Initial completion during Refinement status.

      <your text here>

      Out of Scope (Optional):

      High-level list of items that are out of scope. Initial completion during Refinement status.

      <your text here>

              Unassigned Unassigned
              rcochran@redhat.com Robby Cochran
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: