Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-30100

Fix incorrect defaults for several admission controller related config flags

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Undefined Undefined
    • 4.9.0
    • None
    • None
    • Rox Sprint 4.9D - Global, Rox Sprint 4.9E - Global, Rox Sprint 4.9F - Global, Rox Sprint 4.9G - Global

      The end result should be that the admission controller and validating webhooks should be:
      1. Deployed by default (without the need for specifying any CLI options to sensor generate)
      2. Should be configured to enforce policies on updates and creates by defaults (without the need for specifying any CLI options to sensor generate)
      3. The VWC should be configured to scan images inline by default.

      The unnecessary CLI options must be marked as deprecated and their default values should be fixed in the interim:
      --admission-controller-listen-on-creates
      --admission-controller-listen-on-updates
      --admission-controller-listen-on-events
      --admission-controller-enforce-on-updates
      --admission-controller-enforce-on-creates
      --admission-controller-listen-on-events
      --admission-controller-scan-inline

              ksanchet@redhat.com Khushboo Sancheti
              ksanchet@redhat.com Khushboo Sancheti
              ACS Sensor & Ecosystem
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: