netpolmgr

command module

v0.0.0-...-d18f2ad Latest Latest Go to latest Published: Jul 13, 2022 License: BSD-3-Clause Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/r4rajat/netpolmgr

Links

Open Source Insights

README ¶

Netpolmgr - Backup and Restore PVC Custom k8s Validation Webhook

🧐 About

The Netpolmgr custom kubernetes Validation Webhook is written primarily in go lang. This Validation Webhook Validates in case a label of a pod is edited, and it exists in some network policy, it doesn't let user edit that label.

🏁 Getting Started

These instructions will get you the project up and running on your local machine for development and testing purposes. See Running the Code for notes on how to deploy the project on a Local System or on a Kubernetes Server.

Prerequisites

To run/test the Netpolmgr Validation Webhook on Minikube, first we need to install following Software Dependencies.

Once above Dependencies are installed we can move with further steps

Installing

A step by step series of examples that tell you how to get a development env running.

go mod tidy

Step 2: Running a 2 Node Mock Kubernetes Server Locally using minikube

minikube start --nodes 2

Step 3: Create Service Account, Role and Role Binding:

kubectl create -f manifests/sa.yaml
kubectl create -f manifests/role.yaml
kubectl create -f manifests/rb.yaml

Step 4: Setting Up Certificates for HTTPS

kubectl create -f manifests/certs/secret.yaml

Step 5: Creating Deployments and Service for Netpolmgr

kubectl create -f manifests/netpolmgr.yaml
kubectl create -f manifests/service.yaml

Step 6: Creating Validation Webhook

kubectl create -f manifests/validation-pod-label.yaml

Step 7: Creating Test deployment and network policy

kubectl create -f manifests/allow-network-policy.yaml
kubectl create -f manifests/nginx.yaml

🔧 Running the Code

kubectl edit pod/nginx

Try to edit label app: nginx to app: nginx-test Netpolmgr will restrict the changes as app:nginx is mentioned in network policy which we created.
Try to add some new labels in the nginx pod role: frontend, it will allow to add this