Policies for API actions (create, delete, update) #1037
Labels
enhancement
Adding additional functionality or improvements
stale
Marked as stale by stalebot
triage
This bug needs triage
Prevent cluster admins from doing dangerous changes, for example deleting a Kubernetes node.
Could Polaris be extended with rules that includes the API action applied? This will only be rules that the Polaris webhook validator can handle as the Polaris dashboard only looks the current state and have no notation of actions. In theory the Polaris dashboard could be extended to show Kubernetes events related to Polaris webhook rejections, however, that would be another feature request.
A solution could be adding the action as a variable available in the GoLang templates in the custom rule definitions.
The text was updated successfully, but these errors were encountered: