You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is your feature request related to a problem? Please describe.
When a generate rule which matches on Namespaces contains a reference to an existing resource via the clone statement, any matching new Namespaces gets a clone of this source object. But if the policy containing this rule is deleted, if synchronize: true is set on the rule, the downstream (synchronized) resources across all extant Namespaces will be immediately deleted.
Describe the solution you'd like
This behavior should be altered to leave the downstream resources intact should the policy be deleted.
Additional context
For generate rules which specify the data directive and therefore define the object definition in the rule itself, deletion of the parent policy should continue to delete the downstream resources when synchronize: true. In these cases, the source of truth is the policy.
The text was updated successfully, but these errors were encountered:
@chipzoller - Currently, if any changes is done to the source resource, same changes are expected in the cloned resource.
What about after deleting the generate policy. Should the generated resource change according to the source resource or not?
EDIT: Removed previous line because I thought I was commenting on the PR.
What about after deleting the generate policy. Should the generated resource change according to the source resource or not?
Since the policy was deleted, and that policy was the thing that specified synchronization, should the source resource be changed those changes should not be propagated downstream.
Is your feature request related to a problem? Please describe.
When a
generate
rule which matches on Namespaces contains a reference to an existing resource via theclone
statement, any matching new Namespaces gets a clone of this source object. But if the policy containing this rule is deleted, ifsynchronize: true
is set on the rule, the downstream (synchronized) resources across all extant Namespaces will be immediately deleted.Describe the solution you'd like
This behavior should be altered to leave the downstream resources intact should the policy be deleted.
Additional context
For
generate
rules which specify thedata
directive and therefore define the object definition in the rule itself, deletion of the parent policy should continue to delete the downstream resources whensynchronize: true
. In these cases, the source of truth is the policy.The text was updated successfully, but these errors were encountered: