Layered Governance for your Infrastructure with Kubernetes, OPA, and Terraform
To use the code in this repository, you will need the following applications:
- HashiCorp Terraform
0.14.5
(or later) - KIND
0.10.0
(or later)
Once you have KIND installed and the repository downloaded, you can run the following command to start up your local Kubernetes cluster.
kind create cluster --config cluster.yaml
- Terraform Remote State: learn.hashicorp.com/tutorials/terraform/azure-remote
- Managing Kubernetes resources: learn.hashicorp.com/tutorials/terraform/kubernetes-provider
The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
Flux is a tool for keeping Kubernetes clusters in sync with sources of configuration (like Git repositories), and automating updates to configuration when there is new code to deploy.
This repository is maintained by Taylor Dolezal.
Licensed under the Apache License, Version 2.0 (the "License").
You may obtain a copy of the License at apache.org/licenses/LICENSE-2.0.
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" basis, without WARRANTIES or conditions of any kind, either express or implied.
See the License for the specific language governing permissions and limitations under the License.