Skip to content

Commit bc04869

Browse files
k8sautom8k8sautom8
committed
validation-parameters fix
1 parent ee7e5b7 commit bc04869

File tree

3 files changed

+6
-6
lines changed

3 files changed

+6
-6
lines changed

defaults/.main.yml.swp

36 KB
Binary file not shown.

defaults/main.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -273,8 +273,8 @@ admission_control_eventratelimit_file: "admission-eventratelimit.yaml" # the fil
273273

274274
# ValidatingAdmissionPolicy
275275
# NOTE: Section 5 requires Kubernetes version v1.30.0 and above
276-
vap_exclude_system_namespace_crd: "vap-exclude-system-namespace-crd.yml"
277-
vap_cis_exclude_system_namespace_params: "vap-cis-exclude-system-namespace-params.yml" # Please verify the namespaceExclusion
276+
vap_cis_validation_parameters_crd: "vap-cis-validation-parameters-crd.yml"
277+
vap_cis_validation_parameters: "vap-cis-validation-parameters.yml" # Please verify the excludeSystemNamespaces, allowedRegistries, maxReplicas
278278
vap_cis_enforce_runasnonroot_policy: "vap-cis-enforce-runasnonroot-policy.yml"
279279
vap_cis_enforce_runasnonroot_policy_binding: "vap-cis-enforce-runasnonroot-policy-binding.yml"
280280
vap_cis_minimize_addition_of_limited_capabilities_policy: "vap-cis-minimize-addition-of-limited-capabilities-policy.yml"

tasks/section5.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -8,16 +8,16 @@
88
until: apiserver_start_5_0_0.stdout|length > 0
99
retries: 120
1010
delay: 1
11-
- name: "5.0.0 | PRE-REQ | Apply CRD for ValidatingAdmissionPolicy {{ vap_exclude_system_namespace_crd }}"
11+
- name: "5.0.0 | PRE-REQ | Apply CRD for ValidatingAdmissionPolicy {{ vap_cis_validation_parameters_crd }}"
1212
ansible.builtin.command: kubectl --kubeconfig={{ kubeconfig_path }} apply -f -
1313
args:
14-
stdin: "{{ lookup('file', vap_exclude_system_namespace_crd) }}"
14+
stdin: "{{ lookup('file', vap_cis_validation_parameters_crd) }}"
1515
register: crd_5_0_0
1616
changed_when: "'created' in crd_5_0_0.stdout"
17-
- name: "5.0.0 | PRE-REQ | Apply Paramerters for ValidatingAdmissionPolicy {{ vap_cis_exclude_system_namespace_params }}"
17+
- name: "5.0.0 | PRE-REQ | Apply Paramerters for ValidatingAdmissionPolicy {{ vap_cis_validation_parameters }}"
1818
ansible.builtin.command: kubectl --kubeconfig={{ kubeconfig_path }} apply -f -
1919
args:
20-
stdin: "{{ lookup('file', vap_cis_exclude_system_namespace_params) }}"
20+
stdin: "{{ lookup('file', vap_cis_validation_parameters) }}"
2121
register: params_5_0_0
2222
changed_when: "'created' in params_5_0_0.stdout"
2323
run_once: true

0 commit comments

Comments
 (0)