Stay organized with collections
Save and categorize content based on your preferences.
constraints.gatekeeper.sh/v1beta1
GDCHRestrictedService
GDCHRestrictedService lets you restrict which service can be used on
GDC air-gapped appliance. When applied, the policy prevents the use of the APIs
that it references.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[[["\u003cp\u003e\u003ccode\u003eGDCHRestrictedService\u003c/code\u003e is a policy that restricts which services can be used on a GDC air-gapped appliance, preventing the use of referenced APIs.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eGDCHRestrictedServiceSpec\u003c/code\u003e defines the desired state of the policy, including how to match against requests and the parameters of the policy itself.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eParameters\u003c/code\u003e within the specification dictate the API operations disabled by the policy, with supported values including \u003ccode\u003eCREATE\u003c/code\u003e and \u003ccode\u003eUPDATE\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eGDCHRestrictedServiceStatus\u003c/code\u003e provides information on the policy's current state, including the last audit timestamp, whether it's enforced, and any detected violations.\u003c/p\u003e\n"],["\u003cp\u003eA \u003ccode\u003eViolation\u003c/code\u003e represents an attempted policy violation and includes details such as the enforcement action taken, the message given to the client, and information about the resource that triggered the violation.\u003c/p\u003e\n"]]],[],null,["# KRM API constraints.gatekeeper.sh/v1beta1\n\nconstraints.gatekeeper.sh/v1beta1\n---------------------------------\n\n### GDCHRestrictedService\n\nGDCHRestrictedService lets you restrict which service can be used on\nGDC air-gapped appliance. When applied, the policy prevents the use of the APIs\nthat it references.\n\n### GDCHRestrictedServiceSpec\n\nGDCHRestrictedServiceSpec defines the desired state for a GDCHRestrictedService.\n\n*Appears in:*\n- [GDCHRestrictedService](#gdchrestrictedservice)\n\n### Parameters\n\nParameters define the parameters of a GDCHRestrictedService.\n\n*Appears in:*\n- [GDCHRestrictedServiceSpec](#gdchrestrictedservicespec)\n\n### GDCHRestrictedServiceStatus\n\nGDCHRestrictedServiceStatus defines the observed state of the\nGDCHRestrictedService policy.\n\n*Appears in:*\n- [GDCHRestrictedService](#gdchrestrictedservice)\n\n### Violation\n\nViolation represents an event where an attempted violation of the policy happened.\n\n*Appears in:*\n- [GDCHRestrictedServiceStatus](#gdchrestrictedservicestatus)"]]