PolicyController(mapping=None, *, ignore_unknown_fields=False, **kwargs)
Configuration for Policy Controller
.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields
Attributes
Name | Description |
enabled |
bool
Enables the installation of Policy Controller. If false, the rest of PolicyController fields take no effect. |
template_library_installed |
bool
Installs the default template library along with Policy Controller. This field is a member of `oneof`_ ``_template_library_installed``. |
audit_interval_seconds |
int
Sets the interval for Policy Controller Audit Scans (in seconds). When set to 0, this disables audit functionality altogether. This field is a member of `oneof`_ ``_audit_interval_seconds``. |
exemptable_namespaces |
Sequence[str]
The set of namespaces that are excluded from Policy Controller checks. Namespaces do not need to currently exist on the cluster. |
referential_rules_enabled |
bool
Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated. |
log_denies_enabled |
bool
Logs all denies and dry run failures. |