Class PolicyController (1.12.1)

PolicyController(mapping=None, *, ignore_unknown_fields=False, **kwargs)


enabled bool
Enables the installation of Policy Controller. If false, the rest of PolicyController fields take no effect.
template_library_installed bool
Installs the default template library along with Policy Controller. This field is a member of oneof_ _template_library_installed.
audit_interval_seconds int
Sets the interval for Policy Controller Audit Scans (in seconds). When set to 0, this disables audit functionality altogether. This field is a member of oneof_ _audit_interval_seconds.
exemptable_namespaces MutableSequence[str]
The set of namespaces that are excluded from Policy Controller checks. Namespaces do not need to currently exist on the cluster.
referential_rules_enabled bool
Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated.
log_denies_enabled bool
Logs all denies and dry run failures.