GKE Hub V1 API - Class Google::Cloud::GkeHub::ConfigManagement::V1::PolicyController (v1.1.0)

Reference documentation and code samples for the GKE Hub V1 API class Google::Cloud::GkeHub::ConfigManagement::V1::PolicyController.

Configuration for Policy Controller

Inherits

  • Object

Extended By

  • Google::Protobuf::MessageExts::ClassMethods

Includes

  • Google::Protobuf::MessageExts

Methods

#audit_interval_seconds

def audit_interval_seconds() -> ::Integer
Returns
  • (::Integer) — Sets the interval for Policy Controller Audit Scans (in seconds). When set to 0, this disables audit functionality altogether.

#audit_interval_seconds=

def audit_interval_seconds=(value) -> ::Integer
Parameter
  • value (::Integer) — Sets the interval for Policy Controller Audit Scans (in seconds). When set to 0, this disables audit functionality altogether.
Returns
  • (::Integer) — Sets the interval for Policy Controller Audit Scans (in seconds). When set to 0, this disables audit functionality altogether.

#enabled

def enabled() -> ::Boolean
Returns
  • (::Boolean) — Enables the installation of Policy Controller. If false, the rest of PolicyController fields take no effect.

#enabled=

def enabled=(value) -> ::Boolean
Parameter
  • value (::Boolean) — Enables the installation of Policy Controller. If false, the rest of PolicyController fields take no effect.
Returns
  • (::Boolean) — Enables the installation of Policy Controller. If false, the rest of PolicyController fields take no effect.

#exemptable_namespaces

def exemptable_namespaces() -> ::Array<::String>
Returns
  • (::Array<::String>) — The set of namespaces that are excluded from Policy Controller checks. Namespaces do not need to currently exist on the cluster.

#exemptable_namespaces=

def exemptable_namespaces=(value) -> ::Array<::String>
Parameter
  • value (::Array<::String>) — The set of namespaces that are excluded from Policy Controller checks. Namespaces do not need to currently exist on the cluster.
Returns
  • (::Array<::String>) — The set of namespaces that are excluded from Policy Controller checks. Namespaces do not need to currently exist on the cluster.

#log_denies_enabled

def log_denies_enabled() -> ::Boolean
Returns
  • (::Boolean) — Logs all denies and dry run failures.

#log_denies_enabled=

def log_denies_enabled=(value) -> ::Boolean
Parameter
  • value (::Boolean) — Logs all denies and dry run failures.
Returns
  • (::Boolean) — Logs all denies and dry run failures.

#referential_rules_enabled

def referential_rules_enabled() -> ::Boolean
Returns
  • (::Boolean) — Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated.

#referential_rules_enabled=

def referential_rules_enabled=(value) -> ::Boolean
Parameter
  • value (::Boolean) — Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated.
Returns
  • (::Boolean) — Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated.

#template_library_installed

def template_library_installed() -> ::Boolean
Returns
  • (::Boolean) — Installs the default template library along with Policy Controller.

#template_library_installed=

def template_library_installed=(value) -> ::Boolean
Parameter
  • value (::Boolean) — Installs the default template library along with Policy Controller.
Returns
  • (::Boolean) — Installs the default template library along with Policy Controller.