npm - pepr - Versions diffs - 0.36.0 → 0.37.0 - Mend

pepr 0.36.0 → 0.37.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (96) hide show

package/dist/cli/init/index.d.ts.map +1 -1
package/dist/cli/init/templates.d.ts +3 -1
package/dist/cli/init/templates.d.ts.map +1 -1
package/dist/cli/init/utils.d.ts.map +1 -1
package/dist/cli/init/walkthrough.d.ts +10 -3
package/dist/cli/init/walkthrough.d.ts.map +1 -1
package/dist/cli.js +253 -31
package/dist/controller.js +138 -1
package/dist/lib/adjudicators.d.ts +63 -0
package/dist/lib/adjudicators.d.ts.map +1 -0
package/dist/lib/adjudicators.test.d.ts +2 -0
package/dist/lib/adjudicators.test.d.ts.map +1 -0
package/dist/lib/assets/loader.d.ts.map +1 -1
package/dist/lib/assets/pods.d.ts +1 -0
package/dist/lib/assets/pods.d.ts.map +1 -1
package/dist/lib/capability.d.ts +1 -0
package/dist/lib/capability.d.ts.map +1 -1
package/dist/lib/capability.test.d.ts +2 -0
package/dist/lib/capability.test.d.ts.map +1 -0
package/dist/lib/controller/index.d.ts.map +1 -1
package/dist/lib/controller/store.d.ts +4 -0
package/dist/lib/controller/store.d.ts.map +1 -1
package/dist/lib/controller/store.test.d.ts +2 -0
package/dist/lib/controller/store.test.d.ts.map +1 -0
package/dist/lib/filter.d.ts +2 -3
package/dist/lib/filter.d.ts.map +1 -1
package/dist/lib/filter.test.d.ts +2 -1
package/dist/lib/filter.test.d.ts.map +1 -1
package/dist/lib/finalizer.d.ts +6 -0
package/dist/lib/finalizer.d.ts.map +1 -0
package/dist/lib/finalizer.test.d.ts +2 -0
package/dist/lib/finalizer.test.d.ts.map +1 -0
package/dist/lib/helpers.d.ts +2 -2
package/dist/lib/helpers.d.ts.map +1 -1
package/dist/lib/helpers.test.d.ts +1 -1
package/dist/lib/helpers.test.d.ts.map +1 -1
package/dist/lib/k8s.d.ts.map +1 -1
package/dist/lib/module.d.ts +2 -1
package/dist/lib/module.d.ts.map +1 -1
package/dist/lib/mutate-processor.d.ts +2 -1
package/dist/lib/mutate-processor.d.ts.map +1 -1
package/dist/lib/mutate-request.d.ts +1 -2
package/dist/lib/mutate-request.d.ts.map +1 -1
package/dist/lib/schedule.d.ts +1 -2
package/dist/lib/schedule.d.ts.map +1 -1
package/dist/lib/storage.d.ts.map +1 -1
package/dist/lib/types.d.ts +115 -6
package/dist/lib/types.d.ts.map +1 -1
package/dist/lib/validate-processor.d.ts +4 -2
package/dist/lib/validate-processor.d.ts.map +1 -1
package/dist/lib/validate-request.d.ts +1 -1
package/dist/lib/validate-request.d.ts.map +1 -1
package/dist/lib/watch-processor.d.ts +1 -1
package/dist/lib/watch-processor.d.ts.map +1 -1
package/dist/lib.js +383 -204
package/dist/lib.js.map +4 -4
package/package.json +9 -7
package/src/cli/build.ts +3 -3
package/src/cli/init/index.ts +20 -11
package/src/cli/init/templates.ts +1 -1
package/src/cli/init/utils.test.ts +11 -20
package/src/cli/init/utils.ts +5 -0
package/src/cli/init/walkthrough.test.ts +92 -11
package/src/cli/init/walkthrough.ts +71 -16
package/src/cli/monitor.ts +1 -1
package/src/cli.ts +4 -2
package/src/fixtures/data/create-pod.json +1 -1
package/src/fixtures/data/delete-pod.json +1 -1
package/src/lib/adjudicators.test.ts +1232 -0
package/src/lib/adjudicators.ts +235 -0
package/src/lib/assets/index.ts +1 -1
package/src/lib/assets/loader.ts +1 -0
package/src/lib/assets/webhooks.ts +1 -1
package/src/lib/capability.test.ts +655 -0
package/src/lib/capability.ts +104 -11
package/src/lib/controller/index.ts +7 -4
package/src/lib/controller/store.test.ts +131 -0
package/src/lib/controller/store.ts +43 -5
package/src/lib/filter.test.ts +194 -8
package/src/lib/filter.ts +46 -107
package/src/lib/finalizer.test.ts +236 -0
package/src/lib/finalizer.ts +63 -0
package/src/lib/helpers.test.ts +329 -69
package/src/lib/helpers.ts +141 -100
package/src/lib/k8s.ts +4 -0
package/src/lib/module.ts +3 -3
package/src/lib/mutate-processor.ts +5 -4
package/src/lib/mutate-request.test.ts +1 -2
package/src/lib/mutate-request.ts +1 -3
package/src/lib/schedule.ts +1 -1
package/src/lib/storage.ts +5 -6
package/src/lib/types.ts +151 -5
package/src/lib/validate-processor.ts +5 -2
package/src/lib/validate-request.test.ts +1 -4
package/src/lib/validate-request.ts +1 -1
package/src/lib/watch-processor.ts +19 -5

package/src/lib/validate-processor.ts CHANGED Viewed

@@ -5,12 +5,15 @@ import { kind } from "kubernetes-fluent-client";
 import { Capability } from "./capability";
 import { shouldSkipRequest } from "./filter";
-import { AdmissionRequest, ValidateResponse } from "./k8s";
+import { ValidateResponse } from "./k8s";
+import { AdmissionRequest } from "./types";
 import Log from "./logger";
 import { convertFromBase64Map } from "./utils";
 import { PeprValidateRequest } from "./validate-request";
+import { ModuleConfig } from "./module";
 export async function validateProcessor(
+  config: ModuleConfig,
   capabilities: Capability[],
   req: AdmissionRequest,
   reqMetadata: Record<string, string>,
@@ -41,7 +44,7 @@ export async function validateProcessor(
       };
       // Continue to the next action without doing anything if this one should be skipped
-      if (shouldSkipRequest(action, req, namespaces)) {
+      if (shouldSkipRequest(action, req, namespaces, config?.alwaysIgnore?.namespaces)) {
         continue;
       }

package/src/lib/validate-request.test.ts CHANGED Viewed

@@ -3,11 +3,8 @@
 import { beforeEach, describe, expect, it } from "@jest/globals";
 import { KubernetesObject } from "kubernetes-fluent-client";
-import { Operation, AdmissionRequest } from "./k8s";
-import { ValidateActionResponse } from "./types";
+import { ValidateActionResponse, AdmissionRequest, Operation } from "./types";
 import { PeprValidateRequest } from "./validate-request";
 describe("PeprValidateRequest", () => {
   let mockRequest: AdmissionRequest<KubernetesObject>;

package/src/lib/validate-request.ts CHANGED Viewed

@@ -6,7 +6,7 @@
 import { KubernetesObject } from "kubernetes-fluent-client";
 import { clone } from "ramda";
-import { Operation, AdmissionRequest } from "./k8s";
+import { AdmissionRequest, Operation } from "./types";
 import { ValidateActionResponse } from "./types";
 /**

package/src/lib/watch-processor.ts CHANGED Viewed

@@ -4,6 +4,7 @@ import { K8s, KubernetesObject, WatchCfg, WatchEvent } from "kubernetes-fluent-c
 import { WatchPhase } from "kubernetes-fluent-client/dist/fluent/types";
 import { Capability } from "./capability";
 import { filterNoMatchReason } from "./helpers";
+import { removeFinalizer } from "./finalizer";
 import Log from "./logger";
 import { Queue } from "./queue";
 import { Binding, Event } from "./types";
@@ -72,11 +73,11 @@ const eventToPhaseMap = {
  *
  * @param capabilities The capabilities to load watches for
  */
-export function setupWatch(capabilities: Capability[]) {
+export function setupWatch(capabilities: Capability[], ignoredNamespaces?: string[]) {
   capabilities.map(capability =>
     capability.bindings
       .filter(binding => binding.isWatch)
-      .forEach(bindingElement => runBinding(bindingElement, capability.namespaces)),
+      .forEach(bindingElement => runBinding(bindingElement, capability.namespaces, ignoredNamespaces)),
   );
 }
@@ -86,7 +87,7 @@ export function setupWatch(capabilities: Capability[]) {
  * @param binding the binding to watch
  * @param capabilityNamespaces list of namespaces to filter on
  */
-async function runBinding(binding: Binding, capabilityNamespaces: string[]) {
+async function runBinding(binding: Binding, capabilityNamespaces: string[], ignoredNamespaces?: string[]) {
   // Get the phases to match, fallback to any
   const phaseMatch: WatchPhase[] = eventToPhaseMap[binding.event] || eventToPhaseMap[Event.Any];
@@ -98,9 +99,22 @@ async function runBinding(binding: Binding, capabilityNamespaces: string[]) {
     if (phaseMatch.includes(phase)) {
       try {
         // Then, check if the object matches the filter
-        const filterMatch = filterNoMatchReason(binding, obj, capabilityNamespaces);
+        const filterMatch = filterNoMatchReason(binding, obj, capabilityNamespaces, ignoredNamespaces);
         if (filterMatch === "") {
-          await binding.watchCallback?.(obj, phase);
+          if (binding.isFinalize) {
+            if (!obj.metadata?.deletionTimestamp) {
+              return;
+            }
+            try {
+              await binding.finalizeCallback?.(obj);
+              // irrespective of callback success / failure, remove pepr finalizer
+            } finally {
+              await removeFinalizer(binding, obj);
+            }
+          } else {
+            await binding.watchCallback?.(obj, phase);
+          }
         } else {
           Log.debug(filterMatch);
         }