Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Epic Blob-CSI] Implement the gatekeeper policies for PVs v.s. PVCs #1006

Open
Tracked by #1001
blairdrummond opened this issue Apr 13, 2022 · 6 comments · May be fixed by StatCan/gatekeeper-policies#30
Open
Tracked by #1001

[Epic Blob-CSI] Implement the gatekeeper policies for PVs v.s. PVCs #1006

blairdrummond opened this issue Apr 13, 2022 · 6 comments · May be fixed by StatCan/gatekeeper-policies#30
Labels
size/S ~1 day

Comments

@blairdrummond
Copy link
Contributor

No description provided.

@blairdrummond blairdrummond mentioned this issue Apr 13, 2022
Closed
63 tasks
@blairdrummond blairdrummond added the size/S ~1 day label Apr 13, 2022
@blairdrummond blairdrummond changed the title [Epic Blob-CSI] Implement the gatekeeper policies/constraints for pro-b labels on PVs v.s. PVCs [Epic Blob-CSI] Implement the gatekeeper policies for PVs v.s. PVCs Apr 14, 2022
@blairdrummond blairdrummond linked a pull request Apr 14, 2022 that will close this issue
Open
@blairdrummond blairdrummond self-assigned this Apr 20, 2022
@Collinbrown95
Copy link
Contributor

Collinbrown95 commented May 18, 2022
edited
Loading

@cboin1996 & @bsewp045 - deferring this for 2 weeks to make room for documentation issues as per sprint planning discussion.

@StanHatko
Copy link
Contributor

On #1001 this is marked as completed (checked off), but this issue is still open. Should the issue be closed or was it checked off by mistake?

@chuckbelisle
Copy link
Contributor

chuckbelisle commented Nov 2, 2022
edited
Loading

@Collinbrown95 pull request to resolve

@chuckbelisle
Copy link
Contributor

Collin, please verify the status of this issue and action as required

@rohank07
Copy link
Contributor

rohank07 commented Feb 9, 2023
edited
Loading

Based on the PR written, the GK policy was written to bind Protb PVs to Protb PVCs. The blob-csi controller dynamically provisions PVs and PVCs with the protb classification label and binds them together. There is no case of a user manually trying to bind PV to PVC.

@rohank07
Copy link
Contributor

rohank07 commented Feb 9, 2023

After talking to Collin, we've decided it would be nice to have this as a security measure to ensure a last line of defense if a user somehow is able to manually bind PV to PVC. This is not a priority at the moment and will be placed in the backlog.

@rohank07 rohank07 mentioned this issue Feb 9, 2023
Closed
@chuckbelisle chuckbelisle mentioned this issue May 3, 2023
Closed
10 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
size/S ~1 day
Projects
None yet
Milestone
No milestone
6 participants
@Collinbrown95 @blairdrummond @chuckbelisle @rohank07 @Souheil-Yazji @StanHatko