Skip to content

Commit

Permalink
fix: custom marshalling for Any (#11)
Browse files Browse the repository at this point in the history
Signed-off-by: Charles-Edouard Brétéché <[email protected]>
  • Loading branch information
eddycharly authored Oct 3, 2023
1 parent 133fbaf commit 4f7743f
Show file tree
Hide file tree
Showing 12 changed files with 30 additions and 111 deletions.
6 changes: 1 addition & 5 deletions config/crds/json.kyverno.io_policies.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -94,11 +94,7 @@ spec:
variable:
description: Variable defines an arbitrary JMESPath context
variable that can be defined inline.
properties:
value:
description: Value is any arbitrary object.
x-kubernetes-preserve-unknown-fields: true
type: object
x-kubernetes-preserve-unknown-fields: true
required:
- name
type: object
Expand Down
22 changes: 17 additions & 5 deletions pkg/apis/v1alpha1/any.go
Original file line number Diff line number Diff line change
@@ -1,22 +1,34 @@
package v1alpha1

import (
"encoding/json"

"github.com/jinzhu/copier"
)

type Value = interface{}

// +k8s:deepcopy-gen=false
type Any struct {
// TODO: this is needed to workaround a bug in api machinery code
// https://kubernetes.slack.com/archives/C0EG7JC6T/p1696331287543159
// +kubebuilder:pruning:PreserveUnknownFields
// +kubebuilder:validation:Schemaless
Value `json:",inline"`
Value interface{} `json:",inline"`
}

func (in *Any) DeepCopyInto(out *Any) {
if err := copier.Copy(out, in); err != nil {
panic("deep copy failed")
}
}

func (a *Any) MarshalJSON() ([]byte, error) {
return json.Marshal(a.Value)
}

func (a *Any) UnmarshalJSON(data []byte) error {
var v interface{}
err := json.Unmarshal(data, &v)
if err != nil {
return err
}
a.Value = v
return nil
}
4 changes: 3 additions & 1 deletion pkg/apis/v1alpha1/context_entry.go
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,9 @@ type ContextEntry struct {
Name string `json:"name"`

// Variable defines an arbitrary JMESPath context variable that can be defined inline.
Variable *Variable `json:"variable,omitempty"`
// +kubebuilder:pruning:PreserveUnknownFields
// +kubebuilder:validation:Schemaless
Variable Any `json:"variable,omitempty"`

// ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image details.
ImageRegistry *ImageRegistry `json:"imageRegistry,omitempty"`
Expand Down
25 changes: 0 additions & 25 deletions pkg/apis/v1alpha1/variable.go

This file was deleted.

39 changes: 0 additions & 39 deletions pkg/apis/v1alpha1/variable_test.go

This file was deleted.

5 changes: 1 addition & 4 deletions pkg/apis/v1alpha1/zz_generated.deepcopy.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 1 addition & 5 deletions pkg/data/crds/json.kyverno.io_policies.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -94,11 +94,7 @@ spec:
variable:
description: Variable defines an arbitrary JMESPath context
variable that can be defined inline.
properties:
value:
description: Value is any arbitrary object.
x-kubernetes-preserve-unknown-fields: true
type: object
x-kubernetes-preserve-unknown-fields: true
required:
- name
type: object
Expand Down
19 changes: 2 additions & 17 deletions pkg/policy/load.go
Original file line number Diff line number Diff line change
Expand Up @@ -9,10 +9,9 @@ import (
"github.com/kyverno/kyverno-json/pkg/apis/v1alpha1"
"github.com/kyverno/kyverno-json/pkg/data"
fileinfo "github.com/kyverno/kyverno-json/pkg/utils/file-info"
"github.com/kyverno/kyverno/cmd/cli/kubectl-kyverno/resource/convert"
"github.com/kyverno/kyverno/cmd/cli/kubectl-kyverno/resource/loader"
yamlutils "github.com/kyverno/kyverno/pkg/utils/yaml"
"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
"k8s.io/apimachinery/pkg/runtime"
"k8s.io/apimachinery/pkg/runtime/schema"
"sigs.k8s.io/kubectl-validate/pkg/openapiclient"
)
Expand Down Expand Up @@ -81,9 +80,7 @@ func Parse(content []byte) ([]*v1alpha1.Policy, error) {
}
switch gvk {
case policy_v1alpha1:
// TODO: don't use kyverno's convert for now to workaround the bug in api machinery code
// https://kubernetes.slack.com/archives/C0EG7JC6T/p1696331287543159
policy, err := To[v1alpha1.Policy](untyped)
policy, err := convert.To[v1alpha1.Policy](untyped)
if err != nil {
return nil, err
}
Expand All @@ -94,15 +91,3 @@ func Parse(content []byte) ([]*v1alpha1.Policy, error) {
}
return policies, nil
}

func Into[T any](untyped unstructured.Unstructured, result *T) error {
return runtime.DefaultUnstructuredConverter.FromUnstructured(untyped.UnstructuredContent(), result)
}

func To[T any](untyped unstructured.Unstructured) (*T, error) {
var result T
if err := Into(untyped, &result); err != nil {
return nil, err
}
return &result, nil
}
3 changes: 1 addition & 2 deletions testdata/payload-yaml/policy.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -12,8 +12,7 @@ spec:
context:
- name: tags
variable:
value:
Team: Kyverno
Team: Kyverno
validate:
message: Bucket `{{ resource.name }}` ({{ resource.address }}) does not have the required tags {{ to_string($tags) }}
assert:
Expand Down
6 changes: 2 additions & 4 deletions testdata/pod-all-latest/policy.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -7,11 +7,9 @@ spec:
- name: pod-no-latest
context:
- name: tag
variable:
value: latest
variable: latest
- name: tag
variable:
value: (concat(':', $tag))
variable: (concat(':', $tag))
match:
any:
- resource:
Expand Down
3 changes: 1 addition & 2 deletions testdata/pod-no-latest/policy.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -7,8 +7,7 @@ spec:
- name: pod-no-latest
context:
- name: tag
variable:
value: :latest
variable: :latest
match:
any:
- resource:
Expand Down
3 changes: 1 addition & 2 deletions testdata/tf-plan/policy.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -12,8 +12,7 @@ spec:
context:
- name: tags
variable:
value:
Team: Kyverno
Team: Kyverno
validate:
message: Bucket `{{ resource.name }}` ({{ resource.address }}) does not have the required tags {{ to_string($tags) }}
assert:
Expand Down

0 comments on commit 4f7743f

Please sign in to comment.