kyverno-reporter values.yaml📜
domain📜
Type: string
Default value
"dev.bigbang.mil"
Description: domain to use for virtual service
global.fullnameOverride📜
Type: string
Default value
"kyverno-reporter"
global.labels📜
Type: object
Default value
{}
upstream.nameOverride📜
Type: string
Default value
"kyverno-reporter"
upstream.fullnameOverride📜
Type: string
Default value
"policy-reporter"
upstream.namespaceOverride📜
Type: string
Default value
"kyverno-reporter"
upstream.imagePullSecrets[0].name📜
Type: string
Default value
"private-registry"
upstream.image.registry📜
Type: string
Default value
"registry1.dso.mil"
upstream.image.repository📜
Type: string
Default value
"ironbank/opensource/kyverno/policy-reporter"
upstream.image.pullPolicy📜
Type: string
Default value
"IfNotPresent"
upstream.image.tag📜
Type: string
Default value
"3.1.1"
upstream.image.priorityClassName📜
Type: string
Default value
""
Description: Deployment priorityClassName
upstream.ui.enabled📜
Type: bool
Default value
true
upstream.ui.image.registry📜
Type: string
Default value
"registry1.dso.mil"
upstream.ui.image.repository📜
Type: string
Default value
"ironbank/nirmata/policy-reporter/policy-reporter-ui"
upstream.ui.image.pullPolicy📜
Type: string
Default value
"IfNotPresent"
upstream.ui.image.tag📜
Type: string
Default value
"2.3.10"
upstream.ui.imagePullSecrets[0].name📜
Type: string
Default value
"private-registry"
upstream.ui.podLabels.”app.kubernetes.io/part-of”📜
Type: string
Default value
"policy-reporter"
upstream.plugin.kyverno.enabled📜
Type: bool
Default value
true
upstream.plugin.kyverno.image.registry📜
Type: string
Default value
"registry1.dso.mil"
upstream.plugin.kyverno.image.repository📜
Type: string
Default value
"ironbank/opensource/kyverno/policy-reporter/kyverno-plugin"
upstream.plugin.kyverno.image.pullPolicy📜
Type: string
Default value
"IfNotPresent"
upstream.plugin.kyverno.image.tag📜
Type: string
Default value
"0.4.4"
upstream.plugin.kyverno.imagePullSecrets[0].name📜
Type: string
Default value
"private-registry"
upstream.plugin.kyverno.podLabels.”app.kubernetes.io/part-of”📜
Type: string
Default value
"policy-reporter"
upstream.monitoring.enabled📜
Type: bool
Default value
true
Description: Enables the Prometheus Operator integration
upstream.monitoring.grafana.dashboards.enabled📜
Type: bool
Default value
true
upstream.monitoring.grafana.dashboards.namespace📜
Type: string
Default value
"monitoring"
upstream.monitoring.serviceMonitor.scheme📜
Type: string
Default value
"https"
upstream.monitoring.serviceMonitor.tlsConfig.caFile📜
Type: string
Default value
"/etc/prom-certs/root-cert.pem"
upstream.monitoring.serviceMonitor.tlsConfig.certFile📜
Type: string
Default value
"/etc/prom-certs/cert-chain.pem"
upstream.monitoring.serviceMonitor.tlsConfig.keyFile📜
Type: string
Default value
"/etc/prom-certs/key.pem"
upstream.monitoring.serviceMonitor.tlsConfig.insecureSkipVerify📜
Type: bool
Default value
true
networkPolicies.enabled📜
Type: bool
Default value
false
networkPolicies.ingressLabels.app📜
Type: string
Default value
"public-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
Default value
"ingressgateway"
networkPolicies.istioNamespaceSelector.”app.kubernetes.io/name”📜
Type: string
Default value
"istio-gateway"
networkPolicies.controlPlaneCidr📜
Type: string
Default value
"0.0.0.0/0"
networkPolicies.additionalPolicies📜
Type: list
Default value
[]
extraVolumes.volumeMounts📜
Type: list
Default value
[]
openshift📜
Type: bool
Default value
false
istio.enabled📜
Type: bool
Default value
true
istio.mtls.mode📜
Type: string
Default value
"STRICT"
istio.hardened.enabled📜
Type: bool
Default value
true
istio.hardened.outboundTrafficPolicyMode📜
Type: string
Default value
"REGISTRY_ONLY"
istio.hardened.customAuthorizationPolicies[0].name📜
Type: string
Default value
"allow-kyverno-reporter"
istio.hardened.customAuthorizationPolicies[0].enabled📜
Type: bool
Default value
true
istio.hardened.customAuthorizationPolicies[0].spec.selector.matchLabels.”app.kubernetes.io/instance”📜
Type: string
Default value
"kyverno-reporter-kyverno-reporter"
istio.hardened.customAuthorizationPolicies[0].spec.action📜
Type: string
Default value
"ALLOW"
istio.hardened.customAuthorizationPolicies[0].spec.rules[0].from[0].source.namespaces[0]📜
Type: string
Default value
"kyverno-reporter"
istio.hardened.customServiceEntries📜
Type: list
Default value
[]
istio.hardened.annotations📜
Type: object
Default value
{}
istio.kyvernoReporter.enabled📜
Type: bool
Default value
true
istio.kyvernoReporter.virtualService.enabled📜
Type: bool
Default value
true
istio.kyvernoReporter.labels📜
Type: object
Default value
{}
Description: Labels for VS
istio.kyvernoReporter.gateways📜
Type: list
Default value
- istio-system/public
Description: Gateways for VS
istio.kyvernoReporter.hosts📜
Type: list
Default value
- policyreporter.{{ .Values.domain }}
Description: Hosts for VS
bbtests.enabled📜
Type: bool
Default value
false
bbtests.cypress.artifacts📜
Type: bool
Default value
true
bbtests.cypress.envs.cypress_grafana_url📜
Type: string
Default value
"http://grafana.monitoring.svc.cluster.local"
bbtests.cypress.envs.cypress_prometheus_url📜
Type: string
Default value
"http://monitoring-kube-prometheus-prometheus.monitoring.svc.cluster.local:9090"
bbtests.cypress.envs.cypress_grafana_user📜
Type: string
Default value
"admin"
bbtests.cypress.envs.cypress_grafana_pass📜
Type: string
Default value
"prom-operator"
bbtests.cypress.envs.cypress_reporter_ns📜
Type: string
Default value
"kyverno-reporter"
bbtests.scripts.image📜
Type: string
Default value
"registry1.dso.mil/ironbank/opensource/kubernetes/kubectl:v1.32.5"
bbtests.scripts.envs.KYVERNO_REPORTER_URL📜
Type: string
Default value
"http://policy-reporter.kyverno-reporter.svc:8080"
bbtests.volumes📜
Type: list
Default value
[]