Gatekeeper operator bundle

v3.20.0-1763478841

v3.20

stream

v3.20.0

Overview

Description

The Gatekeeper Operator installs and configures Open Policy Agent Gatekeeper. The operator is supported through a Red Hat Advanced Cluster Management subscription.

Open Policy Agent Gatekeeper is a validating and mutating admission controller webhook, which are run whenever a resource is created, updated, or deleted. The webhooks enforce CRD-based policies run by Open Policy Agent, a policy engine for cloud native environments. In addition to the admission scenario, the audit functionality of Gatekeeper allows administrators to see what resources are currently violating any given policy.

Release Notes

v3.20

Operator updates: New fields mutatingWebhookConfig, timeoutSeconds, and rules are added to the operator configuration. mutatingWebhookConfig configures overrides and configuration specific to the mutating webhook. Fields specific to the mutating webhook in the webhook field are deprecated as a result. timeoutSeconds configures the timeout for the webhooks. rules configures the requests that are handled by the webhook and overrides anything set in operations.

Gatekeeper updates: v3.20 release notes

v3.19

Operator updates: None

Gatekeeper updates: v3.19 release notes

v3.18

Operator updates: None

Gatekeeper updates: v3.18 release notes

Related images:

Support & Troubleshooting

The Gatekeeper Operator is supported through a Red Hat Advanced Cluster Management subscription.

The Open Policy Agent Gatekeeper community collaborates on Slack #opa-gatekeeper. Please report issues on the GitHub repository open-policy-agent/gatekeeper.

Documentation

Gatekeeper Operator Documentation

Open Policy Agent Gatekeeper documentation

Products using this container

Gatekeeper operator

Enforces policy-based governance using Open Policy Agent (OPA) and Kubernetes admission controllers.

Containerized application

Security

Technical information

General information

The following information was extracted from the containerfile and other sources.

Summary	Red Hat Gatekeeper Operator
Description	The Gatekeeper Operator installs and configures Open Policy Agent Gatekeeper.
Provider	Red Hat
Maintainer	acm-component-maintainers@redhat.com

Technical information

The following information was extracted from the containerfile and other sources.

Repository name	gatekeeper/gatekeeper-operator-bundle
Image version	v3.20.0
Architecture	amd64

Packages

Containerfile

Get this image

Terms & conditionsBefore downloading or using this Container, you must agree to the Red Hat subscription agreement located at redhat.com/licenses. If you do not agree with these terms, do not download or use the Container. If you have an existing Red Hat Enterprise Agreement (or other negotiated agreement with Red Hat) with terms that govern subscription services associated with Containers, then your existing agreement will control.

Using registry tokens

Registry

Repository

Image Digest

Use the following instructions to get images from a Red Hat container registry using registry service account tokens. You will need to create a registry service account to use prior to completing any of the following tasks.

Using OpenShift secrets

First, you will need to add a reference to the appropriate secret and repository to your Kubernetes pod configuration via an imagePullSecrets field.

Then, use the following from the command line or from the OpenShift Dashboard GUI interface.

Using podman login

Use the following command(s) from a system with podman installed

Using docker login

Use the following command(s) from a system with docker service installed and running

Registry

Repository

Image Digest

Use the following instructions to get images from a Red Hat container registry using your Red Hat login.

Using OpenShift

For best practices, it is recommended to use registry tokens when pulling content for OpenShift deployments.

Using podman login

Use the following command(s) from a system with podman installed

Using docker login

Use the following command(s) from a system with docker service installed and running

Get the source

Registry

Repository

Image Digest

Getting source containers

Source code is available for all Red Hat UBI-based images in the form of downloadable containers. Here are a few things you should know about Red Hat source containers.

Although they are packaged as containers, source containers cannot be run. So instead of using podman pull to get them to your system, use the skopeo command.
Source containers are named based on the binary containers they represent. So, for example, to get the source container for a particular standard RHEL UBI 8 container (registry.access.redhat.com/ubi8/ubi8.1-397) you simply append -source to get the source code container for that image (registry.access.redhat.com/ubi8/ubi8.1-397-source).
The skopeo command is recommended for getting source containers. With skopeo, you copy a source container to a directory on your local system for you to examine.
Once a source container is copied to a local directory, you can use a combination of tar,gzip, and rpm commands to work with that content.

Step one

Use skopeo to copy the source image to a local directory

Step two

Inspect the image

Step three

Untar the contents

Step four

Begin examining and using the content.

Description

Release Notes

v3.20

v3.19

v3.18

Related images:

Support & Troubleshooting

Documentation

Products using this container

Gatekeeper operator

Published

Release category

Digest

General information

Technical information

Using OpenShift secrets

Using podman login

Using docker login

Using OpenShift

Using podman login

Using docker login

Getting source containers

Step one

Step two

Step three

Step four

Platforms

Products & services

Try, buy, sell

Help

About Red Hat Ecosystem Catalog

Red Hat legal and privacy links

Red Hat legal and privacy links

Gatekeeper operator bundle

Description

Release Notes

v3.20

v3.19

v3.18

Related images:

Support & Troubleshooting

Documentation

Products using this container

Gatekeeper operator

Published

Release category

Digest

General information

Technical information

Using OpenShift secrets

Using podman login

Using docker login

Using OpenShift

Using podman login

Using docker login

Getting source containers

Step one

Step two

Step three

Step four