~tomleb/mkproof-proxy-webhook

Use kubectl instead of oc in the example
Dont use reflection for basic string equality test
Add tests for mutator handler

refs

master
browse  log 

clone

read-only
https://git.sr.ht/~tomleb/mkproof-proxy-webhook
read/write
git@git.sr.ht:~tomleb/mkproof-proxy-webhook

You can also use your local clone with git send-email.

#mkproof-proxy-webhook

A mutating admission webhook that injects mkproof-proxy to protect an endpoint using proof of work.

#Deployment

We suggest using deploying the admission webhook with the deployment configuration in config. This uses kustomize to build the yaml resources.

Currently, we only support using self-signed certificates for the webhook with the kustomize configs. For this reason, you must first generate a self-signed certificate and move the key to config/secret/tls.key and the cert to config/secret/tls.crt. This can also be done using the contrib/generate-certs.sh script. Note that the script requires having cfssl installed.

./contrib/generate-certs.sh config/secret

You can then deploy the webhook with the following command:

kustomize build config/default | kubectl apply -f -

#License

For the code, see LICENSE.