Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Request: Ability to have dedicated policy servers for Audit Scanning #744

Open
brunorene opened this issue May 28, 2024 · 0 comments
Open

Feature Request: Ability to have dedicated policy servers for Audit Scanning #744

brunorene opened this issue May 28, 2024 · 0 comments
Labels
kind/to-be-refined

Comments

@brunorene
Copy link

brunorene commented May 28, 2024
edited
Loading

Is your feature request related to a problem?

Yes. Whenever the audit scanner starts there is a degradation of service on the validating/mutating webhooks due to the added load on the policy servers.

Solution you'd like

At this moment it is possible to have policies dedicated to webhooks, or used for webhooks and audit scan. It would be good that we could also have the ability to have them dedicated to audit scanning too. Now we have the backgroundAudit boolean field. You could introduce a foregroundWebhook (🤷🏻 ?) boolean field that would control if this policy is configured for webhooks or not - that would be true by default.

Alternatives you've considered

At the moment there are no alternatives :(

Anything else?

No response
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/to-be-refined
Projects
Kubewarden
Status: No status
Milestone
No milestone
Development

No branches or pull requests
2 participants
@flavio @brunorene