open-policy-agent
diff --git a/‎README.md‎
Lines changed: 0 additions & 4 deletions b/‎README.md‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎constraint/Makefile‎
Lines changed: 3 additions & 2 deletions b/‎constraint/Makefile‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎constraint/config/crds/externaldata.gatekeeper.sh_providers.yaml‎
Lines changed: 1 addition & 1 deletion b/‎constraint/config/crds/externaldata.gatekeeper.sh_providers.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎constraint/config/crds/templates.gatekeeper.sh_constrainttemplates.yaml‎
Lines changed: 64 additions & 1 deletion b/‎constraint/config/crds/templates.gatekeeper.sh_constrainttemplates.yaml‎
Lines changed: 64 additions & 1 deletion
@@ -1,7 +1,3 @@
 # Open Policy Agent Frameworks
 
 Open Policy Agent is a general-purpose policy system designed to policy-enable other projects and services.  The OPA Frameworks repository defines opinionated APIs for policy that are less flexible than the OPA API but are well-suited to particular classes of use cases. For example, Role Based Acces Control (RBAC), Attribute Based Access Control, Access Control Lists (ACLs), and IAM can all be implemented on top of the OPA API and its policy language, and could each be defined as an OPA Framework.  One analogy from the web development world that seems to help people is that Frameworks are to OPA as Rails is to Ruby.
-
-## Prerequisites
-
-To clone this repository, you need [git-lfs](https://git-lfs.github.com/) installed.
@@ -73,7 +73,8 @@ generate: generate-defaults
 	# TODO: Once https://github.com/kubernetes/kubernetes/issues/101567 is fixed, update
 	# conversion-gen and get us back to running `make generate` in our CI pipeline
 	conversion-gen \
-		--input-dirs "./pkg/apis/templates/...,./pkg/apis/externaldata/..." \
+		--input-dirs "./pkg/apis/templates/v1,./pkg/apis/templates/v1beta1,./pkg/apis/templates/v1alpha1,./pkg/apis/externaldata/v1alpha1,./pkg/apis/externaldata/v1beta1" \
+		--output-base=./ \
 		--go-header-file=./hack/boilerplate.go.txt \
 		--output-file-base=zz_generated.conversion \
 		--extra-dirs=k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1
@@ -125,4 +126,4 @@ ENVTEST ?= $(LOCALBIN)/setup-envtest
 .PHONY: envtest
 envtest: $(ENVTEST) ## Download envtest-setup locally if necessary.
 $(ENVTEST): $(LOCALBIN)
-	test -s $(LOCALBIN)/setup-envtest || GOBIN=$(LOCALBIN) go install sigs.k8s.io/controller-runtime/tools/[email protected]
+	test -s $(LOCALBIN)/setup-envtest || GOBIN=$(LOCALBIN) GCO_ENABLED=0 go install sigs.k8s.io/controller-runtime/tools/[email protected]
@@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
 kind: CustomResourceDefinition
 metadata:
   annotations:
-    controller-gen.kubebuilder.io/version: v0.10.0
+    controller-gen.kubebuilder.io/version: v0.11.3
   creationTimestamp: null
   name: providers.externaldata.gatekeeper.sh
 spec:
 
@@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
 kind: CustomResourceDefinition
 metadata:
   annotations:
-    controller-gen.kubebuilder.io/version: v0.10.0
+    controller-gen.kubebuilder.io/version: v0.11.3
   creationTimestamp: null
   name: constrainttemplates.templates.gatekeeper.sh
 spec:
@@ -65,6 +65,27 @@ spec:
               targets:
                 items:
                   properties:
+                    code:
+                      description: The source code options for the constraint template.
+                        "Rego" can only be specified in one place (either here or
+                        in the "rego" field)
+                      items:
+                        properties:
+                          engine:
+                            description: 'The engine used to evaluate the code. Example:
+                              "Rego". Required.'
+                            type: string
+                          source:
+                            description: The source code for the template. Required.
+                            x-kubernetes-preserve-unknown-fields: true
+                        required:
+                        - engine
+                        - source
+                        type: object
+                      type: array
+                      x-kubernetes-list-map-keys:
+                      - engine
+                      x-kubernetes-list-type: map
                     libs:
                       items:
                         type: string
@@ -168,6 +189,27 @@ spec:
               targets:
                 items:
                   properties:
+                    code:
+                      description: The source code options for the constraint template.
+                        "Rego" can only be specified in one place (either here or
+                        in the "rego" field)
+                      items:
+                        properties:
+                          engine:
+                            description: 'The engine used to evaluate the code. Example:
+                              "Rego". Required.'
+                            type: string
+                          source:
+                            description: The source code for the template. Required.
+                            x-kubernetes-preserve-unknown-fields: true
+                        required:
+                        - engine
+                        - source
+                        type: object
+                      type: array
+                      x-kubernetes-list-map-keys:
+                      - engine
+                      x-kubernetes-list-type: map
                     libs:
                       items:
                         type: string
@@ -271,6 +313,27 @@ spec:
               targets:
                 items:
                   properties:
+                    code:
+                      description: The source code options for the constraint template.
+                        "Rego" can only be specified in one place (either here or
+                        in the "rego" field)
+                      items:
+                        properties:
+                          engine:
+                            description: 'The engine used to evaluate the code. Example:
+                              "Rego". Required.'
+                            type: string
+                          source:
+                            description: The source code for the template. Required.
+                            x-kubernetes-preserve-unknown-fields: true
+                        required:
+                        - engine
+                        - source
+                        type: object
+                      type: array
+                      x-kubernetes-list-map-keys:
+                      - engine
+                      x-kubernetes-list-type: map
                     libs:
                       items:
                         type: string