whitelisting suggestion #5
Comments
|
Are you thinking of a scenario where all deployments within the whitelisted namespaces will be enrolled into Kube monkey? We'd have to figure out a way to specify parameters like MTBF etc. in this case. An alternative way to do that would be instead of opting in deployments, maybe there could be an option to opt-in namespaces instead (by adding the kubernetes labels to them). In either case, this isn't something that is currently supported. I'll try to take a look, but PRs are also welcome. |
|
We too had discussed the preference of configuring |
|
@EIrwin I'm all for having an opt-in option. I just haven't figured out the best way to handle configurations like MTBF etc in this case. Perhaps we could use a system where you globally set the mode to I'll take a look at this but if you do end up forking and implementing this, do ping me and I'll take a look at it. |
|
@asobti that was similar to the approach I have started implementing. The first iteration could simply use a |
|
Sounds good. I'll hold off on working on this for now in that case so we're not repeating the same work. |
|
Facing the same use-case. We have a shared cluster and there's no way for us to know all the namespaces to blacklist. Maybe another idea is to have kube-monkey run per namespace? Or limit via RBAC rules? |
Is there a possibility to add a whitelist to the kube monkey configuration? It could be exclusive with blacklisting. You either do the first or the second one. I find whitelisting better to deal with if you manage a lot of namespaces.
Thank you
The text was updated successfully, but these errors were encountered: