mirror of
https://github.com/kata-containers/kata-containers.git
synced 2025-06-26 07:22:20 +00:00
ddff762782
environment variable * Set policy file via env var * Add restrictive policy file to kata-opa folder * Change restrictive policy file name * Change relative default path location * Add license headers Signed-off-by: Saul Paredes <saulparedes@microsoft.com>
44 lines
1.4 KiB
Rego
44 lines
1.4 KiB
Rego
# Copyright (c) 2023 Microsoft Corporation
|
|
#
|
|
# SPDX-License-Identifier: Apache-2.0
|
|
#
|
|
|
|
package agent_policy
|
|
|
|
default AddARPNeighborsRequest := true
|
|
default AddSwapRequest := true
|
|
default CloseStdinRequest := true
|
|
default CopyFileRequest := true
|
|
default CreateContainerRequest := true
|
|
default CreateSandboxRequest := true
|
|
default DestroySandboxRequest := true
|
|
default ExecProcessRequest := true
|
|
default GetMetricsRequest := true
|
|
default GetOOMEventRequest := true
|
|
default GuestDetailsRequest := true
|
|
default ListInterfacesRequest := true
|
|
default ListRoutesRequest := true
|
|
default MemHotplugByProbeRequest := true
|
|
default OnlineCPUMemRequest := true
|
|
default PauseContainerRequest := true
|
|
default PullImageRequest := true
|
|
default ReadStreamRequest := true
|
|
default RemoveContainerRequest := true
|
|
default RemoveStaleVirtiofsShareMountsRequest := true
|
|
default ReseedRandomDevRequest := true
|
|
default ResumeContainerRequest := true
|
|
default SetGuestDateTimeRequest := true
|
|
default SetPolicyRequest := true
|
|
default SignalProcessRequest := true
|
|
default StartContainerRequest := true
|
|
default StartTracingRequest := true
|
|
default StatsContainerRequest := true
|
|
default StopTracingRequest := true
|
|
default TtyWinResizeRequest := true
|
|
default UpdateContainerRequest := true
|
|
default UpdateEphemeralMountsRequest := true
|
|
default UpdateInterfaceRequest := true
|
|
default UpdateRoutesRequest := true
|
|
default WaitProcessRequest := true
|
|
default WriteStreamRequest := true
|