Policy merge requestshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests2022-12-08T21:43:52Zhttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/266release notes update2022-12-08T21:43:52ZShane Hutchinsrelease notes updateM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/265Revert "Merge branch 'GONRG-6045_Investigate_NEG_annotation_in_k8s_services' ...2023-08-18T12:22:20ZVolodymyr Pienskoi [EPAM / GCP]Revert "Merge branch 'GONRG-6045_Investigate_NEG_annotation_in_k8s_services' into 'master'"This reverts merge request !264
It was decided to keep this annotation explicitly.This reverts merge request !264
It was decided to keep this annotation explicitly.M16 - Release 0.19Volodymyr Pienskoi [EPAM / GCP]Volodymyr Pienskoi [EPAM / GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/264GONRG-6045: Remove NEG annotation in service2023-08-18T12:22:22ZVolodymyr Pienskoi [EPAM / GCP]GONRG-6045: Remove NEG annotation in serviceServices created in GKE clusters 1.17.6-gke.7 and up with VPC-native traffic routing enabled are annotated automatically with `cloud.google.com/neg: '{"ingress": true}'`. This means that this annotation is not required explicitly and can...Services created in GKE clusters 1.17.6-gke.7 and up with VPC-native traffic routing enabled are annotated automatically with `cloud.google.com/neg: '{"ingress": true}'`. This means that this annotation is not required explicitly and can be removed.
More details in [GKE Load Balancing documentation](https://cloud.google.com/kubernetes-engine/docs/concepts/ingress#container-native_load_balancing).M16 - Release 0.19Volodymyr Pienskoi [EPAM / GCP]Volodymyr Pienskoi [EPAM / GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/263Fix CI/CD2023-02-06T14:39:56ZMarc Burnie [AWS]Fix CI/CDRemoving admincli test after move to separate repo. Fixing broken pipeline due to invalid reference.Removing admincli test after move to separate repo. Fixing broken pipeline due to invalid reference.M17 - Release 0.20Marc Burnie [AWS]Marc Burnie [AWS]https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/262added changes to disable the azure_code_coverage2022-11-30T16:17:44Zshivani karipeadded changes to disable the azure_code_coverage- Disabled azure_code_coverage job as it has not yet been implemented for python services. Upon implementing, it should be enabled.
- removed `/frontend/admincli/pipeline-test.yml` to fix the pipeline as these changes has been reverted ...- Disabled azure_code_coverage job as it has not yet been implemented for python services. Upon implementing, it should be enabled.
- removed `/frontend/admincli/pipeline-test.yml` to fix the pipeline as these changes has been reverted as part of [261](https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/261) after discussing with community
- issue ref: https://community.opengroup.org/osdu/platform/deployment-and-operations/infra-azure-provisioning/-/issues/244M15 - Release 0.18shivani karipeshivani karipehttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/261Remove AdminCLI from PolicyService2022-12-08T21:44:27ZShane HutchinsRemove AdminCLI from PolicyServiceAdminCLI is getting promoted to stand on it's own https://community.opengroup.org/osdu/ui/admincliAdminCLI is getting promoted to stand on it's own https://community.opengroup.org/osdu/ui/admincliM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/260updated AdminCLI2023-08-18T12:22:24ZShane Hutchinsupdated AdminCLI- Making admincli be less focused on policy with variable changes and name change
- Updated exit status for updating a legal tag that does not exist
- Updated test- Making admincli be less focused on policy with variable changes and name change
- Updated exit status for updating a legal tag that does not exist
- Updated testM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/259Adding template support for legal tags and formating updates2022-12-28T17:24:14ZShane HutchinsAdding template support for legal tags and formating updates- Adding template support for legal tags with random name support. Random should help with failing AWS tests.
- Formatting code changes- Adding template support for legal tags with random name support. Random should help with failing AWS tests.
- Formatting code changesM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/258CLI formating and autocleanup of trailing / on URLs2023-08-18T12:22:25ZShane HutchinsCLI formating and autocleanup of trailing / on URLsCleaned up formatting, increased version number and added autocleanup (for AWS CI/CD) to remove trailing / on ENV URLsCleaned up formatting, increased version number and added autocleanup (for AWS CI/CD) to remove trailing / on ENV URLsM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/257adding more setup troubleshooting for CI/CD of AdminCLI2023-08-18T12:22:27ZShane Hutchinsadding more setup troubleshooting for CI/CD of AdminCLIM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/256Translate, Logging and Correlation ID update2022-12-28T20:40:23ZShane HutchinsTranslate, Logging and Correlation ID updateFurther work on addressing https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/82 and https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/77
- Add correlation id suppor...Further work on addressing https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/82 and https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/77
- Add correlation id support to all incoming requests that require auth, not fully extended to all logs with bundles yet
- Added LOG_LEVEL_TRANSLATE support to just set LOG_LEVEL for translate
- Updated documentation
- Deprecated logging.conf (docs and code cleanup will follow in another MR)M15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/255Adding additional logging for translate and configurable logging2022-12-28T21:12:35ZShane HutchinsAdding additional logging for translate and configurable logging- Adding additional assert capture logs for translate
- Make logging level configurable, to debug in CSP
- Updating documentation
- Adding test policy and json from https://community.opengroup.org/osdu/platform/security-and-compliance/po...- Adding additional assert capture logs for translate
- Make logging level configurable, to debug in CSP
- Updating documentation
- Adding test policy and json from https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/82M15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/254Cherry-pick 'Add Azure Partition Bootstrapping to Search Policy' into release...2022-11-08T15:47:56ZDavid Diederichd.diederich@opengroup.orgCherry-pick 'Add Azure Partition Bootstrapping to Search Policy' into release/0.17**Original MR**: !251
### This MR is a Cherry Pick into a Release Branch.
After the release branch is first created, any subsequent changes use this process to update the release (often resulting in a new patch tag) without incorporati...**Original MR**: !251
### This MR is a Cherry Pick into a Release Branch.
After the release branch is first created, any subsequent changes use this process to update the release (often resulting in a new patch tag) without incorporating all changes in the default branch.
These MRs must be approved by the PMC before they are merged, since they alter the scope of the release.
To see more details about the change itself, look at the Original MR listed above.
#### Skipped Pipeline
Normally, pipelines are not executed on the cherry pick branch/MR prior to merging.
This optimization is accepted because the code was tested when it merged into the default branch, and will be tested again in the release branch prior to tagging.
However, if anybody feels that the MR requires further scrutiny -- whether because it had conflicts in the cherry-picking, it interfaces with some drastically altered logic between the branches, or any other reason -- we can run the pipeline here prior to merging.
#### If There's Reason to Run a Pipeline
If you want to see a pipeline result before this merges, first add a comment explaining why you'd like to see the pipeline results so the PMC and others know your thinking.
Then, mark the MR as a Draft MR (using the vertical ellipsis above, choose 'Mark as Draft').
This prevents the MR from being approved & merged accidentally by a busy release coordinator who didn't see your comment.
Finally, if you are a maintainer on the project, launch a pipeline on this branch.
Since this branch is a protected branch and the MR has ~no-detached-pipeline set, all integration tests will run and there's no need for any `trusted-*` branches.
[Launch a Pipeline for this Branch](https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/pipelines/new?ref=cherry-pick-for-251)M14 - Release 0.17David Diederichd.diederich@opengroup.orgDavid Diederichd.diederich@opengroup.orghttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/253Test ibm bucket2022-11-08T14:59:14ZShrikant GargTest ibm bucketM15 - Release 0.18Shrikant GargShrikant Garghttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/252[GONRG-5913] Added multipartition support2023-08-18T12:22:28ZDanylo Vanin (EPAM)[GONRG-5913] Added multipartition supportM15 - Release 0.18Danylo Vanin (EPAM)Danylo Vanin (EPAM)https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/251Add Azure Partition Bootstrapping to Search Policy2023-01-27T12:25:37ZThulasi Dass SubramanianAdd Azure Partition Bootstrapping to Search Policy- added search.rego policy for azure- added search.rego policy for azureM14 - Release 0.17Thulasi Dass SubramanianThulasi Dass Subramanianhttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/250NOTICE update and test update2023-08-18T12:22:30ZShane HutchinsNOTICE update and test update- Adding more details when tests fail for admincli
- Added command to show setup for tests usage
- Increasing load test delay by 15 seconds on AWS to allow for OPA to update policies from bundle server in integration tests
- Added initia...- Adding more details when tests fail for admincli
- Added command to show setup for tests usage
- Increasing load test delay by 15 seconds on AWS to allow for OPA to update policies from bundle server in integration tests
- Added initial GCP support for loadtest (not running yet)
- Updated NOTICEM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/249Making compile API be a full fledged citizen and CI fix for AdminCLI2022-12-29T12:34:19ZShane HutchinsMaking compile API be a full fledged citizen and CI fix for AdminCLI- Moving compile API from /diag to normal service path https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/78
- Updating AdminCLI for compile diag change
- Updating Policy tests for compile change
- Upda...- Moving compile API from /diag to normal service path https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/issues/78
- Updating AdminCLI for compile diag change
- Updating Policy tests for compile change
- Updating CI/CD for AdminCLI - Updating for AWS, Azure, GCP and IBMM15 - Release 0.18Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/248Adding keda scaling to AWS policy service2023-08-18T12:22:32ZMarc Burnie [AWS]Adding keda scaling to AWS policy serviceM15 - Release 0.18Marc Burnie [AWS]Marc Burnie [AWS]https://community.opengroup.org/osdu/platform/security-and-compliance/policy/-/merge_requests/247fixes for tests2022-12-28T21:13:53ZShane Hutchinsfixes for tests- Backing out some advanced config of tests
- Adding skip of search.rego and dataauthz.rego to allow testing against preship and other environments
- Adding additional mark in test
- Makefile updates- Backing out some advanced config of tests
- Adding skip of search.rego and dataauthz.rego to allow testing against preship and other environments
- Adding additional mark in test
- Makefile updatesM15 - Release 0.18Shane HutchinsShane Hutchins