Loading…
Back To Schedule
Tuesday, May 21 • 11:55 - 12:30
Unit Testing Your Kubernetes Configurations Using Open Policy Agent - Gareth Rushgrove, Docker

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
Open Policy Agent provides a high-level declarative language to author and enforce policies on structured data, for instance Kubernetes configurations. OPA is typically used as a service to enforce authorization policy in a cluster. New configurations submitted to an API are filtered through OPA and accepted or rejected depending on the defined policy. But some types of policy violations can be caught even earlier in the development process. In this talk we’ll discuss:

- Why you might benefit from writing unit tests for your Kubernetes configuration
- Getting started with regol, OPAs declarative assertion language
- Integrating OPA-based tests with your continuous integration system
- Testing Kubernetes configurations when working with other ecosystem tools like Helm, Kustomize and Pulumi
- Extending the same approach to other structured configuration files
Speakers
avatar for Gareth Rushgrove

Gareth Rushgrove

VP Product, Snyk
Gareth Rushgrove is VP of Product at Snyk, working remotely from Cambridge, UK, helping to build interesting tools for people to better secure their applications. He has previously worked for the UK Government Digital Service focused on infrastructure, operations and information security... Read More →

KubeCon Unit Testing Your Kubernetes Configuration Using Open Policy Agent pdf
Tuesday May 21, 2019 11:55 - 12:30 CEST
Hall 8.0 B3
  CI/CD