OPA policies for managing Kubernetes
-
Updated
May 21, 2024 - Open Policy Agent
The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
What is OPA
OPA policies for managing Kubernetes
open policy agent for dockerfile
Silly little example how you could delegate policy decisions to ChatGPT.
Integrate OPA-Gatekeeper with Kubernetes to demo powerful rego rules.
Role-based access control (RBAC) with the Open Policy Agent.
A collection of various Rego utility functions
singularity container for mpi, support infiniband, gpu, etc.
Lab tuning Rego evaluation time from 17 seconds to 1 second
Keycloak + OpenID Connect + JWT + Open Policy Agent (DEMO)
Go microservice using Kubernetes, Vault, OpenTelemetry, Elasticsearch(Geolocation), PostgreSQL, OPA.
OPA bundle provider and consumer application with OPA Side car.