github/polaris
1
0
Fork 0
mirror of https://github.com/FairwindsOps/polaris.git synced 2026-05-14 13:16:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
0.5.2
polaris/pkg/dashboard/helpers.go
Nick Huanca 75f70352ba Additional Pod Controller Scans (#166) 
**Changes**

- Refactored the way controllers work to be an interface
- Added configurable controllers to include in scans
- Added daemonsets, jobs and cronjobs in scans
- Added `ReplicationController` type controllers to the supported list
- Adjusted logic for failed YAML parsing to bubble up errors
- Added better logic for calculating summaries on cluster wide results
- Relocated responsibilities for counting types into validators vs spreading it around more packages
- Fixed bug where cronjob parsing was using wrong KIND
- Added fixtures for mocking new controller types
- Added example yamls to test scanning files
- Added functions to NamespacedResult(s) to reduce code complexity deep set iterations
- Refactored how results get added to namespacedresults so adding more later is easier
- Minor signature changes for interface implementing structs for controllers
2019-07-31 15:56:27 -06:00

158 lines
4.8 KiB
Go
Raw Permalink Blame History

// Copyright 2019 FairwindsOps Inc
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package dashboard
import (
"fmt"
"strings"
"github.com/fairwindsops/polaris/pkg/validator"
)
func getAllControllerResults(nr validator.NamespaceResult) []validator.ControllerResult {
return nr.GetAllControllerResults()
}
func getWarningWidth(counts validator.CountSummary, fullWidth int) uint {
return uint(float64(counts.Successes+counts.Warnings) / float64(counts.Successes+counts.Warnings+counts.Errors) * float64(fullWidth))
}
func getSuccessWidth(counts validator.CountSummary, fullWidth int) uint {
return uint(float64(counts.Successes) / float64(counts.Successes+counts.Warnings+counts.Errors) * float64(fullWidth))
}
func getGrade(counts validator.CountSummary) string {
score := counts.GetScore()
if score >= 97 {
return "A+"
} else if score >= 93 {
return "A"
} else if score >= 90 {
return "A-"
} else if score >= 87 {
return "B+"
} else if score >= 83 {
return "B"
} else if score >= 80 {
return "B-"
} else if score >= 77 {
return "C+"
} else if score >= 73 {
return "C"
} else if score >= 70 {
return "C-"
} else if score >= 67 {
return "D+"
} else if score >= 63 {
return "D"
} else if score >= 60 {
return "D-"
} else {
return "F"
}
}
func getWeatherIcon(counts validator.CountSummary) string {
score := counts.GetScore()
if score >= 90 {
return "fa-sun"
} else if score >= 80 {
return "fa-cloud-sun"
} else if score >= 70 {
return "fa-cloud"
} else if score >= 60 {
return "fa-cloud-rain"
} else {
return "fa-cloud-showers-heavy"
}
}
func getWeatherText(counts validator.CountSummary) string {
score := counts.GetScore()
if score >= 90 {
return "Smooth sailing"
} else if score >= 80 {
return "Mostly smooth sailing"
} else if score >= 70 {
return "Smooth sailing within sight"
} else if score >= 60 {
return "A little stormy"
} else {
return "Storms ahead, be careful"
}
}
func getIcon(rm validator.ResultMessage) string {
switch rm.Type {
case "success":
return "fas fa-check"
case "warning":
return "fas fa-exclamation"
default:
return "fas fa-times"
}
}
func getCategoryLink(category string) string {
return strings.Replace(strings.ToLower(category), " ", "-", -1)
}
func getCategoryInfo(category string) string {
switch category {
case "Health Checks":
return fmt.Sprintf(`
Properly configured health checks can ensure the long term availability
and reliability of your application running in Kubernetes. Polaris
validates that health checks are configured for each pod running in
your cluster.
`)
case "Images":
return fmt.Sprintf(`
Images are the backbone of any Kubernetes cluster, containing the applications
that run in each container. Polaris validates that images are configured with
specific tags instead of just pulling the latest image on each run. This is
important for the stability and security of your workloads.
`)
case "Networking":
return fmt.Sprintf(`
Networking configuration in Kubernetes can be quite powerful. Polaris
validates that pods are not configured to have access to sensitive host
networking configuration. There are certain use cases such as a container
overlay network like Calico, where this level of access is required, but
the majority of workloads running on Kubernetes should not need this.
`)
case "Resources":
return fmt.Sprintf(`
Configuring resource requests and limits for workloads running in Kubernetes
helps ensure that every container will have access to all the resources it
needs. These are also a crucial part of cluster autoscaling logic, as new
nodes are only spun up when there is insufficient capacity on existing
infrastructure for new pod(s). By default, Polaris validates that resource
requests and limits are set, it also includes optional functionality to ensure
these requests and limits fall within specified ranges.
`)
case "Security":
return fmt.Sprintf(`
Kubernetes provides a great deal of configurability when it comes to the
security of your workloads. A key principle here involves limiting the level
of access any individual workload has. Polaris has validations for a number of
best practices, mostly focused on ensuring that unnecessary access has not
been granted to an application workload.
`)
default:
return ""
}
}
Reference in New Issue View Git Blame Copy Permalink