kemko/nomad
1
0
Fork 0
mirror of https://github.com/kemko/nomad.git synced 2026-01-05 18:05:42 +03:00
Code Issues Packages Projects Releases Wiki Activity

Make note of Sentinel standard imports

Browse Source 
> Sentinel-embedded applications can choose to whitelist or blacklist
certain standard imports. Please reference the documentation for the
Sentinel-enabled application you're using to determine if all standard
imports are available.
This commit is contained in:
Chris Arcand
2019-12-10 12:37:56 -06:00
parent 5e3efbd3ec
commit bdb70ef09c
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
website/source/guides/governance-and-policy/sentinel/sentinel-policy.html.markdown
View File

@@ -194,6 +194,12 @@ easy to read and write, while being fast to evaluate. There is no limitation on
how complex policies can be, but they are in the execution path so care should
be taken to avoid adversely impacting performance.
The Nomad integration for Sentinel implements all of the available [standard
imports](https://docs.hashicorp.com/sentinel/imports/) _except_
[`http`](https://docs.hashicorp.com/sentinel/imports/http/), which is suitable
for Sentinel integrations that are _not_ run directly in the request path (for
example, [HashiCorp Terraform](https://www.terraform.io/).
In each scope, there are different objects made available for introspection, such a job being submitted. Policies can
inspect these objects to apply fine-grained policies.