argo-cd/resource_customizations/policy.open-cluster-management.io/Policy/testdata/disabled_root.yaml

apiVersion: policy.open-cluster-management.io/v1
kind: Policy
metadata:
  generation: 4
  name: argo-example
  namespace: open-cluster-management-global-set
spec:
  disabled: true
  policy-templates:
    - objectDefinition:
        apiVersion: policy.open-cluster-management.io/v1
        kind: ConfigurationPolicy
        metadata:
          name: example-namespace
        spec:
          object-templates:
            - complianceType: musthave
              objectDefinition:
                apiVersion: v1
                kind: Namespace
                metadata:
                  name: example
          remediationAction: inform
          severity: low
    - objectDefinition:
        apiVersion: policy.open-cluster-management.io/v1
        kind: ConfigurationPolicy
        metadata:
          name: example-pod
        spec:
          namespaceSelector:
            exclude:
              - kube-*
            include:
              - default
          object-templates:
            - complianceType: musthave
              objectDefinition:
                apiVersion: v1
                kind: Pod
                metadata:
                  name: foobar
                spec:
                  containers:
                    - image: 'registry.redhat.io/rhel9/httpd-24:latest'
                      name: httpd
                      securityContext:
                        allowPrivilegeEscalation: false
                        capabilities:
                          drop:
                            - ALL
                        privileged: false
                        runAsNonRoot: true
          remediationAction: inform
          severity: low
  remediationAction: inform
status:
  placement:
    - placement: argo-example-placement
      placementBinding: argo-example-placement
fix(health): add logic for disabled policies (#21347) Signed-off-by: Dale Haiducek <19750917+dhaiducek@users.noreply.github.com> Signed-off-by: Alexandre Gaudreault <alexandre_gaudreault@intuit.com> Co-authored-by: Alexandre Gaudreault <alexandre_gaudreault@intuit.com> 2025-09-12 22:09:30 +00:00			`apiVersion: policy.open-cluster-management.io/v1`
			`kind: Policy`
			`metadata:`
			`generation: 4`
			`name: argo-example`
			`namespace: open-cluster-management-global-set`
			`spec:`
			`disabled: true`
			`policy-templates:`
			`- objectDefinition:`
			`apiVersion: policy.open-cluster-management.io/v1`
			`kind: ConfigurationPolicy`
			`metadata:`
			`name: example-namespace`
			`spec:`
			`object-templates:`
			`- complianceType: musthave`
			`objectDefinition:`
			`apiVersion: v1`
			`kind: Namespace`
			`metadata:`
			`name: example`
			`remediationAction: inform`
			`severity: low`
			`- objectDefinition:`
			`apiVersion: policy.open-cluster-management.io/v1`
			`kind: ConfigurationPolicy`
			`metadata:`
			`name: example-pod`
			`spec:`
			`namespaceSelector:`
			`exclude:`
			`- kube-*`
			`include:`
			`- default`
			`object-templates:`
			`- complianceType: musthave`
			`objectDefinition:`
			`apiVersion: v1`
			`kind: Pod`
			`metadata:`
			`name: foobar`
			`spec:`
			`containers:`
			`- image: 'registry.redhat.io/rhel9/httpd-24:latest'`
			`name: httpd`
			`securityContext:`
			`allowPrivilegeEscalation: false`
			`capabilities:`
			`drop:`
			`- ALL`
			`privileged: false`
			`runAsNonRoot: true`
			`remediationAction: inform`
			`severity: low`
			`remediationAction: inform`
			`status:`
			`placement:`
			`- placement: argo-example-placement`
			`placementBinding: argo-example-placement`