A simple exporter for monitoring OPA Constraint Violations in realtime.
Inspired by this blog post, from which the exporter code itself originates.
The source was written as a proof of concept. My needs dictate a production-ready product with timely updates. This fork intends to be that.
Pull requests are welcome! Please read CONTRIBUTING.md before beginning.
This repo makes heavy use of Taskfiles. Install this first.
Please check that you have the other necessary prerequisites installed by running:
task req
First create your cluster:
task kind:create
Deploy gatekeeper and observability stack:
task gk:deploy
# OR IF USING EXTERNAL DATA IN YOUR POLICIES:
task gk:deploy ED_ENABLED=true
Deploy the prometheus stack:
task prom:deploy
Build the container image:
task build
Deploy the container image:
task deploy
Run port-forwarding for the local grafana:
task prom:port-forward
At this point you may open grafana at localhost:3000 and view the OPA dashboard. You can test your policies and see the violations appear in this dashboard.