Overview

The UDS Operator manages the lifecycle of UDS custom resources and their associated Kubernetes resources. It uses Pepr to watch for changes and reconcile desired state.

Custom Resource Schemas

Package CR

Defines networking, SSO, and monitoring for workloads in a namespace. One Package per namespace.

View schema

Exemption CR

Grants policy exemptions for specific workloads by namespace and pod matcher.

View schema

Clusterconfig CR

Cluster-wide operator configuration.

View schema

Policy Engine

Pepr policies enforced by UDS Core — validating, mutating, and what each policy enforces.

View reference

JSON Schemas

For IDE validation, use the published JSON schemas:

package-v1alpha1.schema.json
exemption-v1alpha1.schema.json
clusterconfig-v1alpha1.schema.json

Cookie Settings Privacy Policy