Managing Policies Using Kubernetes Objects

With the self-hosted controller deployed on Kubernetes, you gain the possibility to manage policies using Kubernetes Objects (in addition to the usual way via aperturectl). Aperture Controller installation includes the Policy Custom Resource Definition.

Policy objects can be created manually or prepared from blueprints via the aperturectl blueprints generate command (Generating Policies and Dashboards contains an example how to run this command). Here is an example of how a Policy object could look such as (look for Generated Policy). Such a Policy can be then applied with regular kubectl apply.