History

Eric K c77c8dcf97 library policy create security groups up-front minor improvement to the library policy to improve robustness. Because actions by default execute in asynchronously, if we wait to create the security group until the security group is needed, the policy may attempt to attach to a security group before it is created. Change-Id: I0c2b1939c5b48d4576f821b482f120537c923808		2018-08-03 05:19:32 +00:00
..
disallowed_flavors	Split disallowed flavor policy into monitor and remediation	2017-07-25 19:13:50 +00:00
disallowed_images	Fix rule in permitted image library policy	2017-10-31 19:00:48 +00:00
security_groups	Fix lib policies SecurityGroups and UnsafeTraffic	2017-07-31 18:31:52 -07:00
volume_encryption	Fix syntax and reference in lib policy volume encryption	2017-07-30 21:25:06 -07:00
README.rst	Trivial: Update pypi url to new url	2018-04-21 02:58:59 +08:00
cross_project_network.yaml	Fix CrossProjectNetwork lib policy	2017-07-31 18:28:17 -07:00
network_gateway.yaml	Fix network gateway lib policy syntax	2017-07-30 21:16:38 -07:00
tag_based_network_security_zone.yaml	library policy create security groups up-front	2018-08-03 05:19:32 +00:00

Policy Library

Congress bundles a library of useful policies to help users get started.

For example, the library/volume_encryption/servers_unencrypted_volume.yaml identifies and warns on servers with unencrypted volumes attached.

../../../library/volume_encryption/servers_unencrypted_volume.yaml

The latest collection library policies can be found here: https://github.com/openstack/congress/tree/master/library

To import a library policy YAML file into Congress, use the following CLI command (python-congressclient version 1.8.0 or higher https://pypi.org/project/python-congressclient/).

$ openstack congress policy create-from-file <path-to-policy-yaml>