About Import Job

The Cloudentity platform enables DevSecOps engineers to import its configuration according to the GitOps approach, where all configuration is stored within a Git repository. There is possibility to declarativly import configuration that stores tenants, servers, clients and much more.

Learn more

To learn more about declarative configuration, see the Declarative configuration import for ACP documentation.

Prerequisites

• Kubernetes cluster v1.16+
• Helm v3.0+

Configure Import Job

There are two ways to proceed with import:

• Helm chart built-in job

  This import job is recommended to be used for the Cloudentity platform deployed on Kubernetes with Helm Charts. For other deployments using the dedicated acp-cd Helm Chart described below is more convenient.

  It will create Helm hook to create K8s job which utilizes Cloudentity import command.

  Example

  Enable migrate job and provide data sample

  importJob:
    enabled: true
    data:
      policies:
        - tenant_id: mytenant
          server_id: myworkspace
          id: block_test_policy
          policy_name: block_test
          language: cloudentity
          type: api
          validators:
            - name: "false"
  

• Dedicated acp-cd helm chart

  As the configuration for declarative import could be complex, it will make values file less readable then it should. Additionally import job is done once ACP is running so it could be considered as privisioning task, not deployment one. For those reasons, you have a choice to use dedicated acp-cd helm chart to configure your Cloudentity deployment.

  Learn more

  To learn more about acp-cd, see the Install acp-cd Helm Chart documentation.