cartyc/OPA Gatekeeper Duplicate Ingress

## OPA Gatekeeper Duplicate Ingress
apiVersion: templates.gatekeeper.sh/v1alpha1
kind: ConstraintTemplate
metadata:
  name: ingressdupes
spec:
  crd:
    spec:
      names:
        kind: IngressDupe
        listKind: IngressDupeList
        plural: ingressdupes
        singular: ingressdupes
  targets:
    - target: admission.k8s.gatekeeper.sh
      rego: |
        package kubernetes.admission

        deny[{"msg":msg}] {
          host := input.review.object.spec.rules[_].host
          ingress := data.inventory.namespace[other_ns]["extensions"].Ingress[other_ingress]
          other_ns != input.review.namespace
          ingress.spec.rules[_].host == host
          msg := sprintf("invalid ingress host <%q> (conflicts with <%v>/<%v>)", [host, other_ns, other_ingress])
        }
	apiVersion: templates.gatekeeper.sh/v1alpha1
	kind: ConstraintTemplate
	metadata:
	name: ingressdupes
	spec:
	crd:
	spec:
	names:
	kind: IngressDupe
	listKind: IngressDupeList
	plural: ingressdupes
	singular: ingressdupes
	targets:
	- target: admission.k8s.gatekeeper.sh
	rego: \|
	package kubernetes.admission

	deny[{"msg":msg}] {
	host := input.review.object.spec.rules[_].host
	ingress := data.inventory.namespace[other_ns]["extensions"].Ingress[other_ingress]
	other_ns != input.review.namespace
	ingress.spec.rules[_].host == host
	msg := sprintf("invalid ingress host <%q> (conflicts with <%v>/<%v>)", [host, other_ns, other_ingress])
	}