Deprecate .Values.global.connectivity.network.allowAllEgress #294
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What does this PR do?
This PR deprecates the usage of
.Values.global.connectivity.network.allowAllEgress
.Currently the default flag value is
false
, which means thatnetwork-policies
app will get installed, which is desired. Setting this flag to true means thatnetwork-policies
app is not installed, and we shouldn't disable network-policies like that anymore.What is the effect of this change to users?
Public API (global Helm value) that can disable netowork-policies app has been deprecated and should not be used anymore.
Any background context you can provide?
Had more than few chats about network policies with KaaS folks. It all started here giantswarm/roadmap#3125.
It looks like that the transition to Cilium network policies has left quite a few leftover configs across multiple (cluster-<provider>) apps.
I will open a similar PR in cluster-aws and cluster-azure.
cluster-vsphere has a similar flag
.internal.ciliumNetworkPolicies.enabled
which is being removed here.What is needed from the reviewers?
Does this deprecation make sense? Do we still need this flag?
Should this change be mentioned in the release notes?