Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deprecate .Values.global.connectivity.network.allowAllEgress #294

Merged
merged 2 commits into from
Aug 9, 2024
Merged

Deprecate .Values.global.connectivity.network.allowAllEgress #294

merged 2 commits into from
Aug 9, 2024

Conversation

nprokopic
Copy link
Contributor

What does this PR do?

This PR deprecates the usage of .Values.global.connectivity.network.allowAllEgress.

Currently the default flag value is false, which means that network-policies app will get installed, which is desired. Setting this flag to true means that network-policies app is not installed, and we shouldn't disable network-policies like that anymore.

What is the effect of this change to users?

Public API (global Helm value) that can disable netowork-policies app has been deprecated and should not be used anymore.

Any background context you can provide?

Had more than few chats about network policies with KaaS folks. It all started here giantswarm/roadmap#3125.

It looks like that the transition to Cilium network policies has left quite a few leftover configs across multiple (cluster-<provider>) apps.

I will open a similar PR in cluster-aws and cluster-azure.

cluster-vsphere has a similar flag .internal.ciliumNetworkPolicies.enabled which is being removed here.

What is needed from the reviewers?

Does this deprecation make sense? Do we still need this flag?

Should this change be mentioned in the release notes?

  • CHANGELOG.md has been updated (if it exists)

@nprokopic nprokopic requested a review from a team as a code owner August 8, 2024 14:15
@nprokopic nprokopic requested review from a team August 8, 2024 14:15
@taylorbot taylorbot mentioned this pull request Aug 8, 2024
Closed
@taylorbot
Copy link
Contributor

Hey @nprokopic, a test pull request has been created for you in the cluster-aws repo! Go to pull request giantswarm/cluster-aws#754 in order to test your cluster chart changes on AWS.

@github-actions GitHub Actions
Copy link

github-actions bot commented Aug 9, 2024

There were no differences in the rendered Helm template.

Output 
=== Differences when rendered with values file helm/cluster/ci/test-required-values.yaml ===

No difference


=== Differences when rendered with values file helm/cluster/ci/test-zot-mc-and-local-values.yaml ===

No difference


=== Differences when rendered with values file helm/cluster/ci/test-zot-mc-values.yaml ===

No difference


=== Differences when rendered with values file helm/cluster/ci/test-zot-only-local-values.yaml ===

No difference


=== No differences at all ===

@taylorbot taylorbot mentioned this pull request Aug 9, 2024
Closed
@taylorbot
Copy link
Contributor

Hey @nprokopic, a test pull request has been created for you in the cluster-aws repo! Go to pull request giantswarm/cluster-aws#756 in order to test your cluster chart changes on AWS.

@nprokopic nprokopic merged commit 7b1490d into main Aug 9, 2024
16 checks passed
@nprokopic nprokopic deleted the deprecate-allowAllEgress-flag branch August 9, 2024 08:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@weseven weseven weseven approved these changes

@fiunchinho fiunchinho fiunchinho approved these changes

@T-Kukawka T-Kukawka T-Kukawka approved these changes

@vxav vxav vxav approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@nprokopic @taylorbot @weseven @fiunchinho @T-Kukawka @vxav