lionsdev/btpxpress-server-k1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: NetworkPolicy egress complet (Postgres + Keycloak + Kafka si besoin)

Browse Source
This commit is contained in:
dahoud
2026-04-22 15:50:09 +00:00
parent 3f8e7c2f7c
commit 649b504959
2 changed files with 20 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
Chart.yaml
View File

@@ -14,5 +14,5 @@ sources:
- https://git.lions.dev/lionsdev/btpxpress-server-k1 - https://git.lions.dev/lionsdev/btpxpress-server-k1
dependencies: dependencies:
- name: lions-app - name: lions-app
version: "1.0.2" version: "1.0.3"
repository: "https://git.lions.dev/api/packages/lionsdev/helm" repository: "https://git.lions.dev/api/packages/lionsdev/helm"

20
values.yaml
View File

@@ -66,7 +66,25 @@ lions-app:
nginx.ingress.kubernetes.io/proxy-buffer-size: "16k" nginx.ingress.kubernetes.io/proxy-buffer-size: "16k"
networkPolicy: networkPolicy:
enabled: false # TODO: re-enable après validation egress rules enabled: true
allowIngressFrom:
- namespaceSelector:
kubernetes.io/metadata.name: ingress-nginx
- namespaceSelector:
kubernetes.io/metadata.name: monitoring
allowEgressDNS: true
allowEgressKubeAPI: true
allowEgressTo:
- namespaceSelector:
kubernetes.io/metadata.name: postgresql
ports:
- port: 5432
protocol: TCP
- namespaceSelector:
kubernetes.io/metadata.name: keycloak
ports:
- port: 8080
protocol: TCP
probes: probes:
liveness: liveness: