Uploaded image for project: 'OpenShift Cloud Credential Operator'
  1. OpenShift Cloud Credential Operator
  2. CCO-681

Create network policies for CCO

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Done
    • Icon: Critical Critical
    • None
    • None
    • Product / Portfolio Work
    • False
    • Hide

      None

      Show
      None
    • False
    • None
    • None
    • None
    • None

      As a user, I want CCO to configure its network policies so I can enable a default deny all rule.

      Add network policies that enable required access to and from each CCO pod including the operator and pod identity webhooks.

      service/controller-manager-service: 443
      service/cco-metrics: metrics/8443
      service/pod-identity-webhook: 9443

      pod/kube-rbac-proxy: metrics/8443
      pod/cloud-credential-operator: none
      pod/pod-identity-webhook: 443

              jstuever@redhat.com Jeremiah Stuever
              jstuever@redhat.com Jeremiah Stuever
              None
              None
              Mingxia Huang Mingxia Huang
              None
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: