Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Normal
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Story Points:
3
Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
Support adding custom security groups in AWS
Feature Link:
OCPSTRAT-148 - Support adding custom security groups in AWS
Intelligence Requested:
Market:

Sprint:
Sprint 237, Sprint 236, Sprint 238

SFDC Cases Links:
SFDC Cases Counter:

User Story:

As a (user persona), I want to be able to:

Add custom security groups for compute nodes
Add custom security groups for control plane nodes

so that I can achieve

Control Plane and Compute nodes can support operational specific security rules. For instance: specific traffic may be required for compute vs control plane nodes.

Acceptance Criteria:

Description of criteria:

The control plane and compute machine sections of the install config accept user input as additionalSecurityGroupIDs (when using the aws platform).

(optional) Out of Scope:

Detail about what is specifically not being delivered in the story

Engineering Details:

additionalSecurityGroupIDs:
  description: AdditionalSecurityGroupIDs contains IDs of
    additional security groups for machines, where each ID
    is presented in the format sg-xxxx.
  items:
    type: string
  type: array

This requires/does not require a design proposal.

links to

openshift/installer#7151: CORS-2631: Add additional security group ids in AWS

openshift/installer#7155: OCPBUGS-11736: gcp use preconfigured private zone for installation

Assignee:: Brent Barbachem

Reporter:: Brent Barbachem

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/04/26 6:20 PM

Updated:: 2023/07/06 4:53 PM

Resolved:: 2023/07/06 4:53 PM

Details

Description

User Story:

Acceptance Criteria:

(optional) Out of Scope:

Engineering Details:

Attachments

Issue Links

Activity

People

Dates