From 06bc3205b77562c07f888878421a36f707553098 Mon Sep 17 00:00:00 2001
From: sluetze <13255307+sluetze@users.noreply.github.com>
Date: Wed, 16 Apr 2025 21:00:47 +0200
Subject: [PATCH] add variable to network providers and add cilium per default

---
 .../configure_network_policies/rule.yml       |  5 ++---
 .../var_configure_network_policies_regex.var  | 20 +++++++++++++++++++
 2 files changed, 22 insertions(+), 3 deletions(-)
 create mode 100644 applications/openshift/networking/var_configure_network_policies_regex.var

diff --git a/applications/openshift/networking/configure_network_policies/rule.yml b/applications/openshift/networking/configure_network_policies/rule.yml
index e30efa56270b..d01c98935abb 100644
--- a/applications/openshift/networking/configure_network_policies/rule.yml
+++ b/applications/openshift/networking/configure_network_policies/rule.yml
@@ -50,6 +50,5 @@ template:
     yamlpath: "[:]"
     check_existence: "any_exist"
     entity_check: "all"
-    values:
-      - value: "OpenShiftSDN|OVN|Calico"
-        operation: "pattern match"
+    regex_data: "true"
+    xccdf_variable: var_configure_network_policies_regex
diff --git a/applications/openshift/networking/var_configure_network_policies_regex.var b/applications/openshift/networking/var_configure_network_policies_regex.var
new file mode 100644
index 000000000000..d899bd0c4527
--- /dev/null
+++ b/applications/openshift/networking/var_configure_network_policies_regex.var
@@ -0,0 +1,20 @@
+documentation_complete: true
+
+title: 'Network Provider which provide Support for Network Policies'
+
+description: |-
+    Regular expression explicitly describing
+    which CNI plugins provide the cluster with the
+    network policies feature/capability
+    You can chose to either allow multiple providers
+    by adding them like "Provider1|Provider2" or only
+    allow one, by overwriting the value
+
+type: string
+
+operator: equals
+
+interactive: true
+
+options:
+  default: "OpenShiftSDN|OVN|Calico|Cilium"