File tree Expand file tree Collapse file tree 5 files changed +622
-8
lines changed Expand file tree Collapse file tree 5 files changed +622
-8
lines changed Original file line number Diff line number Diff line change 26812681 ]
26822682 }
26832683 }
2684+ },
2685+ "networkPolicy" : {
2686+ "type" : " object"
2687+ "default" : {
2688+ "enabled" : false
2689+ },
2690+ "title" : " Configuration for NetworkPolicy"
2691+ "required" : [
2692+ " enabled"
2693+ ],
2694+ "properties" : {
2695+ "enabled" : {
2696+ "type" : " boolean"
2697+ "default" : false ,
2698+ "title" : " Enable NetworkPolicy"
2699+ "examples" : [
2700+ false ,
2701+ true
2702+ ]
2703+ },
2704+ "policyTypes" : {
2705+ "type" : " array"
2706+ "default" : [
2707+ " Ingress"
2708+ " Egress"
2709+ ],
2710+ "title" : " Types of policy to create"
2711+ "$ref" : " https://raw.githubusercontent.com/nginxinc/kubernetes-json-schema/master/v1.33.1/_definitions.json#/definitions/io.k8s.api.networking.v1.NetworkPolicySpec/properties/policyTypes"
2712+ },
2713+ "podSelector" : {
2714+ "type" : " object"
2715+ "default" : {},
2716+ "title" : " Label selector for pods (defaults to ingress controller pods)"
2717+ "$ref" : " https://raw.githubusercontent.com/nginxinc/kubernetes-json-schema/master/v1.33.1/_definitions.json#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"
2718+ },
2719+ "ingress" : {
2720+ "type" : " array"
2721+ "default" : [
2722+ {
2723+ "from" : [],
2724+ "ports" : [
2725+ {
2726+ "protocol" : " TCP"
2727+ "port" : 80
2728+ },
2729+ {
2730+ "protocol" : " TCP"
2731+ "port" : 443
2732+ }
2733+ ]
2734+ }
2735+ ],
2736+ "title" : " Ingress rules"
2737+ "$ref" : " https://raw.githubusercontent.com/nginxinc/kubernetes-json-schema/master/v1.33.1/_definitions.json#/definitions/io.k8s.api.networking.v1.NetworkPolicySpec/properties/ingress"
2738+ },
2739+ "egress" : {
2740+ "type" : " array"
2741+ "default" : [
2742+ {
2743+ "to" : [],
2744+ "ports" : [
2745+ {
2746+ "protocol" : " UDP"
2747+ "port" : 53
2748+ }
2749+ ]
2750+ }
2751+ ],
2752+ "title" : " Egress rules"
2753+ "$ref" : " https://raw.githubusercontent.com/nginxinc/kubernetes-json-schema/master/v1.33.1/_definitions.json#/definitions/io.k8s.api.networking.v1.NetworkPolicySpec/properties/egress"
2754+ }
2755+ }
26842756 }
26852757 },
26862758 "examples" : [
Original file line number Diff line number Diff line change @@ -767,22 +767,33 @@ nginxAgent:
767767 # # The name of a custom ConfigMap to use instead of the one provided by default
768768 customConfigMap : " "
769769
770- # Default values for nginx- ingress with optional NetworkPolicy
770+ # # Configure Kubernetes NetworkPolicy for the ingress controller pods
771771networkPolicy :
772- enabled : false # Set to true to enable the NetworkPolicy
773- policyTypes : # Types of policy to create
772+ # # Enable creation of a NetworkPolicy resource for the ingress controller pods
773+ enabled : false
774+
775+ # # List of NetworkPolicy types to apply (Ingress, Egress, or both)
776+ policyTypes :
774777 - Ingress
775778 - Egress
776- podSelector : {} # Label selector for pods (defaults to ingress controller pods)
777- ingress : # Ingress rules
778- - from : [] # List of peer selectors (e.g. namespaces, pods)
779+
780+ # # Label selector for pods the NetworkPolicy applies to (defaults to ingress controller pods)
781+ podSelector :
782+ matchLabels :
783+ app.kubernetes.io/name : nginx-ingress
784+
785+ # # List of ingress rules for allowed sources and ports
786+ ingress :
787+ - from : []
779788 ports :
780789 - protocol : TCP
781790 port : 80
782791 - protocol : TCP
783792 port : 443
784- egress : # Egress rules
785- - to : [] # List of peer selectors
793+
794+ # # List of egress rules for allowed destinations and ports
795+ egress :
796+ - to : []
786797 ports :
787798 - protocol : UDP
788799 port : 53
You can’t perform that action at this time.
0 commit comments