From 2d4aded017f0ac41fcee3e4d7591e64c82ba2dfd Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Fri, 28 Jan 2022 22:31:15 +0100
Subject: [PATCH] feat(network-policies): Add shared network policy for testing

---
 apps/base/goharbor/kustomization.yaml          |  2 ++
 apps/base/goharbor/networkpolicy.yaml          |  5 -----
 shared/networkpolicies/allow-from-ingress.yaml | 11 +++++++++++
 3 files changed, 13 insertions(+), 5 deletions(-)
 create mode 100644 shared/networkpolicies/allow-from-ingress.yaml

diff --git a/apps/base/goharbor/kustomization.yaml b/apps/base/goharbor/kustomization.yaml
index bc535bd42..ae068bbaa 100644
--- a/apps/base/goharbor/kustomization.yaml
+++ b/apps/base/goharbor/kustomization.yaml
@@ -5,4 +5,6 @@ resources:
   - namespace.yaml
   - repository.yaml
   - release.yaml
+  - ../../../shared/networkpolicies/allow-from-ingress.yaml
+patchesStrategicMerge:
   - networkpolicy.yaml
diff --git a/apps/base/goharbor/networkpolicy.yaml b/apps/base/goharbor/networkpolicy.yaml
index 80ce4e294..4acedd3fa 100644
--- a/apps/base/goharbor/networkpolicy.yaml
+++ b/apps/base/goharbor/networkpolicy.yaml
@@ -7,8 +7,3 @@ spec:
   podSelector:
     matchLabels:
       app: harbor
-  ingress:
-  - from:
-    - namespaceSelector:
-        matchLabels:
-          ingress.shivering-isles.com/network-access-required: "true"
diff --git a/shared/networkpolicies/allow-from-ingress.yaml b/shared/networkpolicies/allow-from-ingress.yaml
new file mode 100644
index 000000000..b589ded46
--- /dev/null
+++ b/shared/networkpolicies/allow-from-ingress.yaml
@@ -0,0 +1,11 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: allow-ingress
+spec:
+  ingress:
+  - from:
+    - namespaceSelector:
+        matchLabels:
+          ingress.shivering-isles.com/network-access-required: "true"
-- 
GitLab