Skip to content

Commit

Permalink
Merge branch 'release/v1.3.0' into main
Browse files Browse the repository at this point in the history
  • Loading branch information
jelemux authored and cesmarvin committed Dec 5, 2024
2 parents 74421e1 + fdce32d commit ef735bd
Show file tree
Hide file tree
Showing 6 changed files with 25 additions and 4 deletions.
4 changes: 4 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0

## [Unreleased]

## [v1.3.0] - 2024-12-05
### Added
- [#40] Add NetworkPolicy to deny all ingress traffic

## [v1.2.0] - 2024-11-29
### Changed
- [#37] Refactor rbac permissions to be more clear and better match the use cases
Expand Down
2 changes: 1 addition & 1 deletion Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,7 @@ RUN make compile-generic
FROM gcr.io/distroless/static:nonroot
LABEL maintainer="[email protected]" \
NAME="k8s-backup-operator" \
VERSION="1.2.0"
VERSION="1.3.0"

WORKDIR /
COPY --from=builder /workspace/target/k8s-backup-operator .
Expand Down
2 changes: 1 addition & 1 deletion Makefile
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
# Set these to the desired values
ARTIFACT_ID=k8s-backup-operator
VERSION=1.2.0
VERSION=1.3.0
IMAGE=cloudogu/${ARTIFACT_ID}:${VERSION}
GOTAG?=1.23
LINT_VERSION=v1.61.0
Expand Down
2 changes: 1 addition & 1 deletion k8s/helm/component-patch-tpl.yaml
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
apiVersion: v1
values:
images:
backupOperator: cloudogu/k8s-backup-operator:1.2.0
backupOperator: cloudogu/k8s-backup-operator:1.3.0
kubeRbacProxy: gcr.io/kubebuilder/kube-rbac-proxy:v0.14.1
patches:
values.yaml:
Expand Down
15 changes: 15 additions & 0 deletions k8s/helm/templates/network-policy-deny-all.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
{{- if .Values.global.networkPolicies.enabled }}
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: backup-operator-deny-ingress
namespace: {{ .Release.Namespace }}
labels:
{{- include "k8s-backup-operator.labels" . | nindent 4 }}
spec:
podSelector:
matchLabels:
app.kubernetes.io/name: k8s-backup-operator
policyTypes:
- Ingress
{{- end }}
4 changes: 3 additions & 1 deletion k8s/helm/values.yaml
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
global:
imagePullSecrets:
- name: "ces-container-registries"
networkPolicies:
enabled: true
retention:
strategy: keepAll
garbageCollectionCron: "0 * * * *"
Expand All @@ -23,7 +25,7 @@ manager:
image:
registry: docker.io
repository: cloudogu/k8s-backup-operator
tag: 1.2.0
tag: 1.3.0
imagePullPolicy: IfNotPresent
resources:
limits:
Expand Down

0 comments on commit ef735bd

Please sign in to comment.