chore: update custom network properties key

defenseunicorns · Dec 9, 2024 · 1003e59 · 1003e59
1 parent b744ea7
commit 1003e59
Show file tree

Hide file tree

Showing 16 changed files with 17 additions and 17 deletions.
diff --git a/bundle/uds-bundle.yaml b/bundle/uds-bundle.yaml
@@ -37,7 +37,7 @@ packages:
       rekor:
         uds-rekor-config:
           values:
-            - path: custom
+            - path: additionalNetworkAllow
               value:
                 - direction: Egress
                   remoteNamespace: istio-tenant-gateway
@@ -66,7 +66,7 @@ packages:
       tsa:
         uds-tsa-config:
           values:
-            - path: custom
+            - path: additionalNetworkAllow
               value:
                 - direction: Egress
                   remoteNamespace: istio-tenant-gateway

diff --git a/docs/configuration.md b/docs/configuration.md
@@ -4,7 +4,7 @@ Sigstore's components in this package are configured through their upstream [Sig
 
 ## Networking
 
-Network policies are controlled via the configuration charts in accordance with the [common patterns for networking within UDS Software Factory](https://github.com/defenseunicorns/uds-software-factory/blob/main/docs/networking.md).  Sigstore primarily interacts between its own components and with OIDC provides such as `sso.<domain>` and `gitlab.<domain>`.  If you do have other use cases however you can configure additional network policies with the `custom` key for a given component.
+Network policies are controlled via the configuration charts in accordance with the [common patterns for networking within UDS Software Factory](https://github.com/defenseunicorns/uds-software-factory/blob/main/docs/networking.md).  Sigstore primarily interacts between its own components and with OIDC provides such as `sso.<domain>` and `gitlab.<domain>`.  If you do have other use cases however you can configure additional network policies with the `additionalNetworkAllow` key for a given component.
 
 ## Certificates
 

diff --git a/src/ctlog/chart/templates/uds-package.yaml b/src/ctlog/chart/templates/uds-package.yaml
@@ -38,7 +38,7 @@ spec:
           app.kubernetes.io/name: fulcio
 
       # Custom rules to allow clients to connect
-    {{- range .Values.custom }}
+    {{- range .Values.additionalNetworkAllow }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/ctlog/chart/values.yaml b/src/ctlog/chart/values.yaml
@@ -1,7 +1,7 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
 
 keyPassword: ""
 

diff --git a/src/dev-openbao/chart/templates/uds-package.yaml b/src/dev-openbao/chart/templates/uds-package.yaml
@@ -23,7 +23,7 @@ spec:
         remoteGenerated: IntraNamespace
 
       # Custom rules for unanticipated scenarios
-      {{- range .Values.custom }}
+      {{- range .Values.custadditionalNetworkAllowom }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/dev-openbao/chart/values.yaml b/src/dev-openbao/chart/values.yaml
@@ -1,4 +1,4 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
diff --git a/src/fulcio/chart/templates/uds-package.yaml b/src/fulcio/chart/templates/uds-package.yaml
@@ -72,7 +72,7 @@ spec:
         description: "UDS Tenant Gateway Services"
 
       # Custom rules to allow clients to connect
-    {{- range .Values.custom }}
+    {{- range .Values.additionalNetworkAllow }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/fulcio/chart/values.yaml b/src/fulcio/chart/values.yaml
@@ -1,4 +1,4 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
diff --git a/src/rekor/chart/templates/uds-package.yaml b/src/rekor/chart/templates/uds-package.yaml
@@ -38,7 +38,7 @@ spec:
           app.kubernetes.io/name: rekor
 
       # Custom rules to allow clients to connect
-    {{- range .Values.custom }}
+    {{- range .Values.additionalNetworkAllow }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/rekor/chart/values.yaml b/src/rekor/chart/values.yaml
@@ -1,4 +1,4 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
diff --git a/src/trillian/chart/templates/uds-package.yaml b/src/trillian/chart/templates/uds-package.yaml
@@ -27,7 +27,7 @@ spec:
           app.kubernetes.io/component: log-server
 
       # Custom rules to allow clients to connect
-    {{- range .Values.custom }}
+    {{- range .Values.additionalNetworkAllow }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/trillian/chart/values.yaml b/src/trillian/chart/values.yaml
@@ -1,4 +1,4 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
diff --git a/src/tsa/chart/templates/uds-package.yaml b/src/tsa/chart/templates/uds-package.yaml
@@ -28,7 +28,7 @@ spec:
           app.kubernetes.io/name: tsa
 
       # Custom rules to allow clients to connect
-    {{- range .Values.custom }}
+    {{- range .Values.additionalNetworkAllow }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/tsa/chart/values.yaml b/src/tsa/chart/values.yaml
@@ -1,4 +1,4 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
diff --git a/src/tuf/chart/templates/uds-package.yaml b/src/tuf/chart/templates/uds-package.yaml
@@ -26,7 +26,7 @@ spec:
         remoteGenerated: KubeAPI
 
       # Custom rules to allow clients to connect
-    {{- range .Values.custom }}
+    {{- range .Values.additionalNetworkAllow }}
       - direction: {{ .direction }}
         selector:
           {{ .selector | toYaml | nindent 10 }}

diff --git a/src/tuf/chart/values.yaml b/src/tuf/chart/values.yaml
@@ -1,7 +1,7 @@
 # Copyright 2024 Defense Unicorns
 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
 
-custom: []
+additionalNetworkAllow: []
 
 secrets:
   fulcio: |