Erik Brakkee
cd4023f5ce
But... need to do major rework only a single networkauthentication may be set the required authenticationRefs in the authorization policy are anded together so we should use a separate authorization policy for each communication link
17 lines
426 B
YAML
17 lines
426 B
YAML
{{- range $port := .Ports }}
|
|
{{- if or (eq $port.Protocol "TCP") (not $port.Protocol) }}
|
|
---
|
|
apiVersion: policy.linkerd.io/v1beta3
|
|
kind: Server
|
|
metadata:
|
|
name: {{ $.Name }}-p{{ $port.Port }}
|
|
namespace: {{ $.Namespace.Name }}
|
|
spec:
|
|
podSelector:
|
|
matchLabels: {{ $.MatchLabels | toJson }}
|
|
matchExpressions: {{ $.MatchExpressions | toJson }}
|
|
port: {{ $port.Port }}
|
|
#proxyProtocol: "HTTP/2"
|
|
{{- end }}
|
|
{{- end }}
|