Closed davivcgarcia closed 1 month ago
Thanks for sharing the context. We are evaluating this support for Admin policies in response to this request - https://github.com/aws/containers-roadmap/issues/2243
Closing this in favor of existing container roadmap tracking issue
What would you like to be added:
SIG-Networking is working on new user stories, focused on new CRDs:
It would be nice to understand if these capabilities are in the roadmap of AWSVPC CNI and Network Policy Agent.
More details at:
Why is this needed:
Currently the NetworkPolicy APIs requires a combination of RBAC + Admission Controllers (ex.: OPA-Gatekeeper, Kyverno) to enforce cluster-level policies. Having these APIs supported natively at AWS-VPC CNI would reduce complexity of the overall cluster and dependency on third-party components.