metal-stack / gardener-extension-provider-metal

Implementation of the gardener-extension-controller for metal-stack
MIT License
24 stars 11 forks source link

Implement isolated cluster API #361

Closed vknabel closed 7 months ago

vknabel commented 8 months ago

Attention: must be merged into #355 isolated-clusters

Implements #356 and https://github.com/metal-stack/gardener-extension-provider-metal/issues/357

Todos:

majst01 commented 8 months ago

This CWNP must also be adopted:

k --context inttest0 -n firewall get cwnp allow-to-vpn -o yaml
apiVersion: metal-stack.io/v1
kind: ClusterwideNetworkPolicy
metadata:
  annotations:
    resources.gardener.cloud/description: |-
      DO NOT EDIT - This resource is managed by gardener-resource-manager.
      Any modifications are discarded and the resource is returned to the original state.
    resources.gardener.cloud/origin: shoot--test--fra-equ01-8fef639c-bbe4-4c6f-9656-617dc4a4efd8-gardener-soil-test:shoot--pbs4kr--inttest0/extension-controlplane-shoot
  creationTimestamp: "2023-12-07T10:44:09Z"
  generation: 1
  labels:
    resources.gardener.cloud/managed-by: gardener
    shoot.gardener.cloud/no-cleanup: "true"
  name: allow-to-vpn
  namespace: firewall
  resourceVersion: "1430"
  uid: a7c1ceac-12b5-4538-9d82-3b122ef3dfc7
spec:
  egress:
  - ports:
    - port: 4314
      protocol: UDP
    - port: 4314
      protocol: TCP
    to:
    - cidr: 0.0.0.0/0
status: {}