diff --git a/src/main/helm/templates/network_policy.yaml b/src/main/helm/templates/network_policy.yaml
index ee37649c47d584833c401a8f68748ba46a4d8fd2..6351f504d5f4f6bbcf507613bdf7948c80d05cb1 100644
--- a/src/main/helm/templates/network_policy.yaml
+++ b/src/main/helm/templates/network_policy.yaml
@@ -26,7 +26,7 @@ spec:
- namespaceSelector:
matchLabels:
kubernetes.io/metadata.name: {{ required "zufiManager.namespace must be set if zufiManager server is enabled" (.Values.zufiManager).namespace }}
- podSelector:
+ podSelector:
matchLabels:
component: zufi-server
ports:
@@ -34,15 +34,22 @@ spec:
protocol: TCP
{{- end }}
- to:
- - podSelector:
+ - podSelector:
matchLabels:
component: vorgang-manager
ports:
- port: 9090
protocol: TCP
+ - to:
+ - podSelector:
+ matchLabels:
+ component: administration
+ ports:
+ - port: 8080
+ protocol: TCP
# public keycloak ip
- to:
- - ipBlock:
+ - ipBlock:
cidr: {{ required "networkPolicy.ssoPublicIp must be set" (.Values.networkPolicy).ssoPublicIp }}
- to:
- namespaceSelector:
@@ -58,7 +65,7 @@ spec:
- port: 5353
protocol: TCP
- to:
- - podSelector:
+ - podSelector:
matchLabels:
component: user-manager
ports:
diff --git a/src/test/helm/network_policy_test.yaml b/src/test/helm/network_policy_test.yaml
index b1b35ecddd7608c33ed412b7a036829d4e966bb6..7316383d230c48ca4da808e413c81388b53a00b5 100644
--- a/src/test/helm/network_policy_test.yaml
+++ b/src/test/helm/network_policy_test.yaml
@@ -84,6 +84,13 @@ tests:
ports:
- port: 9090
protocol: TCP
+ - to:
+ - podSelector:
+ matchLabels:
+ component: administration
+ ports:
+ - port: 8080
+ protocol: TCP
# public keycloak ip
- to:
- ipBlock: