From 3485cf5c329b2e48689ac9888ae1e7f8c4b96730 Mon Sep 17 00:00:00 2001
From: OZGCloud <ozgcloud@mgm-tp.com>
Date: Mon, 31 Jul 2023 15:56:03 +0200
Subject: [PATCH] ozg-3880 add bayernid egress rule

---
 src/main/helm/templates/network_policy.yaml |  5 +++++
 src/test/helm/network_policy_test.yaml      | 14 ++++++++++++++
 2 files changed, 19 insertions(+)

diff --git a/src/main/helm/templates/network_policy.yaml b/src/main/helm/templates/network_policy.yaml
index 84d32e47e..5cee33420 100644
--- a/src/main/helm/templates/network_policy.yaml
+++ b/src/main/helm/templates/network_policy.yaml
@@ -84,4 +84,9 @@ spec:
     - ipBlock:
         cidr:  {{ required "kopProxyApi.cidr muss angegeben sein" (.Values.kopProxyApi).cidr }}
 {{- end }}
+{{- if ((.Values.ozgcloud).bayernid).server }}
+  - to:
+    - ipBlock:
+        cidr:  {{ required "ozgcloud.bayernid.cidr muss angegeben sein" ((.Values.ozgcloud).bayernid).cidr }}
+{{- end }}
 {{- end }}
\ No newline at end of file
diff --git a/src/test/helm/network_policy_test.yaml b/src/test/helm/network_policy_test.yaml
index 55f693c76..ca1e231f2 100644
--- a/src/test/helm/network_policy_test.yaml
+++ b/src/test/helm/network_policy_test.yaml
@@ -134,6 +134,20 @@ tests:
               - ipBlock:
                   cidr: 1.2.3.4/1
 
+  - it: test bayernid egress
+    set:
+      ozgcloud:
+        bayernid:
+          server: https://bayernid.test
+          cidr: 2.3.4.5/1
+    asserts:
+      - contains:
+          path: spec.egress
+          content:
+            to:
+              - ipBlock:
+                  cidr: 2.3.4.5/1
+
   - it: test network policy disabled
     set:
       networkPolicy:
-- 
GitLab