add pac
Some checks are pending
Pipelines as Code CI / homelab-ci CI has Started

Signed-off-by: gwg313 <gwg313@pm.me>
This commit is contained in:
gwg313 2026-06-28 17:56:19 -04:00
parent ef827b2c69
commit 145721146e
Signed by: gwg313
GPG key ID: 60FF63B4826B7400
35 changed files with 919 additions and 122 deletions

View file

@ -0,0 +1,46 @@
apiVersion: cilium.io/v2
kind: CiliumNetworkPolicy
metadata:
name: allow-forgejo-webhook-ingress
namespace: pipelines-as-code
spec:
endpointSelector:
matchLabels:
app: pipelines-as-code-controller
ingress:
- fromEndpoints:
- matchLabels:
io.kubernetes.pod.namespace: forgejo
app: forgejo
toPorts:
- ports:
- port: "8082"
protocol: TCP
egress:
- toEndpoints:
- matchLabels:
io.kubernetes.pod.namespace: kube-system
k8s-app: kube-dns
toPorts:
- ports:
- port: "53"
protocol: UDP
- port: "53"
protocol: TCP
rules:
dns:
- matchPattern: "*"
- toEndpoints:
- matchLabels:
io.kubernetes.pod.namespace: forgejo
app: forgejo
toPorts:
- ports:
- port: "3000"
protocol: TCP
- toEntities:
- kube-apiserver
toPorts:
- ports:
- port: "6443"
protocol: TCP