From 5c2e32383495486611c1a8976fc937129414933d Mon Sep 17 00:00:00 2001
From: Pramod <pramod.raghavendra.jayathirth@intel.com>
Date: Wed, 31 Jul 2019 14:11:31 -0700
Subject: Helm charts for Metallb

Metallb is a loadbalancer for Kubernetes

Issue-ID: MULTICLOUD-747

Signed-off-by: Pramod <pramod.raghavendra.jayathirth@intel.com>
Change-Id: If5501da743ad37c6e343a0f460f0674d1554704c
---
 .../deploy/00-init/metallb/templates/psp.yaml      | 33 ++++++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 vnfs/DAaaS/deploy/00-init/metallb/templates/psp.yaml

(limited to 'vnfs/DAaaS/deploy/00-init/metallb/templates/psp.yaml')

diff --git a/vnfs/DAaaS/deploy/00-init/metallb/templates/psp.yaml b/vnfs/DAaaS/deploy/00-init/metallb/templates/psp.yaml
new file mode 100644
index 00000000..891aeb60
--- /dev/null
+++ b/vnfs/DAaaS/deploy/00-init/metallb/templates/psp.yaml
@@ -0,0 +1,33 @@
+{{- if .Values.psp.create -}}
+
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "metallb.fullname" . }}-speaker
+  labels:
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+    chart: {{ template "metallb.chart" . }}
+    app: {{ template "metallb.name" . }}
+spec:
+  hostNetwork: true
+  hostPorts:
+  - min: 7472
+    max: 7472
+  privileged: true
+  allowPrivilegeEscalation: false
+  allowedCapabilities:
+  - 'NET_ADMIN'
+  - 'NET_RAW'
+  - 'SYS_ADMIN'
+  volumes:
+  - '*'
+  fsGroup:
+    rule: RunAsAny
+  runAsUser:
+    rule: RunAsAny
+  seLinux:
+    rule: RunAsAny
+  supplementalGroups:
+    rule: RunAsAny
+{{- end -}}
-- 
cgit 1.2.3-korg