Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

coreos-cincinnati: allow crates.io in egress policy (cont)

Browse source 
crates.io registry is organized in (and redirects to) separate
subdomains for cached static artifacts.
This continues crates.io white-listing effort, covering
static.crates.io too.

Follow-Up: https://infrastructure.fedoraproject.org/cgit/ansible.git/commit/roles/openshift-apps/coreos-cincinnati/templates/egresspolicy.yml?id=48a9d409a4ad1e5637ef7453dbac767c28e08f04
This commit is contained in:
Luca Bruno 2019-06-21 09:45:00 +00:00
parent 48a9d409a4
commit a0977162b3
No known key found for this signature in database
GPG key ID: A9834A2252078E4E
1 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
roles/openshift-apps/coreos-cincinnati/templates/egresspolicy.yml
View file

@ -14,6 +14,9 @@ spec:
- type: Allow - type: Allow
to: to:
dnsName: crates.io dnsName: crates.io
- type: Allow
to:
dnsName: static.crates.io
- type: Allow - type: Allow
to: to:
dnsName: mirrors.fedoraproject.org dnsName: mirrors.fedoraproject.org