Network Policy Support
Financial Services Workbench as well as the deployed solutions designed and implemented with Financial Services Workbench now support Network Policy to limit traffic to deployed solutions and designer/hub namespace services.
Enable/Disable Network Policy Support
By default Network Policy is enabled for all Solution Hub namespace projects and all deployed namespace solutions.
There are two options for disabling Network Policies.
- Disable Network Policy for all deployed solutions namespaces
- Disable Network Policy for the whole system (Hub namespace and deployed solution namespace) during installation process
Note: To support Network Policy we have added a label for "Default" namespace. Please go through below link to know more.
Disable Network Policy support for all deployed solution namespaces
This will disable network policy for solution namespaces but it won't disable network policy for the Solution Hub namespace.
- Open OpenShift admin console
- Navigate to: Workloads>Config Maps and select the Hub namespace as a project
- Search and select k5-project-operator-application config map
- Find the property de.knowis.cp.operator.config.default.networkPolicy.enabled and change the value to
'false'
Disable Network Policy support globally
If global Network Policy is enabled/disabled during the installation process, then it enables/disables it for all deployed solutions and Solution Hub namespace projects.
Follow below link to enable/disable Network Policy using the solution-hub-values.yaml file property (global.networkPolicy.enabled
).