[helm/charts] [stable/openvpn] Add PodSecurityPolicy to OpenVPN (#23104)

From: notifications@github.com
Domain: IP info github.com
MX-server: IP info out-24.smtp.github.com
Size: 4639 Bytes
Create: 2020-07-07
Update: 2020-07-07
Score: 0
Safe: Yes

Outbound domains: github.com |

Signed-off-by: Gorka Maiztegi gmaiztegi@reviewpro.com

Is this a new chart


What this PR does / why we need it:

OpenVPN needs to run in privileged mode in order to work. If your cluster's default PodSecurityPolicy does not allow this (which it shouldn't!) then it won't work. This PR adds the PSP and the RBAC stuff to make this work.

Which issue this PR fixes

Not applicable.


[Place an '[x]' (no spaces) in all applicable fields. Please remove unrelated fields.]

  • DCO signed
  • Chart Version bumped
  • Variables are documented in the README.md
  • Title of the PR starts with chart name (e.g. [stable/mychartname])

You can view, comment on, or merge this pull request online at:


Commit Summary

  • Add PodSecurityPolicy to OpenVPN

File Changes

  • M stable/openvpn/Chart.yaml (2)
  • M stable/openvpn/README.md (6)
  • M stable/openvpn/templates/_helpers.tpl (11)
  • M stable/openvpn/templates/openvpn-deployment.yaml (1)
  • A stable/openvpn/templates/openvpn-psp.yaml (49)
  • A stable/openvpn/templates/openvpn-role.yaml (20)
  • A stable/openvpn/templates/openvpn-rolebinding.yaml (19)
  • A stable/openvpn/templates/openvpn-serviceaccount.yaml (15)
  • M stable/openvpn/values.yaml (11)

Patch Links:

  • https://github.com/helm/charts/pull/23104.patch
  • https://github.com/helm/charts/pull/23104.diff

You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or unsubscribe.

Want to protect your real email from messages like this? Use TempM email and be more secure on the internet.