Skip to content

fix(): Fix variable name #218

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
aghamyan44 merged 4 commits into from
May 25, 2026
Merged

fix(): Fix variable name #218

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
c91b799
fix(): Fix variable name
May 25, 2026
4bfe552
fix(): Fix examples
May 25, 2026
3e388bb
fix(): Fix examples
May 25, 2026
1f86622
fix(): Fix examples
May 25, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions charts/base/Chart.lock
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,6 @@ dependencies:
version: 0.1.3
- name: zero-trust-mesh
repository: https://dasmeta.github.io/helm
version: 0.1.3
digest: sha256:e7ff901ebce4f9fa8dbaea29f55b6504a4c102dfab5184ab65516eb11cbbfdbb
generated: "2026-05-12T18:41:21.80521+04:00"
version: 0.1.4
digest: sha256:30c9d3bbf30655057ba330fc10b341a63636f4887de22569a71de6bba25ef21e
generated: "2026-05-25T15:23:18.894969+04:00"
2 changes: 1 addition & 1 deletion charts/base/Chart.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ dependencies:
alias: gatewayApi
condition: gatewayApi.enabled
- name: zero-trust-mesh
version: 0.1.3
version: 0.1.4
repository: "https://dasmeta.github.io/helm"
alias: zeroTrustMesh
condition: zeroTrustMesh.enabled
Binary file removed charts/base/charts/zero-trust-mesh-0.1.3.tgz
View file
Open in desktop
Binary file not shown.
Binary file added charts/base/charts/zero-trust-mesh-0.1.4.tgz
View file
Open in desktop
Binary file not shown.
19 changes: 11 additions & 8 deletions charts/base/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1026,21 +1026,24 @@ gatewayApi:
# - providers:
# - name: envoy

# zero-trust-mesh subchart (zero-trust-mesh-0.1.3). Disabled by default; enable per release.
# zero-trust-mesh subchart (zero-trust-mesh-0.1.4). Disabled by default; enable per release.
# Values under this key are passed to the subchart.
zeroTrustMesh:
enabled: false
# Keep empty by default so enabling the subchart from base does not create
# sample service or external egress allow rules.
allowTo: []
# sample ingress or egress allow rules.
allowPolicies: []

# enabled: true
# namespaceResourcesEnabled: true
# allowTo:
# - service: backend
# allowPolicies:
# - type: ingress
# service: gateway
# port: 80
# - type: egress
# service: backend
# port: 8080
# methods: ["GET", "POST"]
# paths: ["/*"]
# - hosts:
# - type: egress
# hosts:
# - google.com
# - www.google.com
24 changes: 17 additions & 7 deletions examples/base/with-zero-trust-mesh.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ service:
port: 80
protocol: TCP

# Make pod/service selectors explicit so zeroTrustMesh `workload` maps correctly.
# Make pod/service selectors explicit so zeroTrustMesh `service` maps correctly.
selectorLabelsOverride:
app: nginx-curl-test

Expand Down Expand Up @@ -53,12 +53,22 @@ gatewayApi:

zeroTrustMesh:
enabled: true
namespaceResourcesEnabled: true
allowTo:
- service: backend
namespaceResourcesEnabled: false
service: test-service
denyAll:
enabled: true
podLabels:
app: test-service
allowPolicies:
- type: ingress
service: nginx
podLabels:
app: nginx
port: 80
- type: egress
service: backend
port: 8080
methods: ["GET", "POST"]
paths: ["/*"]
- hosts:
- type: egress
hosts:
- google.com
- www.google.com
7 changes: 4 additions & 3 deletions examples/zero-trust-mesh/ip-egress.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,9 @@
# helm template ztm-ip-egress ./charts/zero-trust-mesh -n default -f ./examples/zero-trust-mesh/ip-egress.yaml
workload: frontend
service: frontend
namespaceResourcesEnabled: false
allowTo:
- ips:
allowPolicies:
- type: egress
ips:
- 192.0.2.10
- 198.51.100.0/24
ports:
Expand Down
5 changes: 2 additions & 3 deletions examples/zero-trust-mesh/service-deny-all.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,8 @@
# helm template ztm-service-deny-all ./charts/zero-trust-mesh -n default -f ./examples/zero-trust-mesh/service-deny-all.yaml
workload: frontend
service: frontend
namespaceResourcesEnabled: false
serviceDenyAll:
denyAll:
enabled: true
podLabels:
app: frontend
component: api

16 changes: 10 additions & 6 deletions examples/zero-trust-mesh/target-pod-labels.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,15 @@
# helm template ztm-target-pod-labels ./charts/zero-trust-mesh -n default -f ./examples/zero-trust-mesh/target-pod-labels.yaml
workload: frontend
service: frontend
namespaceResourcesEnabled: false
allowTo:
- service: backend
targetPodLabels:
denyAll:
enabled: true
podLabels:
app: frontend
component: web
allowPolicies:
- type: egress
service: backend
podLabels:
app: backend
component: api
port: 8080
methods: ["GET"]
paths: ["/api/*"]
4 changes: 2 additions & 2 deletions examples/zero-trust-mesh/values.namespace.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,5 +8,5 @@ namespace: default
# - default deny AuthorizationPolicy
namespaceResourcesEnabled: true

# Keep allowTo list empty so no service-level rules are created.
allowTo: []
# Keep allowPolicies empty so no service-level rules are created.
allowPolicies: []
Loading