diff --git a/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-ext.yaml b/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-ext.yaml new file mode 100644 index 00000000..806e00dd --- /dev/null +++ b/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-ext.yaml @@ -0,0 +1,14 @@ +apiVersion: cilium.io/v2 +kind: CiliumNetworkPolicy +metadata: + name: allow-plausible-secure-external + namespace: plausible +spec: + description: Allow Plausible External + egress: + - toFQDNs: + - matchName: data.iana.org + - matchName: raw.githubusercontent.com + endpointSelector: + matchLabels: + app.kubernetes.io/name: plausible-analytics \ No newline at end of file diff --git a/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-gravatar.yaml b/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-gravatar.yaml index 7193691a..645da60f 100644 --- a/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-gravatar.yaml +++ b/apps/charts/sys-cilium-policies/templates/plausible/CiliumNetworkPolicy-allow-gravatar.yaml @@ -2,13 +2,14 @@ apiVersion: cilium.io/v2 kind: CiliumNetworkPolicy metadata: name: allow-plausible-secure-gravatar - namespace: prometheus + namespace: plausible spec: description: Allow Plausible Gravatar egress: - toFQDNs: - matchName: secure.gravatar.com - matchName: gravatar.com + - matchName: www.gravatar.com endpointSelector: matchLabels: app.kubernetes.io/name: plausible-analytics \ No newline at end of file diff --git a/apps/templates/plausible.yaml b/apps/templates/plausible.yaml index 16cb1333..1fb5ea31 100644 --- a/apps/templates/plausible.yaml +++ b/apps/templates/plausible.yaml @@ -10,7 +10,7 @@ spec: server: 'https://kubernetes.default.svc' sources: - repoURL: 'https://imio.github.io/helm-charts' - targetRevision: 0.3.3 + targetRevision: 0.4.0 chart: plausible-analytics helm: values: |