Is it possible to delete/modify loadBalancerSourceRanges using RHACM with compliance type=`musthave' ?

Solution In Progress - Updated -

Issue

  • Is it possible to add or remove loadBalancerSourceRanges entries in the service object using RHACM compliance policy as must-have?
  • For instance, consider the configuration policy YAML:
objectDefinition:
        apiVersion: policy.open-cluster-management.io/v1
        kind: ConfigurationPolicy
        .
        .
        spec:
          .
          .
          object-templates:
            - complianceType: musthave
              objectDefinition:
                apiVersion: v1
                kind: Service
                metadata:
                  name: router-default
                  namespace: openshift-ingress
                spec:
                  loadBalancerSourceRanges:
                  - 10.1.101.0/24
                  - 10.1.102.0/24

The loadBalancerSourceRanges entries are not getting removed from the target service definition object :

kind: Service
apiVersion: v1
.
.
.
spec:
  clusterIP: 172.30.69.165
  externalTrafficPolicy: Local
  ipFamilies:
    - IPv4
  loadBalancerSourceRanges:
     - 10.1.101.0/24
    - 10.1.102.0/24
    - 10.8.101.0/24   ------> These entries are not removed
    - 10.8.108.0/24  ------> These entries are not removed

Environment

  • Red Hat Advanced Cluster Management for Kubernetes (RHACM)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content