coreos-cincinnati: allow crates.io in egress policy (cont)

crates.io registry is organized in (and redirects to) separate
subdomains for cached static artifacts.
This continues crates.io white-listing effort, covering
static.crates.io too.

Follow-Up: https://infrastructure.fedoraproject.org/cgit/ansible.git/commit/roles/openshift-apps/coreos-cincinnati/templates/egresspolicy.yml?id=48a9d409a4ad1e5637ef7453dbac767c28e08f04
This commit is contained in:
Luca Bruno 2019-06-21 09:45:00 +00:00
parent 48a9d409a4
commit a0977162b3
No known key found for this signature in database
GPG Key ID: A9834A2252078E4E
1 changed files with 3 additions and 0 deletions

View File

@ -14,6 +14,9 @@ spec:
- type: Allow
to:
dnsName: crates.io
- type: Allow
to:
dnsName: static.crates.io
- type: Allow
to:
dnsName: mirrors.fedoraproject.org