feat: add network policy page (#536)

* feat: add Network Policiies page Signed-off-by: Andy Lee <andy.lee@suse.com> * ci: add build Signed-off-by: Andy Lee <andy.lee@suse.com> * ci: ensure FROM and TO exist Signed-off-by: Andy Lee <andy.lee@suse.com> * ci: skip commitlint if FROM and TO emtpy Signed-off-by: Andy Lee <andy.lee@suse.com> * revert: unnecessary change * feat: add banner Signed-off-by: Andy Lee <andy.lee@suse.com> --------- Signed-off-by: Andy Lee <andy.lee@suse.com>
2025-12-13 05:01:43 +00:00 · 2025-10-03 09:38:31 +08:00 · 2025-10-03 09:38:31 +08:00 · bd28ba6f71
commit bd28ba6f71
parent 4bb67153ce
5 changed files with 69 additions and 0 deletions
--- a/.github/workflows/run-lint.yaml
+++ b/.github/workflows/run-lint.yaml
@ -50,6 +50,7 @@ jobs:

          echo "FROM=$FROM"
          echo "TO=$TO"
+
          npx commitlint --from "$FROM" --to "$TO" --verbose
        env:
          GITHUB_EVENT_NAME: ${{ github.event_name }}
--- a/pkg/harvester/config/doc-links.js
+++ b/pkg/harvester/config/doc-links.js
@ -8,4 +8,5 @@ export const DOC = {
  STORAGE_NETWORK_EXAMPLE:    `/advanced/storagenetwork#configuration-example`,
  SUPPORT_BUNDLE_NAMESPACES:  `/advanced/index/#support-bundle-namespaces`,
  VPC_CONFIGURATION_EXAMPLES: `/networking/kubeovn-vpc#vpc-peering-configuration-examples`,
+  NETWORK_POLICY:             `/networking/kubeovn-vm-isolation/#network-policies`,
 };
--- a/pkg/harvester/config/harvester-cluster.js
+++ b/pkg/harvester/config/harvester-cluster.js
@ -10,6 +10,7 @@ import {
  LOGGING,
  STORAGE_CLASS,
  SECRET,
+  NETWORK_POLICY
 } from '@shell/config/types';
 import { HCI, VOLUME_SNAPSHOT } from '../types';
 import {
@ -425,6 +426,7 @@ export function init($plugin, store) {
      HCI.CLUSTER_NETWORK,
      HCI.NETWORK_ATTACHMENT,
      HCI.VPC,
+      NETWORK_POLICY,
      HCI.LB,
      HCI.IP_POOL,
    ],
@ -566,6 +568,21 @@ export function init($plugin, store) {
    ifHaveType: HCI.VPC,
  });

+  configureType(NETWORK_POLICY, { hiddenNamespaceGroupButton: true, canYaml: false });
+
+  virtualType({
+    labelKey:   'harvester.networkPolicy.label',
+    name:       NETWORK_POLICY,
+    namespaced: true,
+    weight:     186,
+    route:      {
+      name:   `${ PRODUCT_NAME }-c-cluster-resource`,
+      params: { resource: NETWORK_POLICY }
+    },
+    exact:      false,
+    ifHaveType: NETWORK_POLICY,
+  });
+
  configureType(HCI.SNAPSHOT, {
    isCreatable: false,
    location:    {
--- a/pkg/harvester/edit/networking.k8s.io.networkpolicy.vue
+++ b/pkg/harvester/edit/networking.k8s.io.networkpolicy.vue
@ -0,0 +1,42 @@
+<script>
+import NetworkPolicy from '@shell/edit/networking.k8s.io.networkpolicy';
+import { Banner } from '@components/Banner';
+import { DOC } from '../config/doc-links';
+import { docLink } from '../utils/feature-flags';
+
+export default {
+  components: {
+    NetworkPolicy,
+    Banner
+  },
+
+  computed: {
+    networkPolicyDocLink() {
+      const version = this.$store.getters['harvester-common/getServerVersion']();
+
+      return docLink(DOC.NETWORK_POLICY, version);
+    }
+  }
+};
+</script>
+
+<template>
+  <div class="network-policy-edit">
+    <Banner color="info">
+      <t
+        k="harvester.networkPolicy.banner"
+        :url="networkPolicyDocLink"
+        :raw="true"
+      />
+    </Banner>
+    <NetworkPolicy v-bind="$attrs" />
+  </div>
+</template>
+
+<style lang="scss" scoped>
+  .network-policy-edit {
+    flex: auto;
+    display: flex;
+    flex-direction: column;
+  }
+</style>
--- a/pkg/harvester/l10n/en-us.yaml
+++ b/pkg/harvester/l10n/en-us.yaml
@ -1106,6 +1106,9 @@ harvester:
      remoteVpc:
        label: Remote VPC
      infoBanner: The static route destination CIDR must cover all subnets CIDR from remote VPC Peer. Read <a href="{url}" target="_blank">VPC Peering Configuration Examples</a> for more information.
+  networkPolicy:
+    label: Network Policies
+    banner: The network policies must be used for VMs attached to overlay networks. Please read the <a href="{url}" target="_blank">harvester document</a> how the network policy works.
  network:
    label: Virtual Machine Networks
    tabs:
@ -1832,6 +1835,11 @@ typeLabel:
      one { Virtual Private Cloud }
      other { Virtual Private Clouds }
    }
+  networking.k8s.io.networkpolicy: |-
+    {count, plural,
+      one { Network Policy }
+      other { Network Policies }
+    }
  harvesterhci.io.cloudtemplate: |-
    {count, plural,
      one { Cloud Configuration Template }