From 48002f273655c179b6254803c047f6ccbaf52c17 Mon Sep 17 00:00:00 2001
From: Sergey Kudasov <f4hrenh9it@gmail.com>
Date: Wed, 3 Jan 2024 15:33:04 +0100
Subject: [PATCH] remove network policies temporarily, force amd64 builds
 (#11673)

---
 charts/chainlink-cluster/devspace.yaml        |  9 +--
 .../templates/chainlink-db-networkpolicy.yaml | 27 ---------
 .../chainlink-node-networkpolicy.yaml         | 57 -------------------
 .../templates/geth-networkpolicy.yaml         | 31 ----------
 .../templates/mockserver-networkpolicy.yaml   | 27 ---------
 .../templates/networkpolicy-default-deny.yaml |  9 ---
 6 files changed, 5 insertions(+), 155 deletions(-)
 delete mode 100644 charts/chainlink-cluster/templates/chainlink-db-networkpolicy.yaml
 delete mode 100644 charts/chainlink-cluster/templates/chainlink-node-networkpolicy.yaml
 delete mode 100644 charts/chainlink-cluster/templates/geth-networkpolicy.yaml
 delete mode 100644 charts/chainlink-cluster/templates/mockserver-networkpolicy.yaml
 delete mode 100644 charts/chainlink-cluster/templates/networkpolicy-default-deny.yaml

diff --git a/charts/chainlink-cluster/devspace.yaml b/charts/chainlink-cluster/devspace.yaml
index bd50a469ded..902925b278e 100644
--- a/charts/chainlink-cluster/devspace.yaml
+++ b/charts/chainlink-cluster/devspace.yaml
@@ -18,11 +18,12 @@ pipelines:
   # You can run this pipeline via `devspace deploy` (or `devspace run-pipeline deploy`)
   deploy:
     run: |-
-      run_dependencies --all                            # 1. Deploy any projects this project needs (see "dependencies")
-      ensure_pull_secrets --all                         # 2. Ensure pull secrets
-      build_images --all -t $(git rev-parse --short HEAD)    # 3. Build, tag (git commit hash) and push all images (see "images")
-      create_deployments --all                          # 5. Deploy Helm charts and manifests specfied as "deployments"
+      run_dependencies --all                           
+      ensure_pull_secrets --all                         
+      build_images ---var DOCKER_DEFAULT_PLATFORM=linux/amd64  --all -t $(git rev-parse --short HEAD)
       kubectl annotate namespace ${DEVSPACE_NAMESPACE} janitor/ttl=${NS_TTL}
+      kubectl label namespace/${DEVSPACE_NAMESPACE} network=crib
+      create_deployments --all                          
       echo "Namespace ${DEVSPACE_NAMESPACE} will be deleted in ${NS_TTL}"
   purge:
     run: |-
diff --git a/charts/chainlink-cluster/templates/chainlink-db-networkpolicy.yaml b/charts/chainlink-cluster/templates/chainlink-db-networkpolicy.yaml
deleted file mode 100644
index bd989e8732b..00000000000
--- a/charts/chainlink-cluster/templates/chainlink-db-networkpolicy.yaml
+++ /dev/null
@@ -1,27 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: {{ $.Release.Name }}-db
-spec:
-  podSelector:
-    matchLabels:
-      app: {{ $.Release.Name }}-db
-  policyTypes:
-    - Ingress
-  ingress:
-    # Allow all node pods to access the database pods.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: {{ $.Release.Name }}
-      ports:
-        - protocol: TCP
-          port: 5432
-    # Allow all runner pods to access the database pods.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: runner
-      ports:
-        - protocol: TCP
-          port: 5432
diff --git a/charts/chainlink-cluster/templates/chainlink-node-networkpolicy.yaml b/charts/chainlink-cluster/templates/chainlink-node-networkpolicy.yaml
deleted file mode 100644
index 8ae02d7a46e..00000000000
--- a/charts/chainlink-cluster/templates/chainlink-node-networkpolicy.yaml
+++ /dev/null
@@ -1,57 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: {{ $.Release.Name }}-node
-spec:
-  podSelector:
-    matchLabels:
-      app: {{ $.Release.Name }}
-  policyTypes:
-    - Ingress
-    - Egress
-  ingress:
-    # Allow all ingress traffic between the node pods and from runner pod.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: {{ $.Release.Name }}
-    - from:
-      - podSelector:
-          matchLabels:
-            app: runner
-  egress:
-    # Allow all egress traffic between the node pods and to runner pod.
-    - to:
-        - podSelector:
-            matchLabels:
-              app: {{ $.Release.Name }}
-    - to:
-        - podSelector:
-            matchLabels:
-              app: runner
-    # Allow all node pods to access the database pods.
-    - to:
-        - podSelector:
-            matchLabels:
-              app: {{ $.Release.Name }}-db
-          ports:
-            - protocol: TCP
-              port: 5432
-    # Allow all node pods to access the geth pods.
-    - to:
-        - podSelector:
-            matchLabels:
-              app: geth
-      ports:
-        - protocol: TCP
-          port: 8544
-        - protocol: TCP
-          port: 8546  
-    # Allow all node pods to access the mockserver pods.
-    - to:
-        - podSelector:
-            matchLabels:
-              app: mockserver
-      ports:
-        - protocol: TCP
-          port: 1080
diff --git a/charts/chainlink-cluster/templates/geth-networkpolicy.yaml b/charts/chainlink-cluster/templates/geth-networkpolicy.yaml
deleted file mode 100644
index 87d6ac1c535..00000000000
--- a/charts/chainlink-cluster/templates/geth-networkpolicy.yaml
+++ /dev/null
@@ -1,31 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: {{ $.Release.Name }}-geth
-spec:
-  podSelector:
-    matchLabels:
-      app: geth
-  policyTypes:
-    - Ingress
-  ingress:
-    # Allow http and websocket connections from the node pods.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: {{ $.Release.Name }}
-      ports:
-        - protocol: TCP
-          port: 8544
-        - protocol: TCP
-          port: 8546
-    # Allow http and websocket connections from the runner pods.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: runner
-      ports:
-        - protocol: TCP
-          port: 8544
-        - protocol: TCP
-          port: 8546
diff --git a/charts/chainlink-cluster/templates/mockserver-networkpolicy.yaml b/charts/chainlink-cluster/templates/mockserver-networkpolicy.yaml
deleted file mode 100644
index f5c56c79690..00000000000
--- a/charts/chainlink-cluster/templates/mockserver-networkpolicy.yaml
+++ /dev/null
@@ -1,27 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: {{ $.Release.Name }}-mockserver
-spec:
-  podSelector:
-    matchLabels:
-      app: mockserver
-  policyTypes:
-    - Ingress
-  ingress:
-    # Allow http traffic from the node pods.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: {{ $.Release.Name }}
-      ports:
-        - protocol: TCP
-          port: 1080
-    # Allow http traffic from the runner pods.
-    - from:
-        - podSelector:
-            matchLabels:
-              app: runner
-      ports:
-        - protocol: TCP
-          port: 1080
diff --git a/charts/chainlink-cluster/templates/networkpolicy-default-deny.yaml b/charts/chainlink-cluster/templates/networkpolicy-default-deny.yaml
deleted file mode 100644
index 69f1da2e0b5..00000000000
--- a/charts/chainlink-cluster/templates/networkpolicy-default-deny.yaml
+++ /dev/null
@@ -1,9 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: default-deny-all
-spec:
-  podSelector: {}
-  policyTypes:
-    - Ingress
-    - Egress