OSDOCS#15779: Network policies for the SSCSI Operator

modules/persistent-storage-csi-secrets-store-network-policies.adoc

@@ -0,0 +1,27 @@
+// Module included in the following assemblies:
+//
+// * storage/container_storage_interface/persistent-storage-csi-secrets-store.adoc
+//
+
+:_mod-docs-content-type: CONCEPT
+[id="persistent-storage-csi-secrets-store-network-policies_{context}"]
+= Support for network policies
+
+The {secrets-store-operator} includes pre-defined `NetworkPolicies` resources for enhanced security. These policies govern the ingress and egress traffic for both the SS-CSI Operator and its associated driver.
+
+The following table summarizes the default ingress and egress rules:
+
+[cols="1,1,1,1", options="header"]
+|===
+| Component | Ingress ports | Egress ports | Description
+
+| {secrets-store-operator}
+| `8443`
+| `6443`
+| Accesses metrics and communicates with the API server
+
+| {secrets-store-driver}
+| `8095`
+| `6443`
+| Accesses metrics and communicates with the API server
+|===

storage/container_storage_interface/persistent-storage-csi-secrets-store.adoc

@@ -1,6 +1,6 @@
 :_mod-docs-content-type: ASSEMBLY
 [id="persistent-storage-csi-secrets-store"]
-= {secrets-store-driver}
+= Secrets Store Container Storage Interface Driver Operator
 include::_attributes/common-attributes.adoc[]
 :context: persistent-storage-csi-secrets-store
 
@@ -24,6 +24,8 @@ include::modules/persistent-storage-csi-secrets-store-disconnect-environment.ado
 For more information about disconnected environments, see xref:../../disconnected/about.adoc#about[About disconnected environments].
 ====
 
+include::modules/persistent-storage-csi-secrets-store-network-policies.adoc[leveloffset=+1]
+
 include::modules/persistent-storage-csi-secrets-store-driver-install.adoc[leveloffset=+1]
 
 .Next steps