From f06a17452112018e17c33967429e862b45114629 Mon Sep 17 00:00:00 2001
From: Wayne Starr <Racer159@users.noreply.github.com>
Date: Wed, 24 Jul 2024 15:43:58 -0600
Subject: [PATCH] chore!: remove egress anywhere for SSO (#121)

## Description

> [!IMPORTANT]
> :warning: **BREAKING CHANGE** This is a breaking change that requires
`uds-core` `v0.22.0` but locks down GitLab to have no `remoteGenerated:
Anywhere` entries by default.

## Related Issue

Relates to https://github.com/defenseunicorns/uds-core/issues/558

## Type of change

- [ ] Bug fix (non-breaking change which fixes an issue)
- [ ] New feature (non-breaking change which adds functionality)
- [X] Other (security config, docs update, etc)

## Checklist before merging

- [X] Test, docs, adr added or updated as needed
- [X] [Contributor Guide
Steps](https://github.com/defenseunicorns/uds-package-gitlab/blob/main/CONTRIBUTING.md#developer-workflow)
followed
---
 chart/templates/uds-package.yaml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/chart/templates/uds-package.yaml b/chart/templates/uds-package.yaml
index f5dfb029..1e9fbdae 100644
--- a/chart/templates/uds-package.yaml
+++ b/chart/templates/uds-package.yaml
@@ -78,7 +78,9 @@ spec:
         description: "SSO Internal"
 
       - direction: Egress
-        remoteGenerated: Anywhere
+        remoteNamespace: istio-tenant-gateway
+        remoteSelector:
+          app: tenant-ingressgateway
         selector:
           app.kubernetes.io/name: mattermost-enterprise-edition
         port: 443