Add namespace for all sample CNFs

Else they would be deployed vs default which has no labels.

Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com>

sample-cnfs/k8s-multiple-processes/chart/templates/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: sidecar-container-demo
+  namespace: cnfspace
 spec:
   containers:
   - image: busybox
@@ -23,4 +33,4 @@ spec:
   dnsPolicy: Default
   volumes:
   - name: var-logs
-    emptyDir: {}
+    emptyDir: {}

sample-cnfs/k8s-non-helm-no-image-policy/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: sidecar-container-demo
+  namespace: cnfspace
 spec:
   containers:
   - image: busybox
@@ -23,4 +33,4 @@ spec:
   dnsPolicy: Default
   volumes:
   - name: var-logs
-    emptyDir: {}
+    emptyDir: {}

sample-cnfs/k8s-non-helm/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: sidecar-container-demo
+  namespace: cnfspace
 spec:
   containers:
   - image: busybox:1.33.1

sample-cnfs/k8s-sidecar-container-pattern/chart/templates/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: sidecar-container-demo
+  namespace: cnfspace
 spec:
   containers:
   - image: busybox
@@ -23,4 +33,4 @@ spec:
   dnsPolicy: Default
   volumes:
   - name: var-logs
-    emptyDir: {}
+    emptyDir: {}

sample-cnfs/sample-alpha-apis/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   containers:
   - image: bitnami/nginx:1.20

sample-cnfs/sample-fluentbit/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   containers:
   - image: bitnami/nginx:1.20

sample-cnfs/sample-hostpath/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   containers:
   - image: bitnami/nginx:1.20

sample-cnfs/sample-immutable-fs/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   volumes:
   - name: root-tmp

sample-cnfs/sample-init-systems/manifests/pod.yml

@@ -1,8 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
 ---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx-tini-sample
+  namespace: cnfspace
 spec:
   dnsPolicy: Default
 
@@ -28,6 +37,7 @@ apiVersion: v1
 kind: Pod
 metadata:
   name: nginx-dumb-init-sample
+  namespace: cnfspace
 spec:
   dnsPolicy: Default
 
@@ -53,6 +63,7 @@ apiVersion: v1
 kind: Pod
 metadata:
   name: nginx-s6-overlay-sample
+  namespace: cnfspace
 spec:
   dnsPolicy: Default
 

sample-cnfs/sample-nonroot-containers/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   securityContext:
     runAsNonRoot: true

sample-cnfs/sample-nonroot/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: security-context-demo
+  namespace: cnfspace
 spec:
   securityContext:
     runAsUser: 1000   # we make sure this is greater than 999 and

sample-cnfs/sample-statefulsets/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   securityContext:
     runAsNonRoot: true

sample-cnfs/sample_container_sock_mount/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   containers:
   - image: bitnami/nginx:1.20

sample-cnfs/sample_external_ips/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
   labels:
     app: nginx
 spec:
@@ -28,6 +38,7 @@ apiVersion: v1
 kind: Service
 metadata:
   name: nginx-service
+  namespace: cnfspace
 spec:
   selector:
     app: nginx

sample-cnfs/sample_no_logs/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: python-server
+  namespace: cnfspace
   labels:
     k8s-app: python3-server
 spec:

sample-cnfs/sample_nonroot/manifests/pod.yml

@@ -1,7 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
+---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   containers:
   - image: bitnami/nginx:1.20

sample-cnfs/sample_sysctls/manifests/pod.yml

@@ -1,8 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
 ---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   securityContext:
     sysctls:

sample-cnfs/sample_valid_selinux_options/manifests/pod.yml

@@ -1,8 +1,17 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cnfspace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+
 ---
 apiVersion: v1
 kind: Pod
 metadata:
   name: nginx
+  namespace: cnfspace
 spec:
   containers:
   - image: bitnami/nginx:latest