In [6]:
import os
import tempfile
import yaml
import subprocess

def apply_network_policy(name, pod_selector_labels, ingress_labels, egress_labels, port):
    # Define the network policy template
    network_policy_template = {
        "apiVersion": "networking.k8s.io/v1",
        "kind": "NetworkPolicy",
        "metadata": {"name": name},
        "spec": {
            "podSelector": {"matchLabels": pod_selector_labels},
            "ingress": [
                {
                    "from": [
                        {"podSelector": {"matchLabels": ingress_labels}},
                        {"podSelector": {"matchLabels": {"all": "allowed"}}}
                    ],
                    "ports": [{"protocol": "TCP", "port": port}]
                }
            ],
            "egress": [
                {
                    "to": [
                        {"podSelector": {"matchLabels": egress_labels}},
                        {"podSelector": {"matchLabels": {"all": "allowed"}}}
                    ],
                    "ports": [{"protocol": "TCP", "port": port}]
                }
            ]
        }
    }

    # Create a temporary file to store the network policy YAML
    with tempfile.NamedTemporaryFile(mode="w", delete=False) as temp_file:
        yaml.dump(network_policy_template, temp_file, default_flow_style=False)

    # Get the path of the temporary file
    temp_file_path = temp_file.name
    print(temp_file.name)

    try:
        # Apply the network policy using kubectl apply
        subprocess.run(["kubectl", "apply", "-f", temp_file_path], check=True)
        print(f"Network policy '{name}' applied successfully.")
    except subprocess.CalledProcessError as e:
        print(f"Error applying network policy: {e}")
    finally:
        # Remove the temporary file
        os.remove(temp_file_path)

# Example usage:
apply_network_policy(
    name="sensor-data-policy",
    pod_selector_labels={"sensor-data": "allowed"},
    ingress_labels={"sensor-data": "allowed"},
    egress_labels={"sensor-data": "allowed"},
    port=5002
)


C:\Users\Reddy\AppData\Local\Temp\tmpn9penugo
Error applying network policy: Command '['kubectl', 'apply', '-f', 'C:\\Users\\Reddy\\AppData\\Local\\Temp\\tmpn9penugo']' returned non-zero exit status 1.
