Merge pull request #196 from qiffang/configurable-sourcerange

Network: use the shoot iprange to replace hardcode

charts/internal/gcp-infra/templates/main.tf

@@ -129,7 +129,11 @@ resource "google_compute_subnetwork" "subnetwork-internal" {
 resource "google_compute_firewall" "rule-allow-internal-access" {
   name          = "{{ required "clusterName is required" .Values.clusterName }}-allow-internal-access"
   network       = {{ required "vpc.name is required" .Values.vpc.name }}
-  source_ranges = ["10.0.0.0/8"]
+  {{ if .Values.networks.internal -}}
+  source_ranges = ["{{ required "networks.workers is required" .Values.networks.workers }}", "{{ required "networks.internal is required" .Values.networks.internal }}"]
+  {{ else -}}
+  source_ranges = ["{{ required "networks.workers is required" .Values.networks.workers }}"]
+  {{ end -}}
 
   allow {
     protocol = "icmp"