[AKS Policies] Fix volume types policy to comply with least privilege principle
Currently policy applied for "Allowed volume types" it is allowing *
:
{
"effect": { "value": "audit"},
"excludedNamespaces": {"value": ["kube-system", "gatekeeper-system", "azure-arc"]},
"allowedVolumeTypes": {"value": ["*"]}
}
To support keyvault and csi providers, need to adopt least privilege principle to get rid of "all" expression.
Related to #218 (closed)