move security context to ix_values and remove from questions (#376)

This commit is contained in:
Stavros Kois
2021-04-17 22:05:28 +03:00
committed by GitHub
parent 7e067ba318
commit d052d1d5c1
2 changed files with 7 additions and 51 deletions

View File

@@ -9,6 +9,13 @@ image:
tag: v1.23.2
pullPolicy: IfNotPresent
# Configure the Security Context for the Pod
podSecurityContext:
runAsNonRoot: false
runAsUser: 0
runAsGroup: 0
fsGroup: 0
supplementalGroups: [24, 44, 107]
#All values here are set as the docker defaults.
envTpl:

View File

@@ -579,54 +579,3 @@ questions:
schema:
type: boolean
default: false
# Set Pod Security Policy
- variable: podSecurityContext
group: "Advanced"
label: "Pod Security Context"
schema:
type: dict
attrs:
- variable: runAsNonRoot
label: "runAsNonRoot"
schema:
type: boolean
default: false
- variable: runAsUser
label: "runAsUser"
description: "The UserID of the user running the application"
schema:
type: int
default: 0
- variable: runAsGroup
label: "runAsGroup"
description: The groupID this App of the user running the application"
schema:
type: int
default: 0
- variable: supplementalGroups
label: "supplementalGroups"
description: "Additional groups this App needs access to"
schema:
type: list
default: [24, 44, 107]
items:
- variable: Group
label: "Group"
schema:
type: int
default: 568
- variable: fsGroup
label: "The group that should own ALL storage."
schema:
type: int
default: 0
- variable: fsGroupChangePolicy
label: "When should we chmod/chown?"
schema:
type: string
default: "OnRootMismatch"
enum:
- value: "OnRootMismatch"
description: "OnRootMismatch"
- value: "Always"
description: "Always"