From 36e90dfa018daff9a82abce7edcb41806172b2f3 Mon Sep 17 00:00:00 2001
From: Peter Motzko <peter.motzko@volkswagen.de>
Date: Thu, 22 Jun 2023 14:06:43 +0200
Subject: [PATCH] feat(helm): add securityContext (primary same user/group id
 as docker image)

---
 charts/managed-identity-wallet/values.yaml | 16 +++++++---------
 1 file changed, 7 insertions(+), 9 deletions(-)

diff --git a/charts/managed-identity-wallet/values.yaml b/charts/managed-identity-wallet/values.yaml
index d2b4cea48..af36fd6ec 100644
--- a/charts/managed-identity-wallet/values.yaml
+++ b/charts/managed-identity-wallet/values.yaml
@@ -77,15 +77,13 @@ ingress:
 podSecurityContext: {}
 # fsGroup: 2000
 
-securityContext: {}
-  # capabilities:
-  #   drop:
-  #   - ALL
-  # readOnlyRootFilesystem: true
-# runAsNonRoot: true
-# runAsUser: 1000
-
-# provide only the numbers without suffix (Mi or m will be added in template)
+securityContext:
+  privileged: false
+  allowPrivilegeEscalation: false
+  runAsNonRoot: true
+  runAsGroup: 11111
+  runAsUser: 11111
+
 resources:
   requests:
     cpu: 250m