Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

define securityContext properties for kubernetes in Quarkus application.properties #23866

Closed
iompo opened this issue Feb 22, 2022 · 1 comment · Fixed by #24089
Closed

define securityContext properties for kubernetes in Quarkus application.properties #23866

iompo opened this issue Feb 22, 2022 · 1 comment · Fixed by #24089
Labels
area/kubernetes area/security kind/enhancement New feature or request
Milestone
2.8.0.CR1

Comments

@iompo
Copy link

iompo commented Feb 22, 2022

Description

I'm using trivy to scan the yaml file I use to deploy my application resources. The scan suggests some security settings ("allowPrivilegeEscalation", "readOnlyRootFilesystem" etc..) that are not defined in the kubernetes file generate by quarkus. I did not find a way to set those securitySettings directly in the application.properties.

Implementation ideas

It would be nice to have the properties of the securityContext section available directly in the application.properties, so that I don't have to update the file after it has been created.
@iompo iompo added the kind/enhancement New feature or request label Feb 22, 2022
@quarkus-bot
Copy link

quarkus-bot bot commented Feb 22, 2022

/cc @geoand, @iocanel, @sberyozkin

Sgitario added a commit to Sgitario/quarkus that referenced this issue Mar 4, 2022
@Sgitario
feat: Kubernetes support of SecurityContext configuration
d3a366b 
Allow to configure the security context section in the pods for Kubernetes, OpenShift and Knative.

Fix quarkusio#23866
@Sgitario Sgitario mentioned this issue Mar 4, 2022
Merged
@quarkus-bot quarkus-bot bot added this to the 2.8 - main milestone Mar 21, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/kubernetes area/security kind/enhancement New feature or request
Projects
None yet
Milestone
2.8.0.CR1
Development

Successfully merging a pull request may close this issue.

Kubernetes support of SecurityContext configuration Sgitario/quarkus
1 participant
@iompo