-
Notifications
You must be signed in to change notification settings - Fork 39
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[#266] Updated Pod security standards
* Add a default Security Context if the user does not specify one from the WildFlyServerSpec. * In the CSV, updates the operator's own deployment to comply with the security standards. This fixes #266 Signed-off-by: Jeff Mesnil <[email protected]>
- Loading branch information
Showing
6 changed files
with
42 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -67,7 +67,9 @@ type WildFlyServerSpec struct { | |
// ResourcesSpec defines the resources used by the WildFlyServer, ie CPU and memory, use limits and requests. | ||
// More info: https://pkg.go.dev/k8s.io/[email protected]/core/v1#ResourceRequirements | ||
Resources *corev1.ResourceRequirements `json:"resources,omitempty"` | ||
// SecurityContext | ||
// SecurityContext defines the security capabilities required to run the application. | ||
// If omitted, a default security context is created which runs with a non-root "jboss (185)" user without priviledges | ||
// escalation and all security capabilities dropped. | ||
SecurityContext *corev1.SecurityContext `json:"securityContext,omitempty"` | ||
} | ||
|
||
|
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters