cycore/radicale
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Set security context

Browse source
This commit is contained in:
theautomation 2022-12-21 19:13:37 +01:00
parent d42fd1fc12
commit 75dde6c79c
1 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
deploy/k8s/manifest.yaml
View file

@ -103,12 +103,18 @@ spec:
labels: labels:
app: radicale app: radicale
spec: spec:
securityContext:
fsGroup: 1000
containers: containers:
- name: radicale - name: radicale
image: "harbor.k8s.lan/k8s/radicale:14" image: "harbor.k8s.lan/k8s/radicale:14"
resources: {} resources: {}
command: ["docker-entrypoint.sh"] command: ["/bin/sh", "/usr/local/bin/docker-entrypoint.sh"]
args: ["radicale", "--config", "/config/config"] args: ["radicale", "--config", "/config/config"]
securityContext:
allowPrivilegeEscalation: false
runAsUser: 1000
runAsGroup: 1000
ports: ports:
- containerPort: 5232 - containerPort: 5232
protocol: TCP protocol: TCP
@ -124,6 +130,7 @@ spec:
configMap: configMap:
name: config name: config
- name: collections - name: collections
# emptyDir: {}
persistentVolumeClaim: persistentVolumeClaim:
claimName: pvc-nfs-radicale-data claimName: pvc-nfs-radicale-data
imagePullSecrets: imagePullSecrets: