search

amorenoz / ovsdb-mon

An OVSDB database visualization tool based on auto-generated schema bindings
Apache License 2.0
23 stars 4 forks source link

Error from server (Forbidden): error when creating ./ovsdb-mon-ovn.yaml #34

Closed flavio-fernandes closed 1 year ago

flavio-fernandes commented 1 year ago

With latest release of Openshift, additional changes will be needed to yaml files, so pod are permitted to use host networking.

 source ./ovsdb-mon-ovn.source
Error from server (Forbidden): error when creating "./ovsdb-mon-ovn.yaml": pods "ovsdb-mon-ovn" is forbidden: violates PodSecurity "restricted:latest": host namespaces (hostNetwork=true), allowPrivilegeEscalation != false (container "ovsdb-mon-ovn" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "ovsdb-mon-ovn" must set securityContext.capabilities.drop=["ALL"]), restricted volume types (volumes "run-ovn", "run-ovs" use restricted volume type "hostPath"), runAsNonRoot != true (pod or container "ovsdb-mon-ovn" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "ovsdb-mon-ovn" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
bad k8s?
flavio-fernandes commented 1 year ago

/assign @flavio-fernandes