Open jojay opened 2 months ago
BTW: This is the finding in Azure Defender: "Kubernetes clusters should disable automounting API credentials There are multiple ways to opt out of automounting API credentials for a service account. To opt out of automounting API credentials for a single pod, set automountServiceAccountToken: false in PodSpec.[...]" My tests were succeful so far with my other deployments but like described I am struggeling with this property in kind: SolrCloud file that applied is managing the installation.
Hi, is there an option to set in kind: SolrCloud somehow
automountServiceAccountToken = false
? This will solve a security recommendation in AKS. So in STS (below the SolrCloud installed with solr-operator 8.0.0 but enriched post install with mentioned attribute. The same I would like to accomplish for zookeeper too. I would like to avoid some post processing with kustomize or forking the helm charts by myself) you would finally have: Excerpt:Thank you very much in advance!