🚀Add Default `securityContext` and Ability to Configure it - Githubissues

hashicorp / terraform-cloud-operator

Kubernetes Operator allows managing HCP Terraform resources via Kubernetes Custom Resources.

https://developer.hashicorp.com/terraform/cloud-docs

Mozilla Public License 2.0

114 stars 27 forks source link

🚀Add Default `securityContext` and Ability to Configure it #432

Closed vadim-kubasov closed 5 days ago

vadim-kubasov commented 2 weeks ago

Description

Add default securityContext options. Exposes ability to configure securityContext for:

manager container
kube-rbac-proxy container
entire pod

Usage Example

values.yaml

securityContext:
  runAsNonRoot: true

operator:
  securityContext:
    allowPrivilegeEscalation: false
    capabilities:
      drop:
        - ALL
    seccompProfile:
      type: RuntimeDefault

kubeRbacProxy:
  securityContext:
    allowPrivilegeEscalation: false
    capabilities:
      drop:
        - ALL
    seccompProfile:
      type: RuntimeDefault

References

N/A

Community Note

Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.
Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request.
If you are interested in working on this issue or have submitted a pull request, please leave a comment.

hashicorp-cla-app[bot] commented 2 weeks ago

All committers have signed the CLA.