Closed cjvirtucio87 closed 3 weeks ago
Does cap_drop: ALL
actually work for Immich? I might have to do some testing on this, I currently only have cap_drop: NET_RAW
Since this chart builds on bjw-s's common-library, you can use anything that supports, either at the top level (applying to all Immich pods) or under each specific component's block in the values.yaml.
I have Pod Security Admission enabled in my environment. This means
securityContext
has to have specific configuration for every pod's containers:It'd be great if we could configure this on the container for the
immich-server
pod: