From 85ec6f03c806e038687b972d0ab5a2f0033b0136 Mon Sep 17 00:00:00 2001
From: cmsassot <cmsassot@cadoles.com>
Date: Mon, 25 Mar 2024 13:52:12 +0100
Subject: [PATCH] feat(hydra-sql): non root user deployment

---
 components/hydra-sql/resources/hydra-sql-deployment.yaml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/components/hydra-sql/resources/hydra-sql-deployment.yaml b/components/hydra-sql/resources/hydra-sql-deployment.yaml
index 207b9a5..c48b87c 100644
--- a/components/hydra-sql/resources/hydra-sql-deployment.yaml
+++ b/components/hydra-sql/resources/hydra-sql-deployment.yaml
@@ -36,6 +36,10 @@ spec:
             initialDelaySeconds: 10
             periodSeconds: 30
           resources: {}
+          securityContext:
+            runAsNonRoot: true
+            runAsGroup: 1000
+            runAsUser: 1000
           envFrom:
             - configMapRef:
                 name: hydra-sql-env
@@ -94,6 +98,10 @@ spec:
             - name: CADDY_APP_ROOT_PUBLIC
               value: "/app/public/"
           resources: {}
+          securityContext:
+            runAsNonRoot: true
+            runAsGroup: 1000
+            runAsUser: 1000
           ports:
             - containerPort: 8080
           volumeMounts: