Compare commits

...

2 Commits

Author SHA1 Message Date
cmsassot 85ec6f03c8 feat(hydra-sql): non root user deployment 2024-03-25 13:52:12 +01:00
cmsassot 3e2aa22b8d feat(hydra-oidc): non root user deployment 2024-03-25 13:51:55 +01:00
2 changed files with 16 additions and 0 deletions

View File

@ -46,6 +46,10 @@ spec:
- configMapRef: - configMapRef:
name: hydra-oidc-env name: hydra-oidc-env
resources: {} resources: {}
securityContext:
runAsNonRoot: true
runAsGroup: 1000
runAsUser: 1000
- image: reg.cadoles.com/cmsassot/hydra-oidc-test:latest - image: reg.cadoles.com/cmsassot/hydra-oidc-test:latest
imagePullPolicy: Always imagePullPolicy: Always
@ -90,4 +94,8 @@ spec:
- name: CADDY_APP_ROOT_PUBLIC - name: CADDY_APP_ROOT_PUBLIC
value: "/app/public/" value: "/app/public/"
resources: {} resources: {}
securityContext:
runAsNonRoot: true
runAsGroup: 1000
runAsUser: 1000
restartPolicy: Always restartPolicy: Always

View File

@ -36,6 +36,10 @@ spec:
initialDelaySeconds: 10 initialDelaySeconds: 10
periodSeconds: 30 periodSeconds: 30
resources: {} resources: {}
securityContext:
runAsNonRoot: true
runAsGroup: 1000
runAsUser: 1000
envFrom: envFrom:
- configMapRef: - configMapRef:
name: hydra-sql-env name: hydra-sql-env
@ -94,6 +98,10 @@ spec:
- name: CADDY_APP_ROOT_PUBLIC - name: CADDY_APP_ROOT_PUBLIC
value: "/app/public/" value: "/app/public/"
resources: {} resources: {}
securityContext:
runAsNonRoot: true
runAsGroup: 1000
runAsUser: 1000
ports: ports:
- containerPort: 8080 - containerPort: 8080
volumeMounts: volumeMounts: