Story #5142
closed
Story #5132: [Epic] As a user, I can consume Pulp 3 from OperatorHub.io
The pulp-operator Persistent Volume Claim for /var/lib/pulp should by default be writable only by root
100%
Updated by fao89 over 4 years ago
- Category set to Operator - Moved to Github Issues
Updated by mdepaulo@redhat.com almost 4 years ago
- Assignee deleted (
mdepaulo@redhat.com) - Tags deleted (
CI/CD)
Updated by chambridge almost 4 years ago
Is the ask here to update each of the deployments using the "pulp-file-storage" PVC to add a security context with runAsUser set to root?
securityContext:
runAsUser: 0
fsGroup: 0
Deployments using pulp-file-storage: https://github.com/pulp/pulp-operator/blob/34d04f10e16e5685f5614f898fa2bcc37e04f5f1/roles/pulp-api/templates/pulp-api.deployment.yaml.j2 https://github.com/pulp/pulp-operator/blob/34d04f10e16e5685f5614f898fa2bcc37e04f5f1/roles/pulp-worker/templates/pulp-worker.deployment.yaml.j2 https://github.com/pulp/pulp-operator/blob/34d04f10e16e5685f5614f898fa2bcc37e04f5f1/roles/pulp-resource-manager/templates/pulp-resource-manager.deployment.yaml.j2 https://github.com/pulp/pulp-operator/blob/34d04f10e16e5685f5614f898fa2bcc37e04f5f1/roles/pulp-content/templates/pulp-content.deployment.yaml.j2
Added by chambridge almost 4 years ago
Updated by pulpbot almost 4 years ago
- Status changed from NEW to POST
Updated by chambridge almost 4 years ago
- Status changed from POST to MODIFIED
- % Done changed from 0 to 100
Applied in changeset pulp-operator|8d82b82ea3ee44f8fc65edc5808cc2568f940703.
.
Add security context to deployments interacting with pulp-file-storage PVC
Add security context runAsUser and fsGroup to deployments interacting with pulp-file-storage PVC
fixes #5142 https://pulp.plan.io/issues/5142