Implement Security Context for Haproxy
Implement readOnlyRootFilesystem:true for init container Change-Id: I736b0ffd349379d6ceb6ca599021fcbe9eb54923
This commit is contained in:
parent
eacecb7918
commit
151844e26a
|
@ -92,6 +92,8 @@ pod:
|
||||||
container:
|
container:
|
||||||
haproxy_perms:
|
haproxy_perms:
|
||||||
runAsUser: 0
|
runAsUser: 0
|
||||||
|
allowPrivilegeEscalation: false
|
||||||
|
readOnlyRootFilesystem: true
|
||||||
lifecycle:
|
lifecycle:
|
||||||
upgrades:
|
upgrades:
|
||||||
daemonsets:
|
daemonsets:
|
||||||
|
|
Loading…
Reference in New Issue