Difference between revisions of "Template:Kind pod securitycontext"
Jump to navigation
Jump to search
(3 intermediate revisions by the same user not shown) | |||
Line 5: | Line 5: | ||
spec: | spec: | ||
[[securityContext]]: | [[securityContext]]: | ||
− | runAsUser: 1000 | + | [[runAsUser]]: 1000 |
− | runAsGroup: 3000 | + | [[runAsGroup]]: 3000 |
− | fsGroup: 2000 | + | [[fsGroup]]: 2000 |
volumes: | volumes: | ||
- name: sec-ctx-vol | - name: sec-ctx-vol | ||
Line 18: | Line 18: | ||
- name: sec-ctx-vol | - name: sec-ctx-vol | ||
mountPath: /data/demo | mountPath: /data/demo | ||
− | securityContext: | + | [[spec.containers.securityContext|securityContext]]: |
[[allowPrivilegeEscalation]]: false | [[allowPrivilegeEscalation]]: false |
Latest revision as of 18:53, 27 October 2024
apiVersion: v1 kind: Pod metadata: name: security-context-demo spec: securityContext: runAsUser: 1000 runAsGroup: 3000 fsGroup: 2000 volumes: - name: sec-ctx-vol emptyDir: {} containers: - name: sec-ctx-demo image: busybox:1.28 command: [ "sh", "-c", "sleep 1h" ] volumeMounts: - name: sec-ctx-vol mountPath: /data/demo securityContext: allowPrivilegeEscalation: false
Advertising: