Difference between revisions of "Kubernetes securityContext"

From wikieduonline
Jump to navigation Jump to search
Line 28: Line 28:
 
       mountPath: /data/demo
 
       mountPath: /data/demo
 
     securityContext:
 
     securityContext:
      allowPrivilegeEscalation: false</pre>
+
        allowPrivilegeEscalation: false
  
 
== Related terms ==
 
== Related terms ==

Revision as of 12:40, 25 May 2022

A security context defines privilege and access control settings for a Pod or Container.

The securityContext field is a PodSecurityContext object.

Example

  • pods/security/security-context.yaml
apiVersion: v1
kind: Pod
metadata:
  name: security-context-demo
spec:
  securityContext:
    runAsUser: 1000
    runAsGroup: 3000
    fsGroup: 2000
  volumes:
  - name: sec-ctx-vol
    emptyDir: {}
  containers:
  - name: sec-ctx-demo
    image: busybox
    command: [ "sh", "-c", "sleep 1h" ]
    volumeMounts:
    - name: sec-ctx-vol
      mountPath: /data/demo
    securityContext:
       allowPrivilegeEscalation: false

Related terms

Activities


See also

Advertising: