openstack/openstack-helm-infra
Code Issues Proposed changes

Add missing pod/container flags to alerta

Browse Source 
Adding runAsUser and readOnly-fs flag to alerta pod/container.

The security context templates are added here:
https://github.com/openstack/openstack-helm-infra/blob/master/alerta/templates/deployment.yaml#L52

Change-Id: I1136f776ffd7caf54310288a162563ef4e565bbe
This commit is contained in:
KHIYANI, RAHUL (rk0850) 2020-10-13 16:25:32 -05:00
parent ed229cf605
commit 53480c39f0
2 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
alerta/Chart.yaml
View File

@ -15,7 +15,7 @@ apiVersion: v1
appVersion: v8.0.2 appVersion: v8.0.2
description: OpenStack-Helm Alerta for Alertmanager. description: OpenStack-Helm Alerta for Alertmanager.
name: alerta name: alerta
version: 0.1.3 version: 0.1.4
home: https://github.com/alerta/alerta home: https://github.com/alerta/alerta
sources: sources:
- https://github.com/alerta/alerta - https://github.com/alerta/alerta

6
alerta/values.yaml
View File

@ -72,6 +72,12 @@ pod:
postgresql_create_db: postgresql_create_db:
readOnlyRootFilesystem: true readOnlyRootFilesystem: true
allowPrivilegeEscalation: false allowPrivilegeEscalation: false
server:
pod:
runAsUser: 0
container:
alerta:
readOnlyRootFilesystem: false
affinity: affinity:
anti: anti:
type: type: