openstack
/
openstack-helm-infra
Code Issues Proposed changes

Add missing security context template to nagios init container 

This change adds security context template at container level
to implement readOnly-fs flag

Change-Id: Ibd4f8a916bcd74c1d89aa360e89d4477cd01d367
This commit is contained in:
KHIYANI, RAHUL (rk0850) 2020-08-05 10:29:30 -05:00
parent 8cd4e26a42
commit cf131bacb2
2 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
nagios/templates/deployment.yaml
View File

@ -101,6 +101,7 @@ spec:
- name: define-nagios-hosts
{{ tuple $envAll "nagios" | include "helm-toolkit.snippets.image" | indent 10 }}
{{ tuple $envAll $envAll.Values.pod.resources.nagios | include "helm-toolkit.snippets.kubernetes_resources" | indent 10 }}
{{ dict "envAll" $envAll "application" "monitoring" "container" "define_nagios_hosts" | include "helm-toolkit.snippets.kubernetes_container_security_context" | indent 10 }}
command:
- /usr/lib/nagios/plugins/define-nagios-hosts.py
- --object_file_loc

2
nagios/values.yaml
View File

@ -212,6 +212,8 @@ pod:
pod:
runAsUser: 0
container:
define_nagios_hosts:
readOnlyRootFilesystem: false
apache_proxy:
readOnlyRootFilesystem: false
nagios: