- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 413 for runAsGroup (0.33 sec)
-
cmd/kubeadm/app/util/staticpod/utils_linux.go
pod.Spec.SecurityContext.RunAsUser = runAsUser pod.Spec.SecurityContext.RunAsGroup = runAsGroup pod.Spec.SecurityContext.SupplementalGroups = []int64{*supplementalGroup} return nil } // runKubeSchedulerAsNonRoot updates the pod manifest and the hostVolume permissions to run kube-scheduler as non root. func runKubeSchedulerAsNonRoot(pod *v1.Pod, runAsUser, runAsGroup *int64, updatePathOwnerAndPermissions pathOwnerAndPermissionsUpdaterFunc) error {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Sep 11 14:41:12 UTC 2023 - 8.4K bytes - Viewed (0) -
cmd/kubeadm/app/util/staticpod/utils_linux_test.go
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Sep 11 14:41:12 UTC 2023 - 7.4K bytes - Viewed (0) -
pkg/securitycontext/accessors_test.go
PodSC: &api.PodSecurityContext{ RunAsGroup: &runAsGroup, }, SC: nil, Effective: &api.SecurityContext{ RunAsGroup: &runAsGroup, }, }, { PodSC: &api.PodSecurityContext{ RunAsGroup: &runAsGroupPod, }, SC: &api.SecurityContext{ RunAsGroup: &runAsGroup, }, Effective: &api.SecurityContext{ RunAsGroup: &runAsGroup, }, }, }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Feb 22 16:15:27 UTC 2023 - 27.8K bytes - Viewed (0) -
helm/minio/templates/post-job.yaml
{{- end }} {{- if .Values.postJob.securityContext.enabled }} securityContext: runAsUser: {{ .Values.postJob.securityContext.runAsUser }} runAsGroup: {{ .Values.postJob.securityContext.runAsGroup }} fsGroup: {{ .Values.postJob.securityContext.fsGroup }} {{- end }} volumes: - name: etc-path emptyDir: {} - name: tmp emptyDir: {}
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Sat Jul 08 19:18:31 UTC 2023 - 10.4K bytes - Viewed (0) -
pkg/securitycontext/util.go
} if containerSc.RunAsUser != nil { effectiveSc.RunAsUser = new(int64) *effectiveSc.RunAsUser = *containerSc.RunAsUser } if containerSc.RunAsGroup != nil { effectiveSc.RunAsGroup = new(int64) *effectiveSc.RunAsGroup = *containerSc.RunAsGroup } if containerSc.RunAsNonRoot != nil { effectiveSc.RunAsNonRoot = new(bool) *effectiveSc.RunAsNonRoot = *containerSc.RunAsNonRoot }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Feb 15 07:28:24 UTC 2023 - 7.5K bytes - Viewed (0) -
pkg/securitycontext/accessors.go
w.containerSC.SetRunAsUser(v) } } func (w *effectiveContainerSecurityContextWrapper) RunAsGroup() *int64 { if v := w.containerSC.RunAsGroup(); v != nil { return v } return w.podSC.RunAsGroup() } func (w *effectiveContainerSecurityContextWrapper) SetRunAsGroup(v *int64) { if !reflect.DeepEqual(w.RunAsGroup(), v) { w.containerSC.SetRunAsGroup(v) } }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Feb 22 16:15:27 UTC 2023 - 14.4K bytes - Viewed (0) -
cluster/gce/manifests/kube-addon-manager.yaml
metadata: name: kube-addon-manager namespace: kube-system labels: component: kube-addon-manager spec: securityContext: seccompProfile: type: RuntimeDefault runAsUser: {{runAsUser}} runAsGroup: {{runAsGroup}} priorityClassName: system-node-critical priority: 2000001000 hostNetwork: true containers: - name: kube-addon-manager securityContext: allowPrivilegeEscalation: false
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Jun 21 03:09:15 UTC 2023 - 1.6K bytes - Viewed (0) -
staging/src/k8s.io/client-go/applyconfigurations/core/v1/podsecuritycontext.go
} // WithRunAsGroup sets the RunAsGroup field in the declarative configuration to the given value // and returns the receiver, so that objects can be built by chaining "With" function invocations. // If called multiple times, the RunAsGroup field is set to the value of the last call. func (b *PodSecurityContextApplyConfiguration) WithRunAsGroup(value int64) *PodSecurityContextApplyConfiguration { b.RunAsGroup = &value return b }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 29 22:40:29 UTC 2024 - 8.1K bytes - Viewed (0) -
pkg/kubelet/kuberuntime/kuberuntime_sandbox_linux_test.go
} func newTestPodWithLinuxSecurityContext() *v1.Pod { anyGroup := int64(10) anyUser := int64(1000) pod := newTestPod() pod.Spec.SecurityContext = &v1.PodSecurityContext{ SELinuxOptions: &v1.SELinuxOptions{ User: "qux", }, RunAsUser: &anyUser, RunAsGroup: &anyGroup, } return pod }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 29 22:40:29 UTC 2024 - 8K bytes - Viewed (0) -
pkg/kube/inject/testdata/inject/proxy-override-runas.yaml.tproxy.injected
prometheus.io/port: "15020" prometheus.io/scrape: "true" proxy.istio.io/overrides: '{"containers":[{"name":"istio-proxy","resources":{},"securityContext":{"runAsUser":1234,"runAsGroup":4321}}]}'
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 14 17:59:39 UTC 2024 - 6.6K bytes - Viewed (0)