Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 10 of 23 for runAsNonRoot (0.26 sec)

  2. github.com/istio/istio

    manifests/charts/istiod-remote/files/injection-template.yaml 

          readOnlyRootFilesystem: false
      runAsGroup: 0
      runAsNonRoot: false
      runAsUser: 0
    {{- else }}
      readOnlyRootFilesystem: true
      runAsGroup: {{ .ProxyGID | default "1337" }}
      runAsUser: {{ .ProxyUID | default "1337" }}
      runAsNonRoot: true
    {{- end }}
  {{ end -}}
    Others
    - Registered: Wed Mar 20 22:53:08 GMT 2024
    - Last Modified: Tue Feb 27 16:55:16 GMT 2024
    - 23.7K bytes
    - Viewed (0)
  3. github.com/istio/istio

    manifests/charts/istio-control/istio-discovery/files/injection-template.yaml 

          readOnlyRootFilesystem: false
      runAsGroup: 0
      runAsNonRoot: false
      runAsUser: 0
    {{- else }}
      readOnlyRootFilesystem: true
      runAsGroup: {{ .ProxyGID | default "1337" }}
      runAsUser: {{ .ProxyUID | default "1337" }}
      runAsNonRoot: true
    {{- end }}
  {{ end -}}
    Others
    - Registered: Wed Mar 20 22:53:08 GMT 2024
    - Last Modified: Tue Feb 27 16:55:16 GMT 2024
    - 23.7K bytes
    - Viewed (1)
  4. github.com/istio/istio

    manifests/charts/gateway/templates/deployment.yaml 

                readOnlyRootFilesystem: true
            {{- if not (eq .Values.platform "openshift") }}
            runAsUser: 1337
            runAsGroup: 1337
            {{- end }}
            runAsNonRoot: true
          {{- end }}
          env:
          {{- with .Values.networkGateway }}
          - name: ISTIO_META_REQUESTED_NETWORK_VIEW
            value: "{{.}}"
          {{- end }}
    Others
    - Registered: Wed Apr 24 22:53:08 GMT 2024
    - Last Modified: Thu Apr 18 18:16:49 GMT 2024
    - 3.5K bytes
    - Viewed (0)
  5. github.com/istio/istio

    manifests/charts/istio-control/istio-discovery/files/kube-gateway.yaml 

              runAsGroup: {{ .ProxyGID | default "1337" }}
          runAsNonRoot: true
        {{- else }}
          capabilities:
            drop:
            - ALL
            add:
            - NET_BIND_SERVICE
          runAsUser: 0
          runAsGroup: 1337
          runAsNonRoot: false
          allowPrivilegeEscalation: true
          readOnlyRootFilesystem: true
    Others
    - Registered: Wed Mar 20 22:53:08 GMT 2024
    - Last Modified: Tue Feb 27 16:55:16 GMT 2024
    - 12.1K bytes
    - Viewed (0)
  6. github.com/istio/istio

    manifests/charts/gateways/istio-ingress/templates/deployment.yaml 

    {{ end }}
    spec:
{{- if not $gateway.runAsRoot }}
      securityContext:
{{- if not (eq .Values.global.platform "openshift") }}
        runAsUser: 1337
        runAsGroup: 1337
{{- end }}
        runAsNonRoot: true
{{- end }}
      serviceAccountName: {{ $gateway.name }}-service-account
{{- if .Values.global.priorityClassName }}
      priorityClassName: "{{ .Values.global.priorityClassName }}"
{{- end }}
    Others
    - Registered: Wed Apr 24 22:53:08 GMT 2024
    - Last Modified: Thu Apr 18 18:16:49 GMT 2024
    - 12.1K bytes
    - Viewed (1)
  7. github.com/istio/istio

    manifests/charts/istio-operator/templates/deployment.yaml 

                allowPrivilegeEscalation: false
            capabilities:
              drop:
              - ALL
            privileged: false
            readOnlyRootFilesystem: true
            runAsNonRoot: true
{{- if .Values.operator.seccompProfile }}
            seccompProfile:
{{ toYaml .Values.operator.seccompProfile | trim | indent 14 }}
{{- end }}
{{- if .Values.imagePullPolicy }}
    Others
    - Registered: Wed Mar 20 22:53:08 GMT 2024
    - Last Modified: Fri Aug 25 19:10:42 GMT 2023
    - 2.6K bytes
    - Viewed (0)
  8. github.com/istio/istio

    manifests/charts/gateways/istio-egress/templates/deployment.yaml 

    {{ end }}
    spec:
{{- if not $gateway.runAsRoot }}
      securityContext:
{{- if not (eq .Values.global.platform "openshift") }}
        runAsUser: 1337
        runAsGroup: 1337
{{- end }}
        runAsNonRoot: true
{{- end }}
      serviceAccountName: {{ $gateway.name }}-service-account
{{- if .Values.global.priorityClassName }}
      priorityClassName: "{{ .Values.global.priorityClassName }}"
{{- end }}
    Others
    - Registered: Wed Apr 24 22:53:08 GMT 2024
    - Last Modified: Thu Apr 18 18:16:49 GMT 2024
    - 12.1K bytes
    - Viewed (0)
  9. github.com/istio/istio

    manifests/charts/ztunnel/templates/daemonset.yaml 

                - SYS_ADMIN # Required for `setns` - doing things in other netns
            - NET_RAW # Required for RAW/PACKET sockets, TPROXY
          readOnlyRootFilesystem: true
          runAsGroup: 1337
          runAsNonRoot: false
          runAsUser: 0
{{- if .Values.seLinuxOptions }}
          seLinuxOptions:
{{ toYaml .Values.seLinuxOptions | trim | indent 12 }}
{{- end }}
        readinessProbe:
          httpGet:
    Others
    - Registered: Wed Mar 20 22:53:08 GMT 2024
    - Last Modified: Fri Jan 26 20:34:28 GMT 2024
    - 5K bytes
    - Viewed (0)
  10. github.com/istio/istio

    manifests/charts/gateways/istio-egress/templates/injected-deployment.yaml 

    {{ end }}
    spec:
{{- if not $gateway.runAsRoot }}
      securityContext:
{{- if not (eq .Values.global.platform "openshift") }}
        runAsUser: 1337
        runAsGroup: 1337
{{- end }}
        runAsNonRoot: true
{{- end }}
      serviceAccountName: {{ $gateway.name | default "istio-egressgateway" }}-service-account
{{- if .Values.global.priorityClassName }}
      priorityClassName: "{{ .Values.global.priorityClassName }}"
    Others
    - Registered: Wed Apr 24 22:53:08 GMT 2024
    - Last Modified: Thu Apr 18 18:16:49 GMT 2024
    - 5K bytes
    - Viewed (0)
  11. github.com/istio/istio

    manifests/charts/gateways/istio-ingress/templates/injected-deployment.yaml 

    {{ end }}
    spec:
{{- if not $gateway.runAsRoot }}
      securityContext:
{{- if not (eq .Values.global.platform "openshift") }}
        runAsUser: 1337
        runAsGroup: 1337
{{- end }}
        runAsNonRoot: true
{{- end }}
      serviceAccountName: {{ $gateway.name | default "istio-ingressgateway" }}-service-account
{{- if .Values.global.priorityClassName }}
      priorityClassName: "{{ .Values.global.priorityClassName }}"
    Others
    - Registered: Wed Apr 24 22:53:08 GMT 2024
    - Last Modified: Thu Apr 18 18:16:49 GMT 2024
    - 5K bytes
    - Viewed (0)
Back to top