Bitnami/charts
2
0
Fork 0
mirror of https://github.com/bitnami/charts.git synced 2026-04-01 14:57:11 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #858 from tompizmor/memcached_security_context

Browse Source 
[bitnami/memcached] - Memcached security context
This commit is contained in:
Tomas Pizarro
2018-10-11 12:50:39 +02:00
committed by GitHub
parent 544c988938 09324bd0df
commit db9c6c214d
4 changed files with 29 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
bitnami/memcached/Chart.yaml
View File

@@ -1,5 +1,5 @@
name: memcached
version: 1.0.2
version: 1.1.0
appVersion: 1.5.11
description: Chart for Memcached
keywords:

25
bitnami/memcached/README.md
View File

@@ -45,17 +45,20 @@ The command removes all the Kubernetes components associated with the chart and
The following tables lists the configurable parameters of the Memcached chart and their default values.
| Parameter | Description | Default |
|---------------------|-------------------------------------|---------------------------------------------------------- |
| `image.registry` | Memcached image registry | `docker.io` |
| `image.repository` | Memcached Image name | `bitnami/memcached` |
| `image.tag` | Memcached Image tag | `{VERSION}` |
| `image.pullPolicy` | Memcached image pull policy | `Always` if `imageTag` is `latest`, else `IfNotPresent` |
| `image.pullSecrets` | Specify image pull secrets | `nil` (does not add image pull secrets to deployed pods) |
| `memcachedUsername` | Memcached admin user | `nil` |
| `memcachedPassword` | Memcached admin password | `nil` |
| `serviceType` | Kubernetes Service type | `ClusterIP` |
| `resources` | CPU/Memory resource requests/limits | Memory: `256Mi`, CPU: `250m` |
| Parameter | Description | Default |
|-----------------------------|-------------------------------------|---------------------------------------------------------- |
| `image.registry` | Memcached image registry | `docker.io` |
| `image.repository` | Memcached Image name | `bitnami/memcached` |
| `image.tag` | Memcached Image tag | `{VERSION}` |
| `image.pullPolicy` | Memcached image pull policy | `Always` if `imageTag` is `latest`, else `IfNotPresent` |
| `image.pullSecrets` | Specify image pull secrets | `nil` (does not add image pull secrets to deployed pods) |
| `securityContext.enabled` | Enable security context | `true` |
| `securityContext.fsGroup` | Group ID for the container | `1001` |
| `securityContext.runAsUser` | User ID for the container | `1001` |
| `memcachedUsername` | Memcached admin user | `nil` |
| `memcachedPassword` | Memcached admin password | `nil` |
| `serviceType` | Kubernetes Service type | `ClusterIP` |
| `resources` | CPU/Memory resource requests/limits | Memory: `256Mi`, CPU: `250m` |
The above parameters map to the env variables defined in [bitnami/memcached](http://github.com/bitnami/bitnami-docker-memcached). For more information please refer to the [bitnami/memcached](http://github.com/bitnami/bitnami-docker-memcached) image documentation.

5
bitnami/memcached/templates/deployment.yaml
View File

@@ -19,6 +19,11 @@ spec:
chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
release: "{{ .Release.Name }}"
spec:
{{- if .Values.securityContext.enabled }}
securityContext:
fsGroup: {{ .Values.securityContext.fsGroup }}
runAsUser: {{ .Values.securityContext.runAsUser }}
{{- end }}
{{- if .Values.image.pullSecrets }}
imagePullSecrets:
{{- range .Values.image.pullSecrets }}

10
bitnami/memcached/values.yaml
View File

@@ -15,7 +15,15 @@ image:
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
##
# pullSecrets:
# - myRegistrKeySecretName
# - myRegistrKeySecretName
## Pod Security Context
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
##
securityContext:
enabled: true
fsGroup: 1001
runAsUser: 1001
## Specify a imagePullPolicy
## ref: http://kubernetes.io/docs/user-guide/images/#pre-pulling-images