diff --git a/bitnami/whereabouts/Chart.yaml b/bitnami/whereabouts/Chart.yaml index fbac445b4e..98f1035548 100644 --- a/bitnami/whereabouts/Chart.yaml +++ b/bitnami/whereabouts/Chart.yaml @@ -29,4 +29,4 @@ maintainers: name: whereabouts sources: - https://github.com/bitnami/charts/tree/main/bitnami/whereabouts -version: 0.6.1 +version: 0.7.0 diff --git a/bitnami/whereabouts/README.md b/bitnami/whereabouts/README.md index b03de50c79..c5f140414b 100644 --- a/bitnami/whereabouts/README.md +++ b/bitnami/whereabouts/README.md @@ -116,8 +116,12 @@ The command removes all the Kubernetes components associated with the chart and | `resources.requests` | The requested resources for the init container | `{}` | | `resources.limits` | The resources limits for the init container | `{}` | | `podSecurityContext.enabled` | Enable Whereabouts pods' Security Context | `true` | +| `podSecurityContext.fsGroupChangePolicy` | Set filesystem group change policy | `Always` | +| `podSecurityContext.sysctls` | Set kernel settings using the sysctl interface | `[]` | +| `podSecurityContext.supplementalGroups` | Set filesystem extra groups | `[]` | | `podSecurityContext.fsGroup` | Whereabouts pods' group ID | `0` | | `containerSecurityContext.enabled` | Enable Whereabouts containers' Security Context | `true` | +| `containerSecurityContext.seLinuxOptions` | Set SELinux options in container | `{}` | | `containerSecurityContext.runAsUser` | Whereabouts containers' Security Context | `0` | | `containerSecurityContext.runAsNonRoot` | Set Whereabouts container's Security Context runAsNonRoot | `false` | | `containerSecurityContext.privileged` | Set Whereabouts container's Security Context privileged | `true` | diff --git a/bitnami/whereabouts/values.yaml b/bitnami/whereabouts/values.yaml index 57a5bc2d7d..fd0e33f1a5 100644 --- a/bitnami/whereabouts/values.yaml +++ b/bitnami/whereabouts/values.yaml @@ -211,14 +211,21 @@ resources: ## Configure Pods Security Context ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod ## @param podSecurityContext.enabled Enable Whereabouts pods' Security Context +## @param podSecurityContext.fsGroupChangePolicy Set filesystem group change policy +## @param podSecurityContext.sysctls Set kernel settings using the sysctl interface +## @param podSecurityContext.supplementalGroups Set filesystem extra groups ## @param podSecurityContext.fsGroup Whereabouts pods' group ID ## podSecurityContext: enabled: true + fsGroupChangePolicy: Always + sysctls: [] + supplementalGroups: [] fsGroup: 0 ## Configure Container Security Context (only main container) ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container ## @param containerSecurityContext.enabled Enable Whereabouts containers' Security Context +## @param containerSecurityContext.seLinuxOptions Set SELinux options in container ## @param containerSecurityContext.runAsUser Whereabouts containers' Security Context ## @param containerSecurityContext.runAsNonRoot Set Whereabouts container's Security Context runAsNonRoot ## @param containerSecurityContext.privileged Set Whereabouts container's Security Context privileged @@ -226,6 +233,7 @@ podSecurityContext: ## containerSecurityContext: enabled: true + seLinuxOptions: {} runAsUser: 0 runAsNonRoot: false privileged: true