From e32f5807335282b23957dcb298a9e7dda14a28c0 Mon Sep 17 00:00:00 2001 From: Muhammad Hamza Zaib Date: Mon, 10 Jan 2022 20:55:34 +0100 Subject: [PATCH] feat(argo-events): Allow specifying container security context for controllers (#1081) Signed-off-by: Muhammad Hamza Zaib Co-authored-by: Marko Bevc --- charts/argo-events/Chart.yaml | 4 ++-- .../argo-events/templates/eventbus-controller-deployment.yaml | 3 +++ .../templates/eventsource-controller-deployment.yaml | 3 +++ .../argo-events/templates/sensor-controller-deployment.yaml | 3 +++ charts/argo-events/values.yaml | 3 +++ 5 files changed, 14 insertions(+), 2 deletions(-) diff --git a/charts/argo-events/Chart.yaml b/charts/argo-events/Chart.yaml index 2d6a7fae..2220c699 100644 --- a/charts/argo-events/Chart.yaml +++ b/charts/argo-events/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: A Helm chart to install Argo-Events in k8s Cluster name: argo-events -version: 1.8.0 +version: 1.9.0 keywords: - argo-events - sensor-controller @@ -17,4 +17,4 @@ icon: https://argoproj.github.io/argo-events/assets/logo.png home: https://github.com/argoproj/argo-helm annotations: artifacthub.io/changes: | - - "[Changed]: Update to Argo Events v1.5.0" + - "[Added]: Allow specifying container security context for controllers" diff --git a/charts/argo-events/templates/eventbus-controller-deployment.yaml b/charts/argo-events/templates/eventbus-controller-deployment.yaml index 834425fe..48022cf6 100644 --- a/charts/argo-events/templates/eventbus-controller-deployment.yaml +++ b/charts/argo-events/templates/eventbus-controller-deployment.yaml @@ -61,6 +61,9 @@ spec: initialDelaySeconds: 3 periodSeconds: 3 resources: {{- toYaml .Values.eventbusController.resources | nindent 12 }} + {{- with .Values.eventbusController.containerSecurityContext }} + securityContext: {{- toYaml . | nindent 12 }} + {{- end }} {{- with .Values.eventbusController.priorityClassName }} priorityClassName: {{ . | quote }} {{- end }} diff --git a/charts/argo-events/templates/eventsource-controller-deployment.yaml b/charts/argo-events/templates/eventsource-controller-deployment.yaml index 2d79a4ff..9fd55776 100644 --- a/charts/argo-events/templates/eventsource-controller-deployment.yaml +++ b/charts/argo-events/templates/eventsource-controller-deployment.yaml @@ -59,6 +59,9 @@ spec: initialDelaySeconds: 3 periodSeconds: 3 resources: {{- toYaml .Values.eventsourceController.resources | nindent 12 }} + {{- with .Values.eventsourceController.containerSecurityContext }} + securityContext: {{- toYaml . | nindent 12 }} + {{- end }} {{- with .Values.eventsourceController.priorityClassName }} priorityClassName: {{ . | quote }} {{- end }} diff --git a/charts/argo-events/templates/sensor-controller-deployment.yaml b/charts/argo-events/templates/sensor-controller-deployment.yaml index e3590578..da678b54 100644 --- a/charts/argo-events/templates/sensor-controller-deployment.yaml +++ b/charts/argo-events/templates/sensor-controller-deployment.yaml @@ -59,6 +59,9 @@ spec: initialDelaySeconds: 3 periodSeconds: 3 resources: {{- toYaml .Values.sensorController.resources | nindent 12 }} + {{- with .Values.sensorController.containerSecurityContext }} + securityContext: {{- toYaml . | nindent 12 }} + {{- end }} {{- with .Values.sensorController.priorityClassName }} priorityClassName: {{ . | quote }} {{- end }} diff --git a/charts/argo-events/values.yaml b/charts/argo-events/values.yaml index 8b75651b..1d3bb9dd 100644 --- a/charts/argo-events/values.yaml +++ b/charts/argo-events/values.yaml @@ -58,6 +58,7 @@ sensorController: tolerations: [] affinity: {} resources: {} + containerSecurityContext: {} eventsourceController: name: eventsource-controller @@ -75,6 +76,7 @@ eventsourceController: tolerations: [] affinity: {} resources: {} + containerSecurityContext: {} eventbusController: name: eventbus-controller @@ -93,6 +95,7 @@ eventbusController: resources: {} natsStreamingImage: nats-streaming:0.22.1 natsMetricsExporterImage: natsio/prometheus-nats-exporter:0.8.0 + containerSecurityContext: {} securityContext: runAsNonRoot: true