From e7b0042a5595d241fd8a2f927922daa5e7b5c8c7 Mon Sep 17 00:00:00 2001 From: Anas El Barkani Date: Sat, 2 Apr 2022 18:59:48 +0200 Subject: [PATCH] added SCC doc in chart --- charts/ingress-nginx/README.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md index 0647db915..4dee096ea 100644 --- a/charts/ingress-nginx/README.md +++ b/charts/ingress-nginx/README.md @@ -244,6 +244,7 @@ Kubernetes: `>=1.19.0-0` | controller.admissionWebhooks.createSecretJob.resources | object | `{}` | | | controller.admissionWebhooks.enabled | bool | `true` | | | controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one | +| controller.admissionWebhooks.existingScc | string | `""` | Use an existing OpenShift's instead of creating one | | controller.admissionWebhooks.failurePolicy | string | `"Fail"` | | | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` | | | controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks | @@ -291,6 +292,7 @@ Kubernetes: `>=1.19.0-0` | controller.electionID | string | `"ingress-controller-leader"` | Election ID to use for status update | | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. | | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one | +| controller.existingScc | string | `""` | Use an existing OpenShift's SCC instead of creating one | | controller.extraArgs | object | `{}` | Additional command line arguments to pass to nginx-ingress-controller E.g. to specify the default SSL certificate you can use | | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. | | controller.extraEnvs | list | `[]` | Additional environment variables to set | @@ -430,6 +432,7 @@ Kubernetes: `>=1.19.0-0` | defaultBackend.containerSecurityContext | object | `{}` | Security Context policies for controller main container. See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls | | defaultBackend.enabled | bool | `false` | | | defaultBackend.existingPsp | string | `""` | Use an existing PSP instead of creating one | +| defaultBackend.existingScc | string | `""` | Use an existing OpenShift's instead of creating one | | defaultBackend.extraArgs | object | `{}` | | | defaultBackend.extraEnvs | list | `[]` | Additional environment variables to set for defaultBackend pods | | defaultBackend.extraVolumeMounts | list | `[]` | | @@ -475,6 +478,7 @@ Kubernetes: `>=1.19.0-0` | dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` | | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials | | podSecurityPolicy.enabled | bool | `false` | | +| securityContextConstraints.enabled | bool | `false` | Enable OpenShift's SecurityContextConstraints | | rbac.create | bool | `true` | | | rbac.scope | bool | `false` | | | revisionHistoryLimit | int | `10` | Rollback limit |