shpaq/auricom-home-cluster
1
0
Fork 0
mirror of https://github.com/auricom/home-cluster.git synced 2025-09-17 18:24:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

🚑 rook-ceph pod-security

Browse Source
This commit is contained in:
auricom
2022-12-30 04:09:02 +01:00
parent 5b28a0f48b
commit b82140d4c9
2 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
kubernetes/apps/rook-ceph/namespace.yaml
View File

@@ -5,3 +5,5 @@ metadata:
name: rook-ceph name: rook-ceph
labels: labels:
kustomize.toolkit.fluxcd.io/prune: disabled kustomize.toolkit.fluxcd.io/prune: disabled
pod-security.kubernetes.io/enforce: privileged
pod-security.kubernetes.io/enforce-version: latest

11
tools/wipe-rook.yaml
View File

@@ -1,8 +1,17 @@
--- ---
apiVersion: v1 apiVersion: v1
kind: Namespace
metadata:
name: my-privileged-namespace
labels:
pod-security.kubernetes.io/enforce: privileged
pod-security.kubernetes.io/enforce-version: latest
---
apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: disk-wipe-talos-node-2 name: disk-wipe-talos-node-2
namespace: my-privileged-namespace
spec: spec:
restartPolicy: Never restartPolicy: Never
nodeName: talos-node-2 nodeName: talos-node-2
@@ -35,6 +44,7 @@ apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: disk-wipe-talos-node-3 name: disk-wipe-talos-node-3
namespace: my-privileged-namespace
spec: spec:
restartPolicy: Never restartPolicy: Never
nodeName: talos-node-3 nodeName: talos-node-3
@@ -67,6 +77,7 @@ apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: disk-wipe-talos-node-4 name: disk-wipe-talos-node-4
namespace: my-privileged-namespace
spec: spec:
restartPolicy: Never restartPolicy: Never
nodeName: talos-node-4 nodeName: talos-node-4