1 # Copyright © 2020 Bitnami, AT&T, Amdocs, Bell Canada, highstreet technologies
3 # Licensed under the Apache License, Version 2.0 (the "License");
4 # you may not use this file except in compliance with the License.
5 # You may obtain a copy of the License at
7 # http://www.apache.org/licenses/LICENSE-2.0
9 # Unless required by applicable law or agreed to in writing, software
10 # distributed under the License is distributed on an "AS IS" BASIS,
11 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 # See the License for the specific language governing permissions and
13 # limitations under the License.
14 {{- if and .Values.enabled .Values.psp.create }}
15 apiVersion: policy/v1beta1
16 kind: PodSecurityPolicy
17 {{ $role := "curator" -}}
18 {{ $suffix := $role -}}
19 {{ $labels := (dict "role" $role) -}}
20 metadata: {{- include "common.resourceMetadata" (dict "suffix" $suffix "labels" $labels "dot" . )| nindent 2 }}
23 #requiredDropCapabilities:
31 # Require the container to run without root privileges.
32 rule: 'MustRunAsNonRoot'
45 readOnlyRootFilesystem: false