projects
/
osm
/
devops.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Fixing LDAP bool variable convertion for secret population
[osm/devops.git]
/
installers
/
charm
/
pla
/
src
/
charm.py
diff --git
a/installers/charm/pla/src/charm.py
b/installers/charm/pla/src/charm.py
index
d0df179
..
7867991
100755
(executable)
--- a/
installers/charm/pla/src/charm.py
+++ b/
installers/charm/pla/src/charm.py
@@
-48,6
+48,7
@@
class ConfigModel(ModelValidator):
mongodb_uri: Optional[str]
log_level: str
image_pull_policy: str
mongodb_uri: Optional[str]
log_level: str
image_pull_policy: str
+ security_context: bool
@validator("log_level")
def validate_log_level(cls, v):
@validator("log_level")
def validate_log_level(cls, v):
@@
-108,7
+109,9
@@
class PlaCharm(CharmedOsmBase):
self._check_missing_dependencies(config)
# Create Builder for the PodSpec
self._check_missing_dependencies(config)
# Create Builder for the PodSpec
- pod_spec_builder = PodSpecV3Builder()
+ pod_spec_builder = PodSpecV3Builder(
+ enable_security_context=config.security_context
+ )
# Add secrets to the pod
mongodb_secret_name = f"{self.app.name}-mongodb-secret"
# Add secrets to the pod
mongodb_secret_name = f"{self.app.name}-mongodb-secret"
@@
-122,7
+125,10
@@
class PlaCharm(CharmedOsmBase):
# Build Container
container_builder = ContainerV3Builder(
# Build Container
container_builder = ContainerV3Builder(
- self.app.name, image_info, config.image_pull_policy
+ self.app.name,
+ image_info,
+ config.image_pull_policy,
+ run_as_non_root=config.security_context,
)
container_builder.add_port(name=self.app.name, port=PORT)
container_builder.add_envs(
)
container_builder.add_port(name=self.app.name, port=PORT)
container_builder.add_envs(