Fix issue with read only configuration
This commit is contained in:
parent
b8a102bd0b
commit
7300def6dc
@ -13,10 +13,10 @@ metadata:
|
|||||||
name: minio-operator
|
name: minio-operator
|
||||||
namespace: default
|
namespace: default
|
||||||
rules:
|
rules:
|
||||||
- apiGroups: ["communiquons.org"]
|
- apiGroups: ["communiquons.org"]
|
||||||
resources: ["minioinstances", "miniobuckets"]
|
resources: ["minioinstances", "miniobuckets"]
|
||||||
verbs: ["get", "list", "watch"]
|
verbs: ["get", "list", "watch"]
|
||||||
- apiGroups: [""]
|
- apiGroups: [""]
|
||||||
resources: ["secrets"]
|
resources: ["secrets"]
|
||||||
verbs: ["get", "create"]
|
verbs: ["get", "create"]
|
||||||
---
|
---
|
||||||
@ -26,7 +26,7 @@ metadata:
|
|||||||
name: minio-operator
|
name: minio-operator
|
||||||
namespace: default
|
namespace: default
|
||||||
subjects:
|
subjects:
|
||||||
- kind: ServiceAccount
|
- kind: ServiceAccount
|
||||||
name: minio-operator
|
name: minio-operator
|
||||||
namespace: default
|
namespace: default
|
||||||
roleRef:
|
roleRef:
|
||||||
@ -63,6 +63,10 @@ spec:
|
|||||||
requests:
|
requests:
|
||||||
memory: 150Mi
|
memory: 150Mi
|
||||||
cpu: "0.01"
|
cpu: "0.01"
|
||||||
|
volumeMounts:
|
||||||
|
- mountPath: /tmp
|
||||||
|
readOnly: false
|
||||||
|
name: tempdir
|
||||||
securityContext:
|
securityContext:
|
||||||
allowPrivilegeEscalation: false
|
allowPrivilegeEscalation: false
|
||||||
readOnlyRootFilesystem: true
|
readOnlyRootFilesystem: true
|
||||||
@ -71,3 +75,7 @@ spec:
|
|||||||
capabilities:
|
capabilities:
|
||||||
drop:
|
drop:
|
||||||
- ALL
|
- ALL
|
||||||
|
volumes:
|
||||||
|
- name: tempdir
|
||||||
|
emptyDir:
|
||||||
|
sizeLimit: 500Mi
|
||||||
|
Loading…
Reference in New Issue
Block a user