Support configuring security context #456
Assignees
Labels
Comments
|
@ywk253100 Any plans to support this in the future? With Kubernetes 1.24 reaching EOL and clusters migrating to 1.25 with the new policies I suspect the need for this will grow. Currently we cannot run Harbor with the new policies enabled. If you are open for PR's for this we could most certainly take a look. |
|
This issue is being marked stale due to a period of inactivity. If this issue is still relevant, please comment or remove the stale label. Otherwise, this issue will close in 30 days. |
|
This issue was closed because it has been stalled for 30 days with no activity. If this issue is still relevant, please re-open a new issue. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently, the containers in Harbor run as specific user(user ID 10000 or 999), and the user cannot be changed because some directives such as https://github.com/goharbor/harbor/blob/release-1.10.0/make/photon/registry/Dockerfile#L9. This prevents the supporting for configuring
runAsUser.For other security context directives https://kubernetes.io/docs/concepts/policy/pod-security-policy/#example-policies, we need more test to verify they can work as expected.
There is already a PR #266 from community for the security context supporting
The text was updated successfully, but these errors were encountered: