Skip to content

feat: add toggle for securitycontext and podsecuritycontext #1546

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 18, 2025
Merged

feat: add toggle for securitycontext and podsecuritycontext #1546

merged 1 commit into from
Jul 18, 2025

Conversation

sandert-k8s
Copy link
Contributor

Added toggles for enabling/disabling securityContext and PodSecurityContext. If you have other security measurements in place (for example Openshift SCC's), the default SecurityContexts are not needed. In the past, we provided an empty string for the securityContext, which always worked. But suddenly, ArgoCD does not accept this anymore. So, adding a toggle for this.

(This is the same change as added in the sops-operator and capsule-proxy )

@sandert-k8s sandert-k8s mentioned this pull request Jul 16, 2025
Merged
@sandert-k8s sandert-k8s marked this pull request as draft July 16, 2025 11:40
@sandert-k8s sandert-k8s force-pushed the add-toggle-for-securitycontexts branch from 739e843 to df0a1a2 Compare July 16, 2025 11:47
@sandert-k8s sandert-k8s changed the title feat: Add toggle for securityContext and PodSecurityContext feat: add toggle for securityContext and PodSecurityContext Jul 16, 2025
@sandert-k8s sandert-k8s force-pushed the add-toggle-for-securitycontexts branch from df0a1a2 to 9e0f2a7 Compare July 16, 2025 11:49
@sandert-k8s sandert-k8s marked this pull request as ready for review July 16, 2025 11:50
@sandert-k8s
feat: add toggle for securitycontext and podsecuritycontext
5c26803 
Signed-off-by: sandert-k8s <sandert98@gmail.com>
@sandert-k8s sandert-k8s force-pushed the add-toggle-for-securitycontexts branch from 9e0f2a7 to 5c26803 Compare July 18, 2025 09:18
@sandert-k8s sandert-k8s changed the title feat: add toggle for securityContext and PodSecurityContext feat: add toggle for securitycontext and podsecuritycontext Jul 18, 2025
prometherion
prometherion approved these changes Jul 18, 2025
View reviewed changes
Copy link
Member

@prometherion prometherion left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, asking @oliverbaehler for a further review.

@prometherion
Copy link
Member

Just saw projectcapsule/capsule-proxy#796, which is pretty similar: I think it's safe to get merged, it also maintains a backward compatibility in terms of previous behaviour.

@sandert-k8s
Copy link
Contributor Author

sandert-k8s commented Jul 18, 2025
edited
Loading

Just saw projectcapsule/capsule-proxy#796, which is pretty similar: I think it's safe to get merged, it also maintains a backward compatibility in terms of previous behaviour.

Yes, I've linked the other PR's in the opening post; they are all the same. I think this one isn't merged yet because there was a pipeline failing, which I fixed after that.

@oliverbaehler oliverbaehler merged commit 49f0ae0 into projectcapsule:main Jul 18, 2025
13 of 14 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@prometherion prometherion prometherion approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@sandert-k8s @prometherion @oliverbaehler