Skip to content

feat(plugin-barman-cloud): add possibility to unset runAsUser and runAsGroup #742

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Pidu2 wants to merge 1 commit into
base: main
Choose a base branch
from
Open

feat(plugin-barman-cloud): add possibility to unset runAsUser and runAsGroup #742

Pidu2 wants to merge 1 commit into from

Conversation

@Pidu2
Copy link

@Pidu2 Pidu2 commented Dec 3, 2025

This PR addresses the requirements of #673.

In an OpenShift environment, you usually do not want to set runAsUser or runAsGroup to something specific, instead it is chosen automatically by the cluster to a random value.

With this change, runAsUser and runAsGroup can be set to null and are therefore skipped when rendering.

values.yaml

containerSecurityContext:
  runAsUser: null
  runAsGroup: null

result

❯ helm template . --values values-barman.yaml -s templates/deployment.yaml | yq .spec.template.spec.containers.0.securityContext
allowPrivilegeEscalation: false
capabilities:
  drop:
    - ALL
readOnlyRootFilesystem: true
seccompProfile:
  type: RuntimeDefault

@dosubot dosubot bot added the size:XS This PR changes 0-9 lines, ignoring generated files. label Dec 3, 2025
phisco
phisco approved these changes Dec 5, 2025
View reviewed changes
Copy link
Collaborator

@phisco phisco left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Pidu2 can you fix the DCO failure in CI? otherwise LGTM 🙏

@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Dec 5, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@phisco phisco phisco approved these changes

@fcanovai fcanovai Awaiting requested review from fcanovai fcanovai is a code owner

@gbartolini gbartolini Awaiting requested review from gbartolini gbartolini is a code owner

@leonardoce leonardoce Awaiting requested review from leonardoce leonardoce is a code owner

@mnencia mnencia Awaiting requested review from mnencia mnencia is a code owner

@sxd sxd Awaiting requested review from sxd sxd is a code owner

@itay-grudev itay-grudev Awaiting requested review from itay-grudev itay-grudev is a code owner

Assignees

No one assigned

Labels

lgtm This PR has been approved by a maintainer size:XS This PR changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Pidu2 @phisco