Run cgit as root - required for nginx and spawn-fcgi

cgit image needs root to: - Bind sockets with spawn-fcgi - Run nginx master process - Write to /var/run/nginx.pid The initContainer already sets up cache dir with proper permissions.
author: Paul Buetow <paul@buetow.org> 2026-01-09 11:27:32 +0200
committer: Paul Buetow <paul@buetow.org> 2026-01-09 19:40:51 +0200
commit: 85231f3f755c1eb0607862532d5a0968a818b8a0 (patch)
tree: cc2e099d6f3def5018a3d9aca0eb1ced361f5c7d
parent: f125eda6ebfd62574d987536d23d7f47ce863e77 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/f3s/git-server/helm-chart/templates/deployment.yaml b/f3s/git-server/helm-chart/templates/deployment.yaml
index 1af9770..bfd9387 100644
--- a/f3s/git-server/helm-chart/templates/deployment.yaml
+++ b/f3s/git-server/helm-chart/templates/deployment.yaml
@@ -92,8 +92,8 @@ spec:
         - name: cgit-cache
           mountPath: /var/cache/cgit
         securityContext:
-          runAsUser: 101
-          runAsGroup: 101
+          runAsUser: 0
+          runAsGroup: 0
           allowPrivilegeEscalation: false
           capabilities:
             drop: ["ALL"]
author	Paul Buetow <paul@buetow.org>	2026-01-09 11:27:32 +0200
committer	Paul Buetow <paul@buetow.org>	2026-01-09 19:40:51 +0200
commit	85231f3f755c1eb0607862532d5a0968a818b8a0 (patch)
tree	cc2e099d6f3def5018a3d9aca0eb1ced361f5c7d
parent	f125eda6ebfd62574d987536d23d7f47ce863e77 (diff)