diff options
| author | Paul Buetow <paul@buetow.org> | 2026-01-09 11:13:28 +0200 |
|---|---|---|
| committer | Paul Buetow <paul@buetow.org> | 2026-01-09 11:13:28 +0200 |
| commit | 48a8499a2b919e28045c896cd8553d90bb3b875b (patch) | |
| tree | 8079af8b392f3c8f19ae653a69ed311c38f8ac79 /f3s/git-server/helm-chart | |
| parent | 36b631ff8f1fb454164f448bfd0cd0e8707bb6af (diff) | |
Fix SSH host keys and container security
- Generate SSH host keys at runtime via entrypoint script
- Remove fsGroup security context to fix emptyDir permissions
- Allow cgit to initialize cache directory as root
Diffstat (limited to 'f3s/git-server/helm-chart')
| -rw-r--r-- | f3s/git-server/helm-chart/templates/deployment.yaml | 4 |
1 files changed, 0 insertions, 4 deletions
diff --git a/f3s/git-server/helm-chart/templates/deployment.yaml b/f3s/git-server/helm-chart/templates/deployment.yaml index 0446725..b74a5fc 100644 --- a/f3s/git-server/helm-chart/templates/deployment.yaml +++ b/f3s/git-server/helm-chart/templates/deployment.yaml @@ -15,10 +15,6 @@ spec: labels: app: git-server spec: - # Allow both git (1000) and www-data (33) to access shared files - securityContext: - fsGroup: 1000 - containers: # Container 1: SSH Git Server - name: git-server |