diff options
| author | Paul Buetow <paul@buetow.org> | 2026-01-09 11:27:32 +0200 |
|---|---|---|
| committer | Paul Buetow <paul@buetow.org> | 2026-01-09 11:27:32 +0200 |
| commit | 41fe34b2122b35761d58d70f29424b9b806b0518 (patch) | |
| tree | 7540f5943219500c87117edddd93d84dafc6dc51 /f3s/git-server | |
| parent | 5cbfbbd537a2e4d2ec5250ac2570da122ea97a45 (diff) | |
Run cgit as root - required for nginx and spawn-fcgi
cgit image needs root to:
- Bind sockets with spawn-fcgi
- Run nginx master process
- Write to /var/run/nginx.pid
The initContainer already sets up cache dir with proper permissions.
Diffstat (limited to 'f3s/git-server')
| -rw-r--r-- | f3s/git-server/helm-chart/templates/deployment.yaml | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/f3s/git-server/helm-chart/templates/deployment.yaml b/f3s/git-server/helm-chart/templates/deployment.yaml index 1af9770..bfd9387 100644 --- a/f3s/git-server/helm-chart/templates/deployment.yaml +++ b/f3s/git-server/helm-chart/templates/deployment.yaml @@ -92,8 +92,8 @@ spec: - name: cgit-cache mountPath: /var/cache/cgit securityContext: - runAsUser: 101 - runAsGroup: 101 + runAsUser: 0 + runAsGroup: 0 allowPrivilegeEscalation: false capabilities: drop: ["ALL"] |