Add security context to init containers -- Added unit test for it (#76)

* Add security context to init containers -- Added unit test for it * Minor cleaning --------- Co-authored-by: Laszlo Fogas <[email protected]>
gimlet-io · Aug 14, 2023 · d0aa57c · d0aa57c
1 parent 7b56a9d
commit d0aa57c
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 4 deletions.
diff --git a/charts/onechart/templates/deployment.yaml b/charts/onechart/templates/deployment.yaml
@@ -67,7 +67,11 @@ spec:
           - mountPath: {{ .path }}
             name: {{ .name }}
           {{- end }}
-          {{- end }}   
+          {{- end }}
+          {{if .securityContext }}
+          securityContext:
+          {{- toYaml .securityContext | nindent 12 }}
+          {{- end}}
         {{- end }}      
       containers:
         - name: {{ template "robustName" .Release.Name }}

diff --git a/charts/onechart/tests/deployment_initcontainers_test.yaml b/charts/onechart/tests/deployment_initcontainers_test.yaml
@@ -26,6 +26,13 @@ tests:
       - equal:
           path: spec.template.spec.initContainers[0].command
           value: ['/bin/sh', '-c', 'while true; do date; sleep 2; done && ls /data && printf something']
-
-
-
+
+  - it: Should set security context
+    set:
+      initContainers:
+          - securityContext:
+              runAsNonRoot: true
+    asserts:
+      - equal:
+          path: spec.template.spec.initContainers[0].securityContext.runAsNonRoot
+          value: true