From 8223061b401dd718b3632bce0cec5858e5e52a9b Mon Sep 17 00:00:00 2001
From: svariant <samuele.varianti@nttdata.com>
Date: Wed, 12 Feb 2025 15:54:20 +0100
Subject: [PATCH] [PAGOPA-2654] feat: Update security context helm

---
 helm/values-dev.yaml  |  4 +++-
 helm/values-prod.yaml | 12 +++++++-----
 helm/values-uat.yaml  |  6 ++++--
 3 files changed, 14 insertions(+), 8 deletions(-)

diff --git a/helm/values-dev.yaml b/helm/values-dev.yaml
index 83bf60e..45a9a90 100644
--- a/helm/values-dev.yaml
+++ b/helm/values-dev.yaml
@@ -65,7 +65,9 @@ microservice-chart:
     seccompProfile:
       type: RuntimeDefault
   securityContext:
-    allowPrivilegeEscalation: false
+    capabilities:
+      add:
+        - NET_BIND_SERVICE
   resources:
     requests:
       memory: "256Mi"
diff --git a/helm/values-prod.yaml b/helm/values-prod.yaml
index 573aa22..47f36ff 100644
--- a/helm/values-prod.yaml
+++ b/helm/values-prod.yaml
@@ -1,7 +1,7 @@
 microservice-chart:
   namespace: "fdr"
   nameOverride: ""
-  fullnameOverride: ""
+  fullnameOverride: "pagopa-fdr-2-event-hub"
   image:
     repository: ghcr.io/pagopa/pagopa-fdr-2-event-hub
     tag: "0.0.2-11-PAGOPA-2645-tuning-fdr-to-eventhub"
@@ -57,15 +57,17 @@ microservice-chart:
     path: /pagopa-fdr-to-event-hub-service/(.*)
     servicePort: 80
   serviceAccount:
-    create: false
-    annotations: {}
-    name: ""
+    name: "fdr-workload-identity"
+  azure:
+    workloadIdentityClientId: <workload-identity-client-id-set-automatically-by-gha>
   podAnnotations: {}
   podSecurityContext:
     seccompProfile:
       type: RuntimeDefault
   securityContext:
-    allowPrivilegeEscalation: false
+    capabilities:
+      add:
+        - NET_BIND_SERVICE
   resources:
     requests:
       memory: "768Mi"
diff --git a/helm/values-uat.yaml b/helm/values-uat.yaml
index 1c24e93..df16891 100644
--- a/helm/values-uat.yaml
+++ b/helm/values-uat.yaml
@@ -1,7 +1,7 @@
 microservice-chart:
   namespace: "fdr"
   nameOverride: ""
-  fullnameOverride: ""
+  fullnameOverride: "pagopa-fdr-2-event-hub"
   image:
     repository: ghcr.io/pagopa/pagopa-fdr-2-event-hub
     tag: "0.0.2-11-PAGOPA-2645-tuning-fdr-to-eventhub"
@@ -65,7 +65,9 @@ microservice-chart:
     seccompProfile:
       type: RuntimeDefault
   securityContext:
-    allowPrivilegeEscalation: false
+    capabilities:
+      add:
+        - NET_BIND_SERVICE
   resources:
     requests:
       memory: "768Mi"